14366
The largest collection of malware source, samples, and papers on the internet. Password: infected Website: https://www.vx-underground.org/ vx-underground Telegram chatroom link: https://t.me/+njfLzUrqos01ZWNh
Excited to watch some OGUsers nerd drop $50,000 for the Xitter handle "poop"
Читать полностью…
Today EUROPOL announced the takedown of a large and prolific CSAM (Child Sexual Abuse Material) website known online as "Kidflix" — a reference to Netflix.
Over 35 countries were involved in the operation which was lead by the State Criminal Police of Bavaria (Bayerisches Landeskriminalamt) and the Bavarian Central Office for the Prosecution of Cybercrime (ZCB).
Kidflix was infamous due to it's "unique" features for CSAM websites. It allowed users to filter by video quality, watch child abuse livestreams, and preview videos prior to purchase. Additionally, individuals who were active on the website, shared content, produced unique content, etc. could earn "Kidflix tokens" which allowed them to get other CSAM material for free. Furthermore, the site had 3.5 unique CSAM videos uploaded every hour, with a total of 6,288 hours (262 days) of CSAM videos present on the website.
Law enforcement learned over 1,800,000 people from all across the globe visited Kidflix. Kidflix contained over 72,000 videos of CSAM.
As a result of the takedown over 1,400 suspects have been identified and (thus far) 79 individuals have been apprehended and 39 children has been rescued from child predators.
This operation, dubbed "Operation Stream", is the largest pedophile network takedown European history. EUROPOL has stated they will continue to work with other countries law enforcement agencies to hold each person accountable for the crimes committed on Kidflix.
hehe whoopsies, accidentally did something, didnt undo change, and got pwned (we were working in prod)
Читать полностью…
inb4 linux nerds say "who is ispeedshow", wake up bro, this guy is singlehandedly STOPPING APT41 by visiting mainland china and stuff
ishowspeed 🤝apt41
ORACLE WAS NOT COMPROMISED! oracle intentionally inserted a weird txt file into there website with a criminals email address!!!!
Читать полностью…
>oracle says nah we werent compromised
>ta says "wtf ya u were"
>bleepincomputer is given samples
>oracle healthcare customers confirm data is real
>oracle says "nah lol"
how does data magically appear then lol
https://www.bleepingcomputer.com/news/security/oracle-health-breach-compromises-patient-data-at-us-hospitals/
hacker tip: you can fit a lot of mayonnaise in a desktop case
Читать полностью…
A video was shared online today of a person named "Dave" being violently assaulted for their cryptocurrency. This is a continuing trend of violent crime associated with cryptocurrency.
Читать полностью…
I've got a really small brain. Accidentally added a zero (or something, whatever excuse I can make). It's 523TB, not 5.23PB
VXUG 🤝 Misinformation
Someone is (allegedly) leaking 5.23PB of K-Pop data on Discord (?). We don't follow K-Pop, so we can't determine the validity of the data or what it entails. We also do not possess the ability to review 5.23PB of data.
All we can do is watch K-Pop nerds handle it.
Yes, these concepts are innately malicious, but the primary objective of malware is stealth. Everyone knows the techniques described in public facing courses. You think anti-malware companies don't see them?
A BIG part of malware is finding unusual methods to accomplish tasks.
turned pc back on, works fine, but still smells like burnt plastic
Читать полностью…
More information: https://www.justice.gov/usao-wdtx/pr/united-states-unseals-charges-theft-texas-republican-party-data
Читать полностью…
Today X employees did a sneak peek on some new features. The main highlight is X will now allow you to purchase inactive X handles.
The attached image is the actual image shared by X. No idea why its green and formatted like shit.
Shoutout to zhangsansec for successfully compromising vx-underground.
A few days ago we put vx-underground in a debug state. We forgot to revert it back.
zhangsansec discovered this, exploited it, and instead of memeing us he notified us so we could fix it
oracle: ok someone hacked us on jan 22nd, but it was old data from something we were moving, no big deal
the fbi: lol wtf?
https://www.reuters.com/technology/fbi-investigating-cyberattack-oracle-bloomberg-news-reports-2025-03-28/
🚨BREAKING🚨
IShowSpeed will be performing a A BACKFLIP over the Great Firewall of China so he can watch YouTube and visit Instagram!!!
The CCP is fuming!!! 😲😲😲😲
oracle WAS NOT hacked! a criminal just happened to PERFECTLY guess customer data and it BY CHANCE perfectly matched the data of healthcare customers!!!
Читать полностью…
turns out that oracle compromise was real. wtf why would a multi billion dollar company lie ???
Читать полностью…
best hacker keyboard ive ever used. its super ergonomic. you dont even need a mouse, you use your tongue on the big red ball to move your cursor
Читать полностью…
A person has identified the location of the video. This is Banbury Park in North York, Ontario, Canada.
Читать полностью…
"I love Microsoft Window's, I just wish it collected MORE of my personal data!" — Nobody, ever
Читать полностью…
Hello, how are you?
We're super, super, super close to finalizing the virus-dot-exchange migration. After working closely with our hosting provider TorGuard, we can confirm our total malware sample count (de-duplicated, clean, confirmed malware) is 15,521,562 — however, we still have another .... 1TB of malware to sync ... so ... guess we'll see how clean we are?
¯\_(ツ)_/¯
Next up, we have a bunch of APT samples and paper I've gotta throw up on the website. I haven't done it yet, but I will, I promise, eventually, soon, maybe. I'm aiming to do it this week (we're behind hardcore).
Next next up, we've got more builders and stuff from Cryakl. I intend on moving the builders around and making them easier to find.
Next next next up, we've got another 192GB of malware in queue we haven't even added to the site yet.
Big stuff this week.
Hope everyone enjoyed the weekend.
- smelly smellington
This isn't a diss toward any malware course or book. But, there is some kind of misconception that you can learn everything you need from these courses.
If you wanted to learn everything (malware research from the 80's or 90's up until ... today) the book would look like this:
We'll tell you a secret. Not very many people know this.
Most malware development courses and papers cover the same material: process injection, persistence, basic anti-reverse engineering techniques, etc
This doesn't scratch the surface of what malware or malware research is.
plugged the wrong side of usb-c connector into a usb port on my pc. a bright flash happened, my pc turned off. now it smells like burnt plastic lmfao wtf
Читать полностью…
Yesterday it was unveiled Aubrey Cottle a/k/a Kirtaner had been arrested by United States Federal Bureau of Investigation in conjunction with the Ontario Provincial Police for the 2021 compromise of the United States Texas Republican Party.
Mr. Cottle is best known within the information security sphere as being a 'founding member' of the "Anonymous" political hacktivist movement in the 2000's.
Mr. Cottle is alleged to be involved in the compromise of Hal Turner (2008) and the Church of Scientology (2008).
Federal documents state Mr. Cottle gained unauthorized access to a 3rd party hosting side for the United States Texas Republican Party. Subsequently, he allegedly exfiltrated data, made is downloadable for others, and defaced the website.
If found guilty Mr. Cottle is facing a maximum of 5 years in prison.