14365
The largest collection of malware source, samples, and papers on the internet. Password: infected Website: https://www.vx-underground.org/ vx-underground Telegram chatroom link: https://t.me/+njfLzUrqos01ZWNh
I've got a really small brain. Accidentally added a zero (or something, whatever excuse I can make). It's 523TB, not 5.23PB
VXUG 🤝 Misinformation
Someone is (allegedly) leaking 5.23PB of K-Pop data on Discord (?). We don't follow K-Pop, so we can't determine the validity of the data or what it entails. We also do not possess the ability to review 5.23PB of data.
All we can do is watch K-Pop nerds handle it.
Yes, these concepts are innately malicious, but the primary objective of malware is stealth. Everyone knows the techniques described in public facing courses. You think anti-malware companies don't see them?
A BIG part of malware is finding unusual methods to accomplish tasks.
turned pc back on, works fine, but still smells like burnt plastic
Читать полностью…
More information: https://www.justice.gov/usao-wdtx/pr/united-states-unseals-charges-theft-texas-republican-party-data
Читать полностью…
People online are expressing frustration toward VMware. They are deeply unhappy with the recent licensing changes.
Читать полностью…
Had a doctor's appointment today. He asked about some medication I was prescribed from a different physician. He asked how to spell it.
He Googled it and then proceeded to skim the Drugs dot com and Wikipedia article about it
C'mon bro, at least hide it from me or something
Today Elon Musk announced xAI has acquired X
No idea what that means, but here we are
Just learned Costco uses IBM AS/400 (released in 1988)
They're basically bulletproof. Name 1 ransomware variant, or information stealer, designed for systems from 1988 (you can't, it doesn't exist)
Chat, we're Costco guys 🤝
cl0p ransomware claims to have compromised Sam's Club.
For non-Ameriburgers — Sam's Club is a place where Americans pay a fee to get access to a store where you can buy food in bulk for cheaper. You can buy Monster Energy drinks by the pallet (no idea why you'd want to do it, but we do it).
Based on the history of cl0p ransomware, cl0p ransomware (probably) isn't lying. cl0p also historically exfiltrates data, they have not (to the best of our knowledge) actually "locked" machines on a network.
¯\_(ツ)_/¯
Information via AlvieriD
More interestingly (maybe?), we've also witnessed people who are exhibitionists seem excited by the prospect of being extorted and having their genitals exposed to people they know.
The internet is a cool place
We get probably 2 or 3 messages about this scam e-mail a month. We've also been informed by some people they've actually paid the 'ransom'.
Читать полностью…
> be me
> get added to top secret us gov signal chat
> yappin about yams or something idfk
> post cat pic
> us secretary of defense agrees
Hello, how are you?
First and foremost: thank you to our friends at TorGuard for the hosting they've been providing us. It's a wonderful gift and it makes our lives WAY easier. Thank you, Mr. TorGuard.
Anyway, we're almost done restoring the virus-dot-exchange. We've successfully uploaded 26,356,958 malwares. We have more to add, but we're almost done. It's truly a Christmas miracle. In an ideal world, the migration will be completed ... next week sometime.
Following the completion of the restoration of the virus exchange, we'll be hammering vx-underground with new APT malware samples and papers. Additionally, we've got tons of new malware we need to add from the InTheWild collection and VirusSign collection. We will also resume malware ingestion.
Sometime during this chaos, we'll be adding more work from Cryakl. We want to review our malware builders collection to ensure it's sterile-ish (no way we can truly confirm a malware builder is safe, use at your own caution, use common sense).
I'll also ensure during the work more kitty cat pictures will be present on social media (it irritates some of our more serious followers, no idea why we find that so humorous, but it is) and continue being cybercrime TMZ.
Have a nice morning, evening, or night.
- smelly smellington
Hello, how are you?
We're super, super, super close to finalizing the virus-dot-exchange migration. After working closely with our hosting provider TorGuard, we can confirm our total malware sample count (de-duplicated, clean, confirmed malware) is 15,521,562 — however, we still have another .... 1TB of malware to sync ... so ... guess we'll see how clean we are?
¯\_(ツ)_/¯
Next up, we have a bunch of APT samples and paper I've gotta throw up on the website. I haven't done it yet, but I will, I promise, eventually, soon, maybe. I'm aiming to do it this week (we're behind hardcore).
Next next up, we've got more builders and stuff from Cryakl. I intend on moving the builders around and making them easier to find.
Next next next up, we've got another 192GB of malware in queue we haven't even added to the site yet.
Big stuff this week.
Hope everyone enjoyed the weekend.
- smelly smellington
This isn't a diss toward any malware course or book. But, there is some kind of misconception that you can learn everything you need from these courses.
If you wanted to learn everything (malware research from the 80's or 90's up until ... today) the book would look like this:
We'll tell you a secret. Not very many people know this.
Most malware development courses and papers cover the same material: process injection, persistence, basic anti-reverse engineering techniques, etc
This doesn't scratch the surface of what malware or malware research is.
plugged the wrong side of usb-c connector into a usb port on my pc. a bright flash happened, my pc turned off. now it smells like burnt plastic lmfao wtf
Читать полностью…
Yesterday it was unveiled Aubrey Cottle a/k/a Kirtaner had been arrested by United States Federal Bureau of Investigation in conjunction with the Ontario Provincial Police for the 2021 compromise of the United States Texas Republican Party.
Mr. Cottle is best known within the information security sphere as being a 'founding member' of the "Anonymous" political hacktivist movement in the 2000's.
Mr. Cottle is alleged to be involved in the compromise of Hal Turner (2008) and the Church of Scientology (2008).
Federal documents state Mr. Cottle gained unauthorized access to a 3rd party hosting side for the United States Texas Republican Party. Subsequently, he allegedly exfiltrated data, made is downloadable for others, and defaced the website.
If found guilty Mr. Cottle is facing a maximum of 5 years in prison.
Today Microsoft announced Windows 11 will require a Microsoft account to create a local profile on the computer. They will be removing the bypass option available in the installation command prompt.
There will still be workarounds, but they're making it harder
>check internet
>see rust nerds
>rust nerd says: "rust is faster than pure asm"
mfw rust is its own instruction set now and supersedes the entire x64 architecture and the hardware it was designed to operate on
Threat Actors trying to figure out what kind of piece of shit they're targeting (it's using PowerPC architecture, 256kb of RAM, and 12mb of harddrive storage)
Читать полностью…
It's fun memeing nerds for hacking websites.
It's funnier because we couldn't hack a website if our lives depended on it because we've spent our entire lives screaming into the void of Windows internals
Today ESET noted the discovery of RoamingMouse, Anel, AnelLdr and FaceXInjector
It is malware and playfully homoerotic
Interestingly, a majority of people who have told us they've paid the 'ransom' are people who we believe to be mentally ill. The people have suggested the government is tracking them, the former (or current) presidential administration is targeting them, or they have some sort of connection to a higher spiritual being.
tl;dr mentally ill people falling for it, sad tbh
How do we politely inform a government contractor they've left their data exposed with the username being 'admin' and the password also being 'admin'?
Читать полностью…
> company vulnerable
> researcher tries to do responsible disclosure
> company ignores researchers pleas
> researcher notifies us
> company has contracts with United States government
> researcher releases cool paper
> *crickets*
> influencer with mailing list appears
> shares stolen lame cheat sheet png
> 100000 likes
> 50000 retweets
> noobs in comments foaming out mouth
Last week several high-profile Threat Actors mysteriously disappeared at the exact same time.
What are the odds several people suddenly go on a vacation or die at the same time?