40629
The largest collection of malware source, samples, and papers on the internet. Password: infected https://vx-underground.org/
This is fucking amazing work
https://downwithup.github.io/blog/post/2023/04/23/post9.html
Rapid7 did a write-up on the Notepad++ compromise. Rapid7 released the paper fast af boi
How?
1. They sat on it
or...
2. Called in all the malware analysis schizos for lock the fuck in time
tldr ya prolly China lol
https://www.rapid7.com/blog/post/tr-chrysalis-backdoor-dive-into-lotus-blossoms-toolkit/
My initial post wasn't precise enough and didn't provide EXACT SPECIFICATIONS covering every potential edge case for the readers. Nerds began arguing in the comment section, arguing any specific edge case I didn't cover in my post, and blowing up my notifications as a result.
Holy cow, dude. Have this extremely verbose version.
Thanks,
> Notepad++ says infra compromised
> Suspects Chinese state-sponsored hackers
> "Why would China hate Notepad++????"
> Look inside
In 2014 Epstein advised someone hire Hector Monsegur a/k/a Sabu of LulzSec for something.
EFTA01922639
Pic unrelated
> wake up
> take a shit
> get out of bed
> check xitter
> ultra wealthy arguing
> accusing each other of beings PDF files
> splendid
> be me
> find something interesting
> poke with stick
> interesting
> google
> find website that describes exactly what im doing
> x86matthew
HOW TF THIS MFER BEAT ME TO IT TWICE IN A ROW
In 2009 Jeffrey Epstein tried to schedule a meeting with Kevin Mitnick. Based on the e-mails released by the Department of Justice it appears Epstein was never able to connect with Mitnick
Mitnick dodged a nuclear missile
Following heavy push back, Microsoft has decided to re-evaluate it's AI strategy
While they don't intend on fully removing AI, Microsoft allegedly intends on placing AI "where it makes sense".
What does this mean? Find out next time on Dragon Ball Z
https://www.windowscentral.com/microsoft/windows-11/microsoft-is-reevaluating-its-ai-efforts-on-windows-11-plans-to-reduce-copilot-integrations-and-evolve-recall
Jeffrey Epstein was traveling to DEFCON and/or BlackHat with "the girls" and had 10 tickets purchased.
It was him and 9 other women.
Information via IntCyberDigest
Former BlackHat board member Vincenzo Iozzo, and co-author of iOS Hacker's Handbook, had a relationship with Jeffrey Epstein.
It appears Epstein attended DEFCON and/or BlackHat in 2013 and 2015, possibly 2016.
Got me so mildly annoyed they made me bring the monkey bonk out of retirement
Читать полностью…
tl;dr you're all psyop'd. You know what isn't a psyop? Silly pictures of kitty cats.
Paper: https://stratcomcoe.org/publications/social-media-manipulation-for-sale-2025-experiment-on-platform-capabilities-to-detect-and-counter-inauthentic-social-media-engagement/338
THE CHINESE GOVERNMENT USED MICROSOFT WARBIRD APIS FOR OBFUSCATION
> proof-of-concept by DownWithUpSec in 2023
> 30 stars on GitHub
> 62 likes on Xitter
This is fucking FIRE research. Insanely slept on research. I am FLABBERGASTED.
I wrote "unknown state-sponsored actor" because Notepad++ doesn't explicitly provide WHY THEY SUSPECT CHINA other than "experts said".
I wrote "your machine is compromised" because NO DETAILS ARE PROVIDED that convey WHAT HAPPENED yet nerds want to argue one of the two:
- "ERRRM ACHTUALLY, IT SAYS ONLY SPECIFIC TARGETS, WE DONT FOR SURE IF ANYONE IS COMPROMISED"
- "oHh WeLl U ShOulD AssUme CoMprOmIse"
Then the nerds want to argue the timeline specifics
ERRR SCHMELLY, IT HE SAYS IT COULD BE AS EARLY AS JUNE, BUT HE ISNT SURE, U SHOULD HAVE SAID IT MIGHT BE JUNE, OR SEPTEMBER, NO ONE KNOWS, BUT FOR SURE SEPTEMBER
Anyway, it was kind of annoying me. Have your verbose version. I have stuff to do. Smell ya later, NERDS
-smelly smellington
Notepad++ compromised (long pedantic version so nerds shut up)
- Notepad++ update infrastructure was compromised
- Notepad++ suspects it is the Chinese government
- No evidence provided currently demonstrating why they suspect it was the Chinese government
- Only "select targets" were delivered malicious Notepad++ from update infrastructure
- No information is provided who "select targets" were
- No information provided why they believe it was selective
- No information on what was delivered to "selective targets"
- Compromise timeline blurry
- "Incident began" JUNE, 2025
- Hosting infrastructure says "September 2, 2025"
- Attackers maintained access until "December 2nd, 2025"
- Notepad++ states they believe compromise was JUNE THROUGH DECEMBER, conflicting with hosting provider
- No analysis released yet on "exact technical mechanism"
- No IoCs (Indicator of compromise) released
For the record, I'm not implying Sabu worked with Epstein. This is just me highlighting yet another instance of Epstein keeping tabs on the information security ecosystem.
Читать полностью…
Malware allegedly targeting "People's Playground", a popular game on Steam, from the mods workshop (as is tradition).
The game developer didn't have the common courtesy to share the malware. MAKES ME SICK.
https://store.steampowered.com/news/app/1118200/view/534373847137256681
Guess who wasn't in the Epstein files?
Coca Cola cat wasn't.
Bill Gates was friends with Jeffrey Epstein.
Guess who wasn't?
As is tradition, I've become bored with my WinSock stuff. I accomplished what I wanted. I don't even feel like writing about it. I am now poking other stuff with a stick and I am very interested in it.
https://malwaresourcecode.com/home/my-projects/proof-of-concepts/https-tls-with-afd.sys-winsocks-not-necessary
tldr users hate it, investors don't trust it, it's burning money. Microsoft says "wtf why" and redirecting course.
Читать полностью…
haHa of CoUrsE sMelLy iTs FeDcOn
THEN WHY DO YOU FUCKING GO AND SUPPORT IT IF YOURE NOT SURPRISED THERES INTERNATIONAL SEX TRAFFICKING THERE
> Bill Gates got an STD from a Russian prostitute
> BlackHat board member(s) knew Epstein
> Schizos say unsigned DLLs proof elections rigged
> Man-made horrors beyond my comprehension
Another day of internet schizophrenia
If you went to DEFCON in 2013 there is an insanely high probability you at least saw Epstein in person.
Which one of y'all met him?
REEE WHY IS A TECH PROFILE DISCUSSING AN IMPORTANT PERSON IN TECH AND NOT A POLITICIAN I LIKE AND/OR DISLIKE
Go away
My post memeing Bill Gates contracting an STD from a Russian prostitute has escaped containment. The non-nerds have returned.
WhY r U oNly DiScUssInG BiLL gAtEs?! wHy NoT TRuMp?
Because this is a cybersecurity and tech-related social media profile.
Bad normie. Bad. Bonk.
Yesterday NATO StratCOM released their assessment on "Social Media Manipulation for Sale".
Since 2019 NATO StratCOM has been performing Red Team assessments on the largest social media networks. They're trying to assess how resistant they are to external influence.
In summary, NATO gives nerds money to go to sketchy websites and pay for people to artificially inflate their viewership. Once they begin receiving fake views, comments, likes, etc. They monitor the accounts over the time span of several weeks, months, or years.
NATO StratCOM monitors:
- What the accounts are boosting
- Who they're boosting
- When they're boosting
- When the fake accounts were created
- How long the accounts are active
- How long it takes for social media sites to take action
Additionally, because a lot of these boosting services accept Bitcoin, they track the money.
I'll link the paper in the subsequent post. It is incredibly interesting.
What is more interesting however is that on X they noticed right-leaning content is heavily amplified by botnet farms. Conversely, on BlueSky left-leaning content is heavily amplified by botnet farms.
Additionally, in 2025 a significant spike occurred whereas pro-Chinese content on X was manipulated and artificially boosted. The botnets specifically aimed to boost anything which paints China as having superior technology or military capability.