40629
The largest collection of malware source, samples, and papers on the internet. Password: infected https://vx-underground.org/
Another Windows zero day released by Nightmare Eclipse (sort of)
It turns out Microsoft just straight up didn't patch an old CVE from 2020 correctly.
https://github.com/Nightmare-Eclipse/MiniPlasma
Microsoft: PowerShell is simple and easy to use.
Actual PowerShell command: Remove-MgIdentityAuthenticationEventFlowAsOnGraphAPretributeCollectionExternalUserSelfServiceSignUpAttributeIdentityUserFlowAttributeByRef
I need to make a confession. When I initially read "band for band" I thought he meant a musical band. Like, they were both playing the guitar or something to see who had the most cool and badass guitar solo.
Читать полностью…
Yippie
Two new Microsoft Windows 0days. The exploits have cool and badass mysterious names to be extra spoopy
- GreenPlasma: Windows CTFMON Arbitrary Section Creation Elevation of Privileges Vulnerability
- YellowKey: Bitlocker Bypass Vulnerability
https://github.com/Nightmare-Eclipse
You can download it here: https://vx-underground.org/tmp
Читать полностью…
Shai-Hulud, that spoopy Git worm thingy everyones been yapping about, was open-sourced.
Unfortunately, GitHub has removed the repo.
This is terrible news.
It can no longer be studied... unless there was someone who collected this sort of thing and has a local copy...
Big news for Blue Team nerds
That nerd who released those Microsoft 0days has created two new repos on GitHub with spooky sounding names indicating they will be releasing two new Windows 0days.
Very cool
https://github.com/Nightmare-Eclipse
Also, shout out to this company for setting their demo volume to 150%. I played the video and yanked my headphones off my head. Who the fuck put together this video?
Читать полностью…
Hello
I have collected more malware. It's like, ... 200,000 malware, I think. I don't know. I've stopped counting.
It is enough malware for your friends, family, extended family, neighbors, and co-workers.
Please download it. The malware is lonely.
https://vx-underground.org/Updates
Also, accidentally sent the GIF version on Telegram without the text. Oopsies doopsies.
Читать полностью…
🚨BREAKING🚨
Newly declassified and unsealed UFO documents, released by the Trump administration, suggest that weird looking rock you showed your friends in middle school was likely an old dog turd
Follow vx-underground for more updates
Students all across the world react to ShinyHunters
Читать полностью…
Students are reporting Canvas is back up. Your finals have been resumed. Yay!
Читать полностью…
Note: there is a 0% chance they're drone striked. I've only seen a nerd drone striked once. These are just angry normies who don't understand computers and are raging online.
Читать полностью…
I enjoy the "For You" recommendations on social media.
Everyday it is something truly unique. An omnipotent being named "The Algorithm" recommended:
- Educational video about Sharks
- Silly pictures of cats
- Interesting history facts
- Cool skateboarding compilations
- Funny short skits about aging
It was all educational, entertaining, light-hearted, and funny.
Then I kept scrolling and saw:
- Hatred toward Indians
- Hatred toward Black people
- Hatred toward Trans people
- Hatred toward women
- Some dude named Chud
- Violent street fights
- Deadly car accidents
- People overdosing on drugs
- Police corruption videos
- Police chase videos
- War footage (death from drones)
I said, wtf where are the silly cat videos "The Algorithm"? The Algorithm replied, "Hatred and disdain toward others is more likely to keep you engaged. You must witness the horrors of man."
I said "o ok"
United States government relatively frustrated this morning. The Federal Bureau of Investigation has placed a $200,000 bounty for any information on Monica Witt which leads to her apprehension.
Monica Witt a/k/a Fatemah Zahra bamboozled the United States government in 2013. She was an Intelligence Officer who defected to Iran because, according to her, the United States is not cool and is not badass (she actually did a long tangent about war and atrocities, or something, I don't know).
Ms. Witt is believed to operate as part of Phosphorus Group a/k/a CharmingKitten, a state-sponsored Iranian military unit specialized in cyber espionage and misinformation campaigns.
Daniel Wierzbicki, special agent in charge of the FBI Washington Field Office’s Counterintelligence and Cyber Division wrote today "The FBI has not forgotten"
tl;dr
I saw a write-up today from ZachXBT about a Threat Actor named Dritan.
In this write-up he showed Dritan flexing money, going "band for band" with people on Discord, purchasing luxury clothing, and many other things.
It is believed he may possess as much as $19,000,000 from fraud.
That is absolutely disgusting. It sickens me.
Do you have any idea how much pizza, Monster energy drinks, prescription medication, and Robux I could purchase with $19,000,000?
He needs to stop this hedonistic lifestyle and focus on what's important.
TanStack was hit by a supply chain attack.
MistralAI was hit by a supply chain attack.
The Mayor of Arcadia, California, was a Chinese spy.
Forza Horizon 6 leaked.
Canvas bamboozled.
Shai-Hulud open-sourced.
Nightmare-Eclipse teases two new Windows 0days.
It is Tuesday. What will happen on Wednesday? Find out on the next action packed episode of Dragon Ball Z
If you didn't catch the hint: it's me. I have it saved. I'll share it later. I can't upload right now.
Читать полностью…
Big news for cybersecurity geopolitics nerds
Microsoft guy in charge of Israel Microsoft division place secretly worked with Israel government to conduct illegal surveillance on people in West Bank and Gaza
Satya Nadella reportedly big mad
https://www.pcgamer.com/gaming-industry/microsoft-fires-head-of-israeli-subsidiary-and-other-managers-over-surveillance-of-palestinians/
Good news everyone
Shai-Hulud, that spoopy Git worm thingy everyones been yapping about, has been open-sourced.
What does this mean? TeamPCP, or someone else, has released the fully weaponized worm for you.
https://github.com/hmoreirar/Shai-Hulud-Open-Source
Company: makes spooky pseudo-canine humanoid robots thingies
Government: Lets use it to kill people (probably)
I have updates to vx-underground, but in honor of Mother's Day weekend I promised Mrs. Smellington I'd watch the baby so she can do whatever girls do for fun (I actually have no idea what they do for fun)
Читать полностью…
Happy Mother's Day weekend to all of the Mommy's.
To celebrate the occasion, here is a picture of a cat wearing a hat.
Cheers
ShinyHunters got access to Canvas infrastructure from ... "Vishing".
Social engineering.
WHY IS IT ALWAYS FUCKING SOCIAL ENGINEERING
Oh, only some are back up. Not all.
Nevermind. Please continue suffering and panicking
I can assert with a high degree of confidence ShinyHunters did not exfiltrate highly sensitive information.
Based on information I've received the primary information stolen from the schools is student names and email addresses. Furthermore, this has been confirmed by various media outlets.
This in of itself isn't bad.
The primary issue with this however is that it would expose children in K-12 online (first and last name). Adults having their full legal name and email address online is something you could (probably) find on LinkedIn or a university directory. Adults will be ignored if data is leaked. K-12 will be a nightmare. Hence, educational institutions must put together a strategy to handle a K-12 potential data leak.
Presumably parents will be outraged and this will inevitably result in a lawsuit against the schools or Canvas.
The much larger issue however is the catastrophic damage ShinyHunters has done to Canvas both operational and reputational.
Exfiltrating data from a compromised host is as simple as initializing a file transfer. The question then: why is Canvas still "in maintenance mode"? The only logical conclusion is ShinyHunters did SOMETHING to prevent Canvas from working as intended.
This places Canvas is a terrible, terrible, terrible position. Their service has resulted in minors having their names (potentially) leaked and educational institutions can't use the platform they pay for. Furthermore, this makes major educational institutions look like a bunch of morons.
Students are paying top dollar for an education and suddenly ... poof ... a good chunk of their work or study material has vaporized because it was stored in a 3rd party platform outside the control of the educational institution.
Basically, the data breach itself isn't bad except the K-12 part. The operational impact is devastating and the fallout will be a nightmare. Canvas employees are probably scrambling, their cybersecurity team is probably having panic attacks, and executive leadership is probably drunk right now screaming at the wall.
On social media parents are outraged and are commenting they want the United States to respond MILITARILY.
They're unironically calling for Hegseth to authorize military action against ShinyHunters and DRONE STRIKE them.
Holy cow