Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @abuse_ch
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @abuse_ch
-
Top networks with the highest amount of new malware distribution sites in January 2020: #1 2,786 URLs AS4837 CHINA169-BACKBONE
#2 2,479 URLs AS4134 CHINANET-BACKBONE
#3 2,196 URLs AS15169 GOOGLE
Source:
https://urlhaus.abuse.ch/statistics/ Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
TrickBot malspam incoming, targeting Germany
Sending IP: 193.124.207.151
From: Emily <info@samanta-b.space>
Subject: Arbeit suchen
Filename: LebenslaufzurArbeit.docm
MD5 hash: ccd025215b6d2761e03b75c91fcc6cf1
TrickBot payload URL:
https://urlhaus.abuse.ch/url/306613/ pic.twitter.com/FdbvRZHJTQ
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Introducing my newest project: I got phished The goal is to notify IT-security representatives about phishing victims within their constituency
https://igotphished.abuse.ch/
A big thanks to @JayTHL who initiated the project!
For bug reports and feature requests -> DM mepic.twitter.com/PvY4AWtvFt
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Dridex malspam incoming
Sender domains:
deliverychuckh\.website
delivercedor\.website
deliverychuckh\.website
Filename:
BS005738599784.vbs
BS005738599784.rar
MD5 hash (VBS):
0cd98cbe50e461d2cb8f1651003d4383
Dridex C2s:
46.105.131.71:443
173.249.16.143:1443Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
What's going on at
@GoDaddy ? Although I'm reporting malware distribution sites through their "Abuse API", they in average stay active for more than one month!
/cc @GoDaddyDE@GoDaddyHelp@GoDaddyCanadapic.twitter.com/pox7RVbgjq
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Gozi malspam incoming, targeting German internet users Subject: Re: Kennst du Kiki Weimer, Viviane Ifko und 8 weitere Personen? Filename: http://matys.zip (info0121.doc) MD5: 6823ebfe2275efd13a07b0a297db9c04 (doc) Payload URL: https://urlhaus.abuse.ch/url/293304/ pic.twitter.com/890fY7Gk39
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Congratulations to
@PROEN_Internet for hosting the oldest active Emotet site, serving malware for more than 1 1/2 years! https://urlhaus.abuse.ch/url/3956/ /cc@ThaiCERTpic.twitter.com/EVD98edTo8
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
New (active) Emotet botnet C&Cs over the past 12 months
You can clearly see the long vacation Emotet took in June and July
pic.twitter.com/3aYfGCTwbb
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
I'm wondering what's behind this IP address
... Whatever it is, it appears to be infected with TrickBotpic.twitter.com/KoDcpt6K8j
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
http://abuse.ch relies on donations in order to operate. I'm very happy to welcome the Austrian security company Blue Shield as a new partner, supporting http://abuse.ch with a bare metal server. Thanks for your support Blue Shield! https://www.blue-shield.at/
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Current set of Emotet C&Cs: https://pastebin.com/raw/krpNG3xS MD5: 483d709c3402edb123582dd28187585apic.twitter.com/DEGdcW6yFC
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Heads up! Emotet is back and just re-started it's spam campaigns
Doc (MD5): aead1225141fadd849a27de8a27d16be
Payload delivery URLs via URLhaus:
https://urlhaus.abuse.ch/browse/tag/emotet/ …pic.twitter.com/C5HOIMbaxT
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
I'm happy to announce that the migration finally completed and that all services are back up and running. Thanks for your patient!
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Migration is taking longer than I expected. So far, 1/3 of the data has been migrated. Stay tuned...
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Today, I'm going to migrate a core component of *.abuse.ch (which is currently hosted on an almost 10 years old server) to a new infrastructure. As a result, most of the http://abuse.ch projects will temporarily react slowly today or become unavailable.
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
The abuse team at
@digitalocean is a good example on how even large hosting providers can improve their abuse desk response time. The following chart shows how long it took for DO to take action on abuse reports from#URLhaus over time. Well done@digitalocean !pic.twitter.com/lbbnBzBgR1
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Emotet is being used by threat actors to drop additional malware (which may then drop Ransomware). It's time to block Emotet and TrickBot C2s at your network edged! How to mitigate Emotet: https://feodotracker.abuse.ch/mitigate/ IP Blocklist (blackhole them - NOW!): https://feodotracker.abuse.ch/downloads/ipblocklist_recommended.txt …https://twitter.com/pollo290987/status/1214596853771227137 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
MetaMorf malspam campaign targeting chilean internet users
, impersonating @RegCivil_Chile Payload URL: hXXp://viewfilers.live/forward/ URLhaus: https://urlhaus.abuse.ch/host/www.spanishbullfighters.com/ … https://urlhaus.abuse.ch/url/279560/ Payload: https://www.virustotal.com/gui/file/65a94cf2482bef94016962caa490a9258395b31350be45cb739d696fc0df1723/detection … MetaMorf C&C: https://www.virustotal.com/gui/url/4bca352e32909abec9b0c4d51b2715929c84af77fc493fc51160db69feb9e6ee/detection …pic.twitter.com/1vS0JZbmZo
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Hello
@UgCERT &@NITAUganda1 Could you please have a look at ring2\.ug which apparently has been registered by threat actors to distribute malware? https://urlhaus.abuse.ch/host/ring2.ug/ pic.twitter.com/0vxL49XMnw
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Countries
with the most TrickBot infections (commonly used to drop Ryuk Ransomware
). Almost 1/4 of all TrickBot infections are are located in the US
Here's how to mitigate Emotet and TrickBot:
https://feodotracker.abuse.ch/mitigate/ pic.twitter.com/iHrLRu1AJ1
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.