Tweets
- Tweets, current page.
- Tweets & replies
- Media
You blocked @bad_packets
Are you sure you want to view these Tweets? Viewing Tweets won't unblock @bad_packets
-
Pinned Tweet
Our latest CVE-2020-5902 scans have identified 3,012 vulnerable F5 hosts worldwide. Bad Packets vulnerability scan results are freely available for authorized government CERT, CSIRT, and ISAC teams. Submit request here: https://forms.gle/Kwsiyp8U43W3MSXFA …https://twitter.com/bad_packets/status/1280002119236325377 …
Show this threadThanks. Twitter will use this to make your timeline better. UndoUndo -
Mass scanning activity detected from: 5.189.162.164 (
)
5.189.181.43 (
)
161.97.147.163 (
)
targeting F5 BIG-IP servers vulnerable to CVE-2020-5902 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-5902 …). #threatintelThanks. Twitter will use this to make your timeline better. UndoUndo -
Top 10 Countries – December 8, 2020 New unique DDoS malware hosts detected by country:
China: 362
Egypt: 70
India: 55
Russia: 55
Brazil: 44
Hong Kong: 41
Taiwan: 40
Thailand: 34
Turkey: 31
South Korea: 30https://mirai.badpackets.net/?source_ip_address=&autonomous_system=&country=&asn=&first_seen__gt=2020-12-08&first_seen__lt=2020-12-09 …Thanks. Twitter will use this to make your timeline better. UndoUndo -
Also detecting CVE-2018-13379 exploit activity today from 185.107.47.215 (
) – but it's a Tor exit node – so nothing can be done to stop it.
Show this threadThanks. Twitter will use this to make your timeline better. UndoUndo -
Mass scanning activity detected from 80.82.70.225 (
) and 88.218.16.61 (
) targeting Fortinet VPN servers vulnerable to unauthenticated arbitrary file read (CVE-2018-13379) leading to disclosure of usernames and passwords in plaintext. #threatintelShow this threadThanks. Twitter will use this to make your timeline better. UndoUndo -
Bad Packets RetweetedThanks. Twitter will use this to make your timeline better. UndoUndo
-
Mass scanning activity detected from 74.63.223.110 (
) targeting Palo Alto GlobalProtect VPN endpoints. #threatintelThanks. Twitter will use this to make your timeline better. UndoUndo -
Bad Packets Retweeted
DNS-hijacking exploit attempts ongoing targeting D-Link and ZTE routers. Rogue DNS server 192.95.59.130 (
) still online.
Target:
banks, per @siimi_m_#threatintel https://twitter.com/bad_packets/status/1330346587126632451 …pic.twitter.com/dc1RyDAJrN
Thanks. Twitter will use this to make your timeline better. UndoUndo -
Ongoing mass scanning activity detected from 156.96.117.185 (
) targeting Fortinet VPN servers vulnerable to unauthenticated arbitrary file read (CVE-2018-13379) leading to disclosure of usernames and passwords in plaintext.
Ports targeted:
443
7443
8443
9443
10443
50443
60443Thanks. Twitter will use this to make your timeline better. UndoUndo -
4 transactions now, total received stands at 0.30863173 BTC (~$5,800 USD) https://www.blockchain.com/btc/address/1Eo9FKmAkNg8UAR4xj6F15Y53phFutzSys …pic.twitter.com/xNfV46P47R
Show this threadThanks. Twitter will use this to make your timeline better. UndoUndo -
DNS-hijacking exploit attempts ongoing targeting D-Link and ZTE routers. Rogue DNS server 192.95.59.130 (
) still online.
Target:
banks, per @siimi_m_#threatintel https://twitter.com/bad_packets/status/1330346587126632451 …pic.twitter.com/dc1RyDAJrN
Thanks. Twitter will use this to make your timeline better. UndoUndo -
Where the good packets at?
Thanks. Twitter will use this to make your timeline better. UndoUndo -
Sextortion scam, someone has paid per https://www.blockchain.com/btc/address/1Eo9FKmAkNg8UAR4xj6F15Y53phFutzSys … BTC wallet address: 1Eo9FKmAkNg8UAR4xj6F15Y53phFutzSys Email sent via 177.131.238.3 (
)pic.twitter.com/HsxWHjNE9q
Show this threadThanks. Twitter will use this to make your timeline better. UndoUndo -
Mass scanning activity detected from 156.96.117.185 (
) targeting Fortinet VPN servers vulnerable to unauthenticated arbitrary file read (CVE-2018-13379) leading to disclosure of usernames and passwords in plaintext. #threatintelpic.twitter.com/rNL6Tc8wm2
Thanks. Twitter will use this to make your timeline better. UndoUndo -
Active DDoS malware payload detected: http://14.202.243.246:49168/Mozi.m VirusTotal URL detections: 0/82 (https://www.virustotal.com/gui/url/477ac66666e6b983138cf70aa83819f2c3e4bdcb20b13b0dcdb5b748f7c225af/details …) Exploit attempt source IP: 14.202.243.246 (
)
Target: Netgear router RCE
#threatintelpic.twitter.com/OzVePDggJz
Thanks. Twitter will use this to make your timeline better. UndoUndo -
Ongoing mass scanning activity detected from 59.120.255.188 (
) targeting Fortinet VPN servers vulnerable to unauthenticated arbitrary file read (CVE-2018-13379 https://nvd.nist.gov/vuln/detail/CVE-2018-13379 …) leading to disclosure of usernames and passwords in plaintext. #threatintelpic.twitter.com/xtea1fKjal
Thanks. Twitter will use this to make your timeline better. UndoUndo -
Mass scanning activity detected from 84.199.89.45 (
) targeting Fortinet VPN servers vulnerable to unauthenticated arbitrary file read (CVE-2018-13379) leading to disclosure of usernames and passwords in plaintext. #threatintelpic.twitter.com/gO7B5WNzoq
Thanks. Twitter will use this to make your timeline better. UndoUndo -
Top 10 Countries – December 1, 2020 New unique DDoS malware hosts detected by country:
China: 438
India: 146
Egypt: 80
South Korea: 72
Taiwan: 68
United States: 56
Hong Kong: 53
Vietnam: 50
Russia: 50
Thailand: 33https://mirai.badpackets.net/?source_ip_address=&autonomous_system=&country=&asn=&first_seen__gt=2020-12-01&first_seen__lt=2020-12-02 …Thanks. Twitter will use this to make your timeline better. UndoUndo -
1,302,228,997 bad packets detected so far.
Thanks. Twitter will use this to make your timeline better. UndoUndo -
CVE-2019-11510 and CVE-2020-15505 for those keeping score at home.https://twitter.com/campuscodi/status/1333842809468674048 …
Thanks. Twitter will use this to make your timeline better. UndoUndo -
Exploit activity detected from 61.222.108.235 (
) targeting Fortinet VPN servers vulnerable to unauthenticated arbitrary file read (CVE-2018-13379 https://nvd.nist.gov/vuln/detail/CVE-2018-13379 …) leading to disclosure of usernames and passwords in plaintext. #threatintelpic.twitter.com/wadbuDklnr
Thanks. Twitter will use this to make your timeline better. UndoUndo
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.