vx-underground

vx-underground is proud to unveil its patented EDR (Endpoint Detection and Response) technology. This technology (or lack thereof) has proven to stop 100% of malware, hackers, crooks, and even insider threats!pic.twitter.com/i4N750SrEc

vx-underground is proud to unveil its patented anti-ransomware technology: Snippiter Snippy™ Snippiter Snippy™, stop ransomware in a jiffy!pic.twitter.com/3dKPqt5B1Z

March 29th, 2022 @Ronin_Network announced an unknown Threat Actor breached and stole 173,600 Ethereum + $25,500,000. Or approx. $631,530,656.00 April 14th, 2022 The FBI attributed the breach to APT Lazarus Group - stating these stolen funds may aid their nuclear weapons programpic.twitter.com/6wuO95wxDd

We've made another update to the vx-underground bulk download collection: Argus collection This is 24,000+ unique malicious Android binaries, organized by family. Many of these are not present in VirusTotal. Download: https://samples.vx-underground.org/samples/Blocks/Argus%20Collection/ …pic.twitter.com/N5mhrY7qCk

We have updated the vx-underground APT collection. - CERT-UA alerts #4435, #4461, and #4464 regarding suspected targeted Russian APT activity - OldGremlin "APT", Russian speaking group targeting Russia - New Industroyer2 samples. Check it out here: https://www.vx-underground.org/apts.html#2022 pic.twitter.com/7VKG7YRfyP

We have submitted over 500,000 unique malware samples to @hatching_io! pic.twitter.com/S8Q15xGqeU

Atlassian has explained why their Cloud Service has been having problems. tl;dr image from @BleepinComputer articlepic.twitter.com/FQw1a3frMB

This YARA rule was authored by CERT-UA, ESET, and RoseSecurity. No one noticed this.pic.twitter.com/6OdbTyq6Vl

Leaked footage of RaidForum members when they discover the FBI/EUROPOL seized the RaidForums domain and used it as a honeypot for a few monthspic.twitter.com/zSZpms19ms

Previously @CISAgov released an advisory on state-sponsored adversaries targeting United States ICS/SCADA. Today @Mandiant released a paper on INCONTROLLER, malware targeting multiple ICS's. We have a sample of INCONTROLLER via @mal_share Download here: https://samples.vx-underground.org/APTs/2022/2022.04.13/ …pic.twitter.com/esp49LPLA6

For reference, this is the second Hospital they have targeted. The first one was a hospital in Chili, now a United States based one. This individual is a member (or ex-member) of LAPSUS$ group.pic.twitter.com/VT4wIJubU2

NwGen ransomware group is arguably one of the most heinous ransomware groups we have observed recently. This group openly discussing targeting Childrens Hospitals (due to high likelihood of payment) is beyond disgusting.pic.twitter.com/eNAYpvQwXV

.@Unit42_Intel observed a Linux-Gafgyt based botnet exploiting SpringShell (Spring4Shell) in the wild dubbed: "EnemyBot". This botnet incorporates the exploit within the binaries themselves – both the webshell and command injection stages. Download: https://samples.vx-underground.org/samples/Families/ …pic.twitter.com/GyoqEgwlAh

They're learning pic.twitter.com/WRJLovJD8g

We've updated the vx-underground malware builder collection. We've added Thanos Ransomware builder and decryptor. You can check it out here: https://www.vx-underground.org/archive.html#builders …pic.twitter.com/3ut2js9WvF

"Atlassian says ongoing outage might last two more weeks"pic.twitter.com/TqXL5WEmJQ