Pinned post

i‘m interested in collaborating on cybersecurity projects / threat research / etc. hit me up!

scanner by japanese cert now works with 64bit emotet variants, interesting project github.com/JPCERTCC/EmoCheck

i‘m interested in collaborating on cybersecurity projects / threat research / etc. hit me up!

check point shows ransomware gangs check victims annual revenue and ask for ~2,8% as ransom demand. in 2020, the average cost of a ransomware attack was 7x higher than the demand.

bleepingcomputer.com/news/secu

now uses commands in .lnk files, the string is obfuscated with nulls/blank spaces so the target is not shown

some :
- .ps1 files in %tmp%
- focusmedica[.]in
- demo34[.]ckg[.]hk
- colegiounamuno[.]es
- cipro[.]mx
- filmmogzivota[.]rs
- creemo[.]pl

command for checking %tmp%:
dir C:\users\%username%\AppData\Local\Temp\*.ps1

via bleepingcomputer.com/news/secu

> be lapsus$
> specialize in stealing source code and deleting data
> store all your stolen source code in the cloud, fearing being raided
> aws deletes your stolen data
> lapsus$ surprised

krebsonsecurity.com/2022/04/le

chaos.social

chaos.social – a Fediverse instance for & by the Chaos community