Infamous BreachForums Is Back Online With All Old Accounts and Posts Restored - cybersecuritynews.com/breachforums...
#cybercrime

NEW: Data broker sites were allegedly used by the Minnesota shooting suspect, authorities claim, highlighting the danger of an industry that freely sells your personal information. @lhn.bsky.social reports www.wired.com/story/minnes...

We recently discovered an infostealer in our data that we originally dubbed "Aurotun," named for a misspelling of "autorun" in its strings.

After collab w/ @intel471.bsky.social, @malwareindepth.com & others, we believe this malware is actually MonsterV2, a newer version of an existing infostealer.

Tu envoies des e-mails de phishing usurpant Le Monde ?

@flrnd.bsky.social et @okami.bsky.social retrouvent ton adresse e-mail.

Very happy and proud that one of my "weekend research" has been exposed in an article from Le Monde.

I had spent some time during my short unemployed period to dig into #Traffyque infrastructure.
www.lemonde.fr/pixels/artic...
#cybercrime #lemonde

New from 404 Media: the age of realtime deepfake fraud is here. Scammers in Nigeria are using realtime deepfakes to change their race, facial hair, gender, more to appear as someone else on video calls. Results very realistic now. Also tricking verification systems www.404media.co/the-age-of-r...

Belgian beer drove him crazy :-)

Spyware-infected apps are being used to target individuals and organizations worldwide who are tied to Uyghur, Tibetan and Taiwanese activities “considered by the Chinese state to pose a threat to its stability,” @suzannesmalley.bsky.social reports this morning.

From firmware dumps to wireless exploration — check out our latest dive into DVB receiver analysis and the hidden attack surface it exposes!
www.synacktiv.com/en/publicati...

Weaver Ant, the Web Shell Whisperer: Tracking a Live China-nexus Operation - www.sygnia.co/threat-repor... #APT #longpersistence

The Grandoreiro malware operation is back up and running after some of its members were detained last year.

Forcepoint has detected new large-scale phishing operations spreading the banking trojan to users in Europe and Latin America

www.forcepoint.com/blog/x-labs/...

Pulling the Threads on the Phish of Troy Hunt - www.validin.com/blog/pulling... #cybercrime #phishing

Zscaler has spotted a new malware loader named CoffeeLoader, used in the wild since September of last year. The malware was used together and appears to bear similarities with SmokeLoader.

www.zscaler.com/blogs/securi...

Merci ! :-)

Following the discreet layoffs at Trend Micro at the end of last year, I am now incredibly proud to announce that I just joined the powerful forces of @proofpoint.com ! I feel very gifted and honored to start working with such an amazing team of researchers !

L'Assemblée nationale entame aujourd'hui l'examen de la loi narcotrafic et de ses backdoors. La mesure serait au mieux inefficace, au pire dangereuse, mais Bruno Retailleau s'y accroche, affirmant contre les évidences qu'il ne s'agit pas ni d'une backdoor, ni d'un affaiblissement du chiffrement.

If you miss Tweetdeck, or just want to be able to see multiple feeds at once - give deck.blue a try, it's awesome!

Interesting read on new technics used by cybercriminals to scam people and cash out stolen money - How Phished Data Turns into Apple & Google Wallets - krebsonsecurity.com/2025/02/how-... #cybercrime #scam #China #mobile

@shodanhq.bsky.social Awesome! Shodan History is back in the UI. Nice!!! Thank you.
But I have a question regarding trends.shodan.io. all trends I do are stopping at October 2024. Why? Please make them to the current data again. I love it and need it. :)

Ukrainian hackers hit Gazprom contractor, crippling Russian energy infrastructure

newsukraine.rbc.ua/news/ukraini...

get a dollar for every vague attribution to Winnti as well, then you can buy a castle :-)

This is really interesting and good work by Volexity. I'm not sure how many places are looking for this kind of abuse or have outright prevented it. As a provider finding this kind of abuse has got to be difficult too.

device id