kennethkinion.bsky.social
Kenneth Kinion
@kennethkinion.bsky.social
37 followers 79 following 8 posts
Founder, Validin
Posts Media Videos Starter Packs
Pinned
kennethkinion.bsky.social
Kenneth Kinion @kennethkinion.bsky.social · Jul 25
🚨 New blog post 🚨

Hunting Laundry Bear: Infrastructure Analysis Guide and Findings

How to enrich previous reporting with Validin to find dozens of indicators not previously reported.

#LaundryBear #VoidBlizzard #APT

www.validin.com/blog/laundry...
Hunting Laundry Bear: Infrastructure Analysis Guide and Findings | Validin
Hunting Laundry Bear: Infrastructure Analysis Guide and Findings
www.validin.com
kennethkinion.bsky.social
Kenneth Kinion @kennethkinion.bsky.social · Jul 25
🚨 New blog post 🚨

Hunting Laundry Bear: Infrastructure Analysis Guide and Findings

How to enrich previous reporting with Validin to find dozens of indicators not previously reported.

#LaundryBear #VoidBlizzard #APT

www.validin.com/blog/laundry...
Hunting Laundry Bear: Infrastructure Analysis Guide and Findings | Validin
Hunting Laundry Bear: Infrastructure Analysis Guide and Findings
www.validin.com
kennethkinion.bsky.social
Kenneth Kinion @kennethkinion.bsky.social · Jun 20
From @re.wtf:
bsky.app/profile/re.w...
re.wtf
alden @re.wtf · Jun 18
excited bc today @huntress.com is releasing our analysis of a gnarly intrusion into a web3 company by the DPRK's BlueNoroff!! 🤠

we've observed 8 new pieces of macOS malware from implants to infostealers! and they're actually good (for once)!

www.huntress.com/blog/inside-...
Inside the BlueNoroff Web3 macOS Intrusion Analysis | Huntress
Learn how DPRK's BlueNoroff group executed a Web3 macOS intrusion. Explore the attack chain, malware, and techniques in our detailed technical report.
www.huntress.com
kennethkinion.bsky.social
Kenneth Kinion @kennethkinion.bsky.social · Jun 20
Hot on the heels of the researched published by @huntress.com, hunting for Zoom-themed lures from DPRK's #BlueNoroff

💥Learn hunting techniques
💥Leverage new Validin features and data
💥Full, unredacted indicator list (domains, IPs, hashes)

www.validin.com/blog/zooming...
Zooming through BlueNoroff Indicators with Validin | Validin
Pivoting through recently-reported indicators to find BlueNoroff-associated domains
www.validin.com
1 2 2
kennethkinion.bsky.social
Kenneth Kinion @kennethkinion.bsky.social · Apr 24
At @pivotcon.bsky.social, I'm presenting with @hegel.bsky.social and Sreekar Madabushi on the first public look at the full scope of a stealthy, long-running phishing network.
5 7
kennethkinion.bsky.social
Kenneth Kinion @kennethkinion.bsky.social · Apr 17
From on a report on X, we walk through proactive detection of a #booking #fakecaptcha #clickfix campaign delivering #asyncrat

As always, full indicator list and detailed step-by-step repro included 🔥 ⤵️
www.validin.com/blog/finding...
Finding Booking.com themed ClickFix domains using Validin | Validin
Finding Booking.com themed ClickFix domains using Validin
www.validin.com
kennethkinion.bsky.social
Kenneth Kinion @kennethkinion.bsky.social · Apr 7
@bushidotoken.net explored a Meta-themed credential phishing campaign (not "Reality"). From those indicators, I pulled the "Threads" & this is far from an isolated campaign. Found great pivots in registration "Meta"data. (I'll see myself out.)

All 762 indicators 💥⤵️

www.validin.com/blog/not_rea...
Not Reality: Exploring Meta-themed Phishing with Validin | Validin
Not Reality: Exploring Meta-themed Phishing with Validin
www.validin.com
2 2
kennethkinion.bsky.social
Kenneth Kinion @kennethkinion.bsky.social · Mar 11
Found these likely #Lazarus / #TraderTraitor domains w/ #Validin
getcoinprice[.]info
stocksindex[.]org
wfinance[.]org
stockinfo[.]io

Read my how-to on leveraging Validin's exceptional visibility, history, and pivoting features for C2 infrastructure forensics:
www.validin.com/blog/bybit_h...
Lazarus Group Bybit Heist: C2 forensics | Validin
An in-depth hunt for Lazarus APT group infrastructure related to the Bybit hack using Validin's host response and DNS databases.
www.validin.com
2 5
Reposted by Kenneth Kinion
pivotcon.bsky.social
PIVOTcon @pivotcon.bsky.social · Mar 7
"Unmasking the FreeDrain Network"

Tom Hegel, Principal Threat Researcher, SentinelLabs (@TomHegel , @hegel.bsky.social )
Sreekar Madabushi, Founding Engineer, Validin
Kenneth Kinion, Founder, Validin ( @kennethkinion.bsky.social )
16/18
1 1 4
Reposted by Kenneth Kinion
hegel.bsky.social
Tom Hegel @hegel.bsky.social · Mar 10
Incredibly excited to drop some new research alongside @kennethkinion.bsky.social and Sreekar Madabushi at this years @pivotcon.bsky.social
1 7
Reposted by Kenneth Kinion
pivotcon.bsky.social
PIVOTcon @pivotcon.bsky.social · Mar 7
📣 Oops!... They did it again!!!
61 Talks submitted and so many too good that, once again, we had to increase a bit the number of accepted talks.🔥

#PIVOTcon25 Agenda is finally here, and the caliber is insane!!! Check it out➡️ pivotcon.org/agenda-2025/
#CTI #ThreatIntel
Talks and presenters in🧵⬇️ 1/18
1 14 20
kennethkinion.bsky.social
Kenneth Kinion @kennethkinion.bsky.social · Mar 7
Really looking forward to my first @pivotcon.bsky.social in May. I'm super excited about doing this talk alongside @hegel.bsky.social and Sreekar!
pivotcon.bsky.social
PIVOTcon @pivotcon.bsky.social · Mar 7
"Unmasking the FreeDrain Network"

Tom Hegel, Principal Threat Researcher, SentinelLabs (@TomHegel , @hegel.bsky.social )
Sreekar Madabushi, Founding Engineer, Validin
Kenneth Kinion, Founder, Validin ( @kennethkinion.bsky.social )
16/18