here is the list of more than 4k sub-domain infrastructure including #DGA domain used by #UNC2452 #SolarWinds #backdoor .Link: cc: @iblametom @TheHackersNews @threatpost.

RT @S0ufi4n3: Just released LLMEx - open-source security testing framework for LLMs: OWASP Top 10+1 for LLMs compliance, Smart false positi….

RT @virustotal: What 17,845 GitHub Repos Taught Us About Malicious MCP Servers.

RT @infosec_au: IP whitelisting is fundamentally broken. At @assetnote, we've successfully bypassed network controls by routing traffic thr….

RT @clintgibler: 🔥 𝐀𝐈 𝐑𝐞𝐝 𝐓𝐞𝐚𝐦𝐢𝐧𝐠 𝐏𝐥𝐚𝐲𝐠𝐫𝐨𝐮𝐧𝐝 𝐋𝐚𝐛𝐬 from @Microsoft .12 free labs to up-level your hacking skills from the “AI Red Teaming in….

RT @g0njxa: ping @ViriBack more #Lumma Stealer 🕊️. /fedor-dostoevskiy.com/login

RT @RussianPanda9xx: Autopsy of a Failed Stealer: StealC v2.When Your $3000 Malware Budget Goes to Marketing Instead of Actually Enabling t….

RT @Xlab_qax: Our latest blog dives into a new variant of #Vo1d #botnet. C2 sinkhole data reveals it has infected 1.6M Android TVs across 2….

RT @0x6rss: hi threat hunters and malware analysts!.I want to introduce you to my newly developed tool called "Matkap". with this tool, you….

RT @4A4133:

RT @securityaffairs: Experts discovered #surveillance tool #EagleMsgSpy used by Chinese law enforcement.#securityaf….

RT @bofheaded: This is one example of why correct attribution matters in CTI. .CC: @Gi7w0rm @Glacius_ @banthisguy9….

RT @Kostastsale: 🚨EDR Telemetry website is live! 🥳. I hope this makes it even easier for folks to compare the telemetry of EDR vendors and….

RT @4A4133: JA4 is now in VirusTotal!. All the malware using wininet: Executables using winhttp:..

RT @darkeye_team: 🎉 DarkEye has officially launched!.🎁 Grab your 3-day free trial—register now for your free access!.🔗 Check it out: https:….

RT @nao_sec: New blog post! "Building Casper's Shadow". We discovered and researched the #ShadowPad builder. See how ShadowPad is built 😎👻….

Still 𝗔𝗰𝘁𝗶𝘃𝗲 #SystemBC #Malware spread from HETZNER-CLOUD2-AS, DE (AS213230), United States (USA). Update : Total Live Compromised Victims: (172) across various countries.👇.Stay vigilant! 🛡️#threatintel

🚨 Still, same RaaS affiliated threat actor active! #systembc #malware spreading in the wild. New victims identified across various countries. Total bot/Compromised victim count is (110). 👇.Stay vigilant! ⚠️

RT @HunterMapping: 🚨Alert🚨CVE-2024-30103: Microsoft Outlook Remote Code Execution Vulnerability.⚠This Microsoft Outlook vulnerability can b….

🚨 Recent 𝗔𝗰𝘁𝗶𝘃𝗲 #SystemBC #Malware Commonly used in ransomware campaigns, spreading from Ukraine (UA). C2 IP: 185.156.72.33[:]4001.Hash: a022626b818bb6251e3b814ae74700e0 . Compromised machines (bots) detected also in mostly Ukraine itself 👇 (32 Victims).🛡️ #threatintel

RT @Volexity: .@Volexity analyzes #DISGOMOJI 🔥, Discord-based malware 💀 using emojis for C2. #DISGOMOJI is used by #UTA0137, a suspected Pa….