dao ming si
@dms1899
Followers
1K
Following
11K
Media
195
Statuses
4K
work time: defender fun time: malware hoarder/puzzle solver/capacity tester member of: @Cryptolaemus1 fan of: @hatching_io @sublime_sec
Joined January 2014
⚠️ @CISAgov issued thirteen NEW public #ICS advisories. These advisories provide info about current security issues, vulnerabilities, & exploits surrounding ICS. More at https://t.co/mbaWqkEWfB
5
15
32
New blog with an update on the Socks5Systemz botnet with some interesting details! https://t.co/Drr5O0f293
#socks5systemz #proxyam
bitsight.com
After a year long investigation, Bitsight TRACE follows up on Socks5Systemz research.
0
11
13
you can deploy verifiable coverage for this with @sublime_sec (for free), here’s the detection that’s been out for over a year (h/t @zoomequipd @ajpc500):
sublime.security
Recursively scans files and archives to detect RDP connection files. Coercing a target user into connecting to an attacker-owned RDP server can expos...
🚨We’re seeing reports of a large-scale #spearphishing campaign targeting multiple sectors, including government and IT. A foreign threat actor is sending phishing emails with malicious RDP files to gain network access. Take proactive measures. More info: https://t.co/V9t7sZy5Ep
0
8
17
Legend
Robin Williams filming a commercial with a director that had no sense of humor. “Do you want me to get another actor?”
0
0
0
More #BruteRatel...
#BruteRatel #Latrodectus A New JS Nasty Obfuscation #TTPs & #IOCs - Multi-Line Comments🚨 [+] JS T1059.007 [+] Msiexec T1218.007 TA abuses multi-line (/* ,*/) comments to hide malcode and bypass detections - VT detections 20/62 Distro MSI IP: tp://95.164.17[.]212/BEST[.]msi
0
3
15
Hello Latrodectus, are you ok? Hope you enjoyed op Endgame… Check out my latest article to learn more about this malware and its tricks 🙂 https://t.co/PG2JP2UUXA
0
9
26
Ivan where are you? :)
0
1
7
Amazing! If you haven't heard about Sublime before check it out and try it for free, on their cloud or you can get it off github and docker-compose !!
I’m extremely excited to announce that @sublime_sec has raised a $20M Series A led by @indexventures with participation from @DAlperovitch I wrote about our journey from black box to open platform, and where we're headed: https://t.co/r66XmNMKG0
1
2
7
If you needed yet another reason not to trust VPN providers or proxy services... Here Facebook partnered with a bunch of companies to have root certificates installed on people's phones so they could intercept other app's traffic. https://t.co/lwlU19JEYr
103
1K
5K
The NCA reveals details of an international disruption campaign targeting the world’s most harmful cyber crime group, Lockbit. Watch our video and read on to learn more about Lockbit and why this is a huge step in our collective fight against cyber crime.
70
488
1K
I just drove home in a Midnight Blizzard. But which group is that in the common name? https://t.co/JpNCHvmd2X
microsoft.com
0
0
2