107 reports sent for critical vulnerabilities since last month.
65 fixed.
Sent several reports aside that are not registered by the platform.
Want to know how many I heard back from ?
3 in total.

Ungrateful work 😮‍💨
cc: LeakIX

News: I have quit VICE. Me and a small group of Motherboard writers have launched our own company: 404media.co. We'll continue impactful journalism.

If you've ever wanted to support my work, this is the time. Please subscribe monthly/yearly nytimes.com/2023/08/22/bus…

🔊 access to #DICELOADER aka Lizar/Icebot alone is not enough to attribute to the cluster we call #FIN7 .

this capability has been for 💰 for a while & is no longer considered exclusive to core #FIN7 at this pt.

and, the same goes for the #POWERTRASH loader - fun!

🧊🤖

More #DarkGate .MSI files with 0 detections
C2: 107.181.161.200:9999

'Wrapped using MSI Wrapper from www[.]exemsi[.]com'

Sample: bazaar.abuse.ch/sample/eb7ef73…
Related: twitter.com/Gi7w0rm/status…

Still up as of today:
#OrcusRAT
#XWorm
#UltraVNC
#AnyDesk
tons of loaders.
I do believe this could be a #scambaiter leaking own tools ?
There is at least one PayPal scam script in here as well refering to 777sup .org

tria.ge/230822-3m8ylah…

cc:
NanoBaiter
John Hammond

🚨CVE-2023-34124 ( and friends ) - New plugin released for finding vulnerable #SonicWall GMS instances.

Found ~100 vulnerable public instances.

Hosting providers and national CERTs have been notified.

Sources: Rapid7 - attackerkb.com/topics/Vof5fWs…
Thanks: Gi7w0rm

Ivanti warns of new actively exploited MobileIron zero-day bug - Sergiu Gatlan
bleepingcomputer.com/news/security/…

Hmmm, crypto scam advertised on X... Probably a drainer.
Don't trust this!

#x #gonna #steal #it #from #ya

Burning a #WebDav #TA :
139.99.32[.]95:8000
#opendir with different samples looking like a test environment.

At least 1 time #QuasarRAT :
tria.ge/230821-prkjxac…

Software used to host this WebDav is likely:
github.com/mar10/wsgidav/

Have fun :)
#infosec

Wow GOG.COM GOG.COMDE what's going on there ? That's completely unnecessary and a big privacy issue...