Olivia
Online
BCON Collective
@BconCollective
👾 This account is not currently in use.
United Kingdom
Joined March 2023
42 Following
748 Followers
35 Posts
We've just published a new report on a Widespread Credential Harvesting Campaign.
Moving forward, all our CTI updates will come from our main account @bridewellsec, so give us a follow to keep up with our latest updates.
#ransomware #threatintelligence
Joshua Penny, our Senior Threat Intelligence Analyst has analysed a widespread credential harvesting campaign. The threat actors are utilising the Dadsec platform to conduct widespread phishing of global organisations to steal Microsoft 365 credentials.
The threat actors are using Cyber Panel, an open-source web development panel, hundreds of Domain Generated Algorithm (DGA) domains that are created daily to host credential harvesting pages.
For more information, including Indicators of Compromise (IoCs) and associated infrastructure, see our full report 👉 https://t.co/LGzJJUmGDg
@AnyRun_App
#BridewellCTI #ThreatIntelligence
We've just published a new report on an information stealer known as "Easy Stealer".
For more info, head over to our main account @bridewellsec. (All future CTI updates will be shared from there so give us a follow!)
#infostealer #threatintelligence
Bridewell CTI has identified infrastructure associated with a new information stealer called “Easy Stealer”.
Easy Stealer is currently up for sale and under active development. Found out more in our full report: https://t.co/EbYU7JFo52
#infostealer #ThreatIntelligence
We've just published a new report on a major Ransomware-as-a-Service player, ShadowSyndicate.
Moving forward, all our CTI updates will come from our main account @bridewellsec, so give us a follow to keep up with our latest updates.
#ransomware #threatintelligence
ShadowSyndicate is a new Ransomware-as-a-Service player who's having a major impact on the global stage.
We've teamed up with Group-IB and Michael Koczwara to publish a full report on the group: https://t.co/QWnAJFldRk
#ransomware #threatintelligence
WEBINAR: Looking to improve your organisation's operational visibility?👁️
Register today 👉 https://t.co/MPn0Z3TXxZ
#ManagedSecurityServices #ThreatDetection #Webinar
Who to follow
Chris Duggan
@TLP_R3D
Full-Time Explorer | MDS Legendary Finisher | Ultra Endurance | From Cyber Intel to the Desert | Author- The Intent Model
Group-IB Threat Intelligence 
@GroupIB_TI
Official account of the @GroupIB Threat Intelligence Unit. Latest research, analytics, IOCs and threat alerts.
Michael Koczwara
@MichalKoczwara
Threat Researcher/Founder @Intel_Ops_io
Threat Intelligence, Adversary Infrastructure Hunting, Curated TI Feed (Coming Soon)
https://t.co/VQWaze6gaF
📧 Stay up to date with Bridewell's CTI reports by receiving them directly in your inbox. Sign up here: https://t.co/BNrpZjVkpw
In case you missed it 👇 💭
➡ Bridewell and Group-IB expose the APT’s unknown infrastructure - https://t.co/WaDFQo7QZD
➡ Hunting for Ursnif - https://t.co/ZcyxBKXCWF
#CTI #Updates
When cybersecurity researchers work together, they make the world safer🤝 Group-IB and @bridewellsec are proud to share the joint blog post about previously unknown infrastructure belonging to #APT #SideWinder:
https://t.co/iF0wF8T9Te
👉SideWinder’s servers can be detected using several hunting rules
👉Group-IB and Bridewell detected 55 previously unknown IP addresses that SideWinder could use in future attacks.
Bridewell and Group-IB expose the APT’s unknown infrastructure.
In our latest report our Bridewell CTI team and the @GroupIB Research Team detail key findings into the APT group ‘SideWinder’.
Read the full report here: https://t.co/sIB84hOsI1
Bridewell CTI track down Ursnif, aka Gozi malware, the ex-banking trojan facilitating ransomware operations such as Royal. The Bridewell team describes recent campaigns involving the malware and how they underwent the hunt for its C2 infrastructure, including an analysis of their findings.
The report can be found here👉https://t.co/iWVQ9dMqdR
#Ursnif #Gozi #Royal #Ransomware
LIDSHOT has two primary functions: system enumeration and downloading and executing shellcode from the C2.
LIDSHOT sends the following information to its C2:
Computer Name
Product name
IP address
Process List
Mandiant’s UNC2970 conduct recruitment themed spear-phishing campaigns, recently delivering a trojanised version of TightVNC (LIDSHIFT) to victims.
LIDSHIFT reflectively loads an encrypted .dll into memory; a trojanised Notepad++ plugin, called LIDSHOT.
Bridewell Unravels #AlphV infrastructure following Mandiant report on the prolific #Ransomware group.
Read the full report here: https://t.co/WCYqczxena
IOCs included:
29 - AlphV Domains
36 – Cherry Server IPs
97 – Meterpreter IPs
#Meterpreter #IcedID
@Mandiant @proofpoint
Last Seen Users on Sotwe
มาตามหา วาป์ว
Seen from Thailand
Lindsay Murray
Seen from Sweden
porn488
Seen from Turkey
🔞💯Swinger,Cuckold💯🔞
Seen from Turkey
ความลับ
Seen from Thailand
입싸
Seen from Korea
Kasırgalı
Seen from Turkey
Hero
Seen from Indonesia
Ray Potts™️ NYC 🗽(6/26-6/29)
Seen from Canada
beyaz zenci
Seen from Germany
Most Popular Users
Elon Musk
@elonmusk
240.5M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.7M followers
Cristiano Ronaldo
@cristiano
110.3M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.6M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.8M followers
KATY PERRY
@katyperry
87.5M followers
Taylor Swift
@taylorswift13
81.3M followers
Lady Gaga
@ladygaga
72.9M followers
Kim Kardashian
@kimkardashian
69.7M followers
Virat Kohli
@imvkohli
69.6M followers
YouTube
@youtube
68.7M followers
Bill Gates
@billgates
63.8M followers
The Ellen Show
@theellenshow
62.5M followers
Neymar Jr
@neymarjr
62.3M followers
CNN
@cnn
61.9M followers
X
@x
60.8M followers
Selena Gomez
@selenagomez
60.6M followers