Marc @CTI_Marc - Twitter Profile

about 1 month ago

@davidgobaud @rockkdev @RobinhoodApp @twilio @vladtenev Could you share the full HTML ? Could be interesting to investigate the URL they try to make you click

1

0

84

Marc @CTI_Marc

about 2 months ago

@g0njxa did you have a look to powershell (big) script ? Is there a name for this PS malware ?

0

1

0

122

Marc @CTI_Marc

5 months ago

0

98

Marc @CTI_Marc

6 months ago

@abuse_ch @Bitsight First samples pdb and User Agent use "SystemInfo"

0

37

Who to follow

Félix Aimé

@felixaime

Threat Intel. stakhanovite ⛏️ and proud dad. Former @Kaspersky & @CERT_FR. Principal CTI researcher at @sekoia_io, focused on state-sponsored / hybrid stuff.

Dee

@ViriBack

#Malware C2 hunter #infosec passionate. Tweets are my own.

AdamTheAnalyst

@AdamTheAnalyst

Cyber Threat Intelligence Specialist & STIX Evangelist - Tweets about #ThreatIntelligence #Malware #Ransomware #ThreatHunting #FINCrime ~ pronouns:He/Him

CTI_Marc retweeted

Sekoia.io @sekoia_io

over 1 year ago

🇨🇳 We're excited to announce the publication of the latest Sekoia #TDR team report, « A Three Beats Waltz: The ecosystem behind Chinese state-sponsored cyber threats." https://t.co/sU2qCjUKHq

sekoia_io's tweet photo. 🇨🇳 We're excited to announce the publication of the latest Sekoia #TDR team report, « A Three Beats Waltz: The ecosystem behind Chinese state-sponsored cyber threats."

https://t.co/sU2qCjUKHq https://t.co/gffrxaZgg0

1

36

18

6

4K

CTI_Marc retweeted

Sekoia.io @sekoia_io

over 1 year ago

🔍 TDR investigated the emerging #ClickFix social engineering tactic, which several intrusion sets adopted in 2024 to distribute their malware. Our research provides a chronological overview of the observed ClickFix campaigns and their victimology. https://t.co/S39OAJttAp

sekoia_io's tweet photo. 🔍 TDR investigated the emerging #ClickFix social engineering tactic, which several intrusion sets adopted in 2024 to distribute their malware.

Our research provides a chronological overview of the observed ClickFix campaigns and their victimology.

https://t.co/S39OAJttAp https://t.co/QjqmZM7vMg

1

45

24

9

9K

CTI_Marc retweeted

Sekoia.io @sekoia_io

over 1 year ago

🚨 Discover #Mamba2FA, a previously unknown adversary-in-the-middle (AiTM) #phishing kit, sold as phishing-as-a-service (PhaaS) ⚠️ https://t.co/gmIzApiCRA

sekoia_io's tweet photo. 🚨 Discover #Mamba2FA, a previously unknown adversary-in-the-middle (AiTM) #phishing kit, sold as phishing-as-a-service (PhaaS) ⚠️

https://t.co/gmIzApiCRA https://t.co/41TK8Yvnak

4

47

27

8

6K

CTI_Marc retweeted

Sekoia.io @sekoia_io

over 1 year ago

Since mid-2023, the Sekoia #TDR team has investigated an infrastructure which controls compromised edge devices transformed into Operational Relay Boxes (#ORBs) used to support operations of multiple 🇨🇳 intrusion sets. Check out the full report ⤵️ https://t.co/2YVw3x3vJP

sekoia_io's tweet photo. Since mid-2023, the Sekoia #TDR team has investigated an infrastructure which controls compromised edge devices transformed into Operational Relay Boxes (#ORBs) used to support operations of multiple 🇨🇳 intrusion sets.

Check out the full report ⤵️

https://t.co/2YVw3x3vJP https://t.co/iM3n4OlwVh

1

31

22

5

3K

CTI_Marc retweeted

JLexFusion @jlexfusion

over 1 year ago

Happy to announce my new project! 🚀 Do you use Google Meet? Meet TigerTakes on https://t.co/CB9eLKxL57 – your new meeting assistant! 🎯 Connect our bot directly to your Google Meet sessions and get clear, concise summaries in no time. Sign up for free now!

0

6

3

0

167

CTI_Marc retweeted

Sekoia.io @sekoia_io

over 1 year ago

🚨 Sekoia TDR uncovered key insights into the infrastructure behind #Emmenthal Loader distribution using #WebDAV as a service! Thanks to @CERTCyberdef & @Mandiant for their research, which helped shed light on this! 🙏 Read the full report here: https://t.co/HYJO4c6zgC

sekoia_io's tweet photo. 🚨 Sekoia TDR uncovered key insights into the infrastructure behind #Emmenthal Loader distribution using #WebDAV as a service!

Thanks to @CERTCyberdef & @Mandiant for their research, which helped shed light on this! 🙏

Read the full report here:
https://t.co/HYJO4c6zgC https://t.co/wgIZV2MiiQ

0

29

13

6

2K

CTI_Marc retweeted

Sekoia.io @sekoia_io

about 2 years ago

Have you ever heard about “#DoppelGänger”? 👀 In our new report, the Sekoia #TDR team analysed the #DoppelGänger campaign's relays, technical infrastructure, and shared narratives. https://t.co/dXVoLBgCBi #Influence #InformationWarfare #CTI

sekoia_io's tweet photo. Have you ever heard about “#DoppelGänger”? 👀

In our new report, the Sekoia #TDR team analysed the #DoppelGänger campaign's relays, technical infrastructure, and shared narratives.

https://t.co/dXVoLBgCBi

#Influence #InformationWarfare #CTI https://t.co/sN2OeDdo3n

1

21

16

6

5K

Marc @CTI_Marc

about 2 years ago

@r3dbU7z Yeah was aware of that but was wondering how threat actor delivers this payload

1

0

55

CTI_Marc retweeted

Sekoia.io @sekoia_io

about 2 years ago

👀 Discover our new report, which provides an in-depth analysis of cyber threats to elections based on past targeted elections. It identifies various types of cyber operations and proposes an assessment of threats regarding the major elections in 2024. https://t.co/LdTlYaNpQr

sekoia_io's tweet photo. 👀 Discover our new report, which provides an in-depth analysis of cyber threats to elections based on past targeted elections. It identifies various types of cyber operations and proposes an assessment of threats regarding the major elections in 2024.

https://t.co/LdTlYaNpQr https://t.co/LxlRWFadRP

1

22

11

7

3K

CTI_Marc retweeted

Censys

@censysio

about 2 years ago

🔍Discover how to proactively detect malicious activities with Censys data in our next webinar with @sekoia_io. Explore challenges in monitoring decentralized infrastructures and see MalleableC2 in action📈Book your spot now: https://t.co/j9LqHhdcY7

0

5

7

1

1K

Marc @CTI_Marc

about 2 years ago

@bigfootcorporal Hello, where did you find this website ?

0

7

Marc @CTI_Marc

over 2 years ago

@1ZRR4H @ShanHolo @malwrhunterteam @JAMESWT_MHT @StopMalvertisin @pr0xylife @0xToxin @executemalware @ankit_anubhav @AnFam17 Do you know what is the infection vector ? Phishing email with webdav link ?

0

81

Marc @CTI_Marc

over 2 years ago

Very glad to share a part of our 2023 work, don't hesitate if you have any question

Sekoia.io @sekoia_io

over 2 years ago

🕵️ 📡 We are pleased to announce our newest blog post about Sekoia #TDR team (Threat Detection & Research) #adversary #infrastructure tracking capabilities in 2023 ⤵️ https://t.co/FjW2D7UGJY

sekoia_io's tweet photo. 🕵️ 📡 We are pleased to announce our newest blog post about Sekoia #TDR team (Threat Detection & Research) #adversary #infrastructure tracking capabilities in 2023 ⤵️

https://t.co/FjW2D7UGJY https://t.co/GRCnWj9NNf

1

33

20

9

4K

0

14

2

0

1K

CTI_Marc retweeted

Sekoia.io @sekoia_io

over 2 years ago

🧵 @sekoia_io tracks C2 infrastructures for main #stealer families sold as a Malware-as-a-Service (MaaS). Our view of active C2s, combined with our observations from telemetry, forum monitoring and sample tracking, gives us a global understanding of the stealer threat. ⬇️

sekoia_io's tweet photo. 🧵 @sekoia_io tracks C2 infrastructures for main #stealer families sold as a Malware-as-a-Service (MaaS).

Our view of active C2s, combined with our observations from telemetry, forum monitoring and sample tracking, gives us a global understanding of the stealer threat.

⬇️ https://t.co/9kMFfYLM3Y

2

56

19

17

7K

Marc @CTI_Marc

over 2 years ago

@0xM4R10 @virustotal After some analysis the website is used to deliver StealC malware ! Our report on StealC malware: https://t.co/D4gabdWBbX ( cc @ValeryMarchive )

0

1

0

54

Marc @CTI_Marc

over 2 years ago

@0xM4R10 Hello, approach is very close to what we published in end 2023: https://t.co/X7wZTsnXdY Do you still have .exe file ? Can you upload it to @virustotal ?

1

0

579

Marc

@CTI_Marc

Who to follow

Last Seen Users on Sotwe

Trends for you

Most Popular Users