Olivia
Online
Bad Packets by Okta
@bad_packets
Chicago, IL
Joined April 2017
2 Following
50.9K Followers
2K Posts
Anyone reusing credentials on their Fortinet device? Asking for a friend on AS17511 (219.75.254[.]166) who keeps failing to get their password right.
Full analysis of the BreachForums network and user data, including top ASNs, VPN usage and blocklist recommendations, are all in our latest blog post.
https://t.co/orAlk2C2ND
We analyzed over 300,000 rows of the January 2026 BreachForums database leak to find their users' anonymizers of choice.
Join us in the cantina. π§΅
BreachForums never verified email addresses. A forum admin even told members to use disposable ones.
81% used Gmail anyway. Most of those burner addresses appear nowhere else. The remaining ~5,800 showed up in infostealer malware logs.
Who to follow
vx-underground 
@vxunderground
The largest collection of malware source code, samples, and papers on the internet.
Password: infected
MalwareHunterTeam
@malwrhunterteam
Official MHT Twitter account.
Check out ID Ransomware (created by @demonslay335).
More photos & gifs, less malware.
Microsoft Threat Intelligence
@MsftSecIntel
We are Microsoft's global network of security experts. Follow for security research and threat intelligence.
A browser extension promised security. In reality, it was a Trojan horse for your crypto.
We tracked the extension, mapped the infrastructure and pulled the plug.
Full breakdown of the takedown: https://t.co/KuAuOdWUyx
Fake accounts fuel global fraud. Our latest research uncovers a sprawling cybercrime-as-a-service ecosystem in Vietnam that sells fake and hacked accounts on a massive scale.
Read our full research and raise your identity security posture: https://t.co/IPMSV3RVaX
University students using "tutors" are being extorted for thousands, but the risk is bigger: When students turn over login credentials, malicious actors can pivot to sensitive university systems and perpetrate fraud. https://t.co/sOlc240OgV
Your star hire might be a DPRK agent. π°π΅ @Okta reveals how state actors use stolen LinkedIn IDs, AI-generated faces, and forged git commits to bypass HR. Verify identities before they're on your payroll! #opentowork https://t.co/vUS3m8GMeD
Google disrupted IPIDEA, a major residential proxy network. Our data confirms a sharp drop in their active IPs following the action. π
Protect your Okta org today: block IPIDEA and residential proxies with dynamic network zones https://t.co/dR0hjjZ5ac
Our promise to you: serving up the bad packets. That's why we wrote about how to use threat intel right in @Auth0 Actions. https://t.co/wxCRbQu55q
@heymingwei Thanks for the enrichment! AS200373 forever maintaining its place on the leaderboard.
Still tracking the bad packets, now powered by Okta log data! Top ASNs used in recent signup fraud attacks:
β’ 212238
β’ 16276
β’ 44477
β’ 26548
β’ 200373
β’ 137409
β’ 214483
β’ 13213
β’ 397368
Revamped site, new IoCs. In addition to bad ASNs, we've got disposable email domains beloved by threat actors inside π https://t.co/ET56T3VWNH
Still tracking the bad packets, now powered by Okta log data! Top ASNs used in recent signup fraud attacks:
β’ 212238
β’ 16276
β’ 44477
β’ 26548
β’ 200373
β’ 137409
β’ 214483
β’ 13213
β’ 397368
TTPs change, but you can keep up.
Read our case study on how an @auth0 tenant used JA3 signatures to block 20mm+ fraudulent signup requests. https://t.co/TGx7hPZnVL
Our latest research reveals DPRK threat actors are targeting more than just tech.
π 6,500+ fake interviews
π’ 5,000+ companies
π 27% of targets outside the U.S.
π¦ Sectors hit: finance, healthcare, public admin & more
Read the full report here: https://t.co/7HFjYweZ50
Bad Packets is giving away a BSides Las Vegas ticket.
Drop a comment below for a chance to win!
Rules:
One winner selected at random.
No purchase necessary to enter.
Government employees ineligible to participate.
Void where prohibited.
Winner will be announced on July 28th.
Last Seen Users on Sotwe
anakuwaso99
Seen from Japan
yolanda nadia
Seen from Indonesia
GAVAT KOCAMΔ° UMURSAMΔ°YORUMπ
Seen from Turkey
Rafa
Seen from France
π₯Ψ§ΩΨ§Ψ³ΩΩΩΩΩΨ―Ψ±Ψ§ΩΩΩππ¦βπ₯
Apple Storry
Seen from United States
Rio
Seen from Japan
raquel
Seen from United Arab Emirates
stoner kid
Seen from Egypt
ε₯³ε©ηεΏ«δΉηζ΄»
Seen from Korea
Most Popular Users
Elon Musk
@elonmusk
240.1M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.8M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.2M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.7M followers
Taylor Swift
@taylorswift13
80.5M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.3M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.4M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
60.9M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers