Anyone want or need any of the following for research purposes?
- hxxp://void.to - full .sql with threads and private messages - 1GB
- hxxp://legalizer.info - 2018 - full .sql with threads and private messages - 5.6GB
- hxxp://leet.cc - 2016 - full .sql with threads and private messages - 900MB .zip
- hxxp://NULLED.io - 2016 - full .sql with threads and private messages - 800mb .zip
- hxxp://cracked.to - 2019 - full .sql with threads and private messages - 218 MB .zip
- hxxp://youhack.ru - 2013 - full .sql with threads and private messages - 1.2GB .zip
Drop me a line [email protected]
> be pakistan government
> develop custom malware
> used to target high profile targets
> used against indian military and political ppl
> named SHEETCREEP
> send indian ppl file
> UAE-India Strategic Partnership Week
> malicious .lnk file
> .lnk executes malicious c sharp code
> does a bunch of stuff for persistence
> exfiltrates data to Google Sheets
> Google Sheets can be used to control victim pcs
> pakistan gov hardcodes google c2 sheet
> PAKISTAN GOV HARDCODES GOOGLE C2 SHEET
> embed access key in payload
> EMBED ACCESS KEY IN PAYLOAD
> malware nerds find it
> look inside
> find all targets from pakistan gov
> monitoring 91 ppl they think important
THEY STARTED SO STRONG. WHY DID YOU HARDCODE EVERYTHING. YOU BURNED YOUR OPERATION
https://t.co/PcCeV05cu3
I don’t know what happened between Microsoft and #NightmareEclipse behind closed doors
Maybe Nightmare Eclipse was unreasonable. Maybe Microsoft was. Maybe both.
But I think Microsoft badly misjudged this situation.
When you’re the largest software vendor on the planet, you don’t get to behave like an angry individual in an internet argument.
You have to be the adult in the room.
Deleting repositories, talking about criminal investigations and turning the whole thing into a public fight was a mistake. The damage from that goes far beyond this one researcher.
What surprised me most is how quickly people started sharing their own MSRC stories afterwards.
- Months without responses
- “Working as intended”
- Bounty disputes
- Reports that went nowhere
People don’t suddenly start telling those stories for no reason. I think Microsoft broke a lot of porcelain here.
And for what exactly?
I don’t see much upside.
@Knubbeh@kmkz_security@Microsoft lol @defcon and @BlackHatEvents going back to the days where u dropped a vuln on stage with no patch or discloser with the vendor cause everyone is sour with free research and security analysis
@DoingFedTime@AshleyDCan Free speech is different than purposely instigating people to get a reaction. It’s like yelling bomb at the airport, you’re a dumbass if you do that free speech has nothing to do with it.