Security Operations Center

@fe_tsoc

A SOC protecting the grid. Bot maintained by @Alt_DataStreams. Made with love by @whlemlk

Joined July 2020

42 Following

966 Followers

201.5K Posts

Pinned Tweet

Security Operations Center @fe_tsoc

about 3 years ago

This account will no longer retweet any posts due to the rate limitation of the API. Thank you for your understanding.

fe_tsoc retweeted

kubotaa @kubotaa3

about 3 years ago

横浜銀行のフィッシングサイト情報です⚠ hxxps://nanjiezhiyao.com/ hxxps://login.hdtcdsk.buzz/ ip: 45.143.234.92 (AS23959 - Owl Limited) #Phishing #横浜銀行

fe_tsoc retweeted

cobaltstrikebot 🌻 @cobaltstrikebot

about 3 years ago

144 Cobalt Strike stage 2 IP's, with 145 unique configurations, identified today. Find them here: https://t.co/4Vvbtzfels Warning: These IP's have not been vetted, block at your own risk.

fe_tsoc retweeted

MalwareHunterTeam

@malwrhunterteam

about 3 years ago

"Motherless banned video collection - rare stuff\.zip": fc1b3f1ac2da5b0d50fab94a0a4fcb85dbb6a6342f48faf28b5d8f7ddd373774 "ImagePreview.png": 0443be4f5ad38710f330455757ce2f633720b750d77ad0efb188d343461d2f74 🤔

$malwrhunterteam's tweet photo. "Motherless banned video collection - rare stuff\.zip": fc1b3f1ac2da5b0d50fab94a0a4fcb85dbb6a6342f48faf28b5d8f7ddd373774 "ImagePreview.png": 0443be4f5ad38710f330455757ce2f633720b750d77ad0efb188d343461d2f74 🤔 https://t.co/uHjdZhI5bz$

Who to follow

Tommy M (TheAnalyst)

@ffforward

Threat Researcher @proofpoint | @Cryptolaemus1

Dee

@ViriBack

#Malware C2 hunter #infosec passionate. Tweets are my own.

匚ㄚ乃乇尺ㄖᐯ乇尺ㄥㄖ卂ᗪ

@Cyber0verload

Cyber Threat Hunter

fe_tsoc retweeted

cobaltstrikebot 🌻 @cobaltstrikebot

about 3 years ago

142 Cobalt Strike C2's identified today. Find them here: https://t.co/QG70HDJvf5 Warning: These IP's have not been vetted, block at your own risk.

fe_tsoc retweeted

Who said what?

@g0njxa

about 3 years ago

mesoftwares[.]vip Distribution of C2⚙️ #Redline 94.142.138.4 🇷🇺 Download from opendir mesoftwares[]vip/data/ 👇👇 https://t.co/Njm8oOIycf

fe_tsoc retweeted

Miyuki Chikara @harugasumi

about 3 years ago

【重要】２段階認証設定のお願い等の件名の不審メール。この誘導先 hxxp://rxk4li.uxuuzlejffmywdt.net/im/login.php?id=<ID>&pass=<Password> →…→hxxp://vqvztozvfofios.jp/pc/top/?mode=1 は画面真っ白でしたが、類似フィッシング詐欺にお気を付け下さい。 #Phishing #フィッシング詐欺

harugasumi's tweet photo. 【重要】２段階認証設定のお願い
等の件名の不審メール。
この誘導先
hxxp://rxk4li.uxuuzlejffmywdt.net/im/login.php?id=<ID>&pass=<Password>
→…→hxxp://vqvztozvfofios.jp/pc/top/?mode=1
は画面真っ白でしたが、類似フィッシング詐欺にお気を付け下さい。
#Phishing #フィッシング詐欺 https://t.co/t7XTFUam80

fe_tsoc retweeted

Who said what?

@g0njxa

about 3 years ago

This is from a compromised Youtube account sharing videos to distribute #Redline Stealer Here's the analysis https://t.co/dmKGWd4HaS Threat actors started asking for @PayPal donations, to paypal[.]me/RuskeyMusic Are logs business that bad u need to beg money?? 😂

g0njxa's tweet photo. This is from a compromised Youtube account sharing videos to distribute #Redline Stealer

Here's the analysis https://t.co/dmKGWd4HaS

Threat actors started asking for @PayPal donations, to
paypal[.]me/RuskeyMusic

Are logs business that bad u need to beg money?? 😂 https://t.co/e9lDcJ75rr

fe_tsoc retweeted

Miyuki Chikara @harugasumi

about 3 years ago

【大和ネクスト銀行】お客様の直近の取引における重要な確認について等の件名で、大和ネクスト銀行を騙る #フィッシングメール。 hxxps://jsdushid.com (→…) 等 #フィッシングサイトに騙されないよう、お気を付け下さい。本日午後投入URLs https://t.co/cFfk7tZrnm #Phishing #フィッシング詐欺

harugasumi's tweet photo. 【大和ネクスト銀行】お客様の直近の取引における重要な確認について
等の件名で、大和ネクスト銀行を騙る #フィッシングメール。
hxxps://jsdushid.com
(→…)
等 #フィッシングサイトに騙されないよう、お気を付け下さい。
本日午後投入URLs
https://t.co/cFfk7tZrnm
#Phishing #フィッシング詐欺 https://t.co/6Aw5FSza8P

fe_tsoc retweeted

Yogesh Londhe @suyog41

about 3 years ago

Spark RAT ITW : https://cdn.discordapp[.]com/attachments/1094077300041068585/1094087837592334458/servicesGerencia.exe 41fa51816abea20a91900edaf46d8512 Signed with "NUTRI GENETICA RESEARCH BRASIL LTDA" C2 : 130.185.238[.]251:7777 #SparkRAT #GoRAT #RAT #IOC

suyog41's tweet photo. Spark RAT
ITW :
https://cdn.discordapp[.]com/attachments/1094077300041068585/1094087837592334458/servicesGerencia.exe
41fa51816abea20a91900edaf46d8512
Signed with "NUTRI GENETICA RESEARCH BRASIL LTDA"
C2 : 130.185.238[.]251:7777
#SparkRAT #GoRAT #RAT #IOC https://t.co/TJjLJN5TKk

fe_tsoc retweeted

Dominic Alvieri

@AlvieriD

about 3 years ago

Arkansas State University has been claimed by LockBit. /astate.edu @ArkansasState

fe_tsoc retweeted

Dominic Alvieri

@AlvieriD

about 3 years ago

Three bad posts to start the week. St. Mary’s Catholic School, Lutheran Social Services of New York and Unity College have been posted by LockBit. /stmarys.net /unity.edu /lssny.org

AlvieriD's tweet photo. Three bad posts to start the week.

St. Mary’s Catholic School, Lutheran Social Services of New York and Unity College have been posted by LockBit.

/stmarys.net

/unity.edu

/lssny.org https://t.co/WGABfmws8U

fe_tsoc retweeted

Threat Intelligence @threatintel

about 3 years ago

Ransomware watchers are finding creative ways to track attacks https://t.co/1ha3ue4Pqe

fe_tsoc retweeted

ThreatMon Ransomware Monitoring

@TMRansomMon

about 3 years ago

Actor : LockBit Victim : https://t.co/SUF8VN9jlC Date : 2023-05-08 10:29 UTC +3 According to the #DarkWeb #Ransomware activity by the ThreatMon Threat Intelligence Team, the “#LockBit” Ransomware group has added https://t.co/SUF8VN9jlC to its victims.

570

fe_tsoc retweeted

ThreatMon Ransomware Monitoring

@TMRansomMon

about 3 years ago

Actor : LockBit Victim : https://t.co/WfCQ5UUmdE Date : 2023-05-08 10:29 UTC +3 According to the #DarkWeb #Ransomware activity by the ThreatMon Threat Intelligence Team, the “#LockBit” Ransomware group has added https://t.co/WfCQ5UUmdE to its victims.

617

fe_tsoc retweeted

ThreatMon Ransomware Monitoring

@TMRansomMon

about 3 years ago

Actor : LockBit Victim : https://t.co/0HrvGspbWX Date : 2023-05-08 10:29 UTC +3 According to the #DarkWeb #Ransomware activity by the ThreatMon Threat Intelligence Team, the “#LockBit” Ransomware group has added https://t.co/0HrvGspbWX to its victims.