![crep1x's tweet photo. #Vidar stealer (botnet 1821) distributed using a fake website that mimics MSI Afterburner software and uses Google Ads
mslaftrebunrer.]us (ping @Namecheap)
https://t.co/MGTwF9MShl https://t.co/mYbqUMIE6j](https://pbs.twimg.com/media/FjdRpTgXgAADclo.jpg)
Olivia
Online
Erwan Chevalier
@r1chev
Joined November 2010
378 Following
127 Followers
156 Posts
Possible #Bluenoroff #TA444 #APT38 activity
142.11.209[.]144
dma.linkpc[.]net
association.linkpc[.]net
world.linkpc[.]net
23.254.204[.]173
docsend.com-proapple[.]cloud.line[.]pm
docsend-cloud.espcap[.]fun
23.254.129[.]6
c-money.linkpc[.]net
23.254.167[.]226
decentryk[.]online
🔴 Yesterday, the 🇷🇺 Russian-affiliated hacktivist group #NoName057 leveraged its #DDoS tool #DDoSia to target #PMCWagner websites wagner2022[.]ru / wagnercentr[.]ru💣
![sekoia_io's tweet photo. 🔴 Yesterday, the 🇷🇺 Russian-affiliated hacktivist group #NoName057 leveraged its #DDoS tool #DDoSia to target #PMCWagner websites wagner2022[.]ru / wagnercentr[.]ru💣 https://t.co/ZwQ9mqxp09](https://pbs.twimg.com/media/FziaVVIXwAAhGQR.jpg)
🎉 Breaking News! @sekoia_io has raised €35M in a new round of financing, a record amount for a European cybersecurity company in series A! 🚀 #funding #fundraising #cybersecurity
During daily threat monitoring, our Threat & Detection Research (TDR) team identified new #NoName057's #DDoSia 🇫🇷 targets ⤵️
www[.]assemblee-nationale[.]fr
www[.]gendarmerie[.]interieur[.]gouv[.]fr
cnes[.]fr
dares[.]travail-emploi[.]gouv[.]fr
![sekoia_io's tweet photo. During daily threat monitoring, our Threat & Detection Research (TDR) team identified new #NoName057's #DDoSia 🇫🇷 targets ⤵️
www[.]assemblee-nationale[.]fr
www[.]gendarmerie[.]interieur[.]gouv[.]fr
cnes[.]fr
dares[.]travail-emploi[.]gouv[.]fr https://t.co/2i73K1bqyP](https://pbs.twimg.com/media/FvW4LjQWcAAoDvB.jpg)
The indicator of compromise mentioned in the Google TAG report that corresponds to a C2 server of #Rhadamanthys is 104.156.149[.]126, active at least from January 16, 2023 to end of March according to our @sekoia_io C2 trackers.
It was also publicly shared by @0xrb on ThreatFox!
![crep1x's tweet photo. The indicator of compromise mentioned in the Google TAG report that corresponds to a C2 server of #Rhadamanthys is 104.156.149[.]126, active at least from January 16, 2023 to end of March according to our @sekoia_io C2 trackers.
It was also publicly shared by @0xrb on ThreatFox! https://t.co/T8E8dF3z3l](https://pbs.twimg.com/media/FuKpAl2WAAIjUB7.jpg)
@sekoia_io TDR analysts just published a blogpost on #VulkanFiles 🇷🇺, in cooperation with @lemondefr, a member of the international consortium lead by @paper_trail_m #thread 🧵
https://t.co/nA7WgTTAeT
💣 Among others, @sekoia_io discovered yesterday 55 #PyPI malicious packages pushed by the same Threat actor.
It's not the first time that we are seeing this actor pushing this kind of malicious packages. PyPI contacted and packages removed 👌
Related packages and IoCs below ↘️
https://t.co/CnRXY1H4Ke uncovered a new #infostealer advertised as #Stealc on underground forums since early 2023 and already widespread in the wild.
In a nutshell, Stealc is a copycat of the prominent #Vidar and #Raccoon stealers.
https://t.co/3FqVt4y9ZM
As the ongoing 🇷🇺 Russo-Ukrainian 🇺🇦 conflict is about to mark its first year anniversary, our analysts share through our latest blogpost their analysis pertaining to the #cyber picture.
https://t.co/CABD2f9BZZ
Netzob is back with its v2.0.0 major release. New datatypes, new relationships, and a brand new fuzzing module for message format and state machine! #ProtocolModelization #TrafficGeneration #ReverseEngineering Release: https://t.co/kMY1C4pasu New doc: https://t.co/emiWwaf2vS
#IcedID is distributed on sites impersonating popular enterprise software applications, such as Zoom or Slack. Such infection chains are usually used by threat actors distributing infostealers (Raccoon, Vidar, Redline, Aurora, etc.)
⬇️
#Vidar stealer (botnet 1821) distributed using a fake website that mimics MSI Afterburner software and uses Google Ads
mslaftrebunrer.]us (ping @Namecheap)
https://t.co/MGTwF9MShl
![crep1x's tweet photo. #Vidar stealer (botnet 1821) distributed using a fake website that mimics MSI Afterburner software and uses Google Ads
mslaftrebunrer.]us (ping @Namecheap)
https://t.co/MGTwF9MShl https://t.co/mYbqUMIE6j](https://pbs.twimg.com/media/FjdRqHGXEAASw3t.jpg)
Last Seen Users on Sotwe
HAIRY DOLLS
Seen from Turkey
pankaj mehra
Seen from United States
Budibud
Seen from Egypt
STW Lovers
Seen from Jordan
suka stw
Seen from Indonesia
lauralove
Seen from Thailand
Top sai gon dâm
Seen from Vietnam
GRUP BOKEP TELEGRAM
Seen from Indonesia
Ancdef
Seen from Indonesia
艾米丽 
Seen from United States
Trends for you
Most Popular Users
Elon Musk
@elonmusk
240.2M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109.5M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.4M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.7M followers
KATY PERRY
@katyperry
87.1M followers
Taylor Swift
@taylorswift13
80.9M followers
Lady Gaga
@ladygaga
72.5M followers
Kim Kardashian
@kimkardashian
69.5M followers
Virat Kohli
@imvkohli
69M followers
YouTube
@youtube
68.6M followers
Bill Gates
@billgates
63.5M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.6M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
60.2M followers