![1ZRR4H's tweet photo. 🔴 CVE-2024-47575: FortiManager fgfmd daemon may allow a remote unauthenticated attacker to execute arbitrary code or commands via specially crafted requests (critical) / aka #FortiJump.
Vulnerability used in zero-day attacks 🔥
Reported malicious IPs:
- 45.32.41.202
- 104.238.141.143
- 158.247.199.37
- 45.32.63.2
[+] https://t.co/KWiesSCc2t
[+] https://t.co/C5Zj2LA8vo](https://pbs.twimg.com/media/Galz-TcWEAADK3j.jpg)
![TLP_R3D's tweet photo. 🧵Threat 1/ BREAKING: Windows Installer Sample Goes UNDETECTED!
IP Linked to #Cicada3301 & #Ransomware Infra 🚨
🚨 August 2024: Under the Radar!
In August, I discovered a new Windows Installer being tested with only 1 detection in VirusTotal 🛑.
By September? Zero detections, a stealthy installer lurking undetected 👀. This wasn’t just any sample...
💥Hash: 65103ed62bf26e5bab1b56756771bc129d2c6ff6a419cab858d29d0ff233bef2
💥File Name: 4c16a3.msi, Trend.msi
💥First Seen: 2024-09-19 00:44:21 UTC
💥Detection: 0/94 in VirusTotal
Earlier sample:
💥Hash: 2dc8e6c63948dd6c313ef14bf14f0fecabb8384a7a310b771e81d4cc776d2cc4
💥File Name: 697ed6.msi, TrendSizeLow.msi
💥First Seen: 2024-03-14 10:46:56 UTC
💥Detection: 1/62 in VirusTotal
Both connect to:
💥datasmetric[.]com (0/94 in VirusTotal)
💥hosted on 193.29.13.167 (13/94 in VirusTotal)....
These samples were flying under the radar and the connected IP has a series of interesting links 🚨.....](https://pbs.twimg.com/media/GaKV_DOWgAAxTSz.jpg)
Olivia
Online
Transhackerism
@transhackerism
CyberSec, Futurist, Techno Artist, Metaverse, AI, Privacy, w00x2, Public Speaker, Change Agent, Synth Nut, Freedom Lover, Protector, Connector, Hacker
In a predicted future
Joined August 2007
1.2K Following
662 Followers
4K Posts
the writing is on the wall, folks. it's right in front of you, now more plain than ever.
@brandank_cr Bitcoin has been kicking the crap out of gold for 15 years and still is; there's always a rotation from one over heated commodity to one that's massively under-valued, and back and forth it will go. Neither narrative for gold or bitcoin has changed, whether politics align or not
Who to follow
Arda Büyükkaya 
@WhichbufferArda
Cyber Threat Intelligence Analyst at Rabobank | Threat Hunter | Malware Analyst |. (All opinions expressed here are mine only). 🇳🇱
303 O'Clock
@303OClock
Acid tracks at 3:03 OClock am/pm. Counting down the 303 best Acid tracks ever made here & I Love Acid https://t.co/H0HPRYNx8R
Ah Cama-Sotz
@AhCamaSotz
Belgian electronic music producer since 1993
https://t.co/pIsaftggKG
https://t.co/o0xXo2yX5Z
@Jarodxu7 happycapy me asap! :-)
@marshallrichrds wen solana seeker for the win?
meanwhile at the antrhopic office
Necessity is the mother of all things.
First Sophos and now PaloAlto?!?
I think we have entered a new era. It’s the “Hack Back” era.
Check out our Blog: https://t.co/2sfJv7tnHf
Register for our Free Workshop: https://t.co/s3cMymaN8k
CMMC deadline is 16 December. All the resources, tools and expertise you need are right here at Trusted Internet.
There's a no-cost virtual workshop in two days, link below. Highly recommend it!
Remember: CMMC is now applicable to vendors selling to ALL Fed Gov. See below:
🔴 CVE-2024-47575: FortiManager fgfmd daemon may allow a remote unauthenticated attacker to execute arbitrary code or commands via specially crafted requests (critical) / aka #FortiJump.
Vulnerability used in zero-day attacks 🔥
Reported malicious IPs:
- 45.32.41.202
- 104.238.141.143
- 158.247.199.37
- 45.32.63.2
[+] https://t.co/KWiesSCc2t
[+] https://t.co/C5Zj2LA8vo
![1ZRR4H's tweet photo. 🔴 CVE-2024-47575: FortiManager fgfmd daemon may allow a remote unauthenticated attacker to execute arbitrary code or commands via specially crafted requests (critical) / aka #FortiJump.
Vulnerability used in zero-day attacks 🔥
Reported malicious IPs:
- 45.32.41.202
- 104.238.141.143
- 158.247.199.37
- 45.32.63.2
[+] https://t.co/KWiesSCc2t
[+] https://t.co/C5Zj2LA8vo](https://pbs.twimg.com/media/Gal0AkPWUAAH7MY.jpg)
INTRODUCING: Agentic Security - LLM Security Scanner! 🔍
🔑 Features:
Scans for prompt injections, jailbreaking & more.
Provides detailed reports & options to customize attack rules.
🔗access the GitHub Link ↓
Ransomware attacks on the health care sector are rising and putting lives at risk, led by Iranian hackers, Microsoft said in a report Tuesday. https://t.co/ZnqsaLfD1u
🧵Threat 1/ BREAKING: Windows Installer Sample Goes UNDETECTED!
IP Linked to #Cicada3301 & #Ransomware Infra 🚨
🚨 August 2024: Under the Radar!
In August, I discovered a new Windows Installer being tested with only 1 detection in VirusTotal 🛑.
By September? Zero detections, a stealthy installer lurking undetected 👀. This wasn’t just any sample...
💥Hash: 65103ed62bf26e5bab1b56756771bc129d2c6ff6a419cab858d29d0ff233bef2
💥File Name: 4c16a3.msi, Trend.msi
💥First Seen: 2024-09-19 00:44:21 UTC
💥Detection: 0/94 in VirusTotal
Earlier sample:
💥Hash: 2dc8e6c63948dd6c313ef14bf14f0fecabb8384a7a310b771e81d4cc776d2cc4
💥File Name: 697ed6.msi, TrendSizeLow.msi
💥First Seen: 2024-03-14 10:46:56 UTC
💥Detection: 1/62 in VirusTotal
Both connect to:
💥datasmetric[.]com (0/94 in VirusTotal)
💥hosted on 193.29.13.167 (13/94 in VirusTotal)....
These samples were flying under the radar and the connected IP has a series of interesting links 🚨.....
![TLP_R3D's tweet photo. 🧵Threat 1/ BREAKING: Windows Installer Sample Goes UNDETECTED!
IP Linked to #Cicada3301 & #Ransomware Infra 🚨
🚨 August 2024: Under the Radar!
In August, I discovered a new Windows Installer being tested with only 1 detection in VirusTotal 🛑.
By September? Zero detections, a stealthy installer lurking undetected 👀. This wasn’t just any sample...
💥Hash: 65103ed62bf26e5bab1b56756771bc129d2c6ff6a419cab858d29d0ff233bef2
💥File Name: 4c16a3.msi, Trend.msi
💥First Seen: 2024-09-19 00:44:21 UTC
💥Detection: 0/94 in VirusTotal
Earlier sample:
💥Hash: 2dc8e6c63948dd6c313ef14bf14f0fecabb8384a7a310b771e81d4cc776d2cc4
💥File Name: 697ed6.msi, TrendSizeLow.msi
💥First Seen: 2024-03-14 10:46:56 UTC
💥Detection: 1/62 in VirusTotal
Both connect to:
💥datasmetric[.]com (0/94 in VirusTotal)
💥hosted on 193.29.13.167 (13/94 in VirusTotal)....
These samples were flying under the radar and the connected IP has a series of interesting links 🚨.....](https://pbs.twimg.com/media/GaKWCutXoAAlq4p.jpg)
Today the United States Securities and Exchange Commission charged four companies for intentionally misleading investors about the severity of the SolarWinds breach.
In or around September 2019, APT29 a/k/a Cozy Bear a/k/a Turla Group compromised United States-based network monitoring company SolarWinds. The compromise resulted in one of the largest Supply-Chain attacks in history when the state-sponsored group began slipstreaming malicious payloads into the SolarWinds Orion toolset updates.
The United States Securities and Exchange Commission has issued the following fines:
- Unisys, an information technology service and consulting company : $4,000,000 fine
- Avaya, a company with provides cloud services and workplace collaboration services: $1,000,000 fine
- Check Point Software, a provider for hardware and software cyber security solutions: $995,000 fine
- Mimecast, a cloud-based email management company: $990,000 fine
BREAKING: Someone just hacked a voting machine within seconds live on PBD's podcast. He only used a preprogrammed USB stick that gave him total access to do whatever he wanted, including flipping or creating votes out of thin air
"If this would have been an election, I could have gone to the database and for example change the votes."
PBD: "How much of it could you have changed?"
"Anything, add new candidate who was not even on a ballot, it doesn't matter, because if you have total control over the system, you can do anything you want."
Via: @patrickbetdavid
This was such a wild moment. It's like when Professor J. Alex Halderman used a pen to hack a Dominion machine in front of a federal judge a few months ago. I pray for the day when we will finally ditch these machines and start hand-counting all our votes like a serious country.
And here we thought humans were better at machines in thinking outside of the box during a red team...
Fucking wild.
@OpenAI's new o1 model was tested with a Capture The Flag (CTF) cybersecurity challenge. But the Docker container containing the test was misconfigured, causing the CTF to crash. Instead of giving up, o1 decided to just hack the container to grab the flag inside.
This stuff will get scary soon.
The new publication from @DefSecSentinel explores the DPRK’s use of Python and social engineering for initial access. Check out the detailed breakdown here: https://t.co/PJyOr0vTMA
#ElasticSecurityLabs #DPRK #Python
Why is no one talking about how, if the comms supply chain was THAT compromised on so many levels, how that likely impacted the confidentiality and geo locations of Hezbollah just as much as this kinetic attack?
Probably more than just explosives put in those devices.
Last Seen Users on Sotwe
Most Popular Users
Elon Musk
@elonmusk
240.2M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109.1M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.3M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.6M followers
KATY PERRY
@katyperry
86.9M followers
Taylor Swift
@taylorswift13
80.7M followers
Lady Gaga
@ladygaga
72.3M followers
Kim Kardashian
@kimkardashian
69.4M followers
Virat Kohli
@imvkohli
68.7M followers
YouTube
@youtube
68.6M followers
Bill Gates
@billgates
63.5M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.2M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
60M followers
✨
⭐
💫