Recent searches

No recent searches

Search options

Only available when logged in.
101010.pl is one of the many independent Mastodon servers you can use to participate in the fediverse.
101010.pl czyli najstarszy polski serwer Mastodon. Posiadamy wpisy do 2048 znaków.

Administered by:

Server stats:

518
active users

101010.pl: AboutStatusProfiles directoryPrivacy policy

Mastodon: AboutGet the appKeyboard shortcutsView source codev4.4.0-beta.1

#c2

1 post1 participant0 posts today
cryptax<p>DanaBleed: DanaBot C2 Server Memory Leak Bug from <a href="https://www.zscaler.com/blogs/security-research/danableed-danabot-c2-server-memory-leak-bug" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">zscaler.com/blogs/security-res</span><span class="invisible">earch/danableed-danabot-c2-server-memory-leak-bug</span></a></p><p>The security researchers used a bug in an updated version of DanaBot, where a new buffer was allocated but not initialized and thus contained some process information of the C2 like username, IP address, victim etc.</p><p>Well done! That was clever.</p><p>cc: <span class="h-card" translate="no"><a href="https://infosec.exchange/@VirusBulletin" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>VirusBulletin</span></a></span> </p><p><a href="https://mastodon.social/tags/danabot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>danabot</span></a> <a href="https://mastodon.social/tags/malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>malware</span></a> <a href="https://mastodon.social/tags/c2" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>c2</span></a></p>
Infoblox Threat Intel

Mastodon communities, be vigilant! Bad actors are creating accounts within the Fediverse and then using them to distribute malware. We identified one such case in which the threat actor had gone undetected since 2022. That Mastodon instance was one with a climate change focus. The threat actor was distributing an information stealer through their account.

We are happy to have helped the instance owner figure out why they have been on blocklists intermittently for the last few years, but also get that particular threat out of their Mastodon instance and safe for users.

There are undoubtedly many more of these across the Fediverse. Hopefully more awareness can get them detected and shut down faster.

For our fellow security nerds... this was #vidar malware with sha256 975932eeda7cc3feea07bc1f8576e1e73e4e001c6fe477c8df7272ee2e0ba20d
and a c2 IP 78[.]47[.]227[.]68 from the instance.
there is still at least one more Mastodon instance impacted that we are trying to reach.

#malware #stealer #mastodon #threatintel #cybercrime #threatintelligence #cybersecurity #infosec #infoblox #infobloxthreatintel #fakeaccounts #c2

Linux ✅

⛵ 📲 Jolla's new C2 phones now being delivered to owners hands +a fresh Sailfish OS 5.0.0.21 upgrade named "Tampella" 🏭

"Tampella" is an idyllic location in the city of Tampere (where Jolla's roots situate) 🌞

◉Browser engine upgraded to ESR91
◉UI translation update
◉Blocking of incoming calls from preset numbers
◉Internet sharing (hotspot) fix
◉New ambiences
◉...much more!

👉 forum.sailfishos.org/t/release

#Jolla #SailfishOS #mobile #Linux #phones #C2 #Tampere #Tampella #Suomi #Finland @jolla

Sailfish OS Forum · [Release notes] Tampella 5.0.0.21 for Jolla C2Many thanks to you our active contributors for your feedback and proposals. Version history of the OS release 2024-10-24: OS version 5.0.0.21 “Tampella” was released for the Jolla C2 community phones as an over-the-air update. PLEASE NOTE The security code of Sailfish OS is a minimum of 5 digits or characters. It is used for the device lock and home area encryption and is set at the beginning of the first startup. If you decide to use an external keyboard at this point (it is not recommende...
David Llewellyn-Jones

The latest #SailfishOS community news is out!

Good stuff this fortnight: the @jolla #C2 is shipping! 🚢 Running #SailfishOS 5 (🐟 × 5). There's Cβ and VoLTE news too ⚡ Plus the usual repository 🐙 and app 📲 roundups.

forum.sailfishos.org/t/sailfis

Sailfish OS Forum · Sailfish Community News, 24th October 2024 - ShippingSailfish OS update from Jolla Fully packed fortnight, update on what we have been doing, usual repository roundup from Damien (dcaliste) and app roundup by David (flypig). In the previous fortnight, we gave an update from our manufacturing partner’s factory (Reeder). Back then we targeted to start Jolla C2 shipments on a week starting 14th October. In this fortnight we’re shipping and delivering! Customs handling and clearance took a tiny bit longer than anticipated but finally a palette of C2...
Linux ✅

🐧 True Linux phone seekers rejoice: JOLLA C2 phone 1st look & Sailfish OS 5.0 preview! ⛵ 📲

Jolla represents the features and update highlights people asked for.

◉New camera capabilities ◉Landscape / portrait mode ◉Expandable storage
◉True alternative for the domination of iOS (Apple) & Android (Google)
◉Get a glimpse of upcoming for the ultimate Sailfish experience via C2 phone

youtu.be/OVyOmaVySZc

youtu.be- YouTubeEnjoy the videos and music you love, upload original content, and share it all with friends, family, and the world on YouTube.
#Jolla#SailfishOS#Linux
Funes

Found this user on the @internetarchive hosting images with embedded base64 encoded #malware between <<BASE64_START>> and <<BASE64_END>> flags. The malware is used to download an inject the next stage payload into another process. The campaign I observed involved #RemcosRAT

User page: archive.org/details/@nodetecto
Remcos: hxxps://petshopsirena[.]mk/a.txt
#c2 : 45.95.169[.]135:2404

I found samples dropping others such as #agenttesla and #formbook as well.

archive.orgInternet Archive: Digital Library of Free & Borrowable Books, Movies, Music & Wayback Machine
#infosec#threatintel
Infoblox Threat Intel

We just released a landscape review of Registered DGAs. We review the many ways threat actors are leveraging these algorithms -- including malware, phishing, scams, porns, you name it. Our RDGA detectors find tens of thousands of domains every day, and we've seen the use continue to rise over the last several years. Most folks aren't even aware since actors are doing this in DNS and it often isn't obvious. #dns #threatintel #cybersecurity #cybercrime #infoblox #RDGA #DGA #DDGA #malware #phishing #scams #infoblox #infobloxthreatintel #cybersecurity #threatactor #c2 #revolverrabbit #threatintelligence #cyber #cyberintelligence #xloader #formbook #abusedtld insights.infoblox.com/resource

InfobloxREGISTERED DGAs: The Prolific New Menace No One Is Talking AboutRegistered domain generation algorithms (RDGAs) are a programmatic mechanism that allows threat actors to create many domain names at once, or over time, to register for use in their criminal infrastructure.
Patryk Krawaczyński

Living Off Trusted Sites – Żyjąc Z Zaufanych Stron ( nfsec.pl/security/6364 )
@mrd0x
#security #phishing #c2 #exfiltration #service #providers #twittermigration

youtube.com/watch?v=BOUBffck86

nfsec.plNF.sec – Bezpieczeństwo systemu Linux - Living Off Trusted Sites – Żyjąc Z Zaufanych StronP rojekt LOTS jest zestawieniem serwisów, które mogą posłużyć w zupełnie innym celu niż zostały stworzone. Obok takich projektów, jak: Living Off The Land Binaries (Żyjąc Z Wbudowanych Binarek) oraz GTFOBins pokazuje, jak można użyć “popularnych” i o “dobrej reputacji” serwisów do przeprowadzenia wybranych ataków przez cyberprzestępców. Mogą one zostać użyte do przeprowadzenia phishingu, hostowania […]
TrendingLive feeds
About