1.
Valéry Rieß-Marchive
@ValeryMarchive
While everyone was looking elsewhere #lockbit added the data related to 700 past cyberattacks claims to its… twitter.com/i/web/status/1…
24 Feb 23
copy & paste +upvote -downvote While everyone was looking elsewhere #lockbit added the data related to 700 🤯past cyberattacks claims to its… https://t.co/5FFcuP89Kn
2.
Valéry Rieß-Marchive
@ValeryMarchive
IcedID using OneNote payloads are onthis week. Here is a peek at what comes after the initial access based on thes… twitter.com/i/web/status/1…
Retweet of status by @Kostastsale
08 Feb 23
copy & paste +upvote -downvote IcedID using OneNote payloads are on🔥this week. Here is a peek at what comes after the initial access based on thes… https://t.co/SgXtoPgf6r
3.
4.
5.
6.
7.
Valéry Rieß-Marchive
@ValeryMarchive
LockBit ransomware gang's support not even tried to lie about they copied BlackMatter's code...
pic.twitter.com/GXmIzR5Fe8
pic.twitter.com/GXmIzR5Fe8
Retweet of status by @malwrhunterteam
17 Sep 22
copy & paste +upvote -downvote LockBit ransomware gang's support not even tried to lie about they copied BlackMatter's code...
😂 https://t.co/GXmIzR5Fe8
Valéry Rieß-Marchive
@ValeryMarchive
BumbleBee Roasts Its Way to Domain Admin
Initial Access: BumbleBee (zipped ISO /w LNK+DLL)
Persistence: AnyDes… twitter.com/i/web/status/1…
Initial Access: BumbleBee (zipped ISO /w LNK+DLL)
Persistence: AnyDes… twitter.com/i/web/status/1…
Retweet of status by @TheDFIRReport
08 Aug 22
copy & paste +upvote -downvote BumbleBee Roasts Its Way to Domain Admin
➡️Initial Access: BumbleBee (zipped ISO /w LNK+DLL)
➡️Persistence: AnyDes… https://t.co/TO0IXa0VHI
Valéry Rieß-Marchive
@ValeryMarchive
Our Blog on #CONTI SHUTDOWN is live!
This is a redacted report that is based on our internal investigations. T… twitter.com/i/web/status/1…
This is a redacted report that is based on our internal investigations. T… twitter.com/i/web/status/1…
Retweet of status by @y_advintel
20 May 22
copy & paste +upvote -downvote Our Blog on #CONTI SHUTDOWN is live! 🔥🎇🎆
This is a redacted report that is based on our internal investigations. T… https://t.co/TVWiC4jHAS
Valéry Rieß-Marchive
@ValeryMarchive
#Haron #ransomware OPSEC Fail! pic.twitter.com/ReVn0lP2Kc
04 May 22
copy & paste +upvote -downvote #Haron #ransomware OPSEC Fail!🤦♂️ https://t.co/ReVn0lP2Kc
Valéry Rieß-Marchive
@ValeryMarchive
Seems like #ransomware affiliates have had a few busy days. Already 11 victims claims coming from the #Lockbit franchise today...
19 Apr 22
copy & paste +upvote -downvote Seems like #ransomware affiliates have had a few busy days. Already 11 victims claims coming from the #Lockbit franchise today... 😰
8.
9.
10.
11.
Valéry Rieß-Marchive
@ValeryMarchive
#Emotet Update - Looks like Ivan laid an egg for easter and has been busy. As of about 14:00UTC today 2022/04/18… twitter.com/i/web/status/1…
Retweet of status by @Cryptolaemus1
19 Apr 22
copy & paste +upvote -downvote 🚨#Emotet Update🚨 - Looks like Ivan laid an egg for easter and has been busy. As of about 14:00UTC today 2022/04/18… https://t.co/XVStecvM6S
Valéry Rieß-Marchive
@ValeryMarchive
TrickBot is gone...It is official now as of Thursday, February 24, 2022
See you soon ... or not pic.twitter.com/zWCCpngUI7
See you soon ... or not pic.twitter.com/zWCCpngUI7
24 Feb 22
copy & paste +upvote -downvote TrickBot is gone...It is official now as of Thursday, February 24, 2022
See you soon ... or not 😉 https://t.co/zWCCpngUI7
Valéry Rieß-Marchive
@ValeryMarchive
2022-02-18: [Breaking blog] "The TrickBot Saga’s Finale Has Aired: Spinoff is Already in the Works" via our… twitter.com/i/web/status/1…
18 Feb 22
copy & paste +upvote -downvote 2022-02-18: [Breaking blog] 🆕🔥"The TrickBot Saga’s Finale Has Aired: Spinoff is Already in the Works" via our… https://t.co/dhVUx0TISt
Valéry Rieß-Marchive
@ValeryMarchive
We're also seeing exploit activity related to ADSelfService Plus (CVE-2021-40539).
@sec_soup is spot on. Exploit… twitter.com/i/web/status/1…
@sec_soup is spot on. Exploit… twitter.com/i/web/status/1…
Retweet of status by @TheDFIRReport
15 Nov 21
copy & paste +upvote -downvote We're also seeing exploit activity related to ADSelfService Plus (CVE-2021-40539).
📢@sec_soup is spot on. Exploit… https://t.co/6pKGveGllz
...but wait! There's more!
1.
fakhright
@fakhright
astaghfirullah peng.krim guaaaaaaaa..............a *salto sambil solat*
14 Jan 13
copy & paste +upvote -downvote astaghfirullah peng.krim guaaaaaaaa..............a *salto sambil solat* 🙈🙈🙊