Fantastic night

The Justice Department and FBI announced a law enforcement operation that, alongside international partners, deleted “PlugX” malware from thousands of infected computers worldwide implanted by Chinese hackers known as “Mustang Panda” or “Twill Typhoon."
www.justice.gov/opa/pr/justi...

I wish that I would have known this or have had exposure to this. I was shocked at how defensive I became the first time you edited my work. Sorry for that. I think I am growing and have grown 🌱

Dear Threat Researchers!
We wish you a fruitful year full of impactful research! Stay healthy, stay happy and don't stop being awesome! 🥂🕺💃🎇🎆 #HappyNewYear2025 #CTI #PIVOTcon25 #ThreatResearch #ThreatIntel

Day 1 of giving the murder of crows 🐦‍⬛ a present 🎁 until we are friends.

Today’s present: Part of a Hash Brown

Happy new year!

Joe knows ball

GitHub - google/vxsig: Automatically generate AV byte signatures from sets of similar binaries. Automatically generate AV byte signatures from sets of similar binaries. - google/vxsig

A while back, I made a thing that turns #BinDiff matches into YARA rules: https://github.com/google/vxsig #100DaysOfYARA

Sweet Tea Polyphia, Aaron Marshall · Muse · Song · 2014

Man I love Polyphia.

open.spotify.com/track/0BE86K...

Behind the Binary by Google Cloud Security Podcast · Josh Stroschein · Welcome to Behind the Binary, the podcast that introduces you to the fascinating people, technology, and tools driving the world of reverse engineering. Join your host, Jos...

🎙️ I'm excited to announce the launch of a new podcast - Behind the Binary! #BehindTheBinary focuses on the stories of the people, technology, and events that have shaped the world of reverse engineering. You can find it on Spotify👇

open.spotify.com/show/3yWgmIu...

Scams, Smishing, and Safety Nets: How Emerging Threats Catches Phish Podcast Episode · DISCARDED: Tales From the Threat Research Trenches · 11/15/2024 · 51m

New episode of DISCARDED where I chat with Genina Po about how she catches phish 🎣

We dive into how to write detections, what to hunt for when finding phish kits, and some of her recent research on phishing scams. Tune in wherever you get your podcasts!

Apple: podcasts.apple.com/us/podcast/d...

Such a thorough analysis of #RaspberryRobin in this article that taught me a lot 👇 😂

2024-11-25 (Monday): My thanks to the criminals who email malware directly to my inbox. This one is #AgentTesla using #FTP for #data_exfiltration. Sends to FTP server approx every 10 minutes.

Attached disk image file: bazaar.abuse.ch/sample/7a11d...

Extracted EXE: bazaar.abuse.ch/sample/2362b...

Oh hey I found you on here.

What if I’m just extremely eager to check in a few thousand times?

Hey :) 👋

@hultquist.bsky.social hitting us with the hottest phishing lure of all time

🤝

Security Brief: ClickFix Social Engineering Technique Floods Threat Landscape | Proofpoint US What happened  Proofpoint researchers have identified an increase in a unique social engineering technique called ClickFix. And the lures are getting even more clever.

www.proofpoint.com/us/blog/thre...

💪

So stoked

Almost embarrassed to post this, but I've always used Fiddler or Burp for capturing things like this...

I didn't have admin rights and was trying to capture network traffic from a pop-up, so Dev Tools wasn't working

Apparently this is built into Chrome/Edge! So cool :)

edge://net-export/

Thanks brother

Man I used AFLOP for years. Makes me miss it.

Trying to rebuild my following here. Tag other security researchers and professionals in the comments please. I’ll follow back :)