Gage @Circuitous__
Threat Analyst United States Joined August 2018-
Tweets237
-
Followers826
-
Following264
-
Likes1K
Nice change in spamming from #TA577 (aka TR aka BB) #QBot #Qakbot today 🔥 They now have the name of the spoofed company from the stolen email thread in both the display name and URL. Guess this will make some regex based rules on URLs to break.
#qbot #qakbot #quakbot is back after the traditional summer break. Right now it seems to be dropped by #Smokeloader (according to "DAS-Security Orcas" sandbox, I have no clue who they are) probably from fake installers. Botnet snow01. tria.ge/220908-lzag5ae…
I am beyond excited to drop new research today with my coauthor @cyberoverdrive on TA423/RedLadon (aka Leviathan). It’s rare for @threatinsight to partner with others but Sveva and @PwC Global Threat Intelligence Team are among the rarest talents. 1/3🧵 proofpoint.com/us/blog/threat…
Interesting wee file we found back in March, turned out to be one part of a bigger modular malware framework. This is what we know so far. I hope someone out there has the other pieces of the jigsaw puzzle. 🤔 Have a wee gander hai! #malware #Linux intezer.com/blog/research/…
Cybersecurity Has a Talent Shortage & Non-Technical People Offer a Way Out bit.ly/3yOmxaQ by @Circuitous__ @Anomali #talentgap
Possibly a #china based APT is testing their payload against Indonesia with a COVID-related lure. @Arkbird_SOLG @markus_neis Hashes: e6765333768bfd66b15b7cf91d25be09 abab41222abe98f35da3581d15618bde d1d08866b0cc889d29336c4639fa8d9c 260c9d3ff5377a25eca55e9138503ea5
#primitivebear #Gamaredon #maldoc using their standard template injection / remote template Аллах велик.rtf 9a67af06bf2f48631d0551af3bdeaf66 surname192.temp.swtest[.]ru XML 6f134f11ff456a8458319171ba8cd16a @500mk500 @h2jazi @t0001100000
#sidecopy aka #TransparentTribe #apt targeting #india using PDF lures. There are more PDF files and tar files part of the campaign. C2: email-gov-in[.]digital, mailnic[.]info IP: 162.213.255[.]21 Files: https://email-gov-in[.]digital/email.gov.in/docs/SOP-For-Range-Allotment.tar
Rishikesh Bhide, Manager of Cyber Intelligence Engineering at @Anomali will be presenting 'Wireshark Forensics Toolkit' at #BlackHatEurope #Arsenal tomorrow. Date: Wednesday, November 10, 2021 Time: 10:00 AM to 11:00 AM GMT (virtual) Track: Data Forensics/Incident Response
More potential #evlinum or just crimeware? Basic template and remote domain. It's similar to IOCs in DBAPPSecurity's report: ti.dbappsecurity.com.cn/blog/articles/… Documents.docx e726520b3ad875b516df6c3d25476444 http://wazalpne[.]com/ xml 54bcaa83d71232b1b4fa4aa47a41b3fa @t0001100000 @h2jazi
@Circuitous__ @bl4ckh0l3z @malwrhunterteam @c3rb3ru5d3d53c @t0001100000 @cyber__sloth @ffforward @JAMESWT_MHT @Arkbird_SOLG @cyberyp It appears to be recently discovered Snow Leopard group that monitors Pakistani users via SpyMax and AndroSpy RATs Based on the C&C, there have been more APKs with Pakistan name uploaded on VT this year Source of distribution is still 3rd party app store xinbs.net/a/xwdt/xydt/96…
#spymax #Android RAT with interesting #Pakistan-themed name. Anyone else have anything on this? /apks/Constitution_of_Pakistan_1973_v1.2.apk 6b7aaaacd33b8da0c8cb4a43d60259a0 37.221.115.62 @bl4ckh0l3z @malwrhunterteam @c3rb3ru5d3d53c @t0001100000
🧨Inside TeamTNT’s Impressive Arsenal: A Look Into A TeamTNT Server @Anomali Source code: gist.github.com/tgould0/ anomali.com/blog/inside-te…
☣ #Groooboor (?) #malware distributed via maldocs using template injection (CVE-2017-0199), reportedly associated w/ #Gamaredon #APT 🧐 IOCs otx.alienvault.com/pulse/615cb8c1…
Looks like more potential #LazarusGroup? More #Azure and remote template but the domain 404s Z Venture Capital Presentation(Protected).docx 98e30453bbf1c9c9f48368f9bbe69edd word.azureword[.]com 104.168.162.167 @t0001100000 @h2jazi @c3rb3ru5d3d53c @ShadowChasing1
Looks like some potential #LazarusGroup? Seems to fit their crypto interests and the same #Azure lure prev-used Rapid Change of Stablecoin (Protected).docx 9be0075b9344590b3cabf61c194db180 secure.azureword[.]com/k6q3afrxddx/yoibgjjd7e/evuethwpcj/cn65qhpls2/ @t0001100000 @h2jazi
Jazi @h2jazi
8K Followers 530 Following Threat Intel researcher! Technical tweets only; not reflective of employer's views. No endorsement of political groups/entities.
Michael Koczwara @MichalKoczwara
23K Followers 2K Following Threat Researcher/Founder @Intel_Ops_io Threat Intelligence, Adversary Infrastructure Hunting, Curated TI Feed (Coming Soon) https://t.co/VQWaze6gaF
Will @BushidoToken
36K Followers 3K Following Senior Threat Intel Advisor @TeamCymru | Co-founder @CuratedIntel | Co-author @SANSForensics FOR589 | Co-founder @BSidesBournemth | @darknetdiaries #126: REvil
souiten_4t_FuYingL4b @souiten
1K Followers 233 Following Biped analyser. APT | Botnet | MalDoc | CTF @NSFOCUS_Intl @fuyinglab
Frost @fr0s7_
5K Followers 1K Following
Clandestine @akaclandestine
49K Followers 5K Following | Security | Osint | Threat Research | Opsec | Threat Intelligence | Infosec | Threat Hunting | Humint |
Michael R @nahamike01
1K Followers 3K Following Threat (Adversary Infrastructure) Researcher | Python Development | Long-time Japan resident
Threat Monitoring @threat_eye
8 Followers 434 Following
despiMe @UI7JRcDpA0XVzb5
2 Followers 468 Following
CyberFox @cyberfoxsec
1 Followers 161 Following
chin chan @mapdjjt6789
2 Followers 154 Following
mavis @mavis8350329991
13 Followers 162 Following
Maria @morrison_maria9
318 Followers 3K Following
Jenny Long @Jenny09l00
25 Followers 516 Following
Sliste @Sliste177054
9 Followers 202 Following Khi bạn đang ở trong đóng tiếc và lữa , Hy vọng có người hiểu về khi bạn có vấn đề
jack @jackccyy
0 Followers 417 Following
Rothou @Rothou270793
48 Followers 1K Following
gg_8123qw144 @8123qw14496319
15 Followers 246 Following
gg_tellyou16 @GTellyou1613033
10 Followers 237 Following
h0ui3bahj34 @h0ui3bahj393105
16 Followers 251 Following
eybgiv31284 @eybgiv312881740
16 Followers 254 Following
sec fun @gadhisy8989645
14 Followers 251 Following
dbot78ac2V3 @dbot78ac260796
20 Followers 302 Following
S2 @sisoma2
2K Followers 2K Following Threat Intelligence Researcher at @symantec | Former @Trellix | Malware Analyst | Threat Intel | APT Hunter | CTF Player @Ripp3rsCTF | Opinions are my own
newcral-dx01 @NewcralDx01
33 Followers 452 Following
TARık @Tarikozdm
4 Followers 20 Following
札幌丼 @SEC_Sapp
6 Followers 190 Following 札幌で細々とサイバーセキュリティをするアカウント。 色々な理由で発信はほぼしない。 でもなんかあったら教えてくださいすいません。 #Sec #CyberSecurity #CyberThreat #ThreatHunting #APT #DDoS #malware #Sapporo #Hokkaido
Plasma @b1tw1z4rd
0 Followers 5K Following
M4nbat @knappresearchlb
338 Followers 999 Following Cyber Defence and security research enthusiast. KQL n00b, Fake it till you make it. https://t.co/oGKYfhn9kI
R MC @player3802
4 Followers 128 Following
Thor Ragnarok @Thorrag17
3 Followers 48 Following
kefrin @kefrin12
2 Followers 43 Following
Rajesh Kapadiya @rajesh_kapadiya
54 Followers 394 Following
Itamar Gafni @itamargafni
8 Followers 132 Following
Çağrı Polat @cagripolatmsc
0 Followers 5K Following Siber Güvenlik Uzmanı,Etik Hacker,Bilgisayar Yüksek Mühendisi, Bilirkişi, Danışman, Eğitmen
Jack Dempsey @Dempsey2k
3 Followers 367 Following
Cyber Swift @justmy2cents321
142 Followers 607 Following
vx-underground @vxunderground
368K Followers 290 Following The largest collection of malware source code, samples, and papers on the internet. Password: infected
Florian Roth ⚡️ @cyb3rops
206K Followers 3K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇 | vi/vim
blackorbird @blackorbird
35K Followers 671 Following Peace and Love. Just Analysis/Hunter. #APT #threatIntelligence #Exploit #CTI Need Job
ESET Research @ESETresearch
35K Followers 30 Following Security research and breaking news straight from ESET Research Labs.
MalwareHunterTeam @malwrhunterteam
244K Followers 38 Following Official MHT Twitter account. Check out ID Ransomware (created by @demonslay335). More photos & gifs, less malware.
Jazi @h2jazi
8K Followers 530 Following Threat Intel researcher! Technical tweets only; not reflective of employer's views. No endorsement of political groups/entities.
BleepingComputer @BleepinComputer
240K Followers 200 Following Breaking cybersecurity and technology news, guides, and tutorials that help you get the most from your computer. DMs are open, so send us those tips!
JAMESWT @JAMESWT_WT
37K Followers 507 Following #Independent #Malware #Hunter #CyberSecurity #InfoSec https://t.co/KCFBJcHHcW https://t.co/WODUKncjFy
Unit 42 @Unit42_Intel
63K Followers 82 Following The latest research and news from Unit 42, the Palo Alto Networks (@paloaltontwks) Threat Intelligence and Security Consulting Team covering incident response.
Cyber_OSINT @Cyber_O51NT
19K Followers 293 Following #OSINT treasure hunter, investigator, #CyberThreatIntel analyst. Opinions are my own. Follow me on Telegram https://t.co/i6VBbeUXgd for cyber news.
💻 Sherrod DeGrippo... @sherrod_im
36K Followers 7K Following Weird security voyeur. Vibe merchant. CISO of your 🩷 Official USPS fan account. 🎉 Host of THE Microsoft Threat Intelligence Podcast. I like crime actors.
James @James_inthe_box
22K Followers 464 Following
Michael Koczwara @MichalKoczwara
23K Followers 2K Following Threat Researcher/Founder @Intel_Ops_io Threat Intelligence, Adversary Infrastructure Hunting, Curated TI Feed (Coming Soon) https://t.co/VQWaze6gaF
Max_Malyutin @Max_Mal_
13K Followers 310 Following Threat Researcher, Blue Team, DFIR, Malware Analysis, and Reverse Engineering. “⚔️What do we say to God of malware, Not today⚔️”
Virus Bulletin @virusbtn
60K Followers 1K Following Security information portal, testing and certification body. Organisers of the annual Virus Bulletin conference. @[email protected]
R. @0xrb
6K Followers 1K Following Reverse Threat Intel | Malware /Threat Hunter | Exploit Research \\ #IoT #Malware #Research, Reverse Engineering, #Botnet C2 #Hijacking
Germán Fernández @1ZRR4H
35K Followers 461 Following 🏴☠️ OFFENSIVE-INTEL 🏴☠️ Cyber Threat Intelligence by Hackers | Security Researcher en https://t.co/rDrSxZASB3 | @CuratedIntel Member | 🥷🧠🇨🇱
Will @BushidoToken
36K Followers 3K Following Senior Threat Intel Advisor @TeamCymru | Co-founder @CuratedIntel | Co-author @SANSForensics FOR589 | Co-founder @BSidesBournemth | @darknetdiaries #126: REvil
ThreatBook @ThreatBookLabs
4K Followers 287 Following Expert on cyber threats detection and response. Fast detect and respond to threats with high-fidelity, efficient, actionable security intelligence.
Hudson Rock @RockHudsonRock
4K Followers 3 Following Hudson Rock is an Infostealer data intelligence company that helps protect against ransomware attacks, corporate espionage and network over-takes.
zhixiang hao @HaoZhixiang
1K Followers 343 Following APT threat,Web security,Osint Shandong Lanxiang School China。My sample analysis is just for learning research
t3ft3lb @t3ft3lb
2K Followers 182 Following Threat researcher, Malware analyst All tweets represent my personal opinion
Trend Micro @TrendMicro
113K Followers 4K Following We're a global leader in cybersecurity that helps make the world safe for exchanging digital information.
petikvx @petikvx
4K Followers 822 Following Malware Researcher Collecter - All my samples will be on https://t.co/ifIYiMAyVd
RedHunt Labs | Attack... @RedHuntLabs
4K Followers 718 Following Modern Attack Surface Solution for your organization. 👉Get A Free Report: https://t.co/QJ6y0FdjG8 #attacksurfacemanagement #cybersecurity
Misty @MiscMisty
3K Followers 777 Following Reverse engineer, CTF player at Nu1L(China) & Tea Deliverers, loves Lolita/JKS, 🌈loves yuri~
Ariel Jungheit @ArielJT
1K Followers 214 Following Life under the sea was so much easier | Threat Research @harfanglab | Maker | Tweets are my own
HELIOS CERT @HeliosCert
983 Followers 1 Following Automatic HoneyPot Malware Sample Uploader. InfoLeak Monitor. Always fresh Samples! JummY!!!! #cyber #security #malware #samples Contact: @malkoegler
Microsoft Threat Inte... @MsftSecIntel
187K Followers 1K Following We are Microsoft's global network of security experts. Follow for security research and threat intelligence.
Kostas @Kostastsale
18K Followers 367 Following @TheDFIRReport | No longer active here – find me on Bluesky: https://t.co/qHzDSxCRfG. 🇬🇷🇨🇦
Flipper Zero @flipper_zero
101K Followers 145 Following A portable multi-tool device in a toy-like body for pentesters and hardware geeks. Buy worldwide here ➡️ https://t.co/n09EKVnqri
Bellingcat @bellingcat
722K Followers 75 Following Support our charity https://t.co/XMTKIEDiTB Buy our book: https://t.co/2JiuWFfTpO Follow us: https://t.co/LPUEQI8TdZ
Check Point Research @_CPResearch_
23K Followers 119 Following Fighting cyber threats one research at a time. News from Check Point’s (@checkpointSW) Research team.
Seongsu Park @unpacker
12K Followers 1K Following Zscaler APT Research | Formerly Kaspersky GREAT | Threat Intelligence Hustler | Tweets are my own | Keybase: @seongsupark | Mastodon: @[email protected]
Matthew @embee_research
14K Followers 2K Following Security Researcher, Creating and Sharing Educational Content.
Anonymous @YourAnonOne
1.7M Followers 138 Following We are Anonymous. We are legion. We do not forgive. We do not forget. Expect us. News. CULT.
bk (Ben Koehl) @bkMSFT
3K Followers 772 Following Partner Director of Threat Intelligence at @Microsoft Threat Intelligence Center (MSTIC).
Daniel Lunghi @thehellu
2K Followers 590 Following Threat researcher @TrendMicroRSRCH mostly focused on #APT
souiten_4t_FuYingL4b @souiten
1K Followers 233 Following Biped analyser. APT | Botnet | MalDoc | CTF @NSFOCUS_Intl @fuyinglab
Felipe Duarte @dark0pcodes
3K Followers 746 Following Malware researcher, CEH, GREM, electronics geek, IoT enthusiast, programmer, drone lover and machine learning fan. Just hunting malware for fun... and profit!
张惠倩 @momika233
18K Followers 222 Following Anda boleh melakukan segala-galanya dari syurga ke bumi, wanita kecil!! If you have any questions, please contact me https://t.co/MkzsavUU9V
hasherezade @hasherezade
89K Followers 910 Following Programmer, #malware analyst. Author of #PEbear, #PEsieve, #TinyTracer. Private account. All opinions expressed here are mine only (not of my employer etc)
ghostlulz @ghostlulz1337
14K Followers 1K Following Founder /CEO @StealthNetAI , Author - Bug Bounty Playbook. @DakotaState Alum , Founder/Former CTO RedSentry , Ex @bishopfox. #bugbounty #infosec #redteam
Blue Team News @blueteamsec1
52K Followers 9K Following The cybersecurity home for the latest #BlueTeam, #DFIR, and #ThreatHunting news and tools.
Broad Analysis @BroadAnalysis
4K Followers 199 Following
John @BitsOfBinary
2K Followers 397 Following #threatintel @PwC_UK. Reverse engineering, threat intelligence, YARA. Amateur jazz pianist. All tweets are my own. He/him.
S2W @S2W_Official
1K Followers 3 Following AI-based intelligence news | https://t.co/igZ1zrbXLx | https://t.co/ueN5NbLtEZ
Dark Reading @DarkReading
342K Followers 48 Following One of the most widely read and trusted cybersecurity news sites, providing IT security professionals informed insights into the latest news and trends.
Hatching @hatching_io
6K Followers 55 Following Cybersecurity specialists focused on malware sandboxing. Hatching Triage Unlimited, free, and state-of-the-art sandboxing at https://t.co/Z0pc40OMYO
0xSha @0xsha
11K Followers 666 Following 12+ years journey in security research. Ai / Blockchain engineer, occasional startups CTO. CS PhD candidate. I build and break stuff, sometimes in public.
Threat Insight @threatinsight
11K Followers 218 Following @Proofpoint's insights on targeted attacks & the security landscape. Follow us on Bluesky: https://t.co/8OVfhotdeP
Proofpoint @proofpoint
31K Followers 2K Following Protect people. Defend data. Mitigate human risk. Follow @threatinsight for updates on the threat landscape.Trends for United States
You might like
