Matthew Mesa @mesa_matt
Tweets are my own. https://t.co/fpbUvfjlXS… Joined December 2014-
Tweets2K
-
Followers5K
-
Following107
-
Likes266
Matthew Mesa retweeted
Zscaler's Nikolaos Pantazopoulos analyses the functionality of Raspberry Robin (also known as Roshtyak), including its execution layers, obfuscation methods and network communication process, along with its latest exploits. zscaler.com/blogs/security…
0
18
30
3K
7
Download Image
Matthew Mesa retweeted
Matthew Mesa retweeted
I’ll be speaking @SLEUTHCON this year! The lineup is amazing. I can’t wait to learn from everyone. Full list of speakers here: sleuthcon.com/speakers
Matthew Mesa retweeted
Join me, @switchingtoguns, @a_de_pasquale, and our team as a Sr. Threat Researcher focusing on phishing detection. Use your skills in pattern-based detection, regex, HTML/HTTP, and current phishing landscape, to combat phishing threats for SAA customers splunk.com/en_us/careers/…
Matthew Mesa retweeted
Ya Qbot is back, it sucks. But look what happened with Emotet when it came back. Was a half assed attempt at running a botnet which eventually disappeared without any LE. Lets make it so that becomes the case with Qbot as well.
Matthew Mesa retweeted
Can confirm that we have seen the recent #Qbot #Quakbot #Qakbot activity. PDFs/URLs has been used since at least November 28, but can't confirm what payload it was earlier than December 11. URL example: urlhaus.abuse.ch/url/2741437/ MSI/DLL: bazaar.abuse.ch/browse/tag/teo…
Matthew Mesa retweeted
An embedded configuration EPOCH timestamp indicates the payload was generated on December 11. The campaign code was tchk06. Most notably, the delivered Qakbot payload was configured with the previously unseen version 0x500. Observed Qakbot C2: 45[.]138.74.191 65[.]108.218.24
Unfortunately, I had to look at their email campaigns again this week.
Unfortunately, I had to look at their email campaigns again this week.
Matthew Mesa retweeted
Microsoft has identified new Qakbot phishing campaigns following the August 2023 law enforcement disruption operation. The campaign began on December 11, was low in volume, and targeted the hospitality industry. Targets received a PDF from a user masquerading as an IRS employee.
Matthew Mesa retweeted
So proud to be a part of this collective effort at Microsoft. Badasses at Microsoft Threat Intelligence supporting significant Digital Crimes Unit legal disruptions. This is just the beginning, so many more targets, so much more we are doing and will do #staytuned
So proud to be a part of this collective effort at Microsoft. Badasses at Microsoft Threat Intelligence supporting significant Digital Crimes Unit legal disruptions. This is just the beginning, so many more targets, so much more we are doing and will do #staytuned
Matthew Mesa retweeted
Matthew Mesa retweeted
Coworker of mine on his first solo blog post! #smartapesg medium.com/walmartglobalt…
Matthew Mesa retweeted
Malware delivered via teams, you should have a look at this. No log, no protection, except if you configure team to only allow trusted orgs to discuss with yours. But you can’t see if it’s already in use because you don’t have logs… truesec.com/hub/blog/darkg…
RIP Qbot. After having to look at Qbot email campaigns on a regular basis since ~2017, I don't think I'll miss it.
Matthew Mesa retweeted
do you HATE miscreants? do you LOVE writing detections, hunting thru INSANE amounts of data, and protecting a LOT of orgs? @Microsoft is hiring Detection Engineering/Threat Hunting roles for email security. work with some of the smartest folks in the game: jobs.careers.microsoft.com/global/en/job/…
Matthew Mesa retweeted
Microsoft has identified a phishing campaign conducted by Storm-0978 targeting defense and government entities in Europe and North America. The campaign involved the abuse of CVE-2023-36884 to deliver a payload with similarities to the RomCom backdoor. msft.it/6015g0O8x
Florian Roth ⚡️ @cyb3rops
206K Followers 3K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇 | vi/vim
💻 Sherrod DeGrippo... @sherrod_im
36K Followers 7K Following Weird security voyeur. Vibe merchant. CISO of your 🩷 Official USPS fan account. 🎉 Host of THE Microsoft Threat Intelligence Podcast. I like crime actors.
SwiftOnSecurity @SwiftOnSecurity
405K Followers 9K Following computer security person. former helpdesk.
James @James_inthe_box
22K Followers 464 Following
JAMESWT @JAMESWT_WT
37K Followers 507 Following #Independent #Malware #Hunter #CyberSecurity #InfoSec https://t.co/KCFBJcHHcW https://t.co/WODUKncjFy
Will @BushidoToken
36K Followers 3K Following Senior Threat Intel Advisor @TeamCymru | Co-founder @CuratedIntel | Co-author @SANSForensics FOR589 | Co-founder @BSidesBournemth | @darknetdiaries #126: REvil
Andrew Northern 𓅓 @ex_raritas
5K Followers 1K Following 🔮 Senior Threat Researcher at @proofpoint 🔮 | Knowledge Piñata 🪅 | Attack Chain Connoisseur | Epicurean
Myrtus @Myrtus0x0
8K Followers 707 Following Malware Researcher | Developer | @Cryptolaemus1 | @NVIDIA bsky: [email protected]
Virus Bulletin @virusbtn
60K Followers 1K Following Security information portal, testing and certification body. Organisers of the annual Virus Bulletin conference. @[email protected]
hasherezade @hasherezade
89K Followers 910 Following Programmer, #malware analyst. Author of #PEbear, #PEsieve, #TinyTracer. Private account. All opinions expressed here are mine only (not of my employer etc)
blackorbird @blackorbird
35K Followers 671 Following Peace and Love. Just Analysis/Hunter. #APT #threatIntelligence #Exploit #CTI Need Job
Joe Roosen @JRoosen
8K Followers 1K Following SpyCloud - Director of Security Research, Cryptolaemus Coordinator, Emotet(Ivan)/QBot(Boris) Destroyer, gold prospector & former sysadmin.
Jazi @h2jazi
8K Followers 530 Following Threat Intel researcher! Technical tweets only; not reflective of employer's views. No endorsement of political groups/entities.
ExecuteMalware @executemalware
27K Followers 185 Following #malware hunter & analyst. Opinions are my own.
Nick Carr @ItsReallyNick
38K Followers 3K Following Tech Director / Threat Intelligence at Microsoft. Previously, Director of Incident Response & Intel Research at Mandiant. Former Chief Technical Analyst at CISA
Catalin Cimpanu @campuscodi
107K Followers 2K Following Parked account. I don't usually post here on a regular basis. Cybersecurity reporter. Check me out on BlueSky and Mastodon.
Norbert @NB1r0
59 Followers 3K Following
Gabriel Lindsey @gabrieltlindsey
18 Followers 152 Following
suraj kumar @SudoKumar
85 Followers 883 Following Cyber_Security_Researchers || 0SINT || Digital Forensics System Analysis II THM || Investor || Option Writer
Calarji @Calarji92446
58 Followers 1K Following
Emmanuel Roll @emmanuelroll17
116 Followers 145 Following
soosy @SADEEM16X
8 Followers 51 Following
BLΛDE ☠ @fs0x30
4 Followers 2K Following Red Team Ops | Mal Dev & RE | Vuln Research & Exploit Dev ⚔️
lambardaar @lambardaar8055
6 Followers 351 Following
Paulo Sa Elias @paulosaelias
28K Followers 23K Following Professor of Law & Lawyer. Interests: IT, Intelligence, Defense, Robotics, Drones, Aviation, Space, AI, Science & Technology, Bioelectronics, Data Analytics.
Mr Oliver Williams @MrOliverWi78342
442 Followers 7K Following 🏦ENTREPRENEUR SA 📊Stock & Forex 🪙Crypto Trading💰 💻Financial Service Advisor🪙 🕛24/7 Active online 💷
Sosuke Uchiha @Sosuke_Uchiha_
0 Followers 2K Following Admiration is the emotion furthest away from comprehension.
Eni🖤 @EnidaCasanova
173 Followers 60 Following 👾 Security Research @Microsoft - Writer 📝 - Opinions are my own.
Loving Bits and Break... @trandafirmd
822 Followers 5K Following Online Privacy and Security enthusiast. Programmer Advertising PR and Media/Branding Student at Middlesex Uni. @TroyHunt and TestBed #NeverSettle
Yannick Boog @YannickBoog
75 Followers 5K Following
Hussain Alqurashi @qurashi_hm
176 Followers 6K Following
Vishal Gupta 🇮🇳 @HackerxTommy
138 Followers 3K Following •HACKER •Security Resercher @Hacker0x01 & @Bugcrowd •Bug Bounty Hunter #Ittakesacrowd #HackWorld
rootKIR KRDI @RootkirK29448
2 Followers 108 Following
g*ngnam @doiftrue
57 Followers 634 Following
Bones 🏳️🌈 @drb0n3z
4K Followers 7K Following Co-Owner of @VIP_Wrestling / Head ref @dfw_all_pro / Head ref VIP_Wrestling / Cybersecurity / Nerd / 100% disabled vet / Opinions are invalid
Meruem @Meruem49839142
169 Followers 8K Following
James Ibrahim @JamesIb54140322
55 Followers 3K Following
Matteo Graci @foolteo
20 Followers 459 Following
Space_Nomad🇪🇺�... @USACounselor
611 Followers 5K Following Cybersecurity, law, technology, physics, space, math, science, history, international relations, avid reader.
Bablu Kumar @bablukr102345
35 Followers 1K Following
Martín @K100_20
11 Followers 294 Following
Roy1979 @rohis257
251 Followers 7K Following
TrongChuong Dao @DaoTrongChuong
222 Followers 3K Following
Steve Cooper @BlueTeamSteve
374 Followers 2K Following SecOps leader by day | Founder and creator by night | Husband and dad always
phil collins @OSR_75
24 Followers 573 Following
dsand @andre_201
7 Followers 96 Following Your time is limited, so don't waste it living someone else's life.
exlagsx @Exodia6542
150 Followers 1K Following 🖥️ Inzusiast and resercher | actively fighting cybercrime. 🪐
Erin Burns @w0lf1st3r
10 Followers 230 Following I do computer stuff. IR, Threat Hunting, and dabble in come CTI.
TankerAnchor @AnchorTanker
6 Followers 1K Following
CYBER SECURITY SHPK @CYBERSECUR75261
6 Followers 571 Following CYBER SECURITY eshte kompani me baze ne Tirane qe ofron sherbime te sigurise kibernetike.
nemo @JosephKanko4
215 Followers 3K Following Passionate about Ethical Hacking | CTF Player | I explore the vulnerabilities
JohnDCyber @JohndCyber
38 Followers 393 Following Senior Pentester, Cyber Security Instructor, Cloud Security Researcher and Blogger.
MR @malte_45
19 Followers 632 Following
Anshuman Srivastava @TweetAnshumaan
375 Followers 6K Following Networking + Cyber Security - Firewalls + Ethical Hacking & Penetration Testing Enthusiast
Nick @Nick_Sandin
1 Followers 378 Following
James @James_inthe_box
22K Followers 464 Following
Joe Roosen @JRoosen
8K Followers 1K Following SpyCloud - Director of Security Research, Cryptolaemus Coordinator, Emotet(Ivan)/QBot(Boris) Destroyer, gold prospector & former sysadmin.
MalwareTech @MalwareTechBlog
277K Followers 1 Following Not here anymore. Profiles: https://t.co/sFoOuGmYK2
ExecuteMalware @executemalware
27K Followers 185 Following #malware hunter & analyst. Opinions are my own.
Nick Carr @ItsReallyNick
38K Followers 3K Following Tech Director / Threat Intelligence at Microsoft. Previously, Director of Incident Response & Intel Research at Mandiant. Former Chief Technical Analyst at CISA
Paul Melson @pmelson
14K Followers 1K Following Author/Operator of @ScumBots. Blue Team by day, Blue Team by night. Opinions, typos, and bad grammar do not represent my employer. He/Him
Steve YARA Synapse Mi... @stvemillertime
17K Followers 1K Following threat intelligence @google writing & sharing on adversary tradecraft, malware, threat detection, AI-nexus intel and all things #yara
Digital_Monet @aRtAGGI
2K Followers 257 Following Binary and Art Recovery Specialist. aka "The White Glove"
Threat Insight @threatinsight
11K Followers 218 Following @Proofpoint's insights on targeted attacks & the security landscape. Follow us on Bluesky: https://t.co/8OVfhotdeP
Sean Farrell @spfcyberlaw
547 Followers 986 Following Microsoft Digital Crimes Unit. Former cyber and national security attorney @FBI. Tweet on DC and PSU sports, law, and the human condition. Views my own, obvies
Ian Kenefick @ian_kenefick
2K Followers 2K Following Cyber Threat Intelligence Automation @trendmicroRSRCH B̶l̶u̶e̶S̶k̶y :: https://t.co/lP6THaK5Yj
Joe Hannon @JoeHannon52
519 Followers 1K Following Security researcher @ MSTIC, Microsoft https://t.co/8IO8nzNnAQ
Hugo Caron @y0ug
853 Followers 896 Following Eat code for breakfast. Trying mastodon at https://t.co/H7hAAtIadq
waymon @obnoxious4n6
680 Followers 1K Following Sr. Security Research Manager @Microsoft GHOST || 👻 Threat Hunting 👻 || tryin to navigate this cyber stuff || tweets == my own
Matt Anderson @nosecurething
2K Followers 1K Following Staff Detection Engineer @HuntressLabs Threat Research | Threat Hunting | Malware Analysis
Christopher Glyer @cglyer
24K Followers 154 Following Microsoft Threat Intelligence Center - Former Incident Responder & Chief Security Architect @Mandiant
Joshua Whitaker @_Stahlz
507 Followers 992 Following DFIR | EDR | Security Automation | Threat Intel | Detection Engineering |Tweets are my own, and not associated with my employer
Konstantin Klinger @kk_onstantin
699 Followers 744 Following Detection Engineering | he/him | 🌱⚽️🏃♂️🚴♂️🏊♂️ | tweets are my own
Kyle Ehmke @kyleehmke
5K Followers 312 Following Threat intel researcher focused on infrastructure hunting. Views are my own and not my employer's. Others: @[email protected] @kyleehmke.bsky.social
w1mp1 @w1mp1k1ng
753 Followers 976 Following Applied Intelligence and Threat Research #Vet #DataAddict #Truth #WildDreams #NoTrustPress Don't touch my drums Opinions are always my own
Felix @felixw3000
2K Followers 499 Following 👨💻 Engineer, passionate about IT security 🔬 Daytime: Researcher @SophosXOps 🧪 Nightime: write-ups on experiments @ https://t.co/JD9nTOciQE 🙋 Opinions are my own
honkone @HONKONE_K
2K Followers 298 Following Security Engineer, Threat Intelligence Hunter,#APT,#MachineLearning?,#Reverse engineer,Cyber security Researcher
\_(ʘ_ʘ)_/ @pollo290987
4K Followers 280 Following
Timothy Davies @0xtadavie
1K Followers 215 Following
David Ledbetter @Ledtech3
4K Followers 291 Following System Repair, Windows system tools ,Security research. IDA Challenged.
Saurabh Sharma @SaurabhSha15
337 Followers 83 Following Threat Researcher & Reverse Engineer & Good To Be GReAT.
Gökmen GÜREŞÇİ @gokmenguresci
3K Followers 5K Following Founder & CEO @kleariscdr • Founder & CEO @DeepcaseCyber
Michael Yip | yip@inf... @michael_yip
2K Followers 800 Following Engineer | Investigator @meta, PhD in Applied Data Analytics x Criminology. #animalrights advocate. Founded @threatminer. Calisthenic hobbyist. Views are my own
Johannes Bader @viql
2K Followers 166 Following Reverse engineer / malware analyst. On the hunt for domain generation algorithms. Current side project: https://t.co/Cv3COq0ZmR
Jason Lynch @jayl0w
580 Followers 2K Following Blue Team | Former 82nd airplane gang | weimaraner advancement league
Malwrologist @DissectMalware
15K Followers 160 Following Senior Security Engineer @Amazon. Ex Assistant Professor. Opinions are mine; not my employer's. DM is open. Author of xlmdeobfuscator and https://t.co/eh1fMHMADE
🆁🅴🅶🅶🅸�... @Ring0x0
6K Followers 586 Following Master of Disaster #soc #infosec #opsec #dfir #malware #threathunting. Opinions are my own and not those of my employer
Rich Warren @buffaloverflow
11K Followers 664 Following Red Team & Offensive Security Research @AmberWolfSec // @buffaloverflow.rw.md on bsky
@blu3_team @blu3_team
2K Followers 259 Following Defender, enthusiast, finder of bad things. Opinions are my own and not those of my employer.
Keith KorbenD Wingo @KorbenD_Intel
1K Followers 471 Following Threat synthesis, the Korben Dallas way. Keith Wingo. Christian. Husband. Veteran.
brettsg @pushecx
412 Followers 84 Following
fernando @entdark_
2K Followers 213 Following sandbox guy @VirusTotal | 関西弁 | banking trojans and APTs | https://t.co/0IgTSyAuyV | words are my own
Angel Hun @SeraphimDomain
2K Followers 778 Following Blue Team, RE, Independent Researcher, Cyber Weapon. My views are my own.
Daniel Bohannon @danielhbohannon
18K Followers 582 Following Security Researcher @permisosecurity Previously: @Mandiant/@FireEye, @Microsoft Developer: Invoke-(Obfuscation|CradleCrafter|DOSfuscation) & Revoke-Obfuscation
Security Doggo @securitydoggo
10K Followers 1K Following #infosec #cybersecurity #SIEM #malware #incidentresponse #threathunting #phishing #YARArules I find #APTs, #malware, and #credharvesters 🐕 in a world of 🐟
hadojae @switchingtoguns
990 Followers 951 Following detects the things for TwinWave (Acquired by Splunk)
Antelox @Antelox
5K Followers 2K Following A Civil Engineer married with Mrs IDA Pro. Sons are WinDbg and OllyDbg. We live in a VM. We eat bread and malware, APT on Sunday
ⓑⓛⓤⓔⓙⓐⓨ @bluejay00
761 Followers 2K Following Furoner: Dit d'aquella persona apassionada per la informàtica i que té un viu interès per a aprendre i posar a prova les seves habilitats en aquest àmbit.Trends for United States
131 B posts
28,5 B posts
3.163 posts
34,8 B posts
35,8 B posts
4.202 posts
9.190 posts
1.514 posts
44,8 B posts
82,1 B posts
82,9 B posts
4.443 posts
1.364 posts
83,9 B posts
1.362 posts
24,5 B posts
83,8 B posts
49,6 B posts
313 B posts
You might like
Tom Hegel
@TomHegel
7K Followers
Bart
@bartblaze
14K Followers
James
@James_inthe_box
22K Followers
Antelox
@Antelox
5K Followers
avman
@avman1995
7K Followers
JAMESWT
@JAMESWT_WT
37K Followers
Joe Roosen
@JRoosen
8K Followers
JaromirHorejsi
@JaromirHorejsi
4K Followers
Herbie Zimmerman
@HerbieZimmerman
3K Followers
Philippe Lagadec
@decalage2
5K Followers
Artsiom Holub
@Mesiagh
3K Followers
Malekal's site
@malekal_morte
7K Followers
\_(ʘ_ʘ)_/
@pollo290987
4K Followers
Jiri Kropac
@jiriatvirlab
3K Followers
Corsin Camichel 🌻
@cocaman
4K Followers