Martin Smolar @smolar_m
Malware researcher at @ESETResearch Joined January 2017-
Tweets84
-
Followers342
-
Following343
-
Likes358
#ESETResearch has discovered the first known AI-powered ransomware, which we named #PromptLock. The PromptLock malware uses the gpt-oss:20b model from OpenAI locally via the Ollama API to generate malicious Lua scripts on the fly, which it then executes 1/6
Just dropped a detailed blog post on our “BitUnlocker” research. If you’re into logical vulnerabilities and BitLocker bypasses, this one’s for you! techcommunity.microsoft.com/blog/microsoft…
#ESETresearch has discovered a zero-day vulnerability in WinRAR, exploited in the wild by Russia-aligned #RomCom @dmnsch @cherepanov74 welivesecurity.com/en/eset-resear… 1/7
Some of the vendors just never changing. How can we trust their products if they even cheat with vulnerability disclosures?
Some of the vendors just never changing. How can we trust their products if they even cheat with vulnerability disclosures?
An interesting case of a recent phishing campaign targeting users of the X platform. #ESETResearch analyzed the campaign and found that, in addition to the expected focus on individuals involved in crypto and digital assets, the attackers also targeted prominent journalists, a…
An interesting case of a recent phishing campaign targeting users of the X platform. #ESETResearch analyzed the campaign and found that, in addition to the expected focus on individuals involved in crypto and digital assets, the attackers also targeted prominent journalists, a…
#ESETresearch has conducted a comprehensive technical analysis of new malicious tools and significant updates observed in 2024 in the arsenal of the Russia-aligned #Gamaredon #APTgroup targeting Ukraine🇺🇦. welivesecurity.com/en/eset-resear… 1/9
Secure Boot bypasses everywhere, nice find!
Secure Boot bypasses everywhere, nice find!
There will soon be a part two of the writeup, where we'll use Hydroph0bia for getting arbitrary code execution during FW update and obtain full control over the DXE volume (and all other parts that happen to not be covered by BG/FDM hashing). youtube.com/watch?v=1uJF44…
Very nice discovery!
Thread Execution Hijacking is one of the well-known methods that can be used to run implanted code. In this blog we introduce a new injection method, that is based on this classic technique, but much stealthier - Waiting Thread Hijacking. Read More : research.checkpoint.com/2025/waiting-t…
Some exciting research to share from Binarly REsearchers @cci_forensics and @pagabuc -- a novel approach to UEFI bootkit detection. 🔥Read the technical paper: "UEFI Bootkit Hunting: In-Depth Search for Unique Code Behavior" 👉 binarly.io/blog/uefi-boot…
#ESETresearch has discovered a zero day exploit abusing #CVE-2025-24983 vulnerability in Windows Kernel to elevate privileges (#LPE). First seen in the wild in March 2023, the exploit was deployed through #PipeMagic backdoor on the compromised machines. 1/4
🚨Secure Boot relies on revocation lists (dbx) to block malicious bootloaders, but discrepancies between the @UEFIForum & @Microsoft lists create security gaps. 👉Call for a single and openly maintained revocation list -- a unified source of truth! binarly.io/blog/from-trus…
have a look at my latest discovery! ;)
wow :O this is getting interesting, great find @binarly_io !!
wow :O this is getting interesting, great find @binarly_io !!
#ESETresearch reveals the first Linux UEFI bootkit, Bootkitty. It disables kernel signature verification and preloads two ELFs unknown during our analysis. Also discovered, a possibly related unsigned LKM – both were uploaded to VT early this month. welivesecurity.com/en/eset-resear… 1/5
#ESETresearch discovered an #exploit targeting Firefox and Windows zero days, used in the wild by Russia-aligned #RomCom. Browsing a specially crafted web page runs arbitrary code with the privileges of the user, compromising the PC. @dmnsch & R.Dumont welivesecurity.com/en/eset-resear… 1/7
#efiXplorer is now fully compatible with IDA v9.0! Making UEFI system firmware REverse engineering even more powerful. github.com/binarly-io/efi… Big shoutout to our REsearch team for their hard work and expertise!
#efiXplorer is now fully compatible with IDA v9.0! Making UEFI system firmware REverse engineering even more powerful. github.com/binarly-io/efi… Big shoutout to our REsearch team for their hard work and expertise! https://t.co/jytMkWwj7i
The winner of the 2024 Péter Szőr Award for the best technical security research is #ESETresearch and @marc_etienne_ for "Ebury is alive but unseen: 400k Linux servers compromised for cryptocurrency theft and financial gain". More: welivesecurity.com/en/eset-resear… #VB2024
It seems a malicious Pidgin plugin isn’t the only way the perpetrators are spreading malware. Cradle, an instant messaging app promising “anti-forensic” software, sports the same backdoor as ScreenShareOTR, and has been available for download since September 2023. 1/7
It seems a malicious Pidgin plugin isn’t the only way the perpetrators are spreading malware. Cradle, an instant messaging app promising “anti-forensic” software, sports the same backdoor as ScreenShareOTR, and has been available for download since September 2023. 1/7 https://t.co/ApYqxY1vCd
AmeliaHope @A1aF41Sx3c46g
1 Followers 318 Following
Jenny @jennygriswold69
322 Followers 3K Following
Mary @mary1schwartz
627 Followers 3K Following
BlackCat @B1ack3at
37 Followers 54 Following Research: Hardware - Kernel | Interests: Malware, Browser, Pentest | Current Study: UEFI, Windows, Embedded |
MachineHunter @InfPCTechStack
365 Followers 199 Following Security Researcher, UEFI, Windows Kernel, TPM (RT is mainly for me to read them later...)
Nghiêm Nhung @nghim_nhung
2 Followers 82 Following
Bart Thijssen @nan0x1
785 Followers 7K Following Master of (Keeping/Stealing) your Secrets | Security Advisor & Intel Analyst | Civil Servant @ BE | Klopjacht-speurder | IT Eng. + Pol. Sci. | Tweets my own
nuyo4h @nuyo4h
0 Followers 2K Following
Fábio Silva @aero_programmer
132 Followers 2K Following Um aquariano inquieto e curioso, que vive em busca de conhecimento. Técnico em Informática, Programador de Software, Geek, Nerd, Rockeiro, Filósofo e Artista.
وليد الحسين @waledalhusain97
19 Followers 491 Following
Walter @h62583263
73 Followers 2K Following
0xrh0d4m1n @0xrh0d4m1n
49 Followers 818 Following “All we have to decide is what to do with the time that is given us.” - Gandalf
L², PhD @L_Lgde
669 Followers 3K Following DFIR, Malware & CTI. Head of a CSIRT. Ex @ANSSI_FR. PhD in intl law. Mostly working on Chinese #APT but also on russian and cybercrime actors #CTI #Malware
Sir Owning @owningplayer
290 Followers 1K Following Philosopher; Polymath; The IT guy; Austro-lib; Hodler; OptOut; every Satoshi counts; [email protected]
spider @LulleLullu63135
132 Followers 3K Following
Rachel Terese @RachelT92347
44 Followers 146 Following
Pascal Gujer @pascal_gujer
1K Followers 379 Following security researcher | speaker | trainer | lockpicking | evil maid attacks | maker | https://t.co/kkOosn7aaR | https://t.co/RqmtvBUNxN
Harvester @Harvesterify
1K Followers 5K Following Protecting Galileo at @esa | Ground segment cybersecurity | All your ground stations are belong to us | Previously @SafranElecDef & @ANSSI_FR
Simon Migliano @simonmigliano
663 Followers 2K Following I am an author, journalist and Head of Research at https://t.co/Nszpz6RwKM | You can also find me at https://t.co/dTK0DTIjSk
SanDra @sandraket23231
86 Followers 2K Following
권지훈 @jihoonab151
9 Followers 9 Following
clarhacker @clarhackers
11 Followers 198 Following
MatheuZ @MatheuzSecurity
1K Followers 359 Following Red Team Operator Cyber Threat Intelligence Malware Researcher
J⩜⃝mie Williams @jamieantisocial
10K Followers 7K Following threats && stuff || #UNC1799 forever 🤘|| @DistrictHeather ♥️ + 🍷 **𝚅𝚒𝚎𝚠𝚜 𝚎𝚡𝚙𝚛𝚎𝚜𝚜𝚎𝚍 𝚊𝚛𝚎 𝚖𝚈 օ𝚠𝚗**
r00t killah @r00tkillah
2K Followers 711 Following red @ Oracle Cloud Infrastructure ☁️🐚@⚖️; hacker; opinions my own; he/him
Alex. Turing @TuringAlex
994 Followers 316 Following Kernel Developer | Security REsearcher | Basketball Fan {Botconf | VirusBulletin | Kaspersky SAS} Speaker Current: @Xlab_qax EX: @360Netlab @Kaspersky AKA 渣兔
Seongsu Park @unpacker
12K Followers 1K Following Zscaler APT Research | Formerly Kaspersky GREAT | Threat Intelligence Hustler | Tweets are my own | Keybase: @seongsupark | Mastodon: @[email protected]
Michael Kan @Michael_Kan
3K Followers 2K Following Tech reporter at https://t.co/rZMF3srZqA [email protected]
rip @bigmetalpiston
16 Followers 3K Following DFIR, Malware analysis & AI red teaming, what more could you ask for?
Sanjay Shankar @msg2sanjay
196 Followers 3K Following Embedded Software Engineer, Exploring Literature, Finance and Fitness RTs are not endorsement.
Ojaswi Kumar Mishra�... @0xojaxwi
74 Followers 2K Following Old-school Malware & Offensive Security REsearcher | ⚡Kernel Pwner⚡
TRCV/7/ @andreitrcv
47 Followers 3K Following
MalwareUpdates @HashShaw50040
30 Followers 752 Following Hunting Malwares #Malware #Threathunting #DFIR
helloworld/ @hellodebug8
255 Followers 6K Following
Tymofiy Mylovanov @Mylovanov
167K Followers 1K Following President, Kyiv School of Economics; Minister of economy, Ukraine, 2019-2020; Associate professor, University of Pittsburgh
Alon Leviev @alon_leviev
1K Followers 182 Following Vulnerability Researcher at Microsoft | Researcher, Speaker, BJJ Black Belt, Former BJJ World and Euro Champion
Chris Thompson @retBandit
7K Followers 870 Following Head of Red team @ IBM X-Force. Black Hat Review Board. Founder and co-organizer of Offensive AI Con. Co-Founder of RemoteThreat. inveni et usurpa
BlackCat @B1ack3at
37 Followers 54 Following Research: Hardware - Kernel | Interests: Malware, Browser, Pentest | Current Study: UEFI, Windows, Embedded |
Pavel Yosifovich @zodiacon
14K Followers 915 Following Windows Internals expert, author, and trainer. Teaching system programming & debugging at TrainSec. Check out my books & courses! 🚀 #WindowsInternals #TrainSec
sixtyvividtails @sixtyvividtails
3K Followers 393 Following Currently working as an independent GUID merchant. Fully licensed. I acquire, produce, and sell high-quality GUIDs.
FFRI_Research @FFRI_Research
980 Followers 0 Following Leading security vendor in Japan providing innovative security software and vulnerability research information.
MachineHunter @InfPCTechStack
365 Followers 199 Following Security Researcher, UEFI, Windows Kernel, TPM (RT is mainly for me to read them later...)
Visegrád 24 @visegrad24
1.4M Followers 2K Following Aggregating and curating news, politics and current affairs.
Friedrich Merz @_FriedrichMerz
539K Followers 455 Following @Bundeskanzler der Bundesrepublik Deutschland. Vorsitzender der @CDU Deutschlands.
MrBeast @MrBeast
33.2M Followers 2K Following DONATE TO TEAMWATER $1 IS 1 YEAR OF CLEAN WATER FOR SOMEONE IN NEED!
Cory Booker @CoryBooker
4.5M Followers 78K Following U.S. Senator from New Jersey. Most tweets (and typos) are mine, some are my team’s.
Ukraine / Украї�... @Ukraine
2.2M Followers 28 Following Yes, this is the official X account of Ukraine. Офіційний акаунт твоєї Неньки.
Garry Kasparov @Kasparov63
1.1M Followers 1K Following VP of @WLCongress. Founder & Chair of @Renew_Democracy. Activist, speaker, 13th World Chess Champion. Autocracy in America podcast: https://t.co/xemlxTR3IN
Radosław Sikorski �... @sikorskiradek
1.3M Followers 386 Following Wicepremier, Minister Spraw Zagranicznych
Donald Tusk @donaldtusk
2.1M Followers 667 Following Premier Rzeczypospolitej Polskiej 🇵🇱 Prime Minister of Poland 🇵🇱
codecolorist@infosec.... @CodeColorist
5K Followers 1K Following
Bernardo Quintero @bquintero
23K Followers 265 Following Founder of @virustotal 📖 INFECTED: https://t.co/RRguFlNWKR 📖 INFECTADO: https://t.co/WZ5C2U5ymR
Harvester @Harvesterify
1K Followers 5K Following Protecting Galileo at @esa | Ground segment cybersecurity | All your ground stations are belong to us | Previously @SafranElecDef & @ANSSI_FR
Pascal Gujer @pascal_gujer
1K Followers 379 Following security researcher | speaker | trainer | lockpicking | evil maid attacks | maker | https://t.co/kkOosn7aaR | https://t.co/RqmtvBUNxN
Volodymyr Zelenskyy /... @ZelenskyyUa
8.2M Followers 1 Following President of Ukraine / Президент України
Michael Kan @Michael_Kan
3K Followers 2K Following Tech reporter at https://t.co/rZMF3srZqA [email protected]
Seongsu Park @unpacker
12K Followers 1K Following Zscaler APT Research | Formerly Kaspersky GREAT | Threat Intelligence Hustler | Tweets are my own | Keybase: @seongsupark | Mastodon: @[email protected]
Steve Inman @SteveInmanUIC
3.0M Followers 3K Following MMA/Sports commentator. Narrating random videos from around the world. Backup page @SteveInmanClips 🇺🇸 #FAFO Videos
MatheuZ @MatheuzSecurity
1K Followers 359 Following Red Team Operator Cyber Threat Intelligence Malware Researcher
r00t killah @r00tkillah
2K Followers 711 Following red @ Oracle Cloud Infrastructure ☁️🐚@⚖️; hacker; opinions my own; he/him
Alex. Turing @TuringAlex
994 Followers 316 Following Kernel Developer | Security REsearcher | Basketball Fan {Botconf | VirusBulletin | Kaspersky SAS} Speaker Current: @Xlab_qax EX: @360Netlab @Kaspersky AKA 渣兔
Ryan Naraine @ryanaraine
28K Followers 836 Following 🎧 Three Buddy Problem: https://t.co/ZGEyqy2h7g. ✍🏼 Writing: @securityweek 🗣️ Conference: @labscon_io
UEFI Forum @UEFIForum
966 Followers 53 Following The UEFI Forum advances globally-adopted firmware specifications through enhanced security to the evolution of devices, firmware and operating systems.
itszn @itszn13
9K Followers 697 Following Amy | Security researcher | https://t.co/W1SE7NmCx8 | bsky: https://t.co/JBmOGE4YKO | LLM ART: https://t.co/7FtQ8O8nAW
Stan Lyakhov @mpcintheheart
17 Followers 33 Following
Greg Linares (Laughin... @Laughing_Mantis
37K Followers 2K Following 20+ yrs in Infosec. Malware Influencer. I turn Malware into Art and Music. Art @MalwareArt. 4x Pwnie Nominee. 𝕍𝕏. GameDev. Autistic.
Stephen Sims @Steph3nSims
24K Followers 832 Following Perpetual Student | SANS Fellow | Musician | Braggart Hater | Gray Hat Hacking | VR | 🏂 | deadcode | https://t.co/CadJehomsU
︎ ︎ @0xocdsec
4K Followers 7K Following ︎ ︎︎ ︎︎ ︎︎ ︎︎ ︎🏴☠️ ︎︎ ︎︎ ︎︎ ︎︎ ︎🌹︎ ︎︎ ︎︎ ︎︎ ︎︎ ︎ ︎︎🏴☠️︎ ︎︎ ︎︎ ︎︎ ︎︎ ︎💚︎︎ ︎︎ ︎︎ ︎︎ ︎︎ ︎🇺🇦 ︎︎ ︎︎ ︎︎ ︎︎ ︎︎|︎ ︎︎ ︎︎ ︎︎ ︎︎603,628 km² ︎ ︎︎
Silas Cutler (p1nk) @silascutler
13K Followers 2K Following You may know me from your logs Research @Censys Advisor @IST_org & #DEVSEC Built @Only_Scans, @mal_share, #KeyDrop
`Ivan @Ivanlef0u
11K Followers 3K Following
Grzegorz Tworek @0gtweet
36K Followers 2K Following My own research, unless stated otherwise. Not necessarily "safe when taken as directed". GIT d- s+: a+ C++++ !U !L !M w++++$ b++++ G-
Sergey Lozhkin @61ack1ynx
2K Followers 478 Following Head of Global Research and Analysis Team(GReAT) - Asia Pacific, Middle East Turkey and Africa
@barberousse_bin@todo... @barberousse_bin
481 Followers 202 Following Not on here Mastodon: @[email protected] Keybase: barberousse Malware Researcher at @ESETResearch Montreal
Martti Malmi @marttimalmi
42K Followers 617 Following Bitcoin dev in 2009-2011. A.K.A. Sirius developing https://t.co/Awd6zIzTXO npub1g53mukxnjkcmr94fhryzkqutdz2ukq4ks0gvy5af25rgmwsl4ngq43drvkTrends for United States
You might like
