It appears Twitter has pushed bad code to prod. Desktop users are unable to reply to tweets.

The error message that appears is interesting.

Image via David3141593

Per request: the vx-underground merchandise shop will begin selling zip hoodies.

Zip hoodies will be both fleece (slightly larger, baggy) and lightweight (smaller, tight fitting).

New additions will arrive in the following days.

Cheers,

More information has surfaced on the United States Pentagon leaks that originated from Discord.

tl;dr adult argues with teenagers, shows proof, makes big mistake

It reads like a satirical news article.

"Man, 25, commits treason, most severe crime in the United States Federal Court of Law, punishable by death, to win argument with 15-year-old Teenager"

Jack Teixeira, an individual alleged to have leaked 300+ U.S. Intel documents onto a Minecraft Discord, has been charged with unauthorized removal, retention, and transmission of classified national defense information.

...punishable by 10 years in prison per document...

We have many long-term plans in action.

Thank you to everyone who supports us monthly, sponsors us, or purchases merchandise.

It allows us to keep malware papers, source code, and samples free, forever.

Enjoy your Friday.

Shout-out to whoever is using fleek[.]ipfs[.]io for by far the best phishing e-mail we have seen in a long time.

While 21-year-old Jack Teixeira did leak TS/NOFORN documents onto a Minecraft Discord, we at vx-underground believe him and his legal team will be able to invoke the 1999 HARD CHAT ACT.

It is well within his rights to leak government documents to win internet nerd fights.

Tomorrow is the last day to submit content for the vx-underground & SentinelOne malware research challenge.

First place wins a brand new Mac Book =D

Link for entry if you'd like to make a last minute submissions: s1.ai/vx-s1/

We've updated the vx-underground Windows malware paper collection

- No Loitering - Exploiting Lingering Vulnerabilities in Default COM Objects
- Early Bird Injection - APC Abuse
- COM Hijacking for Persistence

Check it out here: https://www.vx-underground.org/windows.html

We've had people contact us who have read nearly every single paper in the vx-underground corpus - thousands upon thousands of malware papers.

vx-underground is a malware monastery and we are producing next-generation malware monks.

There has been some updates to the Pompompurin court case.

The United States Magistrate Judge John F. Anderson has authorized the usage of mass victim notification via a case-specific web page on the Eastern District of Virginia website.

tl;dr getting his own webpage😎

POV: you're talking to someone obsessed with privacy and online anonymity

Lockbit ransomware group has created their first MacOS-based payload. We believe this is the first time a large ransomware threat group has developed a payload for Apple products.

We have samples.

Intel via malwrhunterteam & BrettCallow

Download: https://samples.vx-underground.org/samples/Families/LockBitRansomware/Samples/

It appears we are late to the game. The MacOS variant has been available since November 11th, 2022.

Based on the tsunami of information we received:

1. The Lockbit MacOS ransomware is real. Lockbit has confirmed this.

2. People speculate it is incomplete. The MacOS payload is riddled with bugs - including a good ol' buffer overflow.

3. It is Sunday. We'll see you nerds later

Unable to bypass UAC? Spam UAC prompt until the user presses 'Yes'.