Update: the is not about ransomware, or cyber attacks in the traditional sense, Mr. Meek Mill's frustration derives from a recent leak which some people allege him to be a homosexual

¯\_(ツ)_/¯

We have a lot of updates for vx-underground.

Unfortunately, these updates have not been pushed because we're in the middle of a galactic war (for democracy) and are actively trying to liberate Meridia from Terminids

The dork who leaked classified United States military documents on a Minecraft Discord server has plead guilty. He is facing 10 years in prison.

https://www.justice.gov/opa/pr/air-national-guardsman-agrees-plead-guilty-unlawfully-disclosing-classified-national-defense

Good morning, and welcome to your daily dose of internet-true-crime-drama

tl;dr nerds think ALPHV is doing exit scam, ALPHV blames FBI

March 3rd an ALPHV affiliate went onto RAMP and claimed that ALPHV administrative staff scammed them. They alleged they were responsible for the attack against Change Healthcare and, when trying to log into their panel, noticed their ALPHV affiliate account was suspended. To show proof of this they shared an alleged ALPHV wallet. Researchers believe Change Healthcare paid $22,000,000. Change Healthcare has not publicly confirmed or denied paying the ransom. ALPHV administration displayed a status online saying "Everything is off, we decide". Shortly after it was changed to "GG" - 'Good Game'.

Later on, on March 4th, "Affiliate Plus" ALPHV account holders expressed frustration that their accounts were suddenly closed - unable to perform their ransomware attacks. They claimed ALPHV administrative staff was ignoring them.

Later, later, later on March 4th, ALPHV administrative staff relayed an ambiguous message. They stated that the United States Federal Bureau of Investigation was responsible (for ???). We are not sure if they are saying the RAMP post was the FBI, trying to damage their reputation, or if ALPHV administrative staff is claiming the FBI intentionally attacked American critical infrastructure.

Later, later, later, later on March 4th, ALPHV put the source code to ALPHV ransomware for sale for $5,000,000.

Today, March 5th, the ALPHV domain shows an FBI seizure message. However, researchers have indicated that the HTML source code looks suspicious and they believe this is a phony FBI seizure page. There has not been any official announcement from the United States Department of Justice to confirm or deny this seizure notice on the ALPHV domain.

We have seen the rise and fall of REvil, HIVE, Conti, and ALPHV. Will Lockbit ransomware group be able to deter law enforcement agencies? Will a new ransomware group arrive to fill the vaccuum left by the other Titan's falling?

Find out on the next episode of Dragon Ball Z

There are rumors of a DDoS attack against social media giant Meta (formerly Facebook). We don't know if it's true. However, as is tradition, we just assume it to be a DNS issue.

Cheers

Just saw a large group of people, probably age 55+, on Twitter angrily tagging Joe Biden and blaming him for Facebook and Instagram having connectivity issues.

The internet is cool and badass

We've made some updates to vx-underground

- The Old New Thing for February, 2024
- MyloBot
- Stealc
- Truebot
- zgRAT
- Remcos
- QakBot
- RedLine
- Pikabot
- LilithBot
- ParadiseRansomware
- Bandook
- Android.HookBot
- Atharvan
- AgentTesla
- Android.Coper

Woke up this morning to an individual informing us they compromised a penis medical implant website

We've updated the VXUG malware collection

- Bazaar.2024.02
- Virussign.2024.02.28
- Virussign.2024.02.29
- Virussign.2024.03.01
- Virussign.2024.03.02
- Virussign.2024.03.03
- Virussign.2024.03.04
- Virussign.2024.03.05
- InTheWild.0112
- InTheWild.0113

71,000+ new samples

Microsoft has discovered nobody actually wanted to install Uber Eats and micro-transaction-pay-to-win mobile games on their desktop computer

RIP Windows Subsystem for Android
2021-10-20 - 2025-03-05

Today the United States Department of Justice announced the indictment of Linwei Ding. He's charged with 4 counts of theft of trade secrets.

tl;dr he was sending Google AI secrets to Chinese based AI companies he was secretly working at

https://www.justice.gov/opa/pr/chinese-national-residing-california-arrested-theft-artificial-intelligence-related-trade

whoever decided to implement SecureBoot for Windows OS' should be thrown out of a helicopter while they're kicking and screaming

We continue to receive hateful remarks from individuals because of the vx-uwu logo - most notably we are called 'trannies' and are told to 'kys'.

Dorks terrified of vx-uwu colors and anime