"why do you guys make such weird posts??"

Because we've been discussing malware, collecting malware, writing malware, reversing malware, reviewing malware, reading about malware — anything and everything malware for years.

It has fundamentally corrupted our minds

Schools need to stop teaching kids malware is like, 'trojans', and 'worms', etc. It's not 1996 anymore.

New malware types:
- Ransomware
- Loaders
- Information Stealers
- Piles of shit that doesn't work
- RATs

Win32.PileOfShit.xy-4aed2e104fbcf37c57b6f1039541de2d8e0898b26353f5dab9bc5a9a10f47744

Updates:

Administrative:
- We're still in the process of correcting our downstream mass-oopsie we performed. We identified over 500,000 corrupt malware samples we shared ... we accidentally prepended 'file=' in the raw binary data. Oops. We're almost done restoring all the damage we've caused. It's only taken us 8 days++--;

- All harddrive purchases from April, 2024 have been finalized. Moving forward all drives will be pre-cloned so there is no waiting period — we just mail it out. We're learning, kind of.

Families:
- AgentTesla
- Android.Anubis
- Android.Joker
- Android.SpyNote
- AsyncRAT
- BatchWiper
- FormBook
- GPCodeRansomware
- LockbitRansomware
- Mirai
- RedLine
- Remcos
- SkuldStealer
- SnakeKeylogger
- Turla
- XenoRAT
- XWorm

Today TheRecordMedia released an article regarding Ford's new patent: targeted advertisements by actively monitoring and listening to passengers conversations.

It sounds bad, but reading the article it's actually x100 worse.

More information: https://therecord.media/ford-patent-application-in-vehicle-listening-advertising

tl;dr it's cool and badass when your car parses your conversations to determine vehicle passengers, passengers name, locations, traveling speed, objects of interest around them, road conditions, traffic, etc. then sells it to advertisers and data collection groups

Someone tailgating you? Sitting in traffic and bored? Say no more, fam. Thanks to HengersCS you can now educate people on the password while driving.

the people behind you trying to read the tiny ass font:

POV: Your manager is part of The Com

Hello,

We've finished correcting the colossal oopsie we created. We're in the process of correcting the MalwareIngestion bulk releases.

Files are being synced on VirusTotal again.

tl;dr back to getting millions of malwares

Today the United States Department of Justice announced the conviction of Remy St. Felix. St. Felix is accused of being the mastermind behind a string of violent home invasions targeting individuals possessing large quantities of cryptocurrency.

Prosecutors state St. Felix targeted crypto holders in North Carolina, Florida, Texas, and New York.

Due to the violence of the actions — including assaulting victims, zip-tying them, holding them at a gunpoint, and threatening to murder their family, St. Felix is facing charges for; conspiracy, kidnapping, Hobbs Act robbery, wirefraud, and brandishing a firearm in furtherance of a crime of violence. He is facing a maximum sentence of life in prison.

More information: https://www.justice.gov/opa/pr/man-convicted-violent-home-invasion-robberies-steal-cryptocurrency

how to write cool malware

1. come up with idea
2. write basic shit code, hurts eyes
3. refine it, make less ugly
4. slowly increase complexity
5. refine it, make it beautiful
6. release it, pretend to understand it

"They're putting infostealers in the water, they're making the frogs rich" - Alex Jones if he worked in Cyber Threat Intelligence

The United Kingdom's National Crime Agency released a statement today.

On September 5th, the individual believed to be responsible for compromising TfL (Transport for London) has been apprehended.

More information:
https://www.nationalcrimeagency.gov.uk/news/arrest-made-in-nca-investigation-into-transport-for-london-cyber-attack

Today Mastercard bought Cyber Threat Intelligence company RecordedFuture.

Why did a payment service provider acquire a threat intelligence company? Well, it's very simple — we don't understand it at all, but we assure you it's very simple, probably.

(we have no idea why)

Today a Threat Actor operating under the moniker 'Fortibitch' released 440GB of exfiltrated Fortinet data. The Threat Actor claims the leaked data is a result of a failed extortion attempt. 'Fortibitch' wrote Fortinet allegedly wrote to them they'd rather 'eat poop than pay a ransom'.

Fortinet later confirmed the validity of the compromise to BleepinComputer — writing that customer data was stolen from a "third-party cloud-based shared file drive."

Additionally, 'Fortibitch' gave me a shoutout, referencing a previous vx-underground post debating the correct pronunciation of VXUG, by writing "smelly from Vi-Eks-Yu-Gee".

Subsequently, they addressed me as "-2 IQ degenerate nerd", referencing me mocking myself and my many failures I have apologized for.

Finally, they called me the "Texas Femboy Kisser". While I do not kiss femboys, or people from Texas, this conversation piece is indicative of a group of people I am familiar with.

Hello to you too, 'Fortibitch'.

We're experimenting with a vx-underground Windows Desktop e-reader. It's a simple .NET application that connects to vx-underground, lists papers, and allows you to view them without having to visit the website.

Why? ¯\_(ツ)_/¯

Seems kinda cool. Also, slightly easier to explore

It'll be open source, you can build it yourself, or you can reverse engineer it, whatever. It's not malware.

Unironically, 90% of core viewing demographic would (in some shape or form) prefer it to be malware just so they could rip it apart and throw tomatoes at us.