"Tim Je" made a website that uses AI to programmatically generate fake IDs of United Kingdom politicians. This was done to mock the United Kingdom Online Safety Act

https://use-their-id.com/

All of our artwork is now available for download. You can use this to produce merch, stickers, or whatever else you'd like.

You're free to do whatever you want with it. However, if you make a profit, give us some money. If you don't... you're mean.

https://vx-underground.org/Art

Hello,

I've been informed someone is giving away vx-underground stuff at DEFCON at W201 and W202 on Friday.

I don't know what this means, I've never been to DEFCON, but if you're at DEFCON, you probably understand this statement.

I've decided I'm going to name my Red Team tool "Meow Meow Kitty Cat Meow Meow Loader".

It is a small tool suite where someone can programmatically embed a payload (.exe, .sys, .dll, etc) into a picture (currently only .BMP images).

It was 3 different binaries present:
- Inserter: CLI for embedding payloads into a target BMP file.

- Remover: CLI tool for testing if the embed process worked correctly. Extracts embedded payload into target destination. Does nothing else

- Meow Meow Kitty Cat Meow Meow Loader: Unnecessarily over-complicated and evasive binary which, only using indirect-syscalls, programmatically extracts the payload from a target .BMP. Extracted payload is executed in-memory, embedded payload never touches the disk

Only writing this because I was bored and wanting to do something with steganography. I may in the future expand to handle .TIFF, .PNG, or over-complicate it more and use Windows COM and/or GDI+ to handle the steganography process. I may also explore doing it with audio or video.

It'll be open source so you can do whatever you want with it. The name is so stupid. Please recommend the tool to colleagues for literally no reason other than them (or you) having to verbally say the words "Meow Meow Kitty Cat Meow Meow".

Dear tiny people living inside my computer,

We've updated the malware library. 500,217 malwares added. Thank you petikvx for getting the malwares.

Please download the malware

Scattered Spider, or Scattered Spider-adjacent group, is claiming to have compromised the Brazil government.

They said, and this is a direct quote ..., "who wants all police and court records from brazil hmu no bap"

tl;dr scattered spider, or super group of scattered spider nerds, leak data from coca cola partnership place, data isnt super bad. coca cola didnt pay. they diss a bunch of places and say funny things

Earlier today an unknown group, which appears to have overlap between Scattered Spider, "ShinyHunters", and only God knows who else, dumped data from an alleged Coca Cola breach. Specifically, this is the Coca Cola Euro-Pacific Partnership. This is NOT the Coca Cola HQ.

This group is jokingly referring to themselves as "Scattered Spider LAPSU$ Sp1d3r Hunters, UNC3944".

The UNC3944 segment of their name is the Threat Group name Mandiant has assigned to them.

The data was released by "UNC3944" (???) because Coca Cola allegedly refused to pay the ransom. Additionally, a "community poll" voted to release the data publicly.

Upon review of the data which was released, I can assert the data is legitimate. However, the data is not what I would define as "critical" to the Coca Cola company.

The data derives from a SalesForce application Coca Cola was using. The data which was released is primarily contact information of vendors who purchase product from them. It is in essence a massive collection of organizations and/or vendors which purchase from Coca Cola so they can sell Coca Cola products at their establishment.

The data being dumped publicly isn't something which would directly impact the day-to-day operations of Coca Cola, it also does not pose a risk to vendor purchasers because it is primarily representative contact information which may already be public information. The primary cause of concern in this data dump is it may give Threat Actors a curated list of potential targets.

Interestingly, Coca Cola abides by data privacy regulations and/or laws and removes vendor information when an agreement is terminated. There are big chunks of the data dump which contain "Removed PII" in every applicable field.

When UNC3944 released the data, they mocked data privacy laws and various Cyber Threat Intelligence companies. This collective group has continually mocked Mandiant, CrowdStrike, the United States Federal Bureau of Investigation, and Unit221B.

They have referred to CrowdStrike as "CrowdShart". The insult to them is so childish it unironically made me laugh out loud.

They concluded their release of the data by asserting it is not a crime to release this stolen data because it falls within "free speech" laws. They gave a shout-out to the United States government (omit the FBI) and United States President Donald J. Trump. They said, and quote, "LOVE U TRUMPSKI OFN".

OFN referencing "On Foe Nem".

Holy shit, dude

Zeekill got his own HBO documentary. This guy was a serial swatter and part of Lizard Squad.

This guy was NOT a "dangerous hacker". He a swatter, DDoSer, and extortionist.

HBO, dawg, don't glorify these guys.

Correction. it's HBO. I'm actually retarded. It says HBO in the image.

smelly gonna steal this one

In case you've missed it: for the past few weeks I've been having a psychiatric meltdown over recent legislation in the United Kingdom and European Union regarding their "Online Safety Act". I'll be spamming it in here now too because fuck the government(s). Fuck them trying to invade our privacy and fuck them for trying to tell us what to do online.

THATS 👏WHY 👏WE👏SUPPORT👏THE👏EFF👏

FUCK👏THE👏GOVERNMENT👏SPYING👏

FUCK👏THE👏GOVERNMENT👏

SUPPORT👏INTERNET👏ANONYMITY👏

DoNt SuPpOrT tHe EfF tHeYrE wOkE aNd LeFtISt

Okay.

Well, we're trying to DO SOMETHING. If you don't like the EFF, then DO SOMETHING else. Do something. Do LITERALLY ANYTHING. If you genuinely care about privacy, your digital anonymity, and your right as a free-willed human-being online, then DO SOMETHING. If there is an alternative to the EFF that you believe is not 'woke', please donate to them. If you think the EFF, or any other non-profit related to digital privacy is 'woke', then call your local representative.

At least TRY to DO SOMETHING.

Alternatively, let the government invade your privacy. Let the government control what you can and cannot see. Let the government determine what's good and what's not. Let the government think for you.

Want to visit Reddit? The government needs to see your ID.

Want to watch YouTube? The government needs to see your ID.

Want to listen to Spotify? The government needs to see your ID.

Want to play video games that may be "violent"? The government needs to see your ID.

Want to update some software on your computer? The government needs to see your ID.

Want to look at pornography? The government needs to see your ID.

Want to look at Wikipedia? The government needs to see your ID.

Want to visit a Discord server? The government needs to see your ID.

Want to use a search engine? The government needs to see your ID.

The government needs to know what music you listen to, what movies you watch, what YouTubers you like, which Wikipedia articles you're reading, what your sexual preferences are, what you're searching online, which video games you're playing, which podcasts you like, what subreddits you visit, what hobbies you enjoy, what you identify as politically.

This is all important information under the Online Safety Act. The government needs to know all of these things to keep you "safe". Don't worry, the government has your best interests in mind so they will decide what is "safe" and what is "not safe".

Lord, give me the strength to not go on yet another schizo rant about privacy laws in the United Kingdom and European Union

WERE JUST DRIVING AROUND SCANNING EVERYONES FACE. ITS TO FIND CRIMINALS. ITS OK. DONT WORRY. LET US SCAN YOUR FACE

(Fuck the United Kingdom government)

https://www.bbc.com/news/articles/cj4wy21dwkwo

It's literal propaganda.

First the government needed your ID and/or passport to "protect the children" from seeing bad things on the internet (they don't give a fuck about the kids).

Now they want your ID to stop people from cheating in video games. It's all lies.

Telegram chat, I've been busy dealing with my newborn but I'll be posting on Telegram more again.

The past few weeks I've been screaming "fuck the government" every other day, so besides memes, news, and updates to the malware library, prepare for me to schizo post about hating the government for trying to censor the internet.