Hyperview Security @HyperviewSec
A cybersecurity company focusing on advanced MDR and Compromise Assessments for small to medium sized businesses. hyperviewsecurity.com Joined October 2022-
Tweets21
-
Followers22
-
Following143
-
Likes175
I'm just gonna go ahead and say it. If you have: Cisco VPN No MFA for it You may get a surprise knock from #Akira #Ransomware soon. So yeah, go look at your AD auth logs for 4624/4625 from a WIN-* machine in your user VPN range. If you have a hit, may the IR Gods help you.
New Potential #FIN7 #POWERTRASH on port 80 C2 IPs: 193.233.23[.]23 193.233.23[.]44
Today we announce YARA Netloc, a new feature extending YARA's supported entities from traditional files to network infra, including domains, URLs and IPs. This opens endless possibilities for hunting and monitoring. All details here, by @leximagination: blog.virustotal.com/2023/07/action…
Incoming #IcedID "1561373935" filename: inv-details-jul23.pdf Loader C2: filtaferamoza\.com email > PDF > URL > Keitaro redirect > zip > pass > exe tria.ge/230724-w1dlaah… bazaar.abuse.ch/sample/8b5529d…
We just launched the Beta version of urlscan Observe, our automated monitoring and alerting system. With Observe you can monitor a hostname, domain, or URL, see changes to it over time and be notified about these changes via email or webhook. urlscan.io/blog/2023/07/1…
One of my favorite services is ecrime.ch. It's a must have for folks tracking ransomware.
Finally! Someone put the two IP IOCs related to the #Citrix Netscaler ADC vuln CVE-2023-3519 in a Virustotal Graph, which allows me to share them 216[.]41[.]162[.]172 216[.]51[.]171[.]17 virustotal.com/graph/g6a29f00…
I’m excited to launch our latest online course, YARA for Security Analysts. We built this course for people who want to learn to write YARA rules for detection engineering, system triage, incident response, and threat intel research. #Yara #DetectionEngineering #DFIR #Malware
New blog post based on a recent intrusion I observed with #Ursnif as the initial infection! Topics include: ✅ Detection opportunities ✅ TAs clipboard data ✅ Post-exploitation and more! The artifacts for this case: buff.ly/3NYx49v The blog: buff.ly/44QCSJ0
July 13th Pompompurin, the previous administrator of the infamous Breached forums, plead guilty to 3 charges in federal court. - Conspiracy to Commit Access Device Fraud - Access Device Fraud – Unauthorized Solicitation - Possession of Child Pornography
We’re sharing more details from our investigation of the Storm-0558 campaign that targeted customer email, including our analysis of the threat actor’s techniques, tools, and infrastructure, and the steps we took to harden systems involved: msft.it/6017g26HL
CVE-2023-36884 in images Reference Docx: a61b2eafcf39715031357df6b01e85e0d1ea2e8ee1dfec241b114e18f7a1163f
.@Microsoft has published an advisory related to CVE-2023-36884, an actively exploited #RCE vulnerability in Microsoft Office. @Volexity's #threatintel team identified this #0day, related infrastructure & malware and is credited in the report: msrc.microsoft.com/update-guide/v… #dfir [1/2]
If you missed it yesterday, Microsoft released an advisory concerning the CVE-2023-36884: msrc.microsoft.com/update-guide/v…. This RCE is currently used by a TA and there is no patch. You should apply the mitigation described in the advisory. 1/4
Just released a new #blogpost, where I analyze the initial stages of a #vbs / #powershell based #GuLoader / #CloudEye infection. Shoutout to @malware_traffic for being the first to find this sample (which I noticed after analyzing it myself ^^). gi7w0rm.medium.com/cloudeye-from-… 1/2
I am working on a mini blog to share information related to post-exploitation activities that I observed for this ursnif campaign👇 The artifacts will be made available here: github.com/tsale/Intrusio… Things you should expect to see: ➡️Live Screenshots taken by TA using VNC…
I am working on a mini blog to share information related to post-exploitation activities that I observed for this ursnif campaign👇 The artifacts will be made available here: github.com/tsale/Intrusio… Things you should expect to see: ➡️Live Screenshots taken by TA using VNC…
Finding Advanced Malware Using Volatility eforensicsmag.com/finding-advanc… #malware #volatility
New VenomLNK samples and domains: kevinburciaga[.]com 00da4d01872fbf22924f0dd25e50631209ad6d592d65c54fd37f7cdf9fc624cb jameslachman[.]com 23c4df003dbf51129e88a24805c8b75cbc40355980107f9676c032c5a513f124
Null @Null01001100
50 Followers 1K Following
Adam @_Adam101_
3 Followers 108 Following
Vesal @vesalfiroozi
422 Followers 2K Following SOC Analyst , Cyber security researcher, INV Member, Inventor
Aliyu Yakubu @Aliyuworldwide
481 Followers 6K Following
Showmethehands @handbanaba1234
2 Followers 242 Following
AndHacker @IvAndHacker
24 Followers 1K Following
100 @smothir5
5 Followers 168 Following
Vera @hopkins55vera
282 Followers 3K Following
Ahmad ElGhazouly @aelghaz
14 Followers 328 Following
Inigo @arcaisec
0 Followers 2K Following
Matthew @embee_research
14K Followers 2K Following Security Researcher, Creating and Sharing Educational Content.
Debra @d_stoglin49
274 Followers 3K Following
Hattie @hattie_lesh
285 Followers 3K Following
Threat and Risk Intel... @ecrime_ch
5K Followers 126 Following #Cyber Intelligence and Risk Services Free ransomware news RSS feed: https://t.co/iBk7bRcO3b #ransomware #monitoring #threat
Silas Cutler (p1nk) @silascutler
13K Followers 2K Following You may know me from your logs Research @Censys Advisor #DEVSEC Built @Only_Scans, @mal_share, #KeyDrop
Christopher Luft @tekgrunt
228 Followers 216 Following
Chip @b3ard3dav3ng3r
8K Followers 550 Following
Kim @hull93kim
532 Followers 3K Following
Thinkst Canary @ThinkstCanary
13K Followers 10K Following Most companies only realise they are breached when informed by a 3rd party. This is a stupid problem! Thinkst Canary. Know. When it Matters.
Alexa @Alexa67506644
41 Followers 0 Following
Matthew @embee_research
14K Followers 2K Following Security Researcher, Creating and Sharing Educational Content.
Jared Wilson @JWilsonSecurity
2K Followers 1K Following Mandiant Research and Discovery, Father, Husband, Trail Runner, Co-Founder CyberFriendsCircle
Josh++ @josh_murchie
882 Followers 711 Following Senior Threat Analyst @Google | Threat Hunter | Digital Forensicator | Coffee Addict | Bourbon Enthusiast | Amateur Woodworker | Unapologetically Pro 2A
Aaron Stephens @x04steve
3K Followers 523 Following
Ramin Nafisi @MalwareRE
5K Followers 2K Following Director of MSTIC Malware Intelligence, Research, and Analysis (MIRAGE) team.
Team Cymru Threat Res... @teamcymru_S2
5K Followers 93 Following Follow us for the latest blogs and IOCs from Team Cymru Threat Research A part of @teamcymru
Nasreddine Benchercha... @nas_bench
11K Followers 1K Following Detection @Splunk & @cisco | previously @nextronsystems | @sigma_hq & @magicswordio maintainer | Eternal Learner
Paul Melson @pmelson
14K Followers 1K Following Author/Operator of @ScumBots. Blue Team by day, Blue Team by night. Opinions, typos, and bad grammar do not represent my employer. He/Him
nullcookies @nullcookies
10K Followers 3K Following
💻 Sherrod DeGrippo... @sherrod_im
36K Followers 7K Following Weird security voyeur. Vibe merchant. CISO of your 🩷 Official USPS fan account. 🎉 Host of THE Microsoft Threat Intelligence Podcast. I like crime actors.
Chris Sanders 🔎 �... @chrissanders88
34K Followers 489 Following Ed.D. | Founder @networkdefense @RuralTechFund | Former @Mandiant, DoD | Author: Intrusion Detection Honeypots, Practical Packet Analysis, Applied NSM
Yeti @Yeti_Sec
736 Followers 664 Following Sr. Malware Reverse Engineer & Threat Researcher, Unit 42 Threat Intelligence @unit42_intel | Ex-Incident Response. Opinions are my own.
waymon @obnoxious4n6
682 Followers 1K Following Sr. Security Research Manager @Microsoft GHOST || 👻 Threat Hunting 👻 || tryin to navigate this cyber stuff || tweets == my own
Deutsche Telekom CERT @DTCERT
5K Followers 44 Following Technical tweets for technical folks by Deutsche Telekom CERT, CTI, and DFIR. #dfir #cyber #cert #cti #TelekomSecurity
Josh Stroschein | The... @jstrosch
12K Followers 1K Following Reverse engineer at FLARE/@Google | @pluralsight author | 😱 1M+ views on YT | 🎙️ Host of Behind the Binary podcast 👇
urlscan.io @urlscanio
13K Followers 137 Following A sandbox for websites - Find malicious websites and phishing - https://t.co/LfPJPBGXFV - https://t.co/XjI4zJaBBp - #threatintel #cybercrime #infosec #web #phishing
SOS Intelligence @SOSIntel
19K Followers 2K Following The Dark Web Monitoring platform for business and enterprise. Managed Threat Intelligence services to detect darkweb & OSINT data-breach and theft. #NAFO Intel
3xp0rt @3xp0rtblog
15K Followers 173 Following Malware and cybercrime | Cyber Threat Intelligence Analyst at @PRODAFT
Andrew Northern 𓅓 @ex_raritas
5K Followers 1K Following 🔮 Principal Researcher at Censys 🔮 | formerly Proofpoint | Knowledge Piñata 🪅 | Attack Chain Connoisseur | Epicurean
Intel Point Alert @IntelPointAlert
130K Followers 2K Following Informant reporting major incidents as they occur throughout the United States.
Kyle Ehmke @kyleehmke
5K Followers 311 Following Threat intel researcher focused on infrastructure hunting. Views are my own and not my employer's. Others: @[email protected] @kyleehmke.bsky.social
Brett Callow @BrettCallow
9K Followers 196 Following Managing Director, Cybersecurity & Data Privacy Communications @FTIConsulting
Sharktech @sharktechnet
682 Followers 229 Following Private Cloud, Public Cloud, Dedicated servers, VPS, Remote DDOS protection | Datacenters Worldwide Happy to custom quote!
[email protected]... @rpargman
4K Followers 5K Following Слава Україні! Most important job: being Dad; I also love to help people deny attackers the opportunity to break and steal all the things. Pronouns: He/him
Monnappa K A @monnappa22
5K Followers 802 Following Security Researcher, Trainer, Author - Learning Malware Analysis, Black Hat Review Board, creator of Limon Sandbox, Winner Volatility Plugin contest 2016
Group-IB Threat Intel... @GroupIB_TI
14K Followers 184 Following Official account of the @GroupIB Threat Intelligence Unit. Latest research, analytics, IOCs and threat alerts.
Chris Duggan @TLP_R3D
7K Followers 3K Following Head of Threat Informed Defence for a FSTE 100 | Malware Geek | Curated Intel Member | Threat Intelligence Expert Extraordinaire
Chris Beckett @cbecks_2
804 Followers 2K Following Infosec and the Green Bay Packers. Interested in all things DFIR, Detection Engineering, Purple, and CTI. Opinions are mine, certainly not those of my employer.
Thinkst Canary @ThinkstCanary
13K Followers 10K Following Most companies only realise they are breached when informed by a 3rd party. This is a stupid problem! Thinkst Canary. Know. When it Matters.
GreyNoise @GreyNoiseIO
28K Followers 158 Following GreyNoise analyzes Internet background noise. Use GreyNoise to remove pointless security alerts, find compromised devices, or identify emerging threats.
Sanna Marin @MarinSanna
614K Followers 619 Following Former Prime Minister of Finland. My upcoming book Hope in Action will be released on November 4th.
The DFIR Report @TheDFIRReport
62K Followers 0 Following Real Intrusions by Real Attackers, the Truth Behind the Intrusion. Services: https://t.co/XW613EKt2w
Michael Koczwara @MichalKoczwara
23K Followers 2K Following Threat Researcher/Founder @Intel_Ops_io Threat Intelligence, Adversary Infrastructure Hunting, Curated TI Feed (Coming Soon) https://t.co/VQWaze6gaF
Max_Malyutin @Max_Mal_
13K Followers 309 Following Threat Researcher, Blue Team, DFIR, Malware Analysis, and Reverse Engineering. “⚔️What do we say to God of malware, Not today⚔️”
Unit 42 @Unit42_Intel
64K Followers 82 Following The latest research and news from Unit 42, the Palo Alto Networks (@paloaltontwks) Threat Intelligence and Security Consulting Team covering incident response.
Threat Insight @threatinsight
11K Followers 217 Following @Proofpoint's insights on targeted attacks & the security landscape. Follow us on Bluesky: https://t.co/8OVfhotdeP
Kostas @Kostastsale
18K Followers 367 Following @TheDFIRReport | No longer active here – find me on Bluesky: https://t.co/qHzDSxCRfG. 🇬🇷🇨🇦
ςεяβεяμs - м�... @c3rb3ru5d3d53c
25K Followers 243 Following 💕 Malware Hunter Killer 💕 #binlex & #mwcfg Developer 📽️ YouTuber 👩💻 She/Her 💍@DravenSwiftbow Support my work 👇 ☕️ https://t.co/NoM1TXq00PTrends for United States
You might like
