toad.social

Kevin Karhan :verified:<a href="https://hostsharing.coop/@cdonat" class="u-url mention" rel="nofollow noopener" target="_blank">@cdonat</a> <a href="https://toots.ch/@dalai" class="u-url mention" rel="nofollow noopener" target="_blank">@dalai</a> <a href="https://mastodon.social/@ip6li" class="u-url mention" rel="nofollow noopener" target="_blank">@ip6li</a> also ich würde darüber garnicht erst diskutieren:Entweder fliegt sower hochkant und ich krieg' den Job & Gehalt oder ich gehe und das <a href="https://infosec.space/tags/BSI" class="mention hashtag" rel="nofollow noopener" target="_blank">#BSI</a> zerlegt den Laden so heftig dass keiner der CxO's mehr irgendwo nen Job bekommt, noch nichtmals als Lieferfahrer*in!<a href="https://infosec.space/@kkarhan/114621798932871398" translate="no" rel="nofollow noopener" target="_blank">https://infosec.space/@kkarhan/114621798932871398</a>Ich meine wo kommen wir da hin? Leute die <a href="https://infosec.space/tags/NanoCore" class="mention hashtag" rel="nofollow noopener" target="_blank">#NanoCore</a> unsarkastisch zur <a href="https://infosec.space/tags/Administration" class="mention hashtag" rel="nofollow noopener" target="_blank">#Administration</a> von '<a href="https://infosec.space/tags/WindowsServer" class="mention hashtag" rel="nofollow noopener" target="_blank">#WindowsServer</a>" nutzen?<a href="https://infosec.space/tags/NotLegalAdvice" class="mention hashtag" rel="nofollow noopener" target="_blank">#NotLegalAdvice</a> <a href="https://infosec.space/tags/Sarkasmus" class="mention hashtag" rel="nofollow noopener" target="_blank">#Sarkasmus</a> <a href="https://infosec.space/tags/ITsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#ITsec</a> <a href="https://infosec.space/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#InfoSec</a> <a href="https://infosec.space/tags/OpSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#OpSec</a> <a href="https://infosec.space/tags/ComSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#ComSec</a>

SarlackLablive <a href="https://ioc.exchange/tags/nanocore" class="mention hashtag" rel="nofollow noopener" target="_blank">#nanocore</a> <a href="https://ioc.exchange/tags/C2" class="mention hashtag" rel="nofollow noopener" target="_blank">#C2</a> server 157.97.11[.]134:80confirmed 2025-01-28

Kevin Karhan :verified:<a href="https://mastodon.social/@stman" class="u-url mention" rel="nofollow noopener" target="_blank">@stman</a> <a href="https://infosec.space/tags/NSOgroup" class="mention hashtag" rel="nofollow noopener" target="_blank">#NSOgroup</a> are <a href="https://infosec.space/tags/CyberMercenaries" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberMercenaries</a> and in their actions ain't better than <a href="https://infosec.space/tags/CyberCriminals" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberCriminals</a> like <a href="https://infosec.space/tags/RacoonStealer" class="mention hashtag" rel="nofollow noopener" target="_blank">#RacoonStealer</a> or Skiddies reselling hosted versions of <a href="https://infosec.space/tags/NanoCore" class="mention hashtag" rel="nofollow noopener" target="_blank">#NanoCore</a> on the DarkWebz...

Not SimonFortinet reports on a recent phishing campaign containing Scalable Vector Graphics (SVG) files. The malicious attachment downloads a ZIP file and begins the infection chain. ScrubCrypt, described as an "antivirus evasion tool", is used to load the final payload VenomRAT while maintaining a connection with the C2 server to install plugins like XWorm, NanoCore, RemcosRAT and a crypto wallet stealer. They provides detailed insights into how the threat actor distributes VenomRAT and other plugins. IOC listed. 🔗 <a href="https://www.fortinet.com/blog/threat-research/scrubcrypt-deploys-venomrat-with-arsenal-of-plugins" rel="nofollow noopener" translate="no" target="_blank">https://www.fortinet.com/blog/threat-research/scrubcrypt-deploys-venomrat-with-arsenal-of-plugins</a><a href="https://infosec.exchange/tags/ScrubCrypt" class="mention hashtag" rel="nofollow noopener" target="_blank">#ScrubCrypt</a> <a href="https://infosec.exchange/tags/VenomRAT" class="mention hashtag" rel="nofollow noopener" target="_blank">#VenomRAT</a> <a href="https://infosec.exchange/tags/RemcosRAT" class="mention hashtag" rel="nofollow noopener" target="_blank">#RemcosRAT</a> <a href="https://infosec.exchange/tags/XWorm" class="mention hashtag" rel="nofollow noopener" target="_blank">#XWorm</a> <a href="https://infosec.exchange/tags/NanoCore" class="mention hashtag" rel="nofollow noopener" target="_blank">#NanoCore</a> <a href="https://infosec.exchange/tags/threatintel" class="mention hashtag" rel="nofollow noopener" target="_blank">#threatintel</a> <a href="https://infosec.exchange/tags/IOC" class="mention hashtag" rel="nofollow noopener" target="_blank">#IOC</a>

SarlackLablive <a href="https://ioc.exchange/tags/nanocore" class="mention hashtag" rel="nofollow noopener" target="_blank">#nanocore</a> <a href="https://ioc.exchange/tags/C2" class="mention hashtag" rel="nofollow noopener" target="_blank">#C2</a> serverpatyneduchez3212[.]duckdns[.]org confirmed 2023-07-09

Kevin Karhan :verified:<a href="https://toot.site/@katnjiapus" class="u-url mention" rel="nofollow noopener" target="_blank">@katnjiapus</a> <a href="https://fosstodon.org/@suprjami" class="u-url mention" rel="nofollow noopener" target="_blank">@suprjami</a> <a href="https://tilde.zone/@aks" class="u-url mention" rel="nofollow noopener" target="_blank">@aks</a> you can with <a href="https://mstdn.social/tags/NanoCore" class="mention hashtag" rel="nofollow noopener" target="_blank">#NanoCore</a>!

Recent searches

Search options

Administered by:

Server stats:

#nanocore