Joined March 2019
- Tweets 1,029
- Following 685
- Followers 2,122
- Likes 31,246
87 Photos and videos
Pinned Tweet
6 Jun 2025
New Research!
seqrite.com/blog/operation-d…
We have found an interesting campaign targeting an entity of Chinese telecom with VELETRIX implant. The implant uses anti-sandbox, shellcode obfuscation technique via IPV4 and execution via EnumCalendarInfo leading to Vshell implant.
10
70
249
25,286
NtAlertThread retweeted
Jun 13
Project Ire identified a LOTUSLITE variant sharing TTPs with the family but no IOC, producing a function-by-function malicious verdict without user interaction. microsoft.com/en-us/research…
6
14
1,163
NtAlertThread retweeted
Jun 11
Acronis TRU has identified two targeted campaigns against Cambodian government entities, with a focus on the defence and military intelligence sectors, delivered by a cluster that Acronis tracks as Khmer Shadow. acronis.com/en/tru/posts/beh…
6
16
1,324
Jun 11
Jokes write themselves.
Jun 11
𝐈𝐈𝐓 𝐊𝐚𝐧𝐩𝐮𝐫 𝐡𝐢𝐫𝐞𝐬 𝐍𝐢𝐬𝐚𝐫𝐠𝐚, 𝐭𝐡𝐞 𝐭𝐞𝐞𝐧 𝐡𝐚𝐜𝐤𝐞𝐫 𝐰𝐡𝐨 𝐞𝐱𝐩𝐨𝐬𝐞𝐝 𝐟𝐥𝐚𝐰𝐬 𝐢𝐧 𝐂𝐁𝐒𝐄'𝐬 𝐎𝐒𝐌 𝐩𝐨𝐫𝐭𝐚𝐥
After flagging vulnerabilities in #CBSE's OSM portal, teenager #NisargaAdhikary has joined IIT Kanpur's C3iHub as an OSINT and Threat Intelligence Engineer. The move highlights how responsible disclosure and practical cybersecurity skills are gaining recognition in India's cyber ecosystem.
Read more: intdy.in/nbsyt1
4
234
NtAlertThread retweeted
Jun 10
Campaign which targeting Vietnamese retail investors and VPS Securities clients.
IP: 103.90.222.9
AS 135905
Pivoted domains suggest the threat actor is operating within or abusing Vietnamese domestic CDN infrastructure.
@smica83 @skocherhan @malwrhunterteam @AndreGironda
3
18
37
4,027
2c69daf837b446ab8ea41d0aba93ad027003cc51f7e5e630a159fd9ee25cf81e
Special Meeting of the Anti-Money Laundering Advisory Board (AMLAB)
"Please believe me I am Mustang Panda"
> Dies from Cringe
@malwrhunterteam @smica83
Apr 21
New Research!
acronis.com/en/tru/posts/sam…
Mustang Panda delivers @HDFC_Bank thematic campaign, while delivering another campaign targeting South Korean geopolitical entities. We found they are leaving messages for security researchers posting IOCs at X, also mentioning @MDSecLabs !
2
4
29
2,393
NtAlertThread retweeted
Jun 7
#PulseRAT - Google Sheets-based RAT Using UAE-India Partnership Lure #APT
dmpdump.github.io/posts/Puls…
I wrote some details on this infection chain. Calling it #PulseRAT since I have not seen any other reports on it. Reach out if you recognize it as something else.
May 20
UAE-India_Strategic_Partnership_Week.iso 🇦🇪 : 1ba67bb1cfad42446880cca53cbd05fe66d7514b2bb139b48e5c63adff14be7b
LNK > C# dropper > C# RAT using Google Sheets as C2. Runs PS payloads.
Service Account: sheet5@sheet5-495707.iam.gserviceaccount[.]com
1
11
39
2,628
NtAlertThread retweeted
Jun 5
Resecurity is the first to uncover the SRG's Fast Flux network infrastructure and is sharing this intelligence with the #cybersecurity community to disrupt their malicious activities and enable ISP/DNS providers to counter this threat. resecurity.com/blog/article/…
1
5
9
493
RT @BushidoToken: The 🇷🇺 GRU was already doing this via Telegram and cryptocurrency for years now…
(theguardian.com/world/ng-int…)
4
Welcome back jonathandata1!
the sheer amount of stupidity im seeing in replies after supporting palantir and making some osint tools is insane. ive been researching about osint formally from ages now — and i don't support using osint to hurt marginalized communities (im myself queer). it's just sad that some people don't realize how big of an engineering feat commercial level defense-tech is.
2
8
1,124
Probably someone's campaign launchpad... maybe Red team or Threat Actor
2[.]26[.]116[.]156 - AdaptixC2 Agents and ISO files
@malwrhunterteam @smica83 @500mk500 @HackingLZ
@
3
9
72
6,330
NtAlertThread retweeted
🛑 China-aligned hackers are intensifying espionage campaigns.
Operation Dragon Weave is hitting Czech Republic and Taiwan with spear-phishing ZIPs to deploy AdaptixC2 via Azure Blob Storage.
It gives attackers full remote control with 36 commands.
Learn More: thehackernews.com/2026/06/ch…
Stay alert with unexpected email attachments.
1
34
92
27,624
NtAlertThread retweeted
May 29
Seqrite reports a China-linked campaign targeting the Czech Republic and Taiwan, using two delivery paths to deploy Rust loader and AZUREVEIL C2 via Azure Blob Storage with 36 commands for in-memory, multi-stage espionage. seqrite.com/blog/operation-d…
1
8
21
3,844
NtAlertThread retweeted
May 27
New #TinyTracer (4.0) is ready: github.com/hasherezade/tiny_… - refactored for compatibility with the latest PIN - and with some new features!
2
29
97
8,293
NtAlertThread retweeted
May 25
begin-re is back 🎉
Lost the domain, kept the course, improved the looks. You can find it now at ophirharpaz.com/begin.re
7
49
273
25,703
NtAlertThread retweeted
May 19
k3yp0d.blogspot.com/2026/05/… MuddyWater, salty water, doesn't matter, it's not natural water, something is going on and here's my take.
1
2
5
716
May 18
ac6f79a9986bead7133a4747891c44996b1619d85f7fc46e1c14364abc05ac9a
Suspected SilverFox // GoldenEyeDog targeting India🇮🇳
@malwrhunterteam @smica83 @G60930953
7
28
4,042
NtAlertThread retweeted
May 16
"The malware checks for the density of the material being simulated and only acts when that value passes 30 g/cm³, the threshold uranium can only reach under the shock compression of an implosion device."
Symantec advances the fast16 research
security.com/threat-intellig…
1
16
51
10,271