Oakland_s_exe fdab6978453aeffcb72bcc0ff94cc4e8 104[.]234[.]124[.]55:3360 AS62564 LINVEO-LLC 🇺🇸 Mutex: P737CuJH08tJnvsR NetBIOS_Domain_Name: WIN-MQE7579GLIF AnyRun: any.run/report/7261ced152c37… #XWorm @QuadraNet

Quadranet hosting service in down town Los Angeles is still down due to a power outage, per Barefoot Student.

🚨 Phishing SMBC / SMBCダイレクト (三井住友銀行) のフィッシングサイト情報です。 IP:96.44.160.156 (AS 8100 / ASN-QUADRANET-GLOBAL ) hxxps://cutt.ly/ssmbc -> redirect hxxps://netbkj.pw/

New #CrimsonRAT C2 Server. The C2 IP has 0 VT detections. C2 IP: 96.47.234[.]145 (ASN: QuadraNet) C2 Port: 21821 Signature: { inuordiafo=comgnd } #APT36 #TransparentTribe #Malware #ioc

QuadraNet Unreachable | Web Hosting Talk: webhostingtalk.com/showthrea… #outage #website #DNS #Domains #datacenter @QuadraNet

Website down?

Volt Typhoon, the Chinese state-sponsored hacking group, has been observed rebuilding its "KV-Botnet". This persistent threat targets critical infrastructure, including energy, transportation, and government sectors. Volt Typhoon primarily targets network devices like routers and firewalls from vendors such as Cisco RV320s, Netgear ProSAFE firewalls, and SOHO. By compromising these devices, the group can establish covert backdoors, enabling persistent access to targeted networks. The botnet's command servers are registered on Digital Ocean, Quadranet, and Vultr, to achieve a more diverse and resilient network. These compromised devices serve as proxies, routing traffic between Asia-Pacific and America, making it difficult to trace the attacks. Despite the FBI's efforts to disrupt the botnet in January 2024, Volt Typhoon has demonstrated its resilience. The group continues to refine its techniques and expand its operations. To mitigate the risk of a Volt Typhoon attack, organizations should: ☑️ Keep all devices, especially routers and firewalls, updated with the latest security patches. ☑️ Use strong passwords and enable multi-factor authentication. ☑️ Isolate critical systems and limit network access to authorized users. ☑️ Use network monitoring tools to detect unusual activity and potential threats. ☑️ Conduct regular security audits to identify and address vulnerabilities.

@QuadraNet Hi there! We have been trying to contact your sales department but we aren’t having any luck. Can you help us get in touch with someone?

2024/06/28 04:19 #AMEX #フィッシングメール #Phishing ◆件名 【重要なお知らせ】アメックスのクレジットカード ご利用確認のお願い ◆リンク www.chunhuangd[.]cn/?djkncwoj → /login ◆IP 204.152.213[.]70 #QuadraNet

#Phishing #AMEX #AmericanExpress IP:204.152.213.69 (AS 8100 / ASN-QUADRANET-GLOBAL ) hxxps://www.djzniyb.top hxxps://www.efjrqpn.top hxxps://www.gapdiri.top hxxps://www.mcxfhvc.top hxxps://www.orgdaez.top hxxps://www.pfqfwge.top hxxps://www.rbhozdi.top hxxps://www.revubto.top hxxps://www.rrvcbtz.top hxxps://www.sawjxjt.top hxxps://www.htktlwb.top hxxps://www.lemyffq.top hxxps://www.nillnsr.top hxxps://www.nwxukpr.top hxxps://www.vrdkibh.top hxxps://www.wnxsqei.top hxxps://www.wvuaypa.top hxxps://www.ydnrjvd.top hxxps://www.yxbqegm.top hxxps://www.yxjltwz.top hxxps://www.bhratrj.top hxxps://www.ekonkcp.top hxxps://www.gxcwrpc.top hxxps://www.ipjjlrn.top hxxps://www.jyadkse.top hxxps://www.ndiekeg.top hxxps://www.xrazivf.top hxxps://www.xxrixxt.top hxxps://www.zprsdkm.top hxxps://www.zsxlssl.top hxxps://www.erecfgw.top hxxps://www.frftaeg.top hxxps://www.gwagqnc.top hxxps://www.jilfbqm.top hxxps://www.kpwipby.top hxxps://www.mlauomx.top hxxps://www.mnsppmi.top hxxps://www.nskhgpt.top hxxps://www.pbufgzv.top hxxps://www.qemjwzd.top hxxps://www.dcnaboc.top hxxps://www.dkiuhgn.top hxxps://www.hrbjaai.top hxxps://www.jjyaulr.top hxxps://www.jqoxvgh.top hxxps://www.kryddwv.top hxxps://www.mwzteov.top hxxps://www.nnpmpwg.top hxxps://www.rzphdph.top hxxps://www.xjbuhqt.top hxxps://www.bjuhucs.top hxxps://www.dcffhtp.top hxxps://www.qtgehxa.top hxxps://www.skzlscg.top hxxps://www.ufwjtan.top hxxps://www.wsyuyja.top hxxps://www.yeygkqt.top hxxps://www.ysfptjd.top hxxps://www.zzojymd.top hxxps://www.byujyxf.top hxxps://www.cdgmmoj.top hxxps://www.cmlanxd.top hxxps://www.dtkeeyl.top hxxps://www.fpuqtfc.top hxxps://www.fsaiaet.top hxxps://www.jzklxtb.top hxxps://www.kqtoknt.top hxxps://www.ktntuum.top hxxps://www.ncrmdyg.top hxxps://www.nfdugbh.top hxxps://www.nllledx.top hxxps://www.qsqrhri.top hxxps://www.qwgftnj.top hxxps://www.tapwbxv.top hxxps://www.tydgkhh.top hxxps://www.vqhslxm.top hxxps://www.wihutmm.top hxxps://www.xjjsvwq.top hxxps://www.xnxyyws.top hxxps://www.gpzoeyx.top hxxps://www.jslyura.top hxxps://www.lswceai.top hxxps://www.nfyuomu.top hxxps://www.pcaycwt.top hxxps://www.reqnmql.top hxxps://www.tnlexdt.top hxxps://www.wbraaus.top hxxps://www.xrtvsrq.top hxxps://www.zkccczu.top hxxps://www.pumyagx.top hxxps://www.roobzme.top hxxps://www.sgnxtor.top hxxps://www.ubqapgf.top hxxps://www.vebljak.top hxxps://www.vykotur.top hxxps://www.xlztayd.top hxxps://www.xoburlp.top hxxps://www.xpskoya.top hxxps://www.zrhkycx.top

2024/04/11 00:12 #フィッシングメール #AMEX ◆件名 【緊急の連絡】2024年4月10日 まで、カードの利用が一時停止されました。 ◆リンク n9[.]cl/o74vg → www.wdpuyhn[.]top/?wvwiemlq ◆IP 204.152.213[.]33 #QuadraNet

domains: (do not just block these, these are for researchers not for firewalls :P ) sudarshanadisk[.]com netvigator[.]com i110[.]fun 2l44[.]cn speech-microsoft[.]com saturnreviews[.]com saturnexa[.]com currencyandsecurity[.]com 16clouds[.]com buygreenstudio[.]com 163data[.]com[.]cn contaboserver[.]net nateeka[.]com;amazonaws[.]com nnpservices[.]com hotsrv[.]de amazonaws[.]com;eyefinancemonitor[.]com telesp[.]net[.]br fornex[.]cloud fishway[.]go[.]kr traincaster[.]net;amazonaws[.]com quadranet[.]com lifeglobalunited[.]com

PacificRack 宣布停运了，这家和我有过一些渊源的 IDC，属于一手好牌打得稀烂的代表。 作为“亚洲优化路线”的首创者，PR 在很长一段时间里都是国内 VPS/服务器用户的不二之选，却突然宣布并入 QuadraNet，转向走低端路线，口碑一落千丈。 关于这家 IDC 的 drama 实在太多了，比如著名的 Racknerd 创始人 Dustin 就是 PR 的前销售总监，因为和下属 Adam 一起滥用职权搞私活（臭名昭著的超售四大金刚 AlpahRacks、Woothosting、NFPHosting 以及HostMyBytes）被开除了。 大家如果有用这家 VPS/服务器的尽快备份数据并转移到新的服务商吧，如果你是独立开发者，希望你尽可能选择大厂的产品和服务，不要因为贪小便宜最后吃了大亏。 #typefully

How’s Atlanta? Your Samsung phone on Android 13 is dope. QuadraNet is also doing a good job for your network.

#QuadraNet is looking for a new Data Center Technician I. Check out the post! - Familiarity with data center operations, including #rack&stack, cabling, and power distribution. Check out the listing here: linkedin.com/jobs/view/37962…

(Unverified) Bianlian Go Trojan Found C2: 96[.]44[.]166[.]186:80 Country: United States (AS8100) ASN: ASN-QUADRANET-GLOBAL #c2 #Bianlian #unverified

This same page is being hosted by uspostrivlo[.]com, which is being distributed by 63 975 496 6997 and hosted on 107.150.7[.]110. This IP is owned by QuadraNet, which is a different TTP from the previous observed instances in which the TA preferred Tencent.

Akira #ransomware group has added 3 new victims to their #darkweb portal. - QuadraNet Enterprises🇺🇸 - Visionary Integration Professionals🇺🇸 - Inventum Øst AS🇳🇴 #USA #Norway #akira #darkweb #databreach #cyberattack

Los Angeles based infra & web hosting company QuadraNet has been posted by Akira Ransomware. this is not good @vxunderground

#Phishing #BoY #横浜銀行 IP:192.161.51.187 (AS 8100 / ASN-QUADRANET-GLOBAL ) hxxps://www.bay.co.midorigusa.com