#Jesus, #Servers, #cybersecurity, #Guns, #Brewer and #Libertarian.
Joined April 2012
- Tweets 509
- Following 3,033
- Followers 624
- Likes 389
31 Photos and videos
29 Nov 2018
Amazing how many people are clicking on this, come on people, don't be so robotic and open up stuff like this.
#phishing #infosecurity #cybersecurity
3
6
29 Nov 2018
New file rec'd and uploaded to VT fresh submission.
app.any.run/tasks/cac2b637-a…
virustotal.com/#/file/d57af3…
@JRoosen @malwrhunterteam
1
7
28 Nov 2018
got a couple emails with this file
virustotal.com/#/file/020e9c…
sender IP is 194.126.106.77) smtp.mailfrom=veakor[.]ee
from 10.2.22.122 (unknown [190.104.232.182]) (Authenticated sender: veakor@veakor.ee) by NETI-Relayhost3.estpak[.]ee
@JRoosen @malwrhunterteam
1
4
21 Nov 2018
Links to redirect to fake PC Security / Phished through sharepoint site #cybersecurity hybrid-analysis.com/sample/7…
@JRoosen
2
1
6
12 Jul 2018
This week started seeing a lot of #phishing messages with subject: 'Restore your inbox access' links all point to a subdomain(s) at ignorelist[.]com
10 Jul 2018
OpenDir, multiple phishing kits, nice vanity url hxxps://great.mypen.is/ lol. capitalone, office, docusign.
1
24 May 2018
#phishing Wells Fargo
Document not in VirusTotal
URL dwnld: hxxps://bit.ly/2xajyeT
hxxp://getmorestrike.com/pint.php embedded link in file
Sndr: @ uoguelph[.ca]
@phishingalert @WellsFargo @malwrhunterteam @uofg
1
24 May 2018
And other via owly.
hxxp://ow.ly/BvB930kabpg
hxxp://fungimed.ro/therapy/Healththerapist/OneDK/index.php?platform=hootsuite
@mochahost please take down site.
204.93.193.150 (Chicago
ASN23352 (SERVERCENTRAL - Server Central Network, US)
PTR: imola.mochahost[.com]
fungimed[.ro] x.com/sweatshack/status/9997…
24 May 2018
#Office365 #phishing site via owly
@hootsuite hxxp://ow.ly/EluN30kahk0
@GoDaddyHelp take the site down please. hxxps://nonsfw.com/therapy/Healththerapist/OneDK/index.php?platform=hootsuite
24 May 2018
#Office365 #phishing site via owly
@hootsuite hxxp://ow.ly/EluN30kahk0
@GoDaddyHelp take the site down please. hxxps://nonsfw.com/therapy/Healththerapist/OneDK/index.php?platform=hootsuite
24 May 2018
#phishing for Chase login creds
Sndr accessyss@tx.gov
Redir site: hxxps://nicatel.net/Galeria/chase/redirect.com.htm
to site in pic.
@WhoPhishYou @phishingalert @joshltong you've been compromised and host the site.
23 May 2018
#Office365 phishing kit zip file found in open dir.
hxxp://kiartbordados.com.br/5/
Redir frm: hxxp://neva-eco.ru/js
Utilizes blocking of domains & IPs.
via em: delivery_failure@mail.msservicesnetwork.[]com
#phishing #cybersecurity
@phishingalert @MicrosoftDCU @malwrhunterteam
1
3
4 May 2018
Office 365 #phishing
hxxp://farokh.ir/Logistics/Tromptu.htm redirects to
hxxps://dpgassociates.com/products/one/
@MicrosoftDCU
1
1
1 May 2018
Music and imagery to relax the person that got owned. 😜 x.com/PhishingAi/status/9914…
1 May 2018
embedding 'Hans Zimmer - Time' from the Inception sound track was a nice touch I think.
1 May 2018
Excel Online #phishing site
hxxp://northsidehiphop.ca/new/wp-content/plugins/ppus/celsx/
And then the ownage link
hxxp://northsidehiphop.ca/new/wp-content/plugins/ppus/
1
1
1 May 2018
Here's a google search for the alias
hxxps://www.google.com/search?q=kadd3chy&ie=utf-8&oe=utf-8
One link includes a defaced website with encrypted files.
Busy little guy.
@malwrhunterteam
1
That Guy retweeted
28 Apr 2018
4
14
50