Cybersec lifelong student | Blue Teamer | Dumbass (still am)
Joined May 2021
- Tweets 640
- Following 969
- Followers 169
- Likes 441
144 Photos and videos
Jun 9
This post legit surprised me..I was like..since when? Oh: I clicked the link😅. Oh well: if you still followed me and my post, I am honored to be worthy of a follow😌. FYI: I am trying to be active these days so keep your eyes peeled on that~
24
Jun 2
I am posting out of my hiatus scrolling just to find this. Reminder to all: this list is now one of the featured list on @startme and is currently maintained by yours truly. The link in the quoted tweet. A step foward for Malaysian OSINT scene😌
#osint #malaysia
Researching Malaysia from open sources?
This Start.me page brings OSINT resources for landmarks, traffic, military vessel tracking, environment monitoring, and more into one clear dashboard.
start.me/p/KMqwBB/osint-in-m… #OSINT #Malaysia
2
1
16
1,295
finx retweeted
May 21
May 18
📢⚠️ A government-backed cyber campaign targeting Malaysian organizations used Cloudflare storage services to move stolen data and hide malicious activity.
Source: hackread.com/government-back…
#CyberSecurity #Malaysia #Cloudflare #CyberAttack #DataBreach
1
63
174
4,846
finx retweeted
‼️CYBERSECURITY INCIDENT
GitHub Pull Request (PR) #3139 was made regarding the removal of NX Console from the VS Code Marketplace on 18/5/2026.
The VS Code extension was compromised, and it contains an infostealer.
Microsoft has since removed it from the VS Code marketplace.
1
1
1
164
finx retweeted
‼️🚨 CYBERSECURITY INCIDENT — A threat actor on a hacker forum, "TeamPCP" is allegedly selling GitHub source code.
Mylon Intelligence has identified that there was no user data involved which aligns with GitHub investigative reports.
1
1
2
443
May 20
Note: it seems like people ran with the Alor Gajah Qilin thing. Nobody really seems to see this very particular verification from @r4shsec. So, boosted for visibility. This account also manages @MylonIntel so go follow that also (covers darkweb stuff).
#malaysia #threatintel
For anyone wondering, the threat actors behind it, “Qilin” haven’t published any samples to verify the authenticity of the breach.
There’s currently no cause for alarm.
10
574
finx retweeted
There appears to have been some big changes on the Google Advanced Search Page, but it does seem, that for now at least, that the other search filters, such as intitle: & inurl: etc are still working #OSINT
1
2
326
finx retweeted
MASSA app by @mycert is seeing rapid updates! It now features app recognition via certificate signatures and deep scanning for suspicious APK/XAPK/ZIP files. Detecting apps removed from the Play Store, enhanced app list sorting, and major stability fixes play.google.com/store/apps/d…
15
47
2,924
For anyone wondering, the threat actors behind it, “Qilin” haven’t published any samples to verify the authenticity of the breach.
There’s currently no cause for alarm.
May 17
🚨 Ransom group "Qilin" publishes "MAJLIS PERBANDARAN ALOR GAJAH" - Malaysia 🇲🇾
📍 Location: Alor Gajah, Melaka, Malaysia
🏢 Industry: Local Government
🔗 Website: mpag.gov.my
Majlis Perbandaran Alor Gajah (MPAG) is the municipal council for the Alor Gajah district in Melaka. Established in 2003, it oversees urban planning, public services, and local governance to support community development and residents’ well-being.
1
5
739
finx retweeted
‼️🇲🇾 MALAYSIA RANSOMWARE ALERT
Ransomware group, "Qilin" has allegedly leaked data to a company in Malaysia, PNSB Insurance Brokers Sdn Bhd.
Leaked data may contain sensitive PII & confidential documents.
- ⏰Date: 17/5/2026
- 📦80GB (245,578 files)
48
74
5,997
finx retweeted
May 18
📢 Ransomware Alert: 🇲🇾
Malaysia Smelting Corporation Berhad (msmelt.com), a Malaysia-based mining company, has reportedly fallen victim to LAMASHTU Ransomware.
NB: The group intends to publish the data within 7-8 days.
🔍Key Details:
🛡️Threat actor: LAMASHTU
📅 Reported on: 18/05/26
⚠️ Data Compromised: 30 GB
12
23
2,654
finx retweeted
May 16
“You cannot govern technology you have only been briefed of”
*Taps on the sign aggressively*
7
22
1,395
finx retweeted
May 16
Wake up guys, our 🇲🇾 government just got hacked by a vibe coder
May 16
Oasis Security reported a targeted intrusion against multiple Malaysian government bodies using bespoke Python tooling for internal enumeration and data exfiltration, active webshells, and undisclosed C2 infrastructure with a C# beacon and Python control… oasis-security.io/blog/malay…
3
241
695
34,453
May 14
Hey, just a quick question: if you're sharing your fav cafe, how would you do that? List with google map links?
What if I tell you, you can create sharable custom map?
I got tutorial on how to do so:
medium.com/@thisisfinx/lite-…
No worries, lots of pictures in the guide~
#osint
1
1
10
397
finx retweeted
May 12
Fake Malaysia LHDN (tax authority) themed site hosting a “Mandatory Tax Compliance Review” notice.
njifjuhgh[.]top
The “DOWNLOAD & SEND DOCUMENTS - LHDN SAFE PORTAL” file downloads a #Tedy trojan payload.
Interesting part, the same domain previously hosted Indian tax themed phishing/malware
urlscan.io/result/019d7627-0…
file hash: 7263622822694fc8c2720974c31b5c12b2fdc864ce496ab4f6da57e8c361b59b
#phishing #malware @malwrhunterteam @500mk500 @skocherhan
2
68
73
7,091
May 7
Finally, a crash course on how MY Govt works🎉. This new OSINT in Malaysia resource startme focuses on MY Govt Structure and complete link for federal, state and PBT. Here is the link:
medium.com/@thisisfinx/updat…
#malaysia #osint
1
5
15
708
May 7
And don't you worry, every single link is working. Why I am confident? I manually check them, my head hurts 😵💫
1
36
May 7
Now, you're asking, why don't you scrape it or use AI like a normal human do? To that I give you 3 issues:
1) Domain and subdomain do not match, no consistent pattern between all states
2) No internal record
3) Dead links
So, no choice gotta do manual 😵💫
60