Twit Twit 2

It was a pleasure to host our technology customer Colgate-Palmolive at our offices and discuss future collaborations viral_security photo

Go ahead and support our friends @virusbay_io the next best thing in malware sharing platform!!
viral_security photo
VirusBay @virusbay_io
On my way to #theSAS2018, sitting in the terminal, getting a message from @DaniGoland: “Kickstarter approved!”.
More and more dreams to conquer. Ours and yours! Let’s boost the power of #VirusBay! Together.
Ping me if u have questions,

We decided to participate in the #jvpnycx. A joint effort between Jerusalem Venture Partners & NYC mayor’s office to deliver MSP solutions to ~250K SMBs locates in the area of NYC. virusbay_io photo

Hey all, happy new year! 🥳
We are in a process of upgrading the platform, hence we halted the invite codes process. We know we have over 500 researchers waiting to access and we’re deeply sorry for the inconvenience. Soon we will have everything ready and send you invites!

2018 wants more and more achievements for us! virusbay_io photo

Loved it
virusbay_io photo
x0rz @x0rz
For those interested about propaganda. Let me introduce you to this story from WW2 and why what’s currently happening (on a small scale) is not something new, or even remotely state-of-the-art. Thread (1/17) 👇 #psyops #WW2

#theSAS2019 by @kaspersky is welcoming women to submit talks and present. #awesome
We have many #VirusBay women users - Go go go!

How do you like your coffee?
We like it untouched ☕️ #NewDesigns
virusbay_io photo

Another Qbot/Qakbot sample:
The sample is signed with a cert given to another totally legit company by @SectigoHQ...
This is boring now.
In 24h, this is the 3rd different signer I seen used to sign Qakbot samples.
This is interesting...
malwrhunterteam photo

One talks like this when only the money matters and nothing else, but obviously he not want to say it, because that make them look bad (to say the least)...
And you know, revoking the cert after the campaign is over is good for exactly 1 thing: nothing.
@SwitHak @DanielGallagher
malwrhunterteam photo

CryptoMix Clop ransomware sample:
Note: ClopReadMe.txt
Extension: .Clop
Signed with a cert given to a totally legit company by @SectigoHQ...
@BleepinComputer @demonslay335
malwrhunterteam photo

Another Qbot/Qakbot sample:
"Edsabame Consultants Ltd" also must be a totally legit company, as @SectigoHQ gave them a cert & Sectigo only gives certs to totally legit companies as we all know...
Or... maybe they only care about the money?
cc @SwitHak
malwrhunterteam photo
"8bitindustries Limited" is a totally legit company, right @SectigoHQ?
malwrhunterteam photo

Would be interesting to know how much of the money Sectigo made are from the certs that they gave to "companies" that:
- has maximum 2 people
- was incorporated 6 months to 2 years before giving the cert
- has not a single info about on the whole internet (except registries ofc)
malwrhunterteam photo
Twit Twit 2

You May Also Like