A friend recently got hit with Dever ransomware. The #Attacker appears to have been active for 14 minutes, dropping tools such as Mimikatz and Lazagne and then launching Dever ransomware which included SMB scanning, persistence mechanisms and lateral movement. See the timeline, summary and IOCs below

A friend recently got hit with Dever ransomware. The attacker appears to have been active for 14 minutes, dropping tools such as Mimikatz and Lazagne and then launching Dever ransomware which included SMB scanning, persistence mechanisms and lateral movement. See the timeline, summary and IOCs below submitted by /u/InfoSecJim to r/netsec [link] [comments] top scoring links : multi

Read More

Installed express#VPN 2.2.7 firmware on WRT3200ACM and noticed it calling home to the following websites 20mins after installation. I tried looking up xoiyany.com and I cannot get any info other than it being a AWS instance. The open#VPN Config on ex#VPN doesnt even connect anywhere near AWS servers

Installed expressvpn 2.2.7 firmware on WRT3200ACM and noticed it calling home to the following websites 20mins after installation. I tried looking up xoiyany.com and I cannot get any info other than it being a AWS instance. The openvpn Config on exvpn doesnt even connect anywhere near AWS servers submitted by /u/saik0pod to r/security [link] [comments] top scoring links : multi

Read More

This is the second time I had a cop come to my house for the same thing.. (maybe a targeted spoof call)

This is the second time I had a cop come to my house for the same thing.. (maybe a targeted spoof call) My OP: I was just woken up around 3am by my mom knocking on my door, since she travels so often I thought she came to say bye, but I was sadly wrong. I woke up to a real cop asking about the call. Everybody at this residency was asleep and we didn’t know what was even going on. They said that the call was from my family…

Read More