techhub.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
A hub primarily for passionate technologists, but everyone is welcome

Administered by:

Server stats:

4.6K
active users

#datatheft

3 posts3 participants0 posts today
Paul Healey<p><span class="h-card" translate="no"><a href="https://mastodon.social/@mfioretti_en" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>mfioretti_en</span></a></span> To any that doubt that Trump is accelerating the push for a violent totalitarian world order, than explain the increase in racketeering e.g. Thiel’s acquisition of NHS data to be used as blackmail to finance their Neo-Nazi programme? Government collaboration and submission to his ultras’ final solution of ecocide; pushback against necessary environmental protections is as real as it gets. If any of us or our children survive their great ecocide collapse it likely be an intervention from Nature itself! <a href="https://www.splcenter.org/resources/hatewatch/white-nationalist-who-met-peter-thiel-admired-terroristic-literature/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">splcenter.org/resources/hatewa</span><span class="invisible">tch/white-nationalist-who-met-peter-thiel-admired-terroristic-literature/</span></a> <a href="https://universeodon.com/tags/Purges" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Purges</span></a> <a href="https://universeodon.com/tags/Genocides" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Genocides</span></a> <a href="https://universeodon.com/tags/Resistance" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Resistance</span></a> <a href="https://universeodon.com/tags/OligarchsAreNeoNazis" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OligarchsAreNeoNazis</span></a> <a href="https://universeodon.com/tags/Ecocide" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Ecocide</span></a> <a href="https://universeodon.com/tags/RevolutionOrExtinction" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RevolutionOrExtinction</span></a> <a href="https://universeodon.com/tags/DataTheft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DataTheft</span></a> <a href="https://universeodon.com/tags/3rdPartyTakeovers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>3rdPartyTakeovers</span></a> <a href="https://universeodon.com/tags/FascistDeathCults" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FascistDeathCults</span></a> <a href="https://universeodon.com/tags/CivilWars" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CivilWars</span></a> <a href="https://universeodon.com/tags/TheHegemonyOfHydra" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TheHegemonyOfHydra</span></a> <a href="https://universeodon.com/tags/FascistTech" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FascistTech</span></a></p>
Kalvin<p>So, Lemmy.world does not know how to respect me by returning all of my data that they stole from me, which is a violation of respect for the human being, as stated in the Universal Declaration of Human Rights. </p><p><a href="https://flipboard.social/tags/DataPrivacy" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DataPrivacy</span></a> <a href="https://flipboard.social/tags/HumanRights" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>HumanRights</span></a> <a href="https://flipboard.social/tags/LemmyWorld" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>LemmyWorld</span></a> <a href="https://flipboard.social/tags/UDHR" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>UDHR</span></a> <a href="https://flipboard.social/tags/DigitalRights" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DigitalRights</span></a> <a href="https://flipboard.social/tags/PrivacyMatters" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PrivacyMatters</span></a> <a href="https://flipboard.social/tags/DataTheft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DataTheft</span></a> <a href="https://flipboard.social/tags/OnlineFreedom" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OnlineFreedom</span></a> <a href="https://flipboard.social/tags/CyberEthics" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberEthics</span></a> <a href="https://flipboard.social/tags/HumanDignity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>HumanDignity</span></a> <a href="https://flipboard.social/tags/InternetPrivacy" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InternetPrivacy</span></a> <a href="https://flipboard.social/tags/DataProtection" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DataProtection</span></a> <a href="https://flipboard.social/tags/TechAccountability" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechAccountability</span></a> <a href="https://flipboard.social/tags/PrivacyViolations" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PrivacyViolations</span></a> <a href="https://flipboard.social/tags/DigitalJustice" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DigitalJustice</span></a> <a href="https://flipboard.social/tags/MyDataMyRights" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MyDataMyRights</span></a> <a href="https://flipboard.social/tags/TechEthics" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechEthics</span></a> <a href="https://flipboard.social/tags/OnlineSafety" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OnlineSafety</span></a> <a href="https://flipboard.social/tags/HumanRightsOnline" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>HumanRightsOnline</span></a> <a href="https://flipboard.social/tags/StandUp" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>StandUp</span></a></p>
Rene Robichaud<p>Coyote malware abuses Windows accessibility framework for data theft<br><a href="https://www.bleepingcomputer.com/news/security/coyote-malware-abuses-windows-accessibility-framework-for-data-theft/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">bleepingcomputer.com/news/secu</span><span class="invisible">rity/coyote-malware-abuses-windows-accessibility-framework-for-data-theft/</span></a></p><p><a href="https://mastodon.social/tags/Infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Infosec</span></a> <a href="https://mastodon.social/tags/Security" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Security</span></a> <a href="https://mastodon.social/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Cybersecurity</span></a> <a href="https://mastodon.social/tags/CeptBiro" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CeptBiro</span></a> <a href="https://mastodon.social/tags/Coyote" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Coyote</span></a> <a href="https://mastodon.social/tags/Malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Malware</span></a> <a href="https://mastodon.social/tags/Windows" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Windows</span></a> <a href="https://mastodon.social/tags/AccessibilityFramework" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AccessibilityFramework</span></a> <a href="https://mastodon.social/tags/DataTheft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DataTheft</span></a></p>
OTX Bot<p>Ongoing SonicWall Secure Mobile Access (SMA) Exploitation Campaign using the OVERSTEP Backdoor</p><p>A financially-motivated threat actor, UNC6148, is targeting fully patched end-of-life SonicWall SMA 100 series appliances. They are using stolen credentials and OTP seeds from previous intrusions to regain access. The actor has deployed a new persistent backdoor/user-mode rootkit called OVERSTEP, which modifies the appliance's boot process, steals credentials, and conceals itself. UNC6148 may be using an unknown zero-day vulnerability for deployment. The campaign, ongoing since October 2024, aims at data theft, extortion, and possibly ransomware deployment. OVERSTEP's functionality includes establishing reverse shells, exfiltrating passwords, and implementing usermode rootkit capabilities. Organizations are advised to rotate all credentials and follow provided recommendations to mitigate the threat.</p><p>Pulse ID: 6879f91ca3f7a11b698fd127<br>Pulse Link: <a href="https://otx.alienvault.com/pulse/6879f91ca3f7a11b698fd127" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">otx.alienvault.com/pulse/6879f</span><span class="invisible">91ca3f7a11b698fd127</span></a> <br>Pulse Author: AlienVault<br>Created: 2025-07-18 07:34:52</p><p>Be advised, this data is unverified and should be considered preliminary. Always do further verification.</p><p><a href="https://social.raytec.co/tags/BackDoor" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BackDoor</span></a> <a href="https://social.raytec.co/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurity</span></a> <a href="https://social.raytec.co/tags/DataTheft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DataTheft</span></a> <a href="https://social.raytec.co/tags/ELF" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ELF</span></a> <a href="https://social.raytec.co/tags/Extortion" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Extortion</span></a> <a href="https://social.raytec.co/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfoSec</span></a> <a href="https://social.raytec.co/tags/OTX" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OTX</span></a> <a href="https://social.raytec.co/tags/OpenThreatExchange" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenThreatExchange</span></a> <a href="https://social.raytec.co/tags/Password" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Password</span></a> <a href="https://social.raytec.co/tags/Passwords" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Passwords</span></a> <a href="https://social.raytec.co/tags/RAT" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RAT</span></a> <a href="https://social.raytec.co/tags/RansomWare" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RansomWare</span></a> <a href="https://social.raytec.co/tags/Rootkit" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Rootkit</span></a> <a href="https://social.raytec.co/tags/Vulnerability" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Vulnerability</span></a> <a href="https://social.raytec.co/tags/Word" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Word</span></a> <a href="https://social.raytec.co/tags/ZeroDay" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ZeroDay</span></a> <a href="https://social.raytec.co/tags/bot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>bot</span></a> <a href="https://social.raytec.co/tags/AlienVault" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AlienVault</span></a></p>
OTX Bot<p>Powerful MaaS On the Prowl for Credentials and Crypto Assets</p><p>Katz Stealer is a sophisticated infostealer marketed as Malware-as-a-Service (MaaS), launched in early 2025. It features robust credential and data theft capabilities, along with modern evasion and anti-analysis techniques. The stealer targets a wide range of personal and sensitive information, including passwords, cryptocurrency keys, and browser session data. Operated through a web-based management panel, Katz Stealer allows affiliates to generate custom payloads and manage stolen data. Its infection chain involves obfuscated JavaScript droppers, steganography, and process hollowing techniques. The malware focuses heavily on browser data theft and cryptocurrency wallet targeting, with the ability to bypass some browser security measures.</p><p>Pulse ID: 68795169d12d2d2919a05908<br>Pulse Link: <a href="https://otx.alienvault.com/pulse/68795169d12d2d2919a05908" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">otx.alienvault.com/pulse/68795</span><span class="invisible">169d12d2d2919a05908</span></a> <br>Pulse Author: AlienVault<br>Created: 2025-07-17 19:39:21</p><p>Be advised, this data is unverified and should be considered preliminary. Always do further verification.</p><p><a href="https://social.raytec.co/tags/Browser" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Browser</span></a> <a href="https://social.raytec.co/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurity</span></a> <a href="https://social.raytec.co/tags/DataTheft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DataTheft</span></a> <a href="https://social.raytec.co/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfoSec</span></a> <a href="https://social.raytec.co/tags/InfoStealer" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfoStealer</span></a> <a href="https://social.raytec.co/tags/Java" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Java</span></a> <a href="https://social.raytec.co/tags/JavaScript" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>JavaScript</span></a> <a href="https://social.raytec.co/tags/MaaS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MaaS</span></a> <a href="https://social.raytec.co/tags/Malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Malware</span></a> <a href="https://social.raytec.co/tags/MalwareAsAService" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MalwareAsAService</span></a> <a href="https://social.raytec.co/tags/OTX" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OTX</span></a> <a href="https://social.raytec.co/tags/OpenThreatExchange" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenThreatExchange</span></a> <a href="https://social.raytec.co/tags/Password" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Password</span></a> <a href="https://social.raytec.co/tags/Passwords" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Passwords</span></a> <a href="https://social.raytec.co/tags/RAT" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RAT</span></a> <a href="https://social.raytec.co/tags/Steganography" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Steganography</span></a> <a href="https://social.raytec.co/tags/Word" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Word</span></a> <a href="https://social.raytec.co/tags/bot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>bot</span></a> <a href="https://social.raytec.co/tags/cryptocurrency" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cryptocurrency</span></a> <a href="https://social.raytec.co/tags/AlienVault" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AlienVault</span></a></p>
OTX Bot<p>The Solidity Language open-source package was used in a $500,000 crypto heist</p><p>A blockchain developer in Russia lost $500,000 in crypto assets due to a malicious Solidity Language extension for Cursor AI IDE. The fake extension, downloaded 54,000 times, appeared higher in search results than the legitimate one due to ranking algorithms. It installed malware that allowed remote access and data theft. The attackers used ScreenConnect for remote control and deployed various scripts to steal wallet passphrases. A new malicious package was published shortly after the first was removed, with an inflated download count of 2 million. Similar attacks were found targeting blockchain developers through other extensions and npm packages. The incident highlights the ongoing threat of malicious open-source packages in the crypto industry.</p><p>Pulse ID: 6877cefdf99ce3c2912e8daa<br>Pulse Link: <a href="https://otx.alienvault.com/pulse/6877cefdf99ce3c2912e8daa" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">otx.alienvault.com/pulse/6877c</span><span class="invisible">efdf99ce3c2912e8daa</span></a> <br>Pulse Author: AlienVault<br>Created: 2025-07-16 16:10:37</p><p>Be advised, this data is unverified and should be considered preliminary. Always do further verification.</p><p><a href="https://social.raytec.co/tags/BlockChain" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BlockChain</span></a> <a href="https://social.raytec.co/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurity</span></a> <a href="https://social.raytec.co/tags/DataTheft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DataTheft</span></a> <a href="https://social.raytec.co/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfoSec</span></a> <a href="https://social.raytec.co/tags/Malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Malware</span></a> <a href="https://social.raytec.co/tags/NPM" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NPM</span></a> <a href="https://social.raytec.co/tags/OTX" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OTX</span></a> <a href="https://social.raytec.co/tags/OpenThreatExchange" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenThreatExchange</span></a> <a href="https://social.raytec.co/tags/RCE" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RCE</span></a> <a href="https://social.raytec.co/tags/Russia" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Russia</span></a> <a href="https://social.raytec.co/tags/ScreenConnect" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ScreenConnect</span></a> <a href="https://social.raytec.co/tags/bot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>bot</span></a> <a href="https://social.raytec.co/tags/developers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>developers</span></a> <a href="https://social.raytec.co/tags/AlienVault" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AlienVault</span></a></p>
OTX Bot<p>OCTALYN STEALER UNMASKED</p><p>The Octalyn Forensic Toolkit, a publicly available GitHub project, presents itself as a research tool but functions as a sophisticated credential stealer. It consists of a C++ payload module and a Delphi-based builder interface, allowing even low-skilled actors to generate functional binaries. The toolkit extracts browser data, Discord and Telegram tokens, VPN configurations, gaming account data, and cryptocurrency wallet artifacts. It establishes persistence, organizes stolen data, and exfiltrates it via Telegram. The malware's modular design, ease of use, and active exfiltration capability pose significant risks if misused. It employs obfuscation techniques, Windows persistence methods, and structured data theft, demonstrating a deliberate effort to evade detection and maximize impact.</p><p>Pulse ID: 68775d712874ee7a98a77009<br>Pulse Link: <a href="https://otx.alienvault.com/pulse/68775d712874ee7a98a77009" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">otx.alienvault.com/pulse/68775</span><span class="invisible">d712874ee7a98a77009</span></a> <br>Pulse Author: AlienVault<br>Created: 2025-07-16 08:06:09</p><p>Be advised, this data is unverified and should be considered preliminary. Always do further verification.</p><p><a href="https://social.raytec.co/tags/Browser" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Browser</span></a> <a href="https://social.raytec.co/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurity</span></a> <a href="https://social.raytec.co/tags/DataTheft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DataTheft</span></a> <a href="https://social.raytec.co/tags/Delphi" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Delphi</span></a> <a href="https://social.raytec.co/tags/Discord" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Discord</span></a> <a href="https://social.raytec.co/tags/ELF" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ELF</span></a> <a href="https://social.raytec.co/tags/GitHub" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GitHub</span></a> <a href="https://social.raytec.co/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfoSec</span></a> <a href="https://social.raytec.co/tags/Malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Malware</span></a> <a href="https://social.raytec.co/tags/OTX" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OTX</span></a> <a href="https://social.raytec.co/tags/OpenThreatExchange" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenThreatExchange</span></a> <a href="https://social.raytec.co/tags/RAT" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RAT</span></a> <a href="https://social.raytec.co/tags/Telegram" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Telegram</span></a> <a href="https://social.raytec.co/tags/VPN" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>VPN</span></a> <a href="https://social.raytec.co/tags/Windows" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Windows</span></a> <a href="https://social.raytec.co/tags/bot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>bot</span></a> <a href="https://social.raytec.co/tags/cryptocurrency" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cryptocurrency</span></a> <a href="https://social.raytec.co/tags/AlienVault" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AlienVault</span></a></p>
NetSec.news<p>🚨 British hacker <a href="https://mastodon.social/tags/IntelBroker" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IntelBroker</span></a> faces extradition to U.S. 💰 Over $25M in damages from 40+ company breaches 💻 Victims include Cisco, AMD, Ford, and healthcare providers 🏥 Healthcare data including SSNs and medical plans stolen <a href="https://mastodon.social/tags/CyberCrime" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberCrime</span></a> <a href="https://mastodon.social/tags/DataTheft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DataTheft</span></a> <a href="https://mastodon.social/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurity</span></a> 👉 <a href="https://www.netsec.news/cyber-criminal-extradition-to-the-us/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">netsec.news/cyber-criminal-ext</span><span class="invisible">radition-to-the-us/</span></a></p>
OTX Bot<p>Spyware Targets Employees via Weaponized Word Documents Delivering Malware Payloads</p><p>An unidentified spyware called Batavia has been targeting Russian industrial organizations since July 2024 through a sophisticated phishing operation. The campaign uses bait emails disguised as contract agreements to trick employees into downloading malicious scripts, initiating a multi-stage infection process. The spyware's ultimate goal is to exfiltrate sensitive internal documents and system data. The attack involves multiple stages, including downloading encrypted VBS scripts, executing Delphi-written executables, and deploying C++-based malware for expanded data theft. Batavia employs advanced evasion tactics and persistence mechanisms, making it a significant threat to organizational security. The campaign remains active, with potential for further damage due to its ability to download additional payloads.</p><p>Pulse ID: 686ddc6c70f3b01f8f7c7edf<br>Pulse Link: <a href="https://otx.alienvault.com/pulse/686ddc6c70f3b01f8f7c7edf" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">otx.alienvault.com/pulse/686dd</span><span class="invisible">c6c70f3b01f8f7c7edf</span></a> <br>Pulse Author: AlienVault<br>Created: 2025-07-09 03:05:16</p><p>Be advised, this data is unverified and should be considered preliminary. Always do further verification.</p><p><a href="https://social.raytec.co/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurity</span></a> <a href="https://social.raytec.co/tags/DataTheft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DataTheft</span></a> <a href="https://social.raytec.co/tags/Delphi" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Delphi</span></a> <a href="https://social.raytec.co/tags/Email" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Email</span></a> <a href="https://social.raytec.co/tags/ICS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ICS</span></a> <a href="https://social.raytec.co/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfoSec</span></a> <a href="https://social.raytec.co/tags/Malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Malware</span></a> <a href="https://social.raytec.co/tags/OTX" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OTX</span></a> <a href="https://social.raytec.co/tags/OpenThreatExchange" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenThreatExchange</span></a> <a href="https://social.raytec.co/tags/Phishing" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Phishing</span></a> <a href="https://social.raytec.co/tags/RAT" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RAT</span></a> <a href="https://social.raytec.co/tags/Russia" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Russia</span></a> <a href="https://social.raytec.co/tags/SMS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SMS</span></a> <a href="https://social.raytec.co/tags/SpyWare" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SpyWare</span></a> <a href="https://social.raytec.co/tags/VBS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>VBS</span></a> <a href="https://social.raytec.co/tags/Word" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Word</span></a> <a href="https://social.raytec.co/tags/bot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>bot</span></a> <a href="https://social.raytec.co/tags/AlienVault" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AlienVault</span></a></p>
Pyrzout :vm:<p>Batavia spyware steals data from Russian organizations – Source: securelist.com <a href="https://ciso2ciso.com/batavia-spyware-steals-data-from-russian-organizations-source-securelist-com/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">ciso2ciso.com/batavia-spyware-</span><span class="invisible">steals-data-from-russian-organizations-source-securelist-com/</span></a> <a href="https://social.skynetcloud.site/tags/rssfeedpostgeneratorecho" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>rssfeedpostgeneratorecho</span></a> <a href="https://social.skynetcloud.site/tags/MalwareDescriptions" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MalwareDescriptions</span></a> <a href="https://social.skynetcloud.site/tags/MalwareTechnologies" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MalwareTechnologies</span></a> <a href="https://social.skynetcloud.site/tags/CyberSecurityNews" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurityNews</span></a> <a href="https://social.skynetcloud.site/tags/MicrosoftWindows" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MicrosoftWindows</span></a> <a href="https://social.skynetcloud.site/tags/Targetedattacks" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Targetedattacks</span></a> <a href="https://social.skynetcloud.site/tags/Windowsmalware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Windowsmalware</span></a> <a href="https://social.skynetcloud.site/tags/securelistcom" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>securelistcom</span></a> <a href="https://social.skynetcloud.site/tags/spearphishing" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>spearphishing</span></a> <a href="https://social.skynetcloud.site/tags/PowerShell" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PowerShell</span></a> <a href="https://social.skynetcloud.site/tags/datatheft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>datatheft</span></a> <a href="https://social.skynetcloud.site/tags/Malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Malware</span></a> <a href="https://social.skynetcloud.site/tags/Spyware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Spyware</span></a> <a href="https://social.skynetcloud.site/tags/VBS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>VBS</span></a></p>
☮ ♥ ♬ 🧑‍💻<p>“Suno, for those of you not familiar, is an <a href="https://ioc.exchange/tags/AI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AI</span></a> <a href="https://ioc.exchange/tags/SongGenerator" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SongGenerator</span></a>: enter a text prompt (such as “a jazz, reggae, EDM pop song about my imagination”) and a song comes back. Like many <a href="https://ioc.exchange/tags/GenerativeAI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GenerativeAI</span></a> companies, it is also being sued by all and sundry for ingesting <a href="https://ioc.exchange/tags/copyrighted" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>copyrighted</span></a> <a href="https://ioc.exchange/tags/material" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>material</span></a>. The parties in the suit — including major labels and the <a href="https://ioc.exchange/tags/RIAA" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RIAA</span></a> — don’t have a smoking gun, since they can’t directly peek at Suno’s <a href="https://ioc.exchange/tags/TrainingData" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TrainingData</span></a>. But they have managed to generate some suspiciously similar-sounding AI generated materials, <a href="https://ioc.exchange/tags/mimicking" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>mimicking</span></a> (among others) “Johnny B. Goode,” “Great Balls of Fire,” and Jason Derulo’s habit of singing his own name.</p><p><a href="https://ioc.exchange/tags/Suno" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Suno</span></a> essentially admits these songs were <a href="https://ioc.exchange/tags/regurgitated" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>regurgitated</span></a> from <a href="https://ioc.exchange/tags/copyrighted" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>copyrighted</span></a> source material, but it says such use was legal. “It is no secret that the tens of millions of <a href="https://ioc.exchange/tags/recordings" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>recordings</span></a> that Suno’s model was trained on presumably included recordings whose rights are owned by the Plaintiffs in this case,” it says in its own legal filing. Whether AI training data constitutes fair use is a common but unsettled legal argument, and the plaintiffs contend Suno still amounts to “pervasive <a href="https://ioc.exchange/tags/illegal" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>illegal</span></a> <a href="https://ioc.exchange/tags/copying" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>copying</span></a>” of artists’ works.”</p><p><a href="https://ioc.exchange/tags/NYA" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NYA</span></a> / <a href="https://ioc.exchange/tags/music" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>music</span></a> / <a href="https://ioc.exchange/tags/ElizabethLopatto" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ElizabethLopatto</span></a> / <a href="https://ioc.exchange/tags/amazon" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>amazon</span></a> / <a href="https://ioc.exchange/tags/DataTheft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DataTheft</span></a> &lt;<a href="https://neilyoungarchives.com/news/3/article?id=Music%20-%20Amazon%20is%20blundering%20into%20an%20AI%20copyright%20nightmare" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">neilyoungarchives.com/news/3/a</span><span class="invisible">rticle?id=Music%20-%20Amazon%20is%20blundering%20into%20an%20AI%20copyright%20nightmare</span></a>&gt;</p>