GGCorp – 2,376,330 breached accounts
HIBP In August 2022, the MMORPG website GGCorp suffered a data breach that exposed almost 2.4M unique email addresses. The...
E-Pal – 108,887 breached accounts
HIBP In October 2022, the service dedicated to finding friends on Discord known as E-Pal disclosed a data breach. The...
Not Acxiom (unverified) – 51,730,831 breached accounts
HIBP In 2020, a corpus of data containing almost a quarter of a billion records spanning over 400 different fields...
Lolzteam – 398,011 breached accounts
HIBP In May 2018, the Russian hacking forum Lolzteam suffered a data breach that exposed 400k members. The impacted data...
Doomworld – 34,478 breached accounts
HIBP In October 2022, the Doomworld fourm suffered a data breach that exposed 34k member records. The data included email...
CoinTracker – 1,557,153 breached accounts
HIBP In December 2022, the Crypto & NFT taxes service CoinTracker reported a data breach that impacted over 1.5M of...
Gemini – 5,274,214 breached accounts
HIBP In late 2022, data allegedly taken from the Gemini crypto exchange was posted to a public hacking forum. The...
Abandonia (2022) – 919,790 breached accounts
HIBP In November 2022, the gaming website dedicated to classic DOS games Abandonia suffered a data breach resulting in the...
Deezer – 229,037,936 breached accounts
HIBP In late 2022, the music streaming service Deezer disclosed a data breach that impacted over 240M customers. The breach...
Benchmark – 93,343 breached accounts
HIBP In November 2019, the Serbian technology news website Benchmark suffered a breach of its forum that exposed 93k customer...
LockBit 3.0 Ransomware Victim: ssp-worldwide[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Cypherhound – Terminal Application That Contains 260+ Neo4j Cyphers For BloodHound Data Sets
A Python3 terminal application that contains 260+ Neo4j cyphers for BloodHound data sets. Why? BloodHound is a staple tool for...
Daily Vulnerability Trends: Mon Jan 02 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-27510Unauthorized access to Gateway user capabilitiesCVE-2022-27518Unauthenticated remote arbitrary code executionCVE-2022-1786A use-after-free flaw...
Ransomware gang apologizes, gives SickKids hospital free decryptor
The LockBit ransomware gang has released a free decryptor for the Hospital for Sick Children (SickKids), saying one of its...
Ransomware gang cloned victim’s website to leak stolen data
The ALPHV ransomware operators have gotten creative with their extortion tactic and, in at least one case, created a replica...
PyTorch discloses malicious dependency chain compromise over holidays
PyTorch has identified a malicious dependency with the same name as the framework's 'torchtriton' library. This has led to a successful compromise via the dependency...
Malware Analysis – amadey – d6832d5709e26e9028fdcde1cd2e7921
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:dcrat, family:djvu, family:smokeloader, family:vidar, botnet:19, backdoor, collection, discovery, infostealer, persistence, ransomware, rat, spyware, stealer, trojan,...
Malware Analysis – discovery – d0cc254722e307c7bb9c55d7cb0ef558
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, ransomwareMD5: d0cc254722e307c7bb9c55d7cb0ef558SHA1: 1d353223f8937526a6ee8568bb32138481c87937ANALYSIS DATE: 2023-01-01T21:44:18ZTTPS: T1082, T1012, T1130, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – e12951b5ae49474dbea669e60e41a8d3
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: e12951b5ae49474dbea669e60e41a8d3SHA1: 12efa9aac0739b08ed6ad59d871c4bba92a4d403ANALYSIS DATE: 2023-01-01T21:21:05ZTTPS: T1060, T1112, T1222, T1005,...
Malware Analysis – djvu – df249ff3cb8fb36e7c6ae05dc7b14250
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: df249ff3cb8fb36e7c6ae05dc7b14250SHA1: 4f1af06e54b0acce7c18bf341efcd581d86e439dANALYSIS DATE: 2023-01-01T21:44:18ZTTPS: T1012, T1082, T1060, T1112,...
Malware Analysis – banker – b96c2bc5e720dd7120af3b3015732fa7
Score: 8 MALWARE FAMILY: bankerTAGS:banker, ransomwareMD5: b96c2bc5e720dd7120af3b3015732fa7SHA1: daf90883b71f4a465a20055ec0b25d623cbb72c0ANALYSIS DATE: 2023-01-01T22:05:15ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Cobalt Stike Beacon Detected – 64[.]227[.]132[.]76:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – amadey – e780c60ae345b6925a4d2da8eafca3b2
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, family:vidar, botnet:19, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: e780c60ae345b6925a4d2da8eafca3b2SHA1: c083ed93f070ca7fbf591c29fbb6f35795efd7b9ANALYSIS...
Malware Analysis – amadey – d061fe68df14422113a7069698607dee
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:dcrat, family:djvu, family:smokeloader, family:vidar, botnet:19, backdoor, collection, discovery, infostealer, persistence, ransomware, rat, spyware, stealer, trojan,...
