ciphexe //infosec
@ciphexe.bsky.social
cyber security specialist / double dad / CTI
Interesting to see the defacement of the doge.gov website. Even though its kind of jokey, giving the position Elon is in it must be considered hacktivism.
Taking "hacking" back to its roots.
Taking "hacking" back to its roots.
Work | DOGE: Department of Government Efficiency | DOGE: Department of Government Efficiency
Work | DOGE: Department of Government Efficiency.
doge.gov
February 14, 2025 at 8:37 PM
Interesting to see the defacement of the doge.gov website. Even though its kind of jokey, giving the position Elon is in it must be considered hacktivism.
Taking "hacking" back to its roots.
Taking "hacking" back to its roots.
#DailyCyberWriteup today focuses on threat actors exploiting the popularity of DeepSeek. We saw this when ChatGPT became popular and is a common technique seen whenever a new applications rise in popularity. Researchers has seen domains mimicking DeepSeek that leads to Malware.
Mitigation 🧵:
Mitigation 🧵:
bsky.app
February 14, 2025 at 8:30 PM
#DailyCyberWriteup today focuses on threat actors exploiting the popularity of DeepSeek. We saw this when ChatGPT became popular and is a common technique seen whenever a new applications rise in popularity. Researchers has seen domains mimicking DeepSeek that leads to Malware.
Mitigation 🧵:
Mitigation 🧵:
My 📕 #DailyCyberWriteup is about the techniques used by the Cl0p ransomware group:
▶️ The group leverages double extortion tactics
▶️ Evades detection detection with several techniques:
↪️ Process injection, Indicator removal, DLL Side-loading, Shadow Copy Deletion.
🧵Remediation: ⏬
▶️ The group leverages double extortion tactics
▶️ Evades detection detection with several techniques:
↪️ Process injection, Indicator removal, DLL Side-loading, Shadow Copy Deletion.
🧵Remediation: ⏬
Cl0p Ransomware Hide Itself on Compromised Networks After Exfiltrate the Data
The Cl0p ransomware group, a prominent player in the cybercrime landscape since 2019, has intensified its operations.
gbhackers.com
February 13, 2025 at 9:56 AM
My 📕 #DailyCyberWriteup is about the techniques used by the Cl0p ransomware group:
▶️ The group leverages double extortion tactics
▶️ Evades detection detection with several techniques:
↪️ Process injection, Indicator removal, DLL Side-loading, Shadow Copy Deletion.
🧵Remediation: ⏬
▶️ The group leverages double extortion tactics
▶️ Evades detection detection with several techniques:
↪️ Process injection, Indicator removal, DLL Side-loading, Shadow Copy Deletion.
🧵Remediation: ⏬
Beginning my 📕 #DailyCyberWriteup series where I’ll read a new cybersecurity writeup each day and break down the main points I learned. The main focus of the writeups will be either CTI related: New threat, actors and techniques. Or broader topics around cyber trends and -risks.
February 13, 2025 at 9:37 AM
Beginning my 📕 #DailyCyberWriteup series where I’ll read a new cybersecurity writeup each day and break down the main points I learned. The main focus of the writeups will be either CTI related: New threat, actors and techniques. Or broader topics around cyber trends and -risks.
#phishing
Active phishing campaign targeting "Israel Credit Company"
Filling in the boxes leads to a MFA-code harvester for the page.
Be wary!
Active phishing campaign targeting "Israel Credit Company"
Filling in the boxes leads to a MFA-code harvester for the page.
Be wary!
January 29, 2025 at 9:55 PM
#phishing
Active phishing campaign targeting "Israel Credit Company"
Filling in the boxes leads to a MFA-code harvester for the page.
Be wary!
Active phishing campaign targeting "Israel Credit Company"
Filling in the boxes leads to a MFA-code harvester for the page.
Be wary!
#booking.com #phishing
Seeing a bunch of these captcha scams imitating booking.com sites. Powershell command and patterns below:
Seeing a bunch of these captcha scams imitating booking.com sites. Powershell command and patterns below:
January 21, 2025 at 10:23 PM
#booking.com #phishing
Seeing a bunch of these captcha scams imitating booking.com sites. Powershell command and patterns below:
Seeing a bunch of these captcha scams imitating booking.com sites. Powershell command and patterns below: