#threat-intelligence — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #threat-intelligence, aggregated by home.social.
-
🚨New ransom group blog posts!🚨
Group name: safepay
Post title: shw-fr.de
Info: https://cti.fyi/groups/safepay.htmlGroup name: safepay
Post title: lh-wohnverbund-wohnen-nrw.de
Info: https://cti.fyi/groups/safepay.htmlGroup name: safepay
Post title: stedwardscatholicfirstschool.co.uk
Info: https://cti.fyi/groups/safepay.htmlGroup name: safepay
Post title: rtngmbh.de
Info: https://cti.fyi/groups/safepay.htmlGroup name: safepay
Post title: knobel-bau.de
Info: https://cti.fyi/groups/safepay.htmlGroup name: safepay
Post title: caritas-koblenz.de
Info: https://cti.fyi/groups/safepay.htmlGroup name: safepay
Post title: bmiprojects.de
Info: https://cti.fyi/groups/safepay.htmlGroup name: safepay
Post title: matrixwebagency.com
Info: https://cti.fyi/groups/safepay.htmlGroup name: safepay
Post title: hahn-airport.de
Info: https://cti.fyi/groups/safepay.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog posts!🚨
Group name: safepay
Post title: shw-fr.de
Info: https://cti.fyi/groups/safepay.htmlGroup name: safepay
Post title: lh-wohnverbund-wohnen-nrw.de
Info: https://cti.fyi/groups/safepay.htmlGroup name: safepay
Post title: stedwardscatholicfirstschool.co.uk
Info: https://cti.fyi/groups/safepay.htmlGroup name: safepay
Post title: rtngmbh.de
Info: https://cti.fyi/groups/safepay.htmlGroup name: safepay
Post title: knobel-bau.de
Info: https://cti.fyi/groups/safepay.htmlGroup name: safepay
Post title: caritas-koblenz.de
Info: https://cti.fyi/groups/safepay.htmlGroup name: safepay
Post title: bmiprojects.de
Info: https://cti.fyi/groups/safepay.htmlGroup name: safepay
Post title: matrixwebagency.com
Info: https://cti.fyi/groups/safepay.htmlGroup name: safepay
Post title: hahn-airport.de
Info: https://cti.fyi/groups/safepay.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog post!🚨
Group name: chaos
Post title: gisy.com
Info: https://cti.fyi/groups/chaos.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog post!🚨
Group name: chaos
Post title: gisy.com
Info: https://cti.fyi/groups/chaos.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog posts!🚨
Group name: Booba Project
Post title: Edwards_Michael.pdf
Info: https://cti.fyi/groups/Booba Project.htmlGroup name: Booba Project
Post title: canvas.png
Info: https://cti.fyi/groups/Booba Project.htmlGroup name: Booba Project
Post title: Bob_Saffari_Social_Security_Card.pdf
Info: https://cti.fyi/groups/Booba Project.htmlGroup name: Booba Project
Post title: BL_License.pdf
Info: https://cti.fyi/groups/Booba Project.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog posts!🚨
Group name: Booba Project
Post title: Edwards_Michael.pdf
Info: https://cti.fyi/groups/Booba Project.htmlGroup name: Booba Project
Post title: canvas.png
Info: https://cti.fyi/groups/Booba Project.htmlGroup name: Booba Project
Post title: Bob_Saffari_Social_Security_Card.pdf
Info: https://cti.fyi/groups/Booba Project.htmlGroup name: Booba Project
Post title: BL_License.pdf
Info: https://cti.fyi/groups/Booba Project.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog post!🚨
Group name: chaos
Post title: aircreebec.ca
Info: https://cti.fyi/groups/chaos.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog post!🚨
Group name: chaos
Post title: aircreebec.ca
Info: https://cti.fyi/groups/chaos.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
We track algorithms that generate domain names (RDGA). Now we're looking at one that generates the content. It's a strange collision of domain parking and AI generated nonsense.
A portfolio of parked domains, each with a wildcard DNS record and a backend that serves pre-generated AI content for specific keyword combinations:
- insurance.howtomakeasmoothie[.]com → "Why You Need Insurance When Making Smoothies"
- insurance.backsplashdesign[.]com → "A Guide to Backsplash Insurance"
- yacht.insurance.backpainmedication[.]com → a wellness journey involving sailing, spinal health, and coverage optionsThe subdomain labels are the content brief. The domain topic is the flavour. The result is grammatically sound, mildly persuasive, and reads like it was written by someone who has heard of both topics but has never encountered either. It's AI slop at its finest. The article on smoothie insurance confidently recommends coverage "for peace of mind." The one on backsplash insurance suggests you may need a specialist endorsement. Nobody proofread these. Nobody needed to — the target audience is a crawler, not a person, and crawlers don't find non-sequiturs suspicious.
One template, one analytics pixel (stats.computer[.]com), one CDN (images.computer[.]com) — repeated across what appears to be a large portfolio of parked-for-sale domains, each advertising itself for sale in the page header while the AI content quietly earns its keep.
Unknown subdomains redirect to the parking marketplace. Only the pre-generated keyword combinations serve content — "insurance" being the obvious choice at the CPM rates that keyword commands.
We're not flagging a threat. It's the technique that's worth noting as an indicator of where we could be headed. RDGAs generate domain names at scale to serve malware or evade detection. This applies the same logic to content. And the wildcard DNS backend is already exactly what you'd need for the next step: on-demand generation, where a query could produce a fresh AI-written page in real time. That capability exists now. It just isn't what's running here. Yet.
#dns #threatintel #threatintelligence #cybercrime #cybersecurity #infosec #infoblox #infobloxthreatintel #spam #adtech #rdga
-
We track algorithms that generate domain names (RDGA). Now we're looking at one that generates the content. It's a strange collision of domain parking and AI generated nonsense.
A portfolio of parked domains, each with a wildcard DNS record and a backend that serves pre-generated AI content for specific keyword combinations:
- insurance.howtomakeasmoothie[.]com → "Why You Need Insurance When Making Smoothies"
- insurance.backsplashdesign[.]com → "A Guide to Backsplash Insurance"
- yacht.insurance.backpainmedication[.]com → a wellness journey involving sailing, spinal health, and coverage optionsThe subdomain labels are the content brief. The domain topic is the flavour. The result is grammatically sound, mildly persuasive, and reads like it was written by someone who has heard of both topics but has never encountered either. It's AI slop at its finest. The article on smoothie insurance confidently recommends coverage "for peace of mind." The one on backsplash insurance suggests you may need a specialist endorsement. Nobody proofread these. Nobody needed to — the target audience is a crawler, not a person, and crawlers don't find non-sequiturs suspicious.
One template, one analytics pixel (stats.computer[.]com), one CDN (images.computer[.]com) — repeated across what appears to be a large portfolio of parked-for-sale domains, each advertising itself for sale in the page header while the AI content quietly earns its keep.
Unknown subdomains redirect to the parking marketplace. Only the pre-generated keyword combinations serve content — "insurance" being the obvious choice at the CPM rates that keyword commands.
We're not flagging a threat. It's the technique that's worth noting as an indicator of where we could be headed. RDGAs generate domain names at scale to serve malware or evade detection. This applies the same logic to content. And the wildcard DNS backend is already exactly what you'd need for the next step: on-demand generation, where a query could produce a fresh AI-written page in real time. That capability exists now. It just isn't what's running here. Yet.
#dns #threatintel #threatintelligence #cybercrime #cybersecurity #infosec #infoblox #infobloxthreatintel #spam #adtech #rdga
-
🚨New ransom group blog posts!🚨
Group name: qilin
Post title: Answer Precision Tool
Info: https://cti.fyi/groups/qilin.htmlGroup name: qilin
Post title: Precision Steel Services
Info: https://cti.fyi/groups/qilin.htmlGroup name: qilin
Post title: Keystone Homes
Info: https://cti.fyi/groups/qilin.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog posts!🚨
Group name: qilin
Post title: Answer Precision Tool
Info: https://cti.fyi/groups/qilin.htmlGroup name: qilin
Post title: Precision Steel Services
Info: https://cti.fyi/groups/qilin.htmlGroup name: qilin
Post title: Keystone Homes
Info: https://cti.fyi/groups/qilin.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog posts!🚨
Group name: qilin
Post title: Grupo Inteca
Info: https://cti.fyi/groups/qilin.htmlGroup name: qilin
Post title: Max Fordham
Info: https://cti.fyi/groups/qilin.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog posts!🚨
Group name: qilin
Post title: Grupo Inteca
Info: https://cti.fyi/groups/qilin.htmlGroup name: qilin
Post title: Max Fordham
Info: https://cti.fyi/groups/qilin.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog post!🚨
Group name: qilin
Post title: Wood Ellis & Wood CPA
Info: https://cti.fyi/groups/qilin.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog post!🚨
Group name: qilin
Post title: Wood Ellis & Wood CPA
Info: https://cti.fyi/groups/qilin.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog posts!🚨
Group name: qilin
Post title: LabelDaddy
Info: https://cti.fyi/groups/qilin.htmlGroup name: ransomhouse
Post title: [DISCLOSED]Prince George County
Info: https://cti.fyi/groups/ransomhouse.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog posts!🚨
Group name: qilin
Post title: LabelDaddy
Info: https://cti.fyi/groups/qilin.htmlGroup name: ransomhouse
Post title: [DISCLOSED]Prince George County
Info: https://cti.fyi/groups/ransomhouse.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog post!🚨
Group name: spacebears
Post title: Blenheim
Info: https://cti.fyi/groups/spacebears.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog post!🚨
Group name: spacebears
Post title: Blenheim
Info: https://cti.fyi/groups/spacebears.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog posts!🚨
Group name: genesis
Post title: East Texas Family Medicine
Info: https://cti.fyi/groups/genesis.htmlGroup name: genesis
Post title: Synergy Interactive
Info: https://cti.fyi/groups/genesis.htmlGroup name: genesis
Post title: Dunagan Associates
Info: https://cti.fyi/groups/genesis.htmlGroup name: genesis
Post title: Westgate
Info: https://cti.fyi/groups/genesis.htmlGroup name: genesis
Post title: SBI Software
Info: https://cti.fyi/groups/genesis.htmlGroup name: genesis
Post title: Bri-Tech, Inc
Info: https://cti.fyi/groups/genesis.htmlGroup name: genesis
Post title: Mirage Endoscopy Center
Info: https://cti.fyi/groups/genesis.htmlGroup name: genesis
Post title: Apex Agro, LLC
Info: https://cti.fyi/groups/genesis.htmlGroup name: payload
Post title: Vela Film S.r.l.
Info: https://cti.fyi/groups/payload.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog posts!🚨
Group name: genesis
Post title: East Texas Family Medicine
Info: https://cti.fyi/groups/genesis.htmlGroup name: genesis
Post title: Synergy Interactive
Info: https://cti.fyi/groups/genesis.htmlGroup name: genesis
Post title: Dunagan Associates
Info: https://cti.fyi/groups/genesis.htmlGroup name: genesis
Post title: Westgate
Info: https://cti.fyi/groups/genesis.htmlGroup name: genesis
Post title: SBI Software
Info: https://cti.fyi/groups/genesis.htmlGroup name: genesis
Post title: Bri-Tech, Inc
Info: https://cti.fyi/groups/genesis.htmlGroup name: genesis
Post title: Mirage Endoscopy Center
Info: https://cti.fyi/groups/genesis.htmlGroup name: genesis
Post title: Apex Agro, LLC
Info: https://cti.fyi/groups/genesis.htmlGroup name: payload
Post title: Vela Film S.r.l.
Info: https://cti.fyi/groups/payload.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog post!🚨
Group name: medusalocker
Post title: BAMATAH
Info: https://cti.fyi/groups/medusalocker.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog post!🚨
Group name: medusalocker
Post title: BAMATAH
Info: https://cti.fyi/groups/medusalocker.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog posts!🚨
Group name: qilin
Post title: TQ Financial Services
Info: https://cti.fyi/groups/qilin.htmlGroup name: qilin
Post title: Sisint
Info: https://cti.fyi/groups/qilin.htmlGroup name: qilin
Post title: Sitmatic
Info: https://cti.fyi/groups/qilin.htmlGroup name: qilin
Post title: Goodwill Manasota
Info: https://cti.fyi/groups/qilin.htmlGroup name: qilin
Post title: Md Lewis
Info: https://cti.fyi/groups/qilin.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog posts!🚨
Group name: qilin
Post title: TQ Financial Services
Info: https://cti.fyi/groups/qilin.htmlGroup name: qilin
Post title: Sisint
Info: https://cti.fyi/groups/qilin.htmlGroup name: qilin
Post title: Sitmatic
Info: https://cti.fyi/groups/qilin.htmlGroup name: qilin
Post title: Goodwill Manasota
Info: https://cti.fyi/groups/qilin.htmlGroup name: qilin
Post title: Md Lewis
Info: https://cti.fyi/groups/qilin.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog post!🚨
Group name: anubis
Post title: Ferrum AG
Info: https://cti.fyi/groups/anubis.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog post!🚨
Group name: anubis
Post title: Ferrum AG
Info: https://cti.fyi/groups/anubis.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog posts!🚨
Group name: pear
Post title: CNW Electronics Pte Ltd
Info: https://cti.fyi/groups/pear.htmlGroup name: pear
Post title: AC Beverage, Inc.
Info: https://cti.fyi/groups/pear.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog posts!🚨
Group name: pear
Post title: CNW Electronics Pte Ltd
Info: https://cti.fyi/groups/pear.htmlGroup name: pear
Post title: AC Beverage, Inc.
Info: https://cti.fyi/groups/pear.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog post!🚨
Group name: incransom
Post title: oakparkmi.gov
Info: https://cti.fyi/groups/incransom.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog post!🚨
Group name: incransom
Post title: oakparkmi.gov
Info: https://cti.fyi/groups/incransom.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog post!🚨
Group name: ransomhouse
Post title: [EVIDENCE]Prince George County
Info: https://cti.fyi/groups/ransomhouse.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog post!🚨
Group name: ransomhouse
Post title: [EVIDENCE]Prince George County
Info: https://cti.fyi/groups/ransomhouse.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
New.
Popa? This reads like a PR statement
Google: Google’s Continued Disruption of Malicious Residential Proxy Networks https://cloud.google.com/blog/topics/threat-intelligence/google-continued-disruption-residential-proxy-networks #Google #infosec #botnets #threatintel #threatintelligence
But you got mentioned @briankrebs
-
New.
Popa? This reads like a PR statement
Google: Google’s Continued Disruption of Malicious Residential Proxy Networks https://cloud.google.com/blog/topics/threat-intelligence/google-continued-disruption-residential-proxy-networks #Google #infosec #botnets #threatintel #threatintelligence
But you got mentioned @briankrebs
-
🚨New ransom group blog posts!🚨
Group name: incransom
Post title: tricountyhs.org
Info: https://cti.fyi/groups/incransom.htmlGroup name: incransom
Post title: tambasa.com
Info: https://cti.fyi/groups/incransom.htmlGroup name: incransom
Post title: hamilton-eye.com
Info: https://cti.fyi/groups/incransom.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog posts!🚨
Group name: incransom
Post title: tricountyhs.org
Info: https://cti.fyi/groups/incransom.htmlGroup name: incransom
Post title: tambasa.com
Info: https://cti.fyi/groups/incransom.htmlGroup name: incransom
Post title: hamilton-eye.com
Info: https://cti.fyi/groups/incransom.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog posts!🚨
Group name: incransom
Post title: ezortea.com.br
Info: https://cti.fyi/groups/incransom.htmlGroup name: incransom
Post title: carvalima.com.br
Info: https://cti.fyi/groups/incransom.htmlGroup name: incransom
Post title: acworth-ga.gov
Info: https://cti.fyi/groups/incransom.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog posts!🚨
Group name: incransom
Post title: ezortea.com.br
Info: https://cti.fyi/groups/incransom.htmlGroup name: incransom
Post title: carvalima.com.br
Info: https://cti.fyi/groups/incransom.htmlGroup name: incransom
Post title: acworth-ga.gov
Info: https://cti.fyi/groups/incransom.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog posts!🚨
Group name: worldleaks
Post title: Treet Group of Companies
Info: https://cti.fyi/groups/worldleaks.htmlGroup name: worldleaks
Post title: Service IT
Info: https://cti.fyi/groups/worldleaks.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog posts!🚨
Group name: worldleaks
Post title: Treet Group of Companies
Info: https://cti.fyi/groups/worldleaks.htmlGroup name: worldleaks
Post title: Service IT
Info: https://cti.fyi/groups/worldleaks.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog post!🚨
Group name: anubis
Post title: Quest Healthcare Solutions
Info: https://cti.fyi/groups/anubis.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog post!🚨
Group name: anubis
Post title: Quest Healthcare Solutions
Info: https://cti.fyi/groups/anubis.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog post!🚨
Group name: qilin
Post title: Pennant Hills Golf Club
Info: https://cti.fyi/groups/qilin.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog post!🚨
Group name: qilin
Post title: Pennant Hills Golf Club
Info: https://cti.fyi/groups/qilin.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🔐 Another milestone for RELIANOID!
We've now reported 33,000+ malicious IP addresses to AbuseIPDB, helping improve global threat intelligence and strengthen cybersecurity for everyone.
As an open-source company, we believe security is a shared responsibility. We'll keep contributing to a safer, more resilient Internet through responsible threat reporting and community collaboration. 💙
#RELIANOID #OpenSource #CyberSecurity #ThreatIntelligence #AbuseIPDB #Infosec #FOSS
-
I need followers in tech + cybersecurity—please help... I promise I’ll post stuff smarter than “oops, wrong config”.
#CyberSecurity #Infosec #ThreatIntelligence #SecurityResearch #BlueTeam #RedTeam #SOC #VulnerabilityManagement #AppSec #PenTesting #threatintel
-
🚨New ransom group blog posts!🚨
Group name: spacebears
Post title: Salters propane
Info: https://cti.fyi/groups/spacebears.htmlGroup name: payload
Post title: Tofutown
Info: https://cti.fyi/groups/payload.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog posts!🚨
Group name: spacebears
Post title: Salters propane
Info: https://cti.fyi/groups/spacebears.htmlGroup name: payload
Post title: Tofutown
Info: https://cti.fyi/groups/payload.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog post!🚨
Group name: anubis
Post title: Northeast Pediatrics & Adolescent Medicine
Info: https://cti.fyi/groups/anubis.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog post!🚨
Group name: anubis
Post title: Northeast Pediatrics & Adolescent Medicine
Info: https://cti.fyi/groups/anubis.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog post!🚨
Group name: incransom
Post title: Colorado Rehabilitation and Occupational Medicine
Info: https://cti.fyi/groups/incransom.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog posts!🚨
Group name: safepay
Post title: eaglecrestlife.org
Info: https://cti.fyi/groups/safepay.htmlGroup name: safepay
Post title: dia179.com
Info: https://cti.fyi/groups/safepay.htmlGroup name: safepay
Post title: awo-suedost.de
Info: https://cti.fyi/groups/safepay.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog post!🚨
Group name: incransom
Post title: https://www.roundshield.com/
Info: https://cti.fyi/groups/incransom.html#ransomware #cti #threatintelligence #cybersecurity #infosec