#threat-intelligence — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #threat-intelligence, aggregated by home.social.
-
🚨New ransom group blog post!🚨
Group name: spacebears
Post title: Blenheim
Info: https://cti.fyi/groups/spacebears.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog post!🚨
Group name: spacebears
Post title: Blenheim
Info: https://cti.fyi/groups/spacebears.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog posts!🚨
Group name: genesis
Post title: East Texas Family Medicine
Info: https://cti.fyi/groups/genesis.htmlGroup name: genesis
Post title: Synergy Interactive
Info: https://cti.fyi/groups/genesis.htmlGroup name: genesis
Post title: Dunagan Associates
Info: https://cti.fyi/groups/genesis.htmlGroup name: genesis
Post title: Westgate
Info: https://cti.fyi/groups/genesis.htmlGroup name: genesis
Post title: SBI Software
Info: https://cti.fyi/groups/genesis.htmlGroup name: genesis
Post title: Bri-Tech, Inc
Info: https://cti.fyi/groups/genesis.htmlGroup name: genesis
Post title: Mirage Endoscopy Center
Info: https://cti.fyi/groups/genesis.htmlGroup name: genesis
Post title: Apex Agro, LLC
Info: https://cti.fyi/groups/genesis.htmlGroup name: payload
Post title: Vela Film S.r.l.
Info: https://cti.fyi/groups/payload.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog posts!🚨
Group name: genesis
Post title: East Texas Family Medicine
Info: https://cti.fyi/groups/genesis.htmlGroup name: genesis
Post title: Synergy Interactive
Info: https://cti.fyi/groups/genesis.htmlGroup name: genesis
Post title: Dunagan Associates
Info: https://cti.fyi/groups/genesis.htmlGroup name: genesis
Post title: Westgate
Info: https://cti.fyi/groups/genesis.htmlGroup name: genesis
Post title: SBI Software
Info: https://cti.fyi/groups/genesis.htmlGroup name: genesis
Post title: Bri-Tech, Inc
Info: https://cti.fyi/groups/genesis.htmlGroup name: genesis
Post title: Mirage Endoscopy Center
Info: https://cti.fyi/groups/genesis.htmlGroup name: genesis
Post title: Apex Agro, LLC
Info: https://cti.fyi/groups/genesis.htmlGroup name: payload
Post title: Vela Film S.r.l.
Info: https://cti.fyi/groups/payload.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog post!🚨
Group name: medusalocker
Post title: BAMATAH
Info: https://cti.fyi/groups/medusalocker.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog post!🚨
Group name: medusalocker
Post title: BAMATAH
Info: https://cti.fyi/groups/medusalocker.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog posts!🚨
Group name: qilin
Post title: TQ Financial Services
Info: https://cti.fyi/groups/qilin.htmlGroup name: qilin
Post title: Sisint
Info: https://cti.fyi/groups/qilin.htmlGroup name: qilin
Post title: Sitmatic
Info: https://cti.fyi/groups/qilin.htmlGroup name: qilin
Post title: Goodwill Manasota
Info: https://cti.fyi/groups/qilin.htmlGroup name: qilin
Post title: Md Lewis
Info: https://cti.fyi/groups/qilin.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog posts!🚨
Group name: qilin
Post title: TQ Financial Services
Info: https://cti.fyi/groups/qilin.htmlGroup name: qilin
Post title: Sisint
Info: https://cti.fyi/groups/qilin.htmlGroup name: qilin
Post title: Sitmatic
Info: https://cti.fyi/groups/qilin.htmlGroup name: qilin
Post title: Goodwill Manasota
Info: https://cti.fyi/groups/qilin.htmlGroup name: qilin
Post title: Md Lewis
Info: https://cti.fyi/groups/qilin.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog post!🚨
Group name: anubis
Post title: Ferrum AG
Info: https://cti.fyi/groups/anubis.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog post!🚨
Group name: anubis
Post title: Ferrum AG
Info: https://cti.fyi/groups/anubis.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog posts!🚨
Group name: pear
Post title: CNW Electronics Pte Ltd
Info: https://cti.fyi/groups/pear.htmlGroup name: pear
Post title: AC Beverage, Inc.
Info: https://cti.fyi/groups/pear.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog posts!🚨
Group name: pear
Post title: CNW Electronics Pte Ltd
Info: https://cti.fyi/groups/pear.htmlGroup name: pear
Post title: AC Beverage, Inc.
Info: https://cti.fyi/groups/pear.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog post!🚨
Group name: incransom
Post title: oakparkmi.gov
Info: https://cti.fyi/groups/incransom.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog post!🚨
Group name: incransom
Post title: oakparkmi.gov
Info: https://cti.fyi/groups/incransom.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog post!🚨
Group name: ransomhouse
Post title: [EVIDENCE]Prince George County
Info: https://cti.fyi/groups/ransomhouse.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog post!🚨
Group name: ransomhouse
Post title: [EVIDENCE]Prince George County
Info: https://cti.fyi/groups/ransomhouse.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
New.
Popa? This reads like a PR statement
Google: Google’s Continued Disruption of Malicious Residential Proxy Networks https://cloud.google.com/blog/topics/threat-intelligence/google-continued-disruption-residential-proxy-networks #Google #infosec #botnets #threatintel #threatintelligence
But you got mentioned @briankrebs
-
New.
Popa? This reads like a PR statement
Google: Google’s Continued Disruption of Malicious Residential Proxy Networks https://cloud.google.com/blog/topics/threat-intelligence/google-continued-disruption-residential-proxy-networks #Google #infosec #botnets #threatintel #threatintelligence
But you got mentioned @briankrebs
-
🚨New ransom group blog posts!🚨
Group name: incransom
Post title: tricountyhs.org
Info: https://cti.fyi/groups/incransom.htmlGroup name: incransom
Post title: tambasa.com
Info: https://cti.fyi/groups/incransom.htmlGroup name: incransom
Post title: hamilton-eye.com
Info: https://cti.fyi/groups/incransom.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog posts!🚨
Group name: incransom
Post title: tricountyhs.org
Info: https://cti.fyi/groups/incransom.htmlGroup name: incransom
Post title: tambasa.com
Info: https://cti.fyi/groups/incransom.htmlGroup name: incransom
Post title: hamilton-eye.com
Info: https://cti.fyi/groups/incransom.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog posts!🚨
Group name: incransom
Post title: ezortea.com.br
Info: https://cti.fyi/groups/incransom.htmlGroup name: incransom
Post title: carvalima.com.br
Info: https://cti.fyi/groups/incransom.htmlGroup name: incransom
Post title: acworth-ga.gov
Info: https://cti.fyi/groups/incransom.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog posts!🚨
Group name: incransom
Post title: ezortea.com.br
Info: https://cti.fyi/groups/incransom.htmlGroup name: incransom
Post title: carvalima.com.br
Info: https://cti.fyi/groups/incransom.htmlGroup name: incransom
Post title: acworth-ga.gov
Info: https://cti.fyi/groups/incransom.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog posts!🚨
Group name: worldleaks
Post title: Treet Group of Companies
Info: https://cti.fyi/groups/worldleaks.htmlGroup name: worldleaks
Post title: Service IT
Info: https://cti.fyi/groups/worldleaks.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog posts!🚨
Group name: worldleaks
Post title: Treet Group of Companies
Info: https://cti.fyi/groups/worldleaks.htmlGroup name: worldleaks
Post title: Service IT
Info: https://cti.fyi/groups/worldleaks.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog post!🚨
Group name: anubis
Post title: Quest Healthcare Solutions
Info: https://cti.fyi/groups/anubis.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog post!🚨
Group name: anubis
Post title: Quest Healthcare Solutions
Info: https://cti.fyi/groups/anubis.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog post!🚨
Group name: qilin
Post title: Pennant Hills Golf Club
Info: https://cti.fyi/groups/qilin.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog post!🚨
Group name: qilin
Post title: Pennant Hills Golf Club
Info: https://cti.fyi/groups/qilin.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🔐 Another milestone for RELIANOID!
We've now reported 33,000+ malicious IP addresses to AbuseIPDB, helping improve global threat intelligence and strengthen cybersecurity for everyone.
As an open-source company, we believe security is a shared responsibility. We'll keep contributing to a safer, more resilient Internet through responsible threat reporting and community collaboration. 💙
#RELIANOID #OpenSource #CyberSecurity #ThreatIntelligence #AbuseIPDB #Infosec #FOSS
-
I need followers in tech + cybersecurity—please help... I promise I’ll post stuff smarter than “oops, wrong config”.
#CyberSecurity #Infosec #ThreatIntelligence #SecurityResearch #BlueTeam #RedTeam #SOC #VulnerabilityManagement #AppSec #PenTesting #threatintel
-
🚨New ransom group blog posts!🚨
Group name: spacebears
Post title: Salters propane
Info: https://cti.fyi/groups/spacebears.htmlGroup name: payload
Post title: Tofutown
Info: https://cti.fyi/groups/payload.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog posts!🚨
Group name: spacebears
Post title: Salters propane
Info: https://cti.fyi/groups/spacebears.htmlGroup name: payload
Post title: Tofutown
Info: https://cti.fyi/groups/payload.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog post!🚨
Group name: anubis
Post title: Northeast Pediatrics & Adolescent Medicine
Info: https://cti.fyi/groups/anubis.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog post!🚨
Group name: anubis
Post title: Northeast Pediatrics & Adolescent Medicine
Info: https://cti.fyi/groups/anubis.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog post!🚨
Group name: incransom
Post title: Colorado Rehabilitation and Occupational Medicine
Info: https://cti.fyi/groups/incransom.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog post!🚨
Group name: incransom
Post title: Colorado Rehabilitation and Occupational Medicine
Info: https://cti.fyi/groups/incransom.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog posts!🚨
Group name: safepay
Post title: eaglecrestlife.org
Info: https://cti.fyi/groups/safepay.htmlGroup name: safepay
Post title: dia179.com
Info: https://cti.fyi/groups/safepay.htmlGroup name: safepay
Post title: awo-suedost.de
Info: https://cti.fyi/groups/safepay.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog posts!🚨
Group name: safepay
Post title: eaglecrestlife.org
Info: https://cti.fyi/groups/safepay.htmlGroup name: safepay
Post title: dia179.com
Info: https://cti.fyi/groups/safepay.htmlGroup name: safepay
Post title: awo-suedost.de
Info: https://cti.fyi/groups/safepay.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog post!🚨
Group name: incransom
Post title: https://www.roundshield.com/
Info: https://cti.fyi/groups/incransom.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog post!🚨
Group name: incransom
Post title: https://www.roundshield.com/
Info: https://cti.fyi/groups/incransom.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog posts!🚨
Group name: qilin
Post title: Dixie Beverage
Info: https://cti.fyi/groups/qilin.htmlGroup name: qilin
Post title: Dynamic Laser Solutions Ltd.
Info: https://cti.fyi/groups/qilin.htmlGroup name: qilin
Post title: Rossum Integration
Info: https://cti.fyi/groups/qilin.htmlGroup name: qilin
Post title: Laughlin Nunnally Hood & Crum
Info: https://cti.fyi/groups/qilin.htmlGroup name: qilin
Post title: Mattatuck Industrial Scrap Metal
Info: https://cti.fyi/groups/qilin.htmlGroup name: qilin
Post title: Dennis Waters Rental Properties
Info: https://cti.fyi/groups/qilin.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog posts!🚨
Group name: qilin
Post title: Dixie Beverage
Info: https://cti.fyi/groups/qilin.htmlGroup name: qilin
Post title: Dynamic Laser Solutions Ltd.
Info: https://cti.fyi/groups/qilin.htmlGroup name: qilin
Post title: Rossum Integration
Info: https://cti.fyi/groups/qilin.htmlGroup name: qilin
Post title: Laughlin Nunnally Hood & Crum
Info: https://cti.fyi/groups/qilin.htmlGroup name: qilin
Post title: Mattatuck Industrial Scrap Metal
Info: https://cti.fyi/groups/qilin.htmlGroup name: qilin
Post title: Dennis Waters Rental Properties
Info: https://cti.fyi/groups/qilin.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog posts!🚨
Group name: worldleaks
Post title: COMHAR
Info: https://cti.fyi/groups/worldleaks.htmlGroup name: worldleaks
Post title: Starpool
Info: https://cti.fyi/groups/worldleaks.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog posts!🚨
Group name: worldleaks
Post title: COMHAR
Info: https://cti.fyi/groups/worldleaks.htmlGroup name: worldleaks
Post title: Starpool
Info: https://cti.fyi/groups/worldleaks.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog post!🚨
Group name: akira
Post title: Refinery Hotel
Info: https://cti.fyi/groups/akira.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog post!🚨
Group name: akira
Post title: Refinery Hotel
Info: https://cti.fyi/groups/akira.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
One tap to continue watching. Also: one tap to charge your phone bill €4.50. Click2SMS, what good are you, anyway?
A redirect chain took us from a compromised legitimate site, through help_tds, then through a familiar Germany-based commercial TDS, to hmtraff[.]com where we finally arrived at d[.]gosmartdecision[.]com — part of an IRSF ecosystem we've been tracking since our fake CAPTCHA report.
The landing page shows a fake video player. A large "Continue" button sits in front of it. That button is <a href="sms:81183?body=360 *CWZQ...">. One tap opens the SMS app, pre-loaded with a message to a premium-rate French shortcode. 4.50 EUR per code.
Where the fake CAPTCHA required four separate actions to maintain a verification illusion, the video player needs one. Simpler, faster, probably more effective. The legal disclosure with the price is below the fold in 10pt text, while the large "Continue" button is in the middle of the screen.
There's a second bonus layer: the page runs device fingerprinting and injects a credit card collection form for non-mobile visitors — cardholder name, number, CVV, expiry. Mobile French users see the Click2SMS flow. Others may get card phishing. Two modes. One domain. DNS-visible delivery chain throughout.
hmtraff[.]com
d[.]gosmartdecision[.]comFinal landing page: https://urlscan.io/result/019f14b2-c99e-7677-a742-61f7c814b545/
Prior report: https://www.infoblox.com/blog/threat-intelligence/hold-the-phone-international-revenue-share-fraud-driven-by-fake-captchas/
#dns #threatintel #threatintelligence #cybercrime #cybersecurity #infosec #infoblox #infobloxthreatintel #smishing #tds #irsf
-
One tap to continue watching. Also: one tap to charge your phone bill €4.50. Click2SMS, what good are you, anyway?
A redirect chain took us from a compromised legitimate site, through help_tds, then through a familiar Germany-based commercial TDS, to hmtraff[.]com where we finally arrived at d[.]gosmartdecision[.]com — part of an IRSF ecosystem we've been tracking since our fake CAPTCHA report.
The landing page shows a fake video player. A large "Continue" button sits in front of it. That button is <a href="sms:81183?body=360 *CWZQ...">. One tap opens the SMS app, pre-loaded with a message to a premium-rate French shortcode. 4.50 EUR per code.
Where the fake CAPTCHA required four separate actions to maintain a verification illusion, the video player needs one. Simpler, faster, probably more effective. The legal disclosure with the price is below the fold in 10pt text, while the large "Continue" button is in the middle of the screen.
There's a second bonus layer: the page runs device fingerprinting and injects a credit card collection form for non-mobile visitors — cardholder name, number, CVV, expiry. Mobile French users see the Click2SMS flow. Others may get card phishing. Two modes. One domain. DNS-visible delivery chain throughout.
hmtraff[.]com
d[.]gosmartdecision[.]comFinal landing page: https://urlscan.io/result/019f14b2-c99e-7677-a742-61f7c814b545/
Prior report: https://www.infoblox.com/blog/threat-intelligence/hold-the-phone-international-revenue-share-fraud-driven-by-fake-captchas/
#dns #threatintel #threatintelligence #cybercrime #cybersecurity #infosec #infoblox #infobloxthreatintel #smishing #tds #irsf
-
🚨New ransom group blog post!🚨
Group name: chaos
Post title: universalplant.com
Info: https://cti.fyi/groups/chaos.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog posts!🚨
Group name: incransom
Post title: https://sza.it/
Info: https://cti.fyi/groups/incransom.htmlGroup name: medusalocker
Post title: Penticton and District Society for Community Living
Info: https://cti.fyi/groups/medusalocker.htmlGroup name: pear
Post title: Sociedad Latina
Info: https://cti.fyi/groups/pear.htmlGroup name: pear
Post title: ORA Group Information
Info: https://cti.fyi/groups/pear.htmlGroup name: pear
Post title: Spector and Lenz, PC
Info: https://cti.fyi/groups/pear.html#ransomware #cti #threatintelligence #cybersecurity #infosec
-
🚨New ransom group blog posts!🚨
Group name: akira
Post title: About Todd Hamaker & Johnson
Info: https://cti.fyi/groups/akira.htmlGroup name: akira
Post title: Advanced Business Systems
Info: https://cti.fyi/groups/akira.htmlGroup name: medusalocker
Post title: banajah-bajapah
Info: https://cti.fyi/groups/medusalocker.html#ransomware #cti #threatintelligence #cybersecurity #infosec