ByzantineFault

@CoinbaseSG Even the best crypto will go down during b.ear market. Always make sure to have dry powder and never all in.

Our year-end giveaway is officially live. Every year leaves us with a lesson — and we want to hear yours. To enter: → Follow @CoinbaseSG + RT → Comment the crypto lesson you’re bringing into 2026 8 winners with the most thoughtful answers will each win S$100 in BTC.

@vxdb @vxunderground @cepnang @shifkey @__blueNinja @HighIronWolf @mmxcs8 @lilacj4de @Tr3s0r @address_below0 @bruce_k3tta @0xChefo Where's my name clown

Winners of the @vxunderground Malware Analysis for Hedgehogs Bundle Giveaway @cepnang @shifkey @__blueNinja @HighIronWolf @mmxcs8 @lilacj4de @Tr3s0r @address_below0 @bruce_k3tta @0xChefo Congrats to the winners

@vxunderground @nikhil_mitt @struppigel Malware analysis because it's of higher chance 🥲

Big giveaway. - (x3) Certified Red Team Expert (CRTE) - (x3) Certified by Altered Security Red Team Professional for Azure (CARTP) - (x10) Malware Analysis for Hedgehogs Bundle CTRE and CARTP sponsored by @nikhil_mitt Malware Analysis sponsored by @struppigel Leave a comment below on what you'd like. Winners chosen in 24 hours.

@vxunderground @profdiggity Pls it's My dream to be a CIA officer

Giveaway. @profdiggity has sponsored THREE seats to IvyCyber surveillance detection course lecture on CIA torture, government surveillance, etc. January 4th, 2026, it is 3 live sessions with CIA whistleblower John Kiriakou (went to prison for whistleblowing CIA torture stuff, Google him). Mr. Kiriakou will discuss stuff about the CIA, United States intelligence agencies hunting people, and other stuff. Sean O'Brien will also be attending. He is the founder of Yale Universities privacy lab thing. They'll discuss privacy, intelligence agencies, whatever. The course and/or lecture is live. You can talk to them directly during it and ask questions. This also comes with an additional 8 modules of learning material from Yale. If you want to sit down, chat with them, learn about how intelligence agencies work, learn some stuff, whatever, then leave a comment below for a chance to win. More information: ivycyber.com/product/course…

@vxunderground @TorGuard Hey it's me your meow

Giveaway. @TorGuard has sponsored a vx-underground harddrive (complete collection) giveaway. If you're the selected winner I will mail you an external harddrive with everything from vx-underground. As a bonus, I will also throw in some TorGuard stickers. What you will get: - 45,000,000+- malware samples - 90,000+- malware papers - 10,000+ malware builders - All vx-underground artwork - Lots of cat pictures - TorGuard stickers How to enter: - Follow @TorGuard on Xitter - Leave a comment below A winner will be selected in 24 hours. tl;dr look inside, malware

@vxunderground @Level_Effect Just stepping into step ops brook I need this

Giveaway. @Level_Effect has gifted us 5 x SOC Analyst Tier 3 Bundles > Takes you literally from how Windows boots up, to Tier 2-3+ levels of triage, remediation, and prevention. > Includes Virtual SOC training handling tickets in a case management platform. > Courses have vouchers to their exams including CDCP cert which is a 1 week practical, no multiple choice, report-deliverable certification exam that is manually graded Leave a comment below for a chance to win. Winner will be selected in 24 hours. Course information: training.leveleffect.com/bundles/30f253…

@vxunderground @YJB52888982 Don't give me

Giveaway. @YJB52888982 has gifted us 11 Cryptostorm VPN 1 month accounts. It's a schizo VPN thingie. Comment below for a chance to win. Winner will be selected in 24 hours. More information: cryptostorm.is

@vxunderground @v08 Miao miao I want

Giveaway. @v08 has sponsored 3 TryHackMe Premium 3 month thingies. Very cool. Leave a comment below for a chance to win. Winners will be selected in 24 hours. Pic unrelated

@SixSigmaCapital 8 out of your last 10 posts you been sucking your own dick you realize that?

Some reflection: Something which I think is going to guide my investing principles going forward is that most of my performance came from 4 or 5 main bets in size which coincidentally were betting against the market: $BABA at 70 which went sideways for 14 Months before doubling in a few weeks and then after digesting that move went from 100 to 190 in a few months $HIMS from $6 but kept adding the dips when it was hated and out >$60 average when it got a cult following, $AMD bought when people called it Advanced Money Destroyer, I jokingly changed its name to Advanced Money Tripler and got out for a +180% average return, $GOOGL been in since Jan 23 but loaded more this year <145 when they called it an AI loser and now started reducing modestly when they love it and calling it an NVDA destroyer. Lots of other stuff along the way this year that doubled or more but in smaller size: $TMDX $STNE $CLPT $HOOD $COIN Sever swing trades contributed in small size although suffered several losses too with the largest one resulting in a 1.75% portfolio hit. Many others were much smaller. In short: going forward I will be focusing on higher conviction set ups, not afraid to bet against the market and likely to carry fewer names. Going to use December to identify a clean strategy for 2026 and high probability set ups for the next 12-18 months

@vxunderground @cyberwarfarelab Meow I have a Gmail meow

Hello. I have partnered with @cyberwarfarelab to give away FOUR HUNDRED (400) vouchers to their Infinity Learning Pro Plan. This is worth $119,600. - 130+ hands-on labs, including advanced attack chains - Unlimited challenge time - Monthly new challenges & scenario updates - Leaderboards for nerds - ??? This is a massive giveaway. How to enter: 1. You NEED a Gmail account. IF YOU ARE SELECTED AS A WINNER authentication is performed via Gmail. It does NOT have to be your real Gmail. It can be a disposable email. However, if you DO NOT have a Gmail you WILL NOT be able to authenticate. 2. This is a pit of doom. You're all fighting. Leave a comment below with an IMAGE of your SILLIEST weapon of choice. 3. This giveaway will be active for the next 48 hours (unless I get bored). It is November 30th, 2025. If you comment AFTER December 2nd, 2025 then you're a big stinky nerd. You have missed the pit of doom. 4. Winners will notified by me commenting your comment. If you do not respond to the DM within 24 hours (if you're selected) you forfeit your win and someone else is chosen. PAY ATTENTION. Good luck in the pit of doom. Have fun. I expect lots of laughs from the silliness. Cheers,

@vxunderground @cyberwarfarelab

Giveaway time. Our friends at @cyberwarfarelab have gifted us AIO (All In One) Access to ALL of their courses for TWO PEOPLE You'll have access to the following courses (including labs). It is a lot. You're not expected to complete everything. This is valued at over $11,000. If you're gifted this you're expected to actually do something and not be a bum. This is a life changing giveaway. If you win this giveaway, bucked up, and lock in, you could be big brain real fast. Don't squander this. How to enter: - Leave a comment - ??? - I like cats Red Teaming: - Web Red Team Analyst [Web-RTA] - Active Directory Red Team Specialist [AD-RTS] - Enterprise Lateral Movement Specialist [CELMS] - Red Team Analyst [CRTA] - Red Team Specialist [CRTS V2] - Red Team Infra Dev [CRT-ID] - Stealth Cyber Operator [CSCO] Blue Teaming: - Blue Team Fundamentals [BTF] - Cyber Defence Analyst [CCDA] Purple Teaming: - Purple Teaming Fundamentals-C-Edition - Process Injection Analyst [CPIA] - Purple Team Analyst [CPTA V2] Cloud Security: - Multi-Cloud Red Team Analyst [MCRTA] - Hybrid Multi-Cloud Red Team Specialist [CHMRTS] - Google Cloud Red Team Specialist [CGRTS] - AWS Cloud Red Team Specialist [CARTS] - Multi-Cloud Blue Team Analyst [MCBTA] Ethical Hacking (Introduction courses): - Cyber Security Analyst [C3SA] - Certified Cyber Security Engineer [CCSE] Evasion & Exploitation: - Red Team – CredOps Infiltrator [CRT-COI] - Enterprise Sec. Controls Attack Specialist [CESC-AS] - Windows Internals Red Team Operator [CWI-RTO] - Certified Exploit Development Professional [CEDP] DevOps: - Certified DevOps Red Team Analyst (DO-RTA) Kubernetes Security: - K8s Red Team Analyst (K8s-RTA)

Big news for stinky nerds. I've got a massive fuckin' giveaway. I've got a voucher for either a COMPTIA SEC+ or a ISC2 Systems Security Certified Practitioner (SSCP). Both of these are great for your career. But, I'm not going to give this shit away to some random fucking nerd in a comment section. This is the type of gift that could accelerate someones career and change someones life. Some giveaways people burn, watch YouTube shorts, and shoot-the-shit with their friends on Discord calls like a bunch of bums. This is going to vetted. When I gift this to someone I expect them to follow through with it. If you're gifted a career changing gift and you squander it I WILL lose my mind. More information coming soon.

@vxunderground Reactivated my account I'm ready

Dear Cyber Security People With Money, It is that time of the year again. Please be prepared for me to borderline harass you for free things I can give to people. Dear Nerds, It is that time of the year where I spam giveaways for nearly 45 days and you consider muting me

@0xKongy @pakpakchicken Another wrong call

@pakpakchicken please lord let this guy be right this time

bottom

@pakpakchicken Oops lol

@Micro2Macr0 Explain this?

I laugh every time someone talks about how futuristic China is. Because most of it is built off the back of VERY DIRTY coal. <-- China does NOT care about health standards.

@InvestiAnalyst Have you even worked in cybersecurity? How do you even investigate ttp? You investigate alerts, and triage the alerts to map out the ttps. Detect IOC? Lol this guy has no idea what he's talking about. Even Microsoft intune can do all of this. Clown.

Every breach has a starting point. More often than not, it begins with identity. Attackers are walking through the front door, using stolen or misused credentials. It begins with prevention. Tools like MFA, IGA, PAM, and CIEM aim to strengthen posture and reduce exposure. But prevention alone is not enough. Detection involves recognizing the signs of compromise. Techniques such as analyzing TTPs, monitoring user behavior with UBA, and investigating IOCs all determine whether an identity has been misused. Once a threat is confirmed, response is critical. This is where the Identity Threat Playbook comes into play. By guiding teams through eradication, recovery, reporting, and remediation, it ensures that organizations can respond with speed and precision. ITDR represents how we defend digital environments. As businesses embrace cloud, remote work, and AI driven operations, identities become the connections across systems and data. In today’s landscape, identity is not just an access point, it is the attack surface.

@mnhsuTW 感谢你的analysis. 觉得我disupted是因为有垃圾coin LUNA2, LUNA2_LOCKED, LUNC 吧？

▋等下一步 ⌚️ FTX 預計在 2025 年 2 月 18 日送出賠償，這些 disputed 能不能準時跟上第一波領錢沒人知道。但至少可以排除昨天網路上的危言聳聽，認為就是這些人沒有完成 KYC 或是做錯了什麼事。事實證明就是一些雞毛蒜皮的小事，而且遇到同樣狀況的人也不少。應該不用擔心領不到錢，最差就是慢點領而已 老樣子，寫出來讓遇到這個狀況的人可以安心一點。錢還是會回來。無論多拖幾個月，都比當初 2022 年爆炸時，大家以為的 10 年還回不來好得多了。週末愉快～

FTX 還錢：被標記為 Disputed 怎麼辦？還錢時間 TBD？ 剛剛我找到 FTX 帳號被標記為 disputed 的原因，是申報金額和 FTX 帳本金額對不上。貌似是些毫無價值的 NFT 或是一些奇怪的資料格式問題，但暫時沒有解法

We're witnessing the evolution of ransomware. Yesterday someone informed us of the existence of the new TTP of AWS S3 extortion. More specifically, Threat Actors abusing the Amazon Key Management Service (KMS) to encrypt company AWS buckets (or any cloud provider).