Odisseus

"The Windows Antimalware Scan Interface (AMSI) is a versatile interface standard bla bla bla..." 🙄 With #AMSIkiller you can "patch" the first byte of the process changing it from JE to JMP: so it returns directly. Get your lifetime #AMSI bypass! 😉 github.com/ZeroMemoryEx/A…

Ex-BND (German Foreign Intelligence Service) deputy chief Arndt Freytag von Loringhoven received a message from fake Signal “support” asking for his PIN. He typed it in. His contacts then got a malicious link through his hijacked account. He’s a former NATO intelligence chief, and the author of a book called Putin’s Attack on Germany, where he apparently covers Russian cyberattacks. He fell for a fake customer service message.

🚨 𝗦𝗽𝗼𝘁 𝗜𝘁 𝗘𝗮𝗿𝗹𝘆: 𝗖𝗿𝗲𝗱𝗲𝗻𝘁𝗶𝗮𝗹 𝗧𝗵𝗲𝗳𝘁 𝗕𝗲𝗵𝗶𝗻𝗱 𝗙𝗮𝗸𝗲 𝗣𝗗𝗙𝘀 Attackers disguise #phishing HTM/HTML email attachments as PDF files. In the observed case, pdf.htm displays a fake login page and sends entered credentials in JSON via HTTP POST to the Telegram Bot API, enabling account takeover and access to internal systems. Some samples use obfuscated scripts, making the exfiltration logic harder to spot ❗️ ⚡️ #ANYRUN Sandbox exposed phishing behavior in under 60 seconds, revealing the outbound network activity, loaded scripts, and file contents, helping analysts accelerate triage and reduce unnecessary escalations. 🎣 See the analysis session and collect #IOCs to speed up detection and cut MTTR: app.any.run/tasks/3a6af151… 🔍 Find similar cases and pivot from IOCs using this TI Lookup search query: intelligence.any.run/analysis/looku… 👨‍💻 Learn how #ANYRUN Sandbox helps SOC teams detect complex threats faster: any.run/features/?utm_… #ExploreWithANYRUN

HackInBo® Training – Spring 2026 • Advanced Binary Analysis & Reverse Engineering • Full-Stack Pentesting Lab (Hands-On + Lifetime LAB) • Digital Forensics for First Responders Info & registration: hackinbo.training #HackInBo #HiB26 #HiBTraining #Infosec #Training

A csv formatted list of #malspam campaigns that crossed my path in February to include subjects, #malware type, hashes, c2's, and email exfil addresses: gist.github.com/silence-is-bes… #retrohunt

#reverseloader #xworm #opendir at: http://158.94.211\.63/dealer/

🤖 Stiamo iniziando a usare modelli di intelligenza artificiale anche nei sistemi della Pubblica Amministrazione. Per esempio per gestire documenti, PEC, pratiche. 🛡Se portiamo l'AI nei sistemi critici dobbiamo tenere bene in mente che non è nata per fare il guardiano.

An extremely interesting #clickfix that drops #chromeelevator app.any.run/tasks/b69f163b…

Parrhesepstein: piattaforma AI open source per analizzare i file Epstein. Testatela. 9 agenti investigativi autonomi, ricerca semantica su migliaia di documenti declassificati, mappa dei voli, grafi delle connessioni e analisi delle reti di influenza. Uno strumento costruito per esercitare la parrhesia: dire la verità al potere... perché la libertà non è un’opinione, è un dovere epistemologico. (grazie a @boni_castellane per il nome ) github.com/Pinperepette/p…

Breaking Palantir was allegedly hacked. An AI agent was used to gain super-user access and here”s what the hackers allegedly found: Peter Thiel and Alex Karp commit mass surveillance of world leaders and titans of industry on a massive scale. They have thousands of hours of transcribed and searchable conversations of Donald Trump, JD Vance and Elon Musk. They have backdoored the devices, cars and jets of world leaders and accumulated the biggest archive of blackmail material. Palantir is creating nuclear and bio weapon capabilities for Ukraine and is working closely with the CIA to defeat Russia. They believe they are one year away. They plan to achieve this by keeping Russia busy with meaningless peace negotiations. Palantir is responsible of the majority of Palestinian deaths in Gaza. They have developed the AI targeting for Israel. Palantir is an arm of the CIA and all data from international clients is copied into a CIA spy cloud. Palantir has become the most dangerous company in the world. If you work there you have the right to know that this is what Palentir AI is used for, without your knowledge. The Palentir data the hackers allegedly gathered will be given to Russia and/or China. I was chosen as a trusted partner for this publication. I’m not involved in the Palentir hack and I don’t know the hackers. But I do know that the hack happened.

Save the date! HackInBo® Spring & Winter Edition 2026 #HiB26 #HiB #HackInBo

📢#𝐑𝐞𝐜𝐥𝐮𝐭𝐚𝐦𝐞𝐧𝐭𝐨: cerchiamo professionalità con competenze nel campo delle #tecnologieavanzate #sicurezzadigitale #terrorismo #OSINT #ecofin youtube.com/watch?v=w0Dvcn… #SicurezzaNazionale Tutte le info qui👉sicurezzanazionale.gov.it/contenuti/il-t… Hai tempo 𝐟𝐢𝐧𝐨 𝐚𝐥 𝟐𝟎 𝐦𝐚𝐫𝐳𝐨

📄 L'analisi si concentra esclusivamente su attività che hanno interessato il territorio italiano, con particolare attenzione a quelle rivolte contro soggetti pubblici e privati afferenti alla propria constituency.

Scaricate, gente, scaricate.... 7zip troianized installer. malwarebytes.com/blog/threat-in…

NON TRACCIABILE

From #clickfix -> #vidar: app.any.run/tasks/52091c25…

We added Trend Comparison to HackRisk.io and we are very proud of the result ⤵️

Actually the rebranded version; #zerotrace

⚠️ In Q4 2025, #XWorm surged 174%, fueled by its flexibility across manufacturing and healthcare #AsyncRAT and #Quasar followed with 46% and 27% growth, showing open-source RATs outpacing commercial stealers 📈 Learn more in our threat landscape report: any.run/cybersecurity-…

✈️ Hackers faking airport Wi-Fi. 💻 Malware hiding inside coding tools. 🤖 AI rewriting security playbooks. That’s just the start — and 15+ more stories inside. 📰 This week’s #ThreatsDay Bulletin uncovers the sneakiest hacks, scams, and “too-smart” malware out there. 🔗 Catch up before they catch you → thehackernews.com/2025/12/threat…

🎩Censys is heading to Black Hat Europe in London on December 10–11. Meet the Censys team at Booth #614 🎤 Don’t Miss Our Sponsored Session “Hiding in Plain Sight: Tracking Bulletproof Hosting and Abused RDP Infrastructure” 📅 December 10 at 11:35 AM Presented by Himaja Motheram tinyurl.com/3tac5x5y #BlackHatEurope #BH2025