MalShare

@silascutler We've updated our Github issue with new information, including the fake repository used for the takeover and tagged the author/attacker for additional information github.com/Malshare/MalSh…

@mal_share Also - frstudio.unity[@]gmail[.]com attempted to register the api subdomain with Google.

We are investigating a security incident. We've disabled the subdomain and shared collected artifacts on Github. No meaningful data was exposed, but we welcome the community support in investigating and alerting us of similar findings. github.com/Malshare/MalSh…

@notherekekw It's an opensource project we fund out of pocket. If you find a bug, we'll add you to our hall of fame page and tweet how much we appreciate it. If you find something super bad and notify in a way that doesn't ruin a weekend, we may do more

@mal_share does it mean there is a malshare vdp and we allowed to hunt for vulns? 👀

To be clear - we don't have an ETA, but we will be back online. Want to get involved? Start diving into our code base and submit PR requests.

Today we have made the heavy decision to shutdown MalShare in response to losing our hosting provider. We do not have an ETA of when we will be back online.

We're working in prod tonight.

@RussianPanda9xx Working out the @mal_share codebase requires a two drink minimum.

Analyzing malware and writing blogs require proper hydration!

🚨#100DaysofYARA lives!! 2 time reigning champ @RustyNoob619 has kindly offered to take the helm for this community effort! Give the homie a follow 👊 Check the repo to contribute: github.com/100DaysofYARA And gear up for Jan 1 when #100DaysofYARA will kick off!

Just kidding, we're bad down again

We are back online.

We are investigating an active outage and working to restore service

@ryanlrussell @pmelson @vxunderground @abuse_ch Say more. Maybe it's something we can build together

@mal_share @pmelson @vxunderground @abuse_ch Happy to have confirmation, thank you. I have refined my requirements a bit. Turns out I need to host an editable collection, so one file one hash may not always be suitable.

What do people do for hosting malware analysis work product, such as a deobfuscated sample? I DO see some on GitHub, but that seems like a bad long-term solution? Are the sample hosting sites cool with me posting a bundle of analysis work? @vxunderground @abuse_ch ?

@ryanlrussell @pmelson @vxunderground @abuse_ch MalShare's happy to host samples you want to share. That's a cornerstone of why we were created. Our data ends up in most other repositories within a few days as well

@pmelson @vxunderground @abuse_ch @mal_share I think that’s why I was a little surprised. I don’t understand precisely the relationship between the NPM registry and NPM projects on GitHub, but I did just watch three massive NPM compromises, reportedly based on GitHub cred theft. Takedown was quick, though.

CFP for #DistrictCon closes tomorrow districtcon.org/cfp . Speakers set be announced on 20 October 2025

CFP for #DistrictCon closes next week districtcon.org/cfp .

CFP for #DistrictCon districtcon.org/cfp

CFP for #DistrictCon opens tomorrow districtcon.org/cfp .