Scam Hackers

@ADnl en @dpgmedia_nl verzamelen persoonsgegevens voor nieuwsbrieven met winacties voor @bol_com cadeaukaarten via notoire spammers van Premium Advertising International FZ-LLC uit VAE.

@gabsmashh Give it the default SSID name of a competing vendor.

i need a name for my new wifi SSID. suggestions welcome!

@UK_Daniel_Card Depends on the context and should be determined on a case-by-case base. For example, in some phishing cases, it is possible to gain access to configuration files or target/victim data. This can be used to undermine or deter TA ops and warn targets/potential victims.

Rob raises a very good point! Sense back FTW! A thing I say to people, great you’ve got a shell on a TAs infra… what are you going to do next? The convos generally start to go to… Oh yeah I hadn’t really thought about that…. As with everything in life context is key but you really really should stop and think….. Is this a good idea? Will this help anyone? I am fairly open with saying the world is grey, but it’s also fairly obvious that this is a really complex space. If you are pwn3d you should probably be doing IR, recovery and hardening and focusing on not getting pwn3d again (and sharing the TI to help others!) What do you think tweeps?

@Cyb3rMaddy @tryhackme Cracking ≠ decrypting Good you corrected your YT-video title.

Decrypting PASSWORD Hashes with Linux Tools.... and other @tryhackme Cyber 101 content OUT NOW! We go over Command Line, Networking, Cryptography, and cracking passwords! youtu.be/eu5Mi5pxKEA

Very clever phish. Attacker sends a Docusign (actually from Docusign). On the signing page, the only thing is a link and “tap here to view document”, which takes you to an MS phishing page.

@elonmusk Did @elonmusk just equate religions with a "mind virus"?

@marlindavdervos Hallo @marlindavdervos, Jouw post wekt onze interresse. Wij doen o.a. onderzoek naar spyware zoals Pegasus. Als je meer wilt weten, kan je ons DM'en? Bvd

@Sibruh Ik ben letterlijk met Pegasus gevolgd door de universiteit. (Probeer het woord een beetje te verspreiden). Het lijkt overal steeds erger te worden. Ook die beveiligers in Leiden... @tweetsunl x.com/marlindavdervo…

@RevolutApp Thank you for your response!

@ScamHackers Hi there! Thank you for raising this with us. This is already being handled by our team internally. We appreciate your protectiveness regarding this matter.

#Phishing scam targeting drivers from the Netherlands in name of @CJIBnl @RevolutApp accounts: NL54REVO7964854887 NL71REVO5109133065 Abusing infra @roethundbeck 45.82.121.248 45.82.121.249 45.82.122.95 45.82.122.118 45.82.122.172 and ghostnet.de 5.230.42.166

The German Bundeskriminalamt just released images of 8 men who are wanted in relation to #OpEndgame. All of them have their real life image and identity revealed. Already waiting for the #OSINT community giving this a go: bka.de/DE/IhreSicherh…

@_guyevans @banthisguy9349 @L_Lgde @spamhaus @Dyjix In @Dyjix defence, they did eventually drop Constant Moulin as their downstream.

@banthisguy9349 @L_Lgde @spamhaus I can confirm, ASN 212815 should be block listed and is know to have many shady downstreams who are scammers and/or bulletproof hosting. ASN 212815 is also a known DDoS ASN for other ISPs We have tried to raise this with @Dyjix but never got anywhere x.com/ScamHackers/st…

~ 5 minutes of looking onto the malicious ASN AS number: AS203168 AS name: Constant MOULIN Country:📷 BE Spamhaus ASN-DROP :Blocked - This ASN should not be routed or peered with. It is under control of cyber-criminals urlhaus.abuse.ch/asn/203168/

@wbm312 Same.

@JustWantToQ1 True.

@UK_Daniel_Card I mean, personally, I like those 'up close & personal' attacks for pentests. Combined with SE, it can be quite rewarding. In the physical perimeters of the target, there can be easy access to a treasure trove of information because people perceive their work env as safe.

@ScamHackers No way LinkedIn told me there are hordes of hackers waiting to physically pounce

Social media can you steal your credibility in less than 15 seconds.... #CRINGE

@banthisguy9349 @spamhaus Hmm, Seems as if Aurologic, Skylink DC and Datacamp are not too selective as it comes to their downstream clients.

AS number: AS216309 AS name: EVILEMPIRE-AS #bulletproof ASN still has upstream providers willing to provide them services. cc: @spamhaus

@privacyatintel @packetbouncer @CRIMINETWORK @fire96219223 Where did we say that? However, providing infrastructure to be used for DDoS services might be illegal.

Would it come as a total surprise that aurologic and @privacyatintel Intelligence Hosting hang out with #DDoS service providers @CRIMINETWORK at TG channel of @fire96219223, aka Project ZOPZ?

@coremew @privacyatintel @CRIMINETWORK @fire96219223 Looks like they've just stepped it up another notch.

@banthisguy9349 @privacyatintel @coremew @CRIMINETWORK @fire96219223 They accuse us of not checking the profile of TG user "Auro" with handle "aurologic", when that's exactly what they haven't checked... projection.

@ScamHackers @privacyatintel @coremew @CRIMINETWORK @fire96219223 Let me guess. This ASN400328 guy is still acting up?

@packetbouncer @coremew @privacyatintel @CRIMINETWORK @fire96219223 Why do you assume we're talking about you, Joseph? Aurologic is a TG user who promotes Aurologic servers in a DDoS service provider TG group. Who is connected to Intelligence Hosting that just happens to have Aurologic as its upstream.

@coremew @ScamHackers @privacyatintel @CRIMINETWORK @fire96219223 Well, my telegram account has another handle, same as for my twitter account - are you stupid to the core @ScamHackers and trust everyone? 🙂