Mastodon 🐘

697 posts274 participants40 posts today

urlDNA.io :verified:Possible Phishing 🎣 on: ⚠️hxxps[:]//sweepstakes641[.]godaddysites[.]com 🧬 Analysis at: <a href="https://urldna.io/scan/683e2ae93b7750000f8c5971" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://urldna.io/scan/683e2ae93b7750000f8c5971</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/phishing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#phishing</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/urldna" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#urldna</a> <a href="https://infosec.exchange/tags/scam" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#scam</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a>

Felix EckhardtDas Windows auf dem Kundenlaptop lässt mir die Wahl zwischen jetzt, mitten im Meeting, oder in 15 Minuten, zum start meines dailies, den Rechner neu zu starten. Man ey, das nervt.<a href="https://det.social/tags/windows" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#windows</a> <a href="https://det.social/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a>

Shodan SafariASN: AS4766 Location: Incheon, KR Added: 2025-05-30T12:41<a href="https://infosec.exchange/tags/shodansafari" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#shodansafari</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a>

urlDNA.io :verified:Possible Phishing 🎣 on: ⚠️hxxps[:]//store108574004[.]company[.]site 🧬 Analysis at: <a href="https://urldna.io/scan/683e2d4f3b7750000cf3b6f3" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://urldna.io/scan/683e2d4f3b7750000cf3b6f3</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/phishing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#phishing</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/urldna" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#urldna</a> <a href="https://infosec.exchange/tags/scam" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#scam</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a>

Laurent CheylusMicrosoft, CrowdStrike, Palo Alto, and Alphabet's Google announced they would create a public Glossary of state-sponsored Hacking Groups and Cybercriminals, in a bid to ease Confusion over the Menagerie of unofficial Nicknames for them <a href="https://bsd.network/tags/Infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Infosec</a> <a href="https://www.reuters.com/sustainability/boards-policy-regulation/forest-blizzard-vs-fancy-bear-cyber-companies-hope-untangle-weird-hacker-2025-06-02/" rel="nofollow noopener noreferrer" target="_blank">https://www.reuters.com/sustainability/boards-policy-regulation/forest-blizzard-vs-fancy-bear-cyber-companies-hope-untangle-weird-hacker-2025-06-02/</a>

PheonixOkay, so I wanted to share a little incident from a few months back that really hammered home the power of knowing your Linux internals when things go sideways. I got a frantic call, "something weird is going on with our build server, it's acting sluggish and our monitoring is throwing odd network alerts." No fancy EDR on this particular box, just the usual ssh and bash. My heart always sinks a little when it's a Linux box with vague symptoms, because you know it's time to get your hands dirty.First thing I did, even before reaching for any specific logs, was to get a quick snapshot of the network. Instead of netstat, which honestly feels a bit dated now, I immediately hit ss -tunap. That p is crucial cause it shows you the process and user ID for each connection. What immediately jumped out was an outbound TCP connection on a high port to a sketchy-looking IP, and it was tied to a process that definitely shouldn't have been making external calls. My gut tightened. I quickly followed up with lsof -i just to be super sure no deleted binaries were clinging on to network connections.With that IP and PID in hand, I moved to process investigation. pstree -ap was my next stop. It showed the suspicious process, and more importantly, its parent. It wasn't a child of systemd or a normal service. It was spawned by a build script that shouldn't have been executing anything like this. That hierarchical view was key. Then, to really understand what this thing was doing, I dared to strace -p <PID>. Watching the system calls unfurl was like watching a movie of its malicious intent: it was reading from /etc/passwd, making connect() calls, and trying to write to some odd /tmp directories. Simultaneously, I checked ls -l /proc/<PID>/exe to confirm the actual binary path (it was indeed in /tmp) and /proc/<PID>/cwd to see its working directory. No doubt, this was a rogue process.Knowing it was a fresh infection, I immediately shifted to the filesystem. My go-to is always find / -type f -newermt '2 days ago' -print0 | xargs -0 ls -latr. This quickly pulls up any files modified in the last 48 hours, sorted by modification time. It's often where you find dropped payloads, modified configuration files, or suspicious scripts. Sure enough, there were a few more binaries in /tmp and even a suspicious .sh script in a developer's home directory. I also scanned for SUID/SGID binaries with find / -perm /6000 just in case they'd dropped something for privilege escalation. And while stat's timestamps can be tampered with, I always glance at atime, mtime, and ctime on suspicious files; sometimes, a subtle mismatch offers a tiny clue if the attacker wasn't meticulous.The final piece of the puzzle, and often the trickiest, is persistence. I checked the usual suspects: crontab -l for root and every other user account I could find. Then I cast a wider net with grep -r "suspect_domain_or_ip" /etc/cron.* /etc/systemd/system/ /etc/rc.d/ and similar common boot directories. Sure enough, a new systemd timer unit had been added that was scheduled to execute the /tmp binary periodically. Finally, I didn't forget the user dotfiles (~/.bashrc, ~/.profile, etc.). It’s surprising how often an attacker will drop a malicious alias or command in there, assuming you won't dig deep into a developer's setup.Long story short, we quickly identified the ingress vector, isolated the compromise, and cleaned up the persistence. But what really stuck with me is how quickly you can triage and understand an incident if you're comfortable with these fundamental Linux commands. There's no substitute for getting your hands dirty and really understanding what strace is showing you or why ss is superior to netstat in a high-pressure situation. These tools are your best friends in a firefight.<a href="https://infosec.exchange/tags/linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#linux</a> <a href="https://infosec.exchange/tags/incidentresponse" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#incidentresponse</a> <a href="https://infosec.exchange/tags/blueteam" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#blueteam</a> <a href="https://infosec.exchange/tags/forensics" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#forensics</a> <a href="https://infosec.exchange/tags/shell" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#shell</a> <a href="https://infosec.exchange/tags/bash" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#bash</a> <a href="https://infosec.exchange/tags/sysadmin" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#sysadmin</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/threathunting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#threathunting</a> <a href="https://infosec.exchange/tags/lessonslearned" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#lessonslearned</a>

urlDNA.io :verified:Possible Phishing 🎣 on: ⚠️hxxps[:]//securemailforappps[.]weebly[.]com 🧬 Analysis at: <a href="https://urldna.io/scan/683e2d4d3b7750000b34cf81" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://urldna.io/scan/683e2d4d3b7750000b34cf81</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/phishing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#phishing</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/urldna" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#urldna</a> <a href="https://infosec.exchange/tags/scam" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#scam</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a>

Redhotcyber🔥 ULTIMI POSTI PER IL CORSO "DARK WEB E CYBER THREAT INTELLIGENCE". LEGGI LE NOSTRE REFERENZESei ancora indeciso?Contattaci tramite WhatsApp al 379 163 8765 o scrivici a academy@redhotcyber.com per avere maggiori informazioni.<a href="https://mastodon.bida.im/tags/redhotcyber" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#redhotcyber</a> <a href="https://mastodon.bida.im/tags/formazione" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#formazione</a> <a href="https://mastodon.bida.im/tags/formazioneonline" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#formazioneonline</a> <a href="https://mastodon.bida.im/tags/informationsecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#informationsecurity</a> <a href="https://mastodon.bida.im/tags/ethicalhacking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ethicalhacking</a> <a href="https://mastodon.bida.im/tags/dataprotection" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#dataprotection</a> <a href="https://mastodon.bida.im/tags/cti" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cti</a> <a href="https://mastodon.bida.im/tags/cyberthreatintelligence" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cyberthreatintelligence</a> <a href="https://mastodon.bida.im/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://mastodon.bida.im/tags/cybercrime" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybercrime</a> <a href="https://mastodon.bida.im/tags/cybersecurityawareness" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurityawareness</a> <a href="https://mastodon.bida.im/tags/cybersecuritytraining" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecuritytraining</a> <a href="https://mastodon.bida.im/tags/cybersecuritynews" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecuritynews</a> <a href="https://mastodon.bida.im/tags/privacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#privacy</a> <a href="https://mastodon.bida.im/tags/cti" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cti</a> <a href="https://mastodon.bida.im/tags/cyberthreat" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cyberthreat</a> <a href="https://mastodon.bida.im/tags/intelligence" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#intelligence</a> <a href="https://mastodon.bida.im/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a>

urlDNA.io :verified:Possible Phishing 🎣 on: ⚠️hxxps[:]//gmxaccount053[.]weebly[.]com 🧬 Analysis at: <a href="https://urldna.io/scan/683e30f53b7750000b34cfa0" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://urldna.io/scan/683e30f53b7750000b34cfa0</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/phishing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#phishing</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/urldna" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#urldna</a> <a href="https://infosec.exchange/tags/scam" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#scam</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a>

Shodan SafariASN: AS4725 Location: Yokohama, JP Added: 2025-05-30T12:24<a href="https://infosec.exchange/tags/shodansafari" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#shodansafari</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a>

JayeLTeeFound 20,000 Id & Tax cards, email backups, and more exposed publicly on a cloud storage server.The server belonged to Leroy Merlin Italian Branch, which quickly fixed the issue after I notified them.Read more about it here: <a href="https://jltee.substack.com/p/20000-files-from-leroy-merlin-italian-branch-clients-exposed-publicly" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://jltee.substack.com/p/20000-files-from-leroy-merlin-italian-branch-clients-exposed-publicly</a><a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/data" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#data</a> <a href="https://infosec.exchange/tags/dataleak" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#dataleak</a> <a href="https://infosec.exchange/tags/leak" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#leak</a> <a href="https://infosec.exchange/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a> <a href="https://infosec.exchange/tags/privacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#privacy</a> <a href="https://infosec.exchange/tags/italy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#italy</a> <a href="https://infosec.exchange/tags/italia" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#italia</a> <a href="https://infosec.exchange/tags/leroymerlin" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#leroymerlin</a> <a href="https://infosec.exchange/tags/cloud" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cloud</a>

urlDNA.io :verified:Possible Phishing 🎣 on: ⚠️hxxps[:]//volnymail[.]weebly[.]com 🧬 Analysis at: <a href="https://urldna.io/scan/683e2d443b7750000a737e09" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://urldna.io/scan/683e2d443b7750000a737e09</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/phishing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#phishing</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/urldna" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#urldna</a> <a href="https://infosec.exchange/tags/scam" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#scam</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a>

seism0saurusGuten Morgen liebe*r Leser*in,Manchmal nervt es, wenn der Bildschirm des Smartphones aus geht, wenn man gerade länger auf eine Seite schaut. Doch das automatische Sperren des Smartphones hat eine wichtige Schutzfunktion. Genauso wie bei Laptops oder PCs. Manchmal kann man im Caffe jemanden beobachten, der oder die mobil arbeitet und fleißig am Laptop tippt. Dann kommt ein Anruf rein und wegen der Lautstärke geht die Person kurz vor die Tür. Doch der Laptop bleibt ohne Bildschirmsperre zurück. Leicht kann eine neugierige Person ein paar Blicke auf Firmendaten oder private Mails werfen. Eine Angreifer*in vor Ort könnte auch schnell eine Backdoor herunterladen und installieren. Ein ungesperrtes System ist leichte Beute. Gewöhne dir daher an, deine Geräte immer zu sperren, auch wenn du sie nur kurz nicht nutzt. Du solltest auch die automatische Bildschirmsperre aktivieren, so dass sie möglichst bald greift aber dich noch nicht zu Tode nervt. Auf einem Smartphone sind Texte meist nicht so lang, so dass man häufig wischt oder tippt. Daher kann die Zeit hier kürzer eingestellt werden. Z.B. eine Minute. Auf Laptopbildschirme passen auch lange Texte, so dass du hier eine etwas längere Zeit wählen solltest, um nicht unterbrochen zu werden. Z.B. fünf Minuten. Nimm den heutigen Tag als Anlass und aktiviere die automatische Bildschirmsperre bei deinem Smartphone und Laptop.Habt einen wundervollen Tag<a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/itsecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#itsecurity</a> <a href="https://infosec.exchange/tags/goodmorning" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#goodmorning</a> <a href="https://infosec.exchange/tags/shakeupitsecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#shakeupitsecurity</a> <a href="https://infosec.exchange/tags/wisdomoftheday" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#wisdomoftheday</a>

Shodan SafariASN: AS7522 Location: Shido, JP Added: 2025-05-30T12:37<a href="https://infosec.exchange/tags/shodansafari" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#shodansafari</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a>

urlDNA.io :verified:Possible Phishing 🎣 on: ⚠️hxxps[:]//zimbrafree9[.]weebly[.]com 🧬 Analysis at: <a href="https://urldna.io/scan/683e31003b7750000f8c5a28" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://urldna.io/scan/683e31003b7750000f8c5a28</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/phishing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#phishing</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/urldna" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#urldna</a> <a href="https://infosec.exchange/tags/scam" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#scam</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a>

PUPUWEB BlogMicrosoft, Google, CrowdStrike, and Palo Alto are launching a public glossary to standardize the names of state-sponsored hacking groups and cybercriminals, aiming to reduce confusion from overlapping aliases and improve threat response. <a href="https://mastodon.social/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Cybersecurity</a> <a href="https://mastodon.social/tags/ThreatIntelligence" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ThreatIntelligence</a> <a href="https://mastodon.social/tags/Microsoft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Microsoft</a> <a href="https://mastodon.social/tags/Google" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Google</a> <a href="https://mastodon.social/tags/CrowdStrike" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CrowdStrike</a> <a href="https://mastodon.social/tags/PaloAlto" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#PaloAlto</a> <a href="https://mastodon.social/tags/Infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Infosec</a>

urlDNA.io :verified:Possible Phishing 🎣 on: ⚠️hxxps[:]//btsecure0001[.]weebly[.]com 🧬 Analysis at: <a href="https://urldna.io/scan/683e30fc3b7750000cf3b732" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://urldna.io/scan/683e30fc3b7750000cf3b732</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/phishing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#phishing</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/urldna" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#urldna</a> <a href="https://infosec.exchange/tags/scam" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#scam</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a>

Matthias SchulzeMeta Disrupts Influence Ops Targeting Romania, Azerbaijan, and Taiwan with Fake Personas <a href="https://thehackernews.com/2025/05/meta-disrupts-influence-ops-targeting.html" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://thehackernews.com/2025/05/meta-disrupts-influence-ops-targeting.html</a> <a href="https://ioc.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://ioc.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a>

urlDNA.io :verified:Possible Phishing 🎣 on: ⚠️hxxps[:]//bingkasprogrambantuan-ewallet[.]offi-ciall[.]com 🧬 Analysis at: <a href="https://urldna.io/scan/683e30ff3b7750000cf3b744" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://urldna.io/scan/683e30ff3b7750000cf3b744</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/phishing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#phishing</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/urldna" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#urldna</a> <a href="https://infosec.exchange/tags/scam" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#scam</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a>

Shodan SafariASN: AS1221 Location: Sydney, AU Added: 2025-05-30T12:28<a href="https://infosec.exchange/tags/shodansafari" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#shodansafari</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a>

Recent searches

Search options

Administered by:

Server stats:

#InfoSec