JuanPC

@JuanPC@mastodon.online
46 Followers
303 Following
1.1K Posts
JuanPCDec 26
OTX BotDec 26

Silver Fox Targeting India Using Tax Themed Phishing Lures

A sophisticated campaign by the Chinese APT group Silver Fox is targeting Indian entities with authentic-looking Income Tax phishing lures. The attack leverages a complex kill chain involving DLL hijacking and the modular Valley RAT to ensure persistence. The campaign uses a multi-stage infection process, starting with a malicious email containing a PDF decoy. The payload is delivered through an NSIS installer, which drops a legitimate Thunder.exe binary and a malicious libexpat.dll for DLL hijacking. The final stage involves the Valley RAT, which uses a two-stage configuration loading mechanism and implements a 3-tier C2 communication loop. The RAT's modular plugin architecture allows for dynamic capability extension and persistence through registry-based storage.

Pulse ID: 694c56d0f3f466a559e3f352
Pulse Link: https://otx.alienvault.com/pulse/694c56d0f3f466a559e3f352
Pulse Author: AlienVault
Created: 2025-12-24 21:10:40

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#Chinese #CyberSecurity #Email #India #InfoSec #OTX #OpenThreatExchange #PDF #Phishing #RAT #bot #AlienVault

LevelBlue - Open Threat Exchange

Learn about the latest cyber threats. Research, collaborate, and share threat intelligence in real time. Protect yourself and the community against today's emerging threats.

LevelBlue Open Threat Exchange
JuanPCDec 23
elhacker.NETDec 23
Guía visual sobre cómo funcionan los modelos de lenguaje grande (LLM)
JuanPCDec 23
https://www.nature.com/immersive/d41586-025-03848-1/index.html . Hay listas de este tipo para todos los gustos. Cuál es la tuya ?
Nature’s 10: Ten people who shaped science in 2025

A fired public-health official, a mosquito breeder and a baby with a smile seen around the world. These are just a few of the remarkable people chosen for Nature’s 10.

JuanPCDec 19
Golang News and LibrariesDec 17

Draft Release Notes for Go 1.26
#golang

https://tip.golang.org/doc/go1.26

JuanPCDec 19
La entrevista a #RafaelYuste No tiene desperdicio. https://theconversation.com/rafael-yuste-nos-hallamos-al-comienzo-de-una-revolucion-darwiniana-de-la-neurociencia-270091 . La #neurociencia tiene muchas incognitas por desvelar ,
Rafael Yuste: “Nos hallamos al comienzo de una revolución darwiniana de la neurociencia”

Hablamos con el eminente neurocientífico español Rafael Yuste de las complejidades del cerebro humano, los desafíos actuales de la neurociencia y la necesidad urgente de proteger la privacidad de nuestras mentes frente a las nuevas interfaces mente-máquina.

The Conversation
JuanPCDec 16
Golang News and LibrariesDec 16

A live reload tool for Go and other languages. It watches for file changes in your project and automatically runs commands, speeding up development and testing workflows
#golang

https://github.com/lasfh/eletrize

JuanPCDec 14
⚠️ Actualizar las aplicaciones es importante ⚠️ #vulnerabilidad de alta severidad en #Chrome . https://unaaldia.hispasec.com/2025/12/google-parchea-una-nueva-0-day-critica-en-chrome-en-plena-campana-de-explotacion.html
Google parchea una nueva 0-day crítica en Chrome en plena campaña de explotación

La vulnerabilidad, registrada como Issue 466192044, se mantiene bajo divulgación restringida mientras Google acelera el despliegue del parche y los equipos de seguridad priorizan su aplicación. Goo…

Una Al Día
JuanPCDec 13
Show threadtrilobiteDec 13
I agree with all your points. The problem is that quality cheching AI outputs is something that only a few will do. The other day my son did a search with chat GPT. He was doing an analysis of his competitors within 20km radius from home. He took all the results for grated and true. Then i looked at the list and found many business names looked strange. When i asked for the links to the website, i found that some were in different countries. My son said “u cant trust this”. When i pointed it out to chatgpt, the dam thing replied “oh im sorry, i got it wrong”. Then you realise that these AI things are not accountable. So quality checking is fundamental. The accountability will always sit with the user. I’d like to see the day when managers take accountability of ai crap. That wont happen, do jobs for now are secure.
JuanPCDec 13
heise online EnglishDec 7

Meta Quest 4: Internal memo promises "big upgrade"

Meta has started developing the Quest 4 according to a leaked memo. An also planned ultra-light MR glasses have been postponed to 2027.

https://www.heise.de/en/news/Meta-Quest-4-Internal-memo-promises-big-upgrade-11105626.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon

#Entertainment #MetaPlatforms #MetaQuest #MixedReality #Mobiles #VirtualReality #news

Meta Quest 4: Internal memo promises "big upgrade"

Meta has started developing the Quest 4 according to a leaked memo. An also planned ultra-light MR glasses have been postponed to 2027.

heise online
JuanPCDec 13
The Conversation UKDec 13

Researchers trust The Conversation.

Because our only agenda is to rebuild trust and serve the public by making knowledge available to everyone.

All our work is completely free to read, we have no paywall.

Donate to The Conversation: https://tcnv.link/ZkRbtAy