Mastodawn

As some of you know, I run VHP - the Virus History Project on Github. Aim: To preserve historic malcode from going out of time. A lot of code is already gone for good.

Historic typically means pre-Win32 (ie not currently viable, though there are grayzones here).

I am always on the lookout for old malware and malware-adjacent material, specially for platforms that are poorly preserved and not often found in public repos like VT, malshare, vx-underground etc.

If you have oddball material, samples, war stories, POC's and experiments from back in the day, please give me a ping. Both your privacy and your contribution will be respected. I can be reached here and on snoffle(at)proton.me.

VHP is at:
https://github.com/SnorreFagerland/virushistory

Snorre Fagerland Mar 26

@thoughtbox This is going to sound weird, but are you the same Tor that used to be active in the Acorn Archimedes community decades ago?

Snorre Fagerland Mar 16, 2023

There are very few people I respect more than Lise Klaveness. She is *formidable* and her stainless steel spine is legendary. I suspect she and people like her is the future of organized football/soccer.

Snorre Fagerland Feb 27, 2023

Jeg snakker ikke samenes sak. Det gjør de utmerket selv. Men jeg vil gjerne at den norske rettsstaten skal fungere, og det gjør den da teknisk og formelt ikke når statsapparatet ignorerer høyesterettsdommer? Javisst er det dyre konsekvenser av å gjøre ulovlige ting. Regjeringen Solberg's OED ga konsesjon til utbygging på tross av advarsler og pågående anker, og tok en bevisst og kalkulert risiko på at ankene ikke ville føre frem. Staten Norge tapte det veddemålet. Nå sitter Støre igjen med svarteper og vil veldig gjerne at saken bare forsvinner. Det kommer den ikke til å gjøre, men kanskje Solberg får den i retur hvis han trenerer lenge nok.

Snorre Fagerland Feb 2, 2023

I hadn't noticed, but APT40 used OneNote to embed malware already back in 2017.

Snorre Fagerland Jan 20, 2023

Open folder with 50+ Golang DDOS bot compiles (including webassembly) still up at 77.73.131[.]247/bins/. Enjoy.

Snorre Fagerland Jan 14, 2023

Looks like the other place killed off Owly as well, finalizing my disgusted exodus from that site.

Snorre Fagerland Jan 14, 2023

DarkOperator 🚀Jan 14, 2023

Dark Pink: New APT Group Targets Asia-Pacific, Europe With Spear Phishing Attacks https://ift.tt/tHOF9PU

Dark Pink: New APT Group Targets Asia-Pacific, Europe With Spear Phishing Attacks

The group, discovered by Group-IB researchers, has been targeting government and military organizations.

CySecurity News - Latest Information Security and Hacking Incidents