Drew

No pun intended

I would say that phishing is also social engineering, but agree this new “help desk” style social engineering is the next level and so very effective!

Bing is still giving search results for opmanager[.]pro ...sigh...

Another day, another loader becoming a full-on ransomware dropper 🙃

📢 First public attribution of Bumblebee ➡️ Akira ransomware
➡️ 𝐁𝐮𝐦𝐛𝐥𝐞𝐛𝐞𝐞 → 𝐀𝐝𝐚𝐩𝐭𝐗 𝐂2 → 𝐀𝐤𝐢𝐫𝐚 𝐫𝐚𝐧𝐬𝐨𝐦𝐰𝐚𝐫𝐞

- Starts with Bing malvertising
↪️ Moves through custom loader (AdaptX)
↪️ Ends in Akira Ransomware
1/2

Heading into the week the right way!

Late night, thanks for sharing

2025-08-01 (Friday): Some info on a #LummaStealer example I found today:

github.com/malware-traf...

#Lumma

The least they can do

Reversing Mac Malware with L0Psec: Live ARM64 Analysis & Latest Trends Ready to reverse Mac Malware? Today's guest is L0Psec, who joins the stream to talk about reversing the latest mac malware, discuss some current trends and s...

🔥 Live stream starts in an hour - we're reversing Mac malware with L0psec!

Join us on YouTube 👉 youtube.com/live/w3ifC_U...

Ahh but that runs counter to you wanting to do IR 24/7

YouTube video by Anuj Soni Dynamic Malware Analysis: Tools & Workflow (Amadey Malware)

New video from @anujsoni.bsky.social on dynamic analysis workflow is up! youtu.be/_loQ63eGQLM?...

Very cool!

🤣

This is quite interesting having 2 instances of Remcos for redundancy

Hey there dahlia!

It is Wednesday so feels right

That's the kind of audience you want, already paranoid!

ARM64 Malware & Exploits Unraveled with Saumil Shah Join us for a captivating live stream with Saumil Shah, cybersecurity legend and founder of Net-Square, as we dive into the world of ARM64 malware and exploi...

🔥 Live stream with Saumil Shah starts in an hour - we'll be discussing ARM64, exploits and whole lot more!

Join us on YouTube 👉 youtube.com/live/o0-rMG0...

Need to go full Scattered Bajiri on them

🚀 Live stream double-header next week!

July 29 @ 11am CDT - Saumil Shah joins the stream to talk ARM, exploits and more!
👉 youtube.com/live/o0-rMG0...

July 31 @ 4pm CDT - L0psec returns to do some live mac malware reversing!
👉 youtube.com/live/w3ifC_U...

Hey there Delilah…err dahlia

Agree, we all need to get off our RaaS and start spending quality time getting things moving with it.

Pay this man!

Nice work, thanks for sharing

You bet your RaaS they are!

Lol

Tap in to the stream this week for some YARA fun, highlighting some crazy rules, how I think about learning yara (or anything) as a mid-career professional, and more!

I’m thinking karaoke possibly…

Learn and test SPF, DKIM and DMARC Visualize, analyze and improve your email authentication setup

Ohhh…on this week’s @smashingsecurity.com podcast @grahamcluley.com recommended a service called Learn DMARC for testing DMARC configuration and it is excellent.

I really appreciated both yours and Matt’s Q/A answers as being very thoughtful and complete. Looking forward to getting the recording soon as well.