#  @MauroEldritch Mauro Eldritch ๐ดโโ ๏ธ Mauro Eldritch ๐ดโโ ๏ธ posts on X about argentina, actor, uruguay, de la the most. They currently have [------] followers and [---] posts still getting attention that total [---] engagements in the last [--] hours. ### Engagements: [---] [#](/creator/twitter::3294518679/interactions)  - [--] Week [-----] -40% - [--] Month [------] -17% - [--] Months [-------] +2,693% - [--] Year [-------] +530% ### Mentions: [--] [#](/creator/twitter::3294518679/posts_active)  - [--] Week [--] +160% - [--] Month [--] +133% - [--] Months [--] +657% - [--] Year [--] +88% ### Followers: [------] [#](/creator/twitter::3294518679/followers)  - [--] Week [------] +0.05% - [--] Month [------] -0.11% - [--] Months [------] +11% - [--] Year [------] +18% ### CreatorRank: undefined [#](/creator/twitter::3294518679/influencer_rank)  ### Social Influence **Social category influence** [countries](/list/countries) [travel destinations](/list/travel-destinations) [finance](/list/finance) [technology brands](/list/technology-brands) [currencies](/list/currencies) [exchanges](/list/exchanges) [stocks](/list/stocks) [cryptocurrencies](/list/cryptocurrencies) [social networks](/list/social-networks) [products](/list/products) **Social topic influence** [argentina](/topic/argentina), [actor](/topic/actor), [uruguay](/topic/uruguay), [de la](/topic/de-la), [montevideo](/topic/montevideo), [grupo](/topic/grupo), [buenos aires](/topic/buenos-aires), [lazarus](/topic/lazarus), [sobre](/topic/sobre), [address](/topic/address) **Top assets mentioned** [Cloudflare, Inc. (NET)](/topic/cloudflare) [Alphabet Inc Class A (GOOGL)](/topic/$googl) ### Top Social Posts Top posts by engagements in the last [--] hours "Thanks @DDV_DC crew We have to solve this puzzle @LiorKolnik @defcon #DEFCON26" [X Link](https://x.com/MauroEldritch/status/1028441123113431040) 2018-08-12T00:40Z [----] followers, [--] engagements "El grupo #BlackCat anuncia a TGS (Transportadora de Gas del Sur) como nueva vctima. ๐ Amenazan con filtrar [---] GB de informacin financiera legal contable y tcnica incluyendo esquemticos y planos de gasoductos. #Argentina #Cibercrimen #Ciberseguridad #Security" [X Link](https://x.com/MauroEldritch/status/1512768019390517255) 2022-04-09T12:22Z [----] followers, [--] engagements "๐ฏ #Hive filtra informacin confidencial de #CaracolTV. Incluye documentos aduaneros y pasaportes de ciudadanos de y . ๐ฏ Hive releases confidential data from CaracolTV including customs documents and passports of citizens of & . #Ransomware #Colombia" [X Link](https://x.com/MauroEldritch/status/1531410313672802305) 2022-05-30T23:00Z [----] followers, [--] engagements "#Uruguay: Escrib un breve informe sobre el incidente de #ransomware sufrido por Guyer & Regules a manos de Lockbit. ๐ Entre los archivos expuestos se encuentran documentos de la fintech Lemon Cash. ๐ดโ El lote contina a la venta. #Ciberseguridad #Cibercrimen #Montevideo ๐ New paper released. ๐ "#Ransomware: Lockbit vs Guyer & Regules" by @MauroEldritch (Spanish). ๐ https://t.co/SWUT0I2uEE ๐ค Stay safe with #Sheriff #Cybersecurity #Cybercrime #ThreatIntel #Uruguay #Montevideo ๐ New paper released. ๐ "#Ransomware: Lockbit vs Guyer & Regules" by @MauroEldritch (Spanish). ๐" [X Link](https://x.com/anyuser/status/1699421605577789515) 2023-09-06T13:57Z 10.8K followers, 18.5K engagements "๐ Esta semana en Dark News (ex SecOps): #Ransomware al Hospital Italiano de Buenos Aires. #DataBreach del Parlamento del #Uruguay. ๐ Link: #Argentina #Ciberseguridad #Cibercrimen" [X Link](https://x.com/MauroEldritch/status/1717891257538589028) 2023-10-27T13:09Z [----] followers, [---] engagements "๐ Sobre el incidente de #ransomware ocurrido en el Jockey Club nota de @carolamberti1 con comentarios de mi parte (gracias por el espacio). ๐ Link: #Ciberseguridad #Cibercrimen #Argentina" [X Link](https://x.com/MauroEldritch/status/1720115963410948262) 2023-11-02T16:29Z [----] followers, [---] engagements "#Argentina: A la venta tres importantes bases de datos en un foro especializado. ๐พ IRSA (1.4 millones de registros) Gimnasios Megatlon (1.1 millones) e Ibero Renault (300.000). ๐ #ThreatIntel: @chum1ng0. #Ciberseguridad #Cibercrimen" [X Link](https://x.com/MauroEldritch/status/1727404170624565553) 2023-11-22T19:10Z [----] followers, [----] engagements "#Uruguay: Actor afiliado a Esteem Restoration Eagle desfigura el sitio de Geikko (educacin). โ Primer ataque registrado en Uruguay relacionado al conflicto en Israel. Esteem Restoration Eagle es un grupo hacktivista pro-Palestina. #Ciberseguridad #Cibercrimen #Montevideo" [X Link](https://x.com/MauroEldritch/status/1729217203243999278) 2023-11-27T19:14Z [----] followers, [----] engagements "#Uruguay: El grupo Ransomexx2 liber 54GB de informacin secuestrada a Universal Assistance SA. ๐ข El lote incluye datos de compaas como Htal. Evanglico Sistarbanc Intendencia de #Montevideo CASMU Santander BROU Ita Seguro Americano Zurich. #Ciberseguridad" [X Link](https://x.com/MauroEldritch/status/1729545711442706938) 2023-11-28T17:00Z [----] followers, [----] engagements "#Uruguay: El grupo de #ransomware Cactus libera la totalidad de la informacin secuestrada a Geocom. ๐พ El lote de datos contiene 77GB de informacin confidencial e incluye pasaportes. #Ciberseguridad #Cibercrimen #Montevideo ๐ New #ransomware update. #Uruguay: Cactus group releases Geocom full dump (77GB). ๐ Stay informed with for the latest Ransomware #ThreatIntelligence. https://t.co/AGnMzz8dCL ๐ New #ransomware update. #Uruguay: Cactus group releases Geocom full dump (77GB). ๐ Stay informed with for the latest Ransomware #ThreatIntelligence. https://t.co/AGnMzz8dCL" [X Link](https://x.com/anyuser/status/1736815089230262282) 2023-12-18T18:26Z 10.8K followers, 32.8K engagements "@MarchuGonnet Al haber pasaportes junto con informacin de ventas usuarios y clientes el lote es muy interesante para actores que se dediquen al robo de identidad y estafas similares. No slo se expone informacin interna de la empresa sino tambin de terceros (lo que es ms grave)" [X Link](https://x.com/MauroEldritch/status/1736840626728046698) 2023-12-18T20:07Z [----] followers, [---] engagements "๐ณ Sobre la liberacin del lote de 77GB de informacin confidencial de Geocom en #Uruguay. ๐ Nota en @ObservadorUY (gracias por la mencin a nuestro trabajo). ๐ Link: #Ciberseguridad #Cibercrimen #Montevideo" [X Link](https://x.com/MauroEldritch/status/1737082710194114820) 2023-12-19T12:09Z [----] followers, [---] engagements "#Uruguay: Nuevo actor de amenazas publica tres lotes de datos filtrados. ๐ฅ Saico (Compaa de Software). Club Uruguayo Britnico. โฝ Sitio web del jugador y DT Gustavo Muna. ๐พ Contienen emails hashes de passwords y lista de clientes. #Ciberseguridad #Cibercrimen" [X Link](https://x.com/MauroEldritch/status/1738179938870517972) 2023-12-22T12:49Z [----] followers, [---] engagements "#Argentina: Actor de amenazas comparte credenciales para el sistema CIDI (Ciudadano Digital de la Provincia de Crdoba). ๐พ Sostiene tener acceso a [-----] credenciales sin el respectivo PIN de autorizacin. #Ciberseguridad #Cibercrimen #Cordoba" [X Link](https://x.com/anyuser/status/1750133800271491128) 2024-01-24T12:29Z [--] followers, [--] engagements "#Argentina: A la venta acceso con privilegios de administrador al Colegio de Abogados de la Provincia de Buenos Aires. โ El acceso privilegiado permitira validar ttulos modificar legajos y emitir nuevas matrculas y credenciales entre otros. #Ciberseguridad #Cibercrimen ๐ New #cybercrime intelligence. #Argentina: Admin access to Colegio de Abogados de la Provincia de Buenos Aires for sale. Allows privileged actions such as validate diplomas alter personal records and issue new credentials and professional licenses. https://t.co/31h4iO1nO1 ๐ New #cybercrime intelligence. #Argentina: Admin" [X Link](https://x.com/anyuser/status/1750498380453753046) 2024-01-25T12:38Z 10.8K followers, 10K engagements "#Argentina: A la venta acceso administrador al sitio de Mediaciones del Ministerio de Justicia de la Provincia de Buenos Aires. Permitira la visualizacin y modificacin de ms de [----] casos. #Ciberseguridad #Cibercrimen ๐ New #cybercrime intelligence. #Argentina: Admin access to Ministerio de Justicia de la Provincia de Buenos Aires for sale granting alleged access to view download and modify data for 2k criminal cases. ๐ #ThreatIntelligence: @criminaalmambo & @chum1ng0 (Gracias). https://t.co/Z0X2wygX6k ๐ New #cybercrime intelligence. #Argentina: Admin access to Ministerio de Justicia de la" [X Link](https://x.com/MauroEldritch/status/1751923711974715565) 2024-01-29T11:02Z [----] followers, [----] engagements "#Argentina: A la venta accesos a dos correos gubernamentales. ๐ฐ Precio: $10 USD. #Ciberseguridad #Cibercrimen" [X Link](https://x.com/MauroEldritch/status/1752311407020753356) 2024-01-30T12:42Z [----] followers, [--] engagements "๐ Qu son los #Drainers y por qu son una amenaza para el ecosistema #Web3 Qu es el modelo Drainers as a Service โ Lo explico en "Signing the Crypto Devil's Contract" artculo que escrib para @Bitso. ๐ Link: #Ciberseguridad #Cibercrimen" [X Link](https://x.com/MauroEldritch/status/1752320026055496019) 2024-01-30T13:17Z [----] followers, [--] engagements "๐ Sobre la filtracin de #Geocom - por Juan Pablo De Marco (gracias). ๐พ A pesar de la versin oficial se filtraron planillas con claves de Intendencias padrones documentacin tcnica y cdigo fuente. ๐ Link: #Ciberseguridad #Uruguay #Montevideo" [X Link](https://x.com/MauroEldritch/status/1752752880816103752) 2024-01-31T17:57Z [----] followers, [--] engagements "#Argentina: A la venta una base de datos de un e-commerce con [--] mil registros que incluyen nombre completo email telfono e informacin de pago (tarjetas de dbito/crdito). ๐ฐ Precio: $350 USD. #Ciberseguridad #Cibercrimen ๐ New #cybercrime intelligence. #Argentina: DB leak belonging to an argentine e-commerce is up for sale. Leak contains 3k lines with full name email phone and payment information (credit/debit cards). ๐ #ThreatIntelligence: @criminaalmambo (Gracias). https://t.co/zfpHZ9iMyI ๐ New #cybercrime intelligence. #Argentina: DB leak belonging to an argentine e-commerce is up for" [X Link](https://x.com/MauroEldritch/status/1753094087253622908) 2024-02-01T16:32Z [----] followers, [----] engagements "๐๐ป Gracias @vogelbit #Ciberseguridad #Web3 chate un clavado al mundo de los smart contracts maliciosos en nuestro blog "Drainers: Signing the Crypto Devils Contract" cortesa de @MauroEldritch. Como un mega fan de web3 espero que este blog te ayude a informarte y no caer en trampas digitales https://t.co/TWJIP2QKzr chate un clavado al mundo de los smart contracts maliciosos en nuestro blog "Drainers: Signing the Crypto Devils Contract" cortesa de @MauroEldritch. Como un mega fan de web3 espero que este blog te ayude a informarte y no caer en trampas digitales https://t.co/TWJIP2QKzr" [X Link](https://x.com/MauroEldritch/status/1753146311858418039) 2024-02-01T20:00Z [----] followers, [---] engagements "#Argentina: A la venta un juego de credenciales de correo y [---] archivos confidenciales del Ministerio de Seguridad de la Provincia de Buenos Aires. โ El acceso ya habra sido revocado. #Ciberseguridad #Cibercrimen" [X Link](https://x.com/MauroEldritch/status/1754502493742997778) 2024-02-05T13:49Z [----] followers, [--] engagements "๐ Hackearon a la Intendencia de Flores - Nota en @ObservadorUY donde contamos cmo observamos y documentamos la actividad de un actor que hasta la fecha slo ha atacado a objetivos de #Uruguay. ๐ Link: #Ciberseguridad #Cibercrimen" [X Link](https://x.com/MauroEldritch/status/1757894403748659522) 2024-02-14T22:27Z [----] followers, [--] engagements "#Argentina: Desfiguran el subsitio del Coro Municipal de Trelew con un mensaje anti Israel. #Ciberseguridad #Cibercrimen ๐ New #cybercrime intelligence. #Argentina: Coro Municipal de Trelew was defaced. ๐ #ThreatIntelligence: @chum1ng0 (Gracias). https://t.co/sFGb6N58jC ๐ New #cybercrime intelligence. #Argentina: Coro Municipal de Trelew was defaced. ๐ #ThreatIntelligence: @chum1ng0 (Gracias). https://t.co/sFGb6N58jC" [X Link](https://x.com/MauroEldritch/status/1759708009662460016) 2024-02-19T22:34Z [----] followers, [----] engagements "๐บ Estuve hablando brevemente en @TelemundoUY sobre la Operacin Cronos. ๐๐ป Gracias por invitarme #Ciberseguridad #Cibercrimen #Uruguay" [X Link](https://x.com/MauroEldritch/status/1760098440174879230) 2024-02-21T00:25Z [----] followers, [--] engagements "@Marce_I_P Gracias por mencionarlo Marce Estamos algo atrasados con la carga de novedades porque bsicamente pas de todo. Pero se vienen muchas mejoras este ao : )" [X Link](https://x.com/MauroEldritch/status/1760640033709588520) 2024-02-22T12:17Z [----] followers, [--] engagements ""Riding with the Chollimas" debuts in #Seoul South #Korea this May. ๐ด And I have good news: We've got another sample and nearly enough data to write a second chapter soon. #Cybersecurity #APT #Lazarus #DPRK Riding with the Chollimas: Our 100-day quest to profile a North Korean State-Sponsored Threat Actor at @defcon @ReconVillage. #DEFCON31 #Hacking #DPRK #Malware https://t.co/Th6hsqgfGZ Riding with the Chollimas: Our 100-day quest to profile a North Korean State-Sponsored Threat Actor at @defcon @ReconVillage. #DEFCON31 #Hacking #DPRK #Malware https://t.co/Th6hsqgfGZ" [X Link](https://x.com/MauroEldritch/status/1761095574005092458) 2024-02-23T18:27Z [----] followers, [----] engagements "๐ฅ Podran los NFTs tener un rol activo en una cadena de infeccin Le saqu fotos a Leopoldo las hice NFT con una descripcin "maliciosa" y vamos a contarles este experimento en Insomni'Hack #Suiza en Abril. ๐ช Server C2 inmortal por $7 Deme dos. #Ciberseguridad #Web3" [X Link](https://x.com/MauroEldritch/status/1764657718604800050) 2024-03-04T14:22Z [----] followers, [--] engagements "@criminaalmambo Y casi que apostara a que habr una gran cantidad de archivos cuyo nombre empezar con "WhatsApp Image"" [X Link](https://x.com/MauroEldritch/status/1765387980523376966) 2024-03-06T14:44Z [----] followers, [--] engagements "#Uruguay: Publican certificados VPN del Correo Uruguayo acompaados por un manual de usuario. #Ciberseguridad #Cibercrimen #Montevideo ๐ New #cybercrime intelligence. #Uruguay: Threat actor shares VPN certificates from Correo Uruguayo. Includes PDF manual with connection instructions. ๐ #ThreatIntelligence: @chum1ng0 (gracias). https://t.co/bLoZ4t8dSu ๐ New #cybercrime intelligence. #Uruguay: Threat actor shares VPN certificates from Correo Uruguayo. Includes PDF manual with connection instructions. ๐ #ThreatIntelligence: @chum1ng0 (gracias). https://t.co/bLoZ4t8dSu" [X Link](https://x.com/MauroEldritch/status/1767895685108478377) 2024-03-13T12:49Z [----] followers, [----] engagements "#Uruguay: A la venta bases de datos y cdigo fuente de Aluminios del Uruguay Agro Terra Agro Oriental Campo Abierto y CIEMSA. ๐ฅท El actor de amenazas indica a NODUM una empresa uruguaya de software como origen de la filtracin. #Ciberseguridad #Cibercrimen #Montevideo ๐ New #cybercrime intelligence. #Uruguay: Threat actor has leaked source code and DBs from five companies: Aluminios del Uruguay Agro Terra Agro Oriental Campo Abierto & CIEMSA. Data was extracted from another company NODUM. ๐ #ThreatIntelligence: @chum1ng0. https://t.co/jwY8NiedjR ๐ New #cybercrime intelligence. #Uruguay:" [X Link](https://x.com/MauroEldritch/status/1778761038042677405) 2024-04-12T12:24Z [----] followers, [----] engagements "Megafiltracin en #Uruguay. Venden cdigo fuente de [--] compaas: Aeromar AFISA ALOY ALUR Ambiental America Software American Chemical Arca Argensun Autoconsultas Avanza Bacardi BD Bebelandia Berkes Biko Bioerix Bromyros COSEM Candrona CCM Celsius Ceramicas Castro Chlorskid Cibeles y "Club de Golf". ๐ฅท Anteriormente el mismo actor public cdigo propietario de Cementos del Plata Aluminios del Uruguay Agro Terra Agro Oriental Campo Abierto CIEMSA Caja Bancaria Centro Oftalmolgico y Clnica Parada siendo el total de vctimas [--]. #Ciberseguridad #Cibercrimen #Montevideo ๐ New #cybercrime intelligence." [X Link](https://x.com/anyuser/status/1779844185744421345) 2024-04-15T12:08Z 10.8K followers, 56K engagements "Just [--] days left until Insomni'Hack #Switzerland ๐ GoldenLocker and I will present "Malicious Fungible Tokens" or how to build an "immortal" C2 server using the blockchain some Ruby code and a golden retriever mastermind. ๐ April 26th. Hope to see all of you there ๐จ๐ข Insomni'hack [----] ๐กSPEAKER mFT: Malicious Fungible Tokens by Mauro Eldritch ๐ Dont miss the opportunity to attend this conference Details and registration: https://t.co/Prie8YweeV #INSO24 #Insomnihack #cybersecurity ๐จ๐ข Insomni'hack [----] ๐กSPEAKER mFT: Malicious Fungible Tokens by Mauro Eldritch ๐ Dont miss the" [X Link](https://x.com/MauroEldritch/status/1779892596954784173) 2024-04-15T15:20Z [----] followers, [----] engagements "#Argentina: Colocan a la venta una nueva versin de la base de datos sustrada al #BCRA. ๐พ La misma contendra [------] entradas (40.000 ms que la versin anterior) y consigna mayormente informacin pblica. #Cibercrimen #Ciberseguridad ๐ New #cybercrime intelligence. #Argentina: Threat actor selling a newer version of the database extracted from Banco Central de la Repblica Argentina. This one contains [-----] entries with mostly publicly available information. ๐ #ThreatIntelligence: @criminaalmambo. https://t.co/VNkMZJiIJf ๐ New #cybercrime intelligence. #Argentina: Threat actor selling a newer" [X Link](https://x.com/MauroEldritch/status/1786367015336161775) 2024-05-03T12:07Z [----] followers, [----] engagements "๐ Ya sali la segunda edicin del newsletter semanal de #MeFiltraron. ๐ฆฆ Felicidades Capys (RFC: Ya es hora de agregar un emoji de carpincho). #Ciberseguridad #Cibercrimen #Argentina #Uruguay" [X Link](https://x.com/MauroEldritch/status/1788935708389879918) 2024-05-10T14:14Z [----] followers, [--] engagements "๐ฆฉ PinkDrainer anuncia su cierre. ๐ท Tras sobrepasar su umbral de 75M en fondos (drenados a ms de [------] vctimas) y con un anuncio en su canal oficial el proyecto alcanz su fin. ๐ Convirtieron la mayora de sus fondos a $DAI anoche. #Ciberseguridad #Web3 #Cibercrimen" [X Link](https://x.com/MauroEldritch/status/1791451606594019607) 2024-05-17T12:52Z [----] followers, [--] engagements "#Uruguay: La Asociacin de Bancarios del Uruguay manifiesta que el Banco Santander minimiz la filtracin de datos de empleados. ๐พ Se tratara de una base de datos con informacin personal de funcionarios locales de Espaa y Chile. #Ciberseguridad #Cibercrimen #Montevideo" [X Link](https://x.com/MauroEldritch/status/1793262757678043156) 2024-05-22T12:48Z [----] followers, [--] engagements "๐ช Here we go. #TyphoonCon #Seoul" [X Link](https://x.com/MauroEldritch/status/1795968329498443783) 2024-05-29T23:59Z [----] followers, [---] engagements "๐ฆฎ Todo listo para Malicious Fungible Tokens. ๐พ Vamos a construir servidores C2 inmortales utilizando NFTs Ruby y un Golden Retriever. #Ciberseguridad #Web3 #C2 #RedTeam #RedTeaming" [X Link](https://x.com/MauroEldritch/status/1796218230643867991) 2024-05-30T16:32Z [----] followers, [----] engagements "#Argentina: El grupo de #ransomware Cl0p anuncia a UNICRED como vctima. #Ciberseguridad #Cibercrimen ๐ New #ransomware intelligence. #Argentina: UNICRED announced by Cl0p. ๐ #ThreatIntelligence: @mbec03. https://t.co/YHTXkiwKIV ๐ New #ransomware intelligence. #Argentina: UNICRED announced by Cl0p. ๐ #ThreatIntelligence: @mbec03. https://t.co/YHTXkiwKIV" [X Link](https://x.com/MauroEldritch/status/1796249839375892716) 2024-05-30T18:38Z [----] followers, [----] engagements "@cyb3113 Gracias Bora" [X Link](https://x.com/MauroEldritch/status/1797615419832062327) 2024-06-03T13:04Z [----] followers, [--] engagements "๐ฐ Los invito a leer Drainers: Firmando un pacto con el Crypto Diablo en @pagedout_zine (pgina 51). ๐ชถ Con #QuetzalTeam nos dedicamos a investigar amenazas #Web3 y esta fue una gran oportunidad para concientizar sobre los contratos inteligentes maliciosos. #Ciberseguridad" [X Link](https://x.com/MauroEldritch/status/1798044151042515407) 2024-06-04T17:28Z [----] followers, [----] engagements "๐ฆฎ After Switzerland and Korea "Malicious Fungible Tokens" has been accepted at @defcon @AdversaryVillag. ๐ดโ Time for a photo shoot session with GoldenLocker to prepare new malicious NFTs for this next chapter. #DEFCON #Web3 #Hacking" [X Link](https://x.com/MauroEldritch/status/1799133273513422881) 2024-06-07T17:36Z [----] followers, [----] engagements "#Argentina: A la venta una DB del sitio TravelSale. ๐พ Contiene [------] registros de clientes con nombre completo email telfono mensajes de soporte llaves de API y passwords hasheados. #Ciberseguridad #Cibercrimen ๐ New #cybercrime intelligence. #Argentina: A threat actor is selling a DB from TravelSales with [------] customer records containing full names emails support requests phone numbers API tokens and hashed passwords. ๐ #ThreatIntelligence: @chum1ng0 (gracias). https://t.co/fdUV8c0eLy ๐ New #cybercrime intelligence. #Argentina: A threat actor is selling a DB from TravelSales with" [X Link](https://x.com/MauroEldritch/status/1803774480474423466) 2024-06-20T12:58Z [----] followers, [----] engagements "@cyb3113 No pienso parar hasta que Crowdstrike haga una estatua gigante de Chococat para la Blackhat. Aunque seguro le ponen un nombre como Charming Cocoa Kitten o algo as" [X Link](https://x.com/MauroEldritch/status/1811047499999719899) 2024-07-10T14:39Z [----] followers, [--] engagements "#Uruguay: A la venta un lote de datos de Desarrollo del Sur. ๐พ Contendra cdigo fuente de aplicaciones web y Android de [--] clientes y archivos de configuracin de servidores afectados. #Ciberseguridad #Cibercrimen ๐ New #cybercrime intelligence. #Uruguay: Threat Actor selling full server dump for Desarrollo del Sur including source code (Web Apps + Android) and configuration files for multiple clients. ๐ #ThreatIntelligence: @chum1ng0. https://t.co/2zJdew5fyV ๐ New #cybercrime intelligence. #Uruguay: Threat Actor selling full server dump for Desarrollo del Sur including source code (Web" [X Link](https://x.com/MauroEldritch/status/1820800059400654923) 2024-08-06T12:32Z [----] followers, [----] engagements "#Uruguay: A la venta accesos a un sitio gubernamental (RDP/VPN/Email) junto con escaneos de pasaportes y documentos nacionales. #Ciberseguridad #Cibercrimen" [X Link](https://x.com/MauroEldritch/status/1846930895833297400) 2024-10-17T15:06Z [----] followers, [--] engagements "#Argentina: el grupo de #Ransomware Brain Cipher anuncia a COTECAL (Cooperativa Telefnica de Calafate) como nueva vctima. ๐พ Habran secuestrado 150GB de informacin confidencial de la compaa. #Ciberseguridad #Cibercrimen" [X Link](https://x.com/MauroEldritch/status/1856743294262231384) 2024-11-13T16:57Z [----] followers, [----] engagements "#Uruguay: el grupo de #Ransomware Bashe elimina el post sobre Botiga. ๐ท El lote de datos fue probablemente vendido. #Ciberseguridad #Cibercrimen ๐ New #ransomware intelligence. #Uruguay: Bashe has deleted their post about Botiga. ๐ #ThreatIntelligence: @AdanZkx. https://t.co/9fqeelZaoe ๐ New #ransomware intelligence. #Uruguay: Bashe has deleted their post about Botiga. ๐ #ThreatIntelligence: @AdanZkx. https://t.co/9fqeelZaoe" [X Link](https://x.com/MauroEldritch/status/1857396894340616700) 2024-11-15T12:15Z [----] followers, [----] engagements "#Uruguay: El grupo de #Ransomware Akira libera un lote de datos secuestrados a Supermercados El Dorado. ๐พ Se tratara de informacin comercial financiera y de empleados. #Ciberseguridad #Cibercrimen #Montevideo" [X Link](https://x.com/MauroEldritch/status/1857402421959426550) 2024-11-15T12:37Z [----] followers, [--] engagements "๐ If you use (or work with) implants and this reader youve probably had a bad experience. โ Its one of the most popular but it works (sometimes partially) with very few applications: all GUI-based and impractical for automation or workflow integration. ๐๐ป Thats why we at DC5411 wrote Sense/Net a Python application to interact with Dangerous Things implants directly from the terminal. It supports [--] different models including NExT and xSIID and allows you to retrieve implant info read and write data. ๐ Link below" [X Link](https://x.com/MauroEldritch/status/1875927633072214466) 2025-01-05T15:29Z [----] followers, [--] engagements "๐ https://quetzal.bitso.com/p/a-phishing-trip https://quetzal.bitso.com/p/a-phishing-trip" [X Link](https://x.com/MauroEldritch/status/1880350785818816659) 2025-01-17T20:25Z [----] followers, [---] engagements "My analysis of the North Korean #malware InvisibleFerret is now live in collaboration with ๐ค Huge thanks to Ekaterina and the team http://ANY.RUN http://ANY.RUN ๐จ #InvisibleFerret is a cross-platform #malware linked to North Korea and often paired with #BeaverTail Read detailed technical analysis of this threat from @MauroEldritch https://t.co/WPxlFoPLIb https://t.co/6OkwWeo13A http://ANY.RUN http://ANY.RUN ๐จ #InvisibleFerret is a cross-platform #malware linked to North Korea and often paired with #BeaverTail Read detailed technical analysis of this threat from @MauroEldritch" [X Link](https://x.com/MauroEldritch/status/1881709076939182290) 2025-01-21T14:22Z [----] followers, [----] engagements "#Argentina: Publican un lote de datos de UPCN Buenos Aires. ๐พ Contiene registros de [------] usuarios con datos personales y vnculos familiares de cada afiliado. #Ciberseguridad #Cibercrimen" [X Link](https://x.com/MauroEldritch/status/1934598635762950343) 2025-06-16T13:07Z [----] followers, [----] engagements "DPRK Fake IT workers thought getting a job with us would be easy. ๐ฅธ We uncovered them and got a close look at their operation. ๐ณ Meet the Wage Moles the latest threat out of Pyongyang in an investigation by our Quetzal Team. ๐ Link below. #WageMole #FamousChollima" [X Link](https://x.com/MauroEldritch/status/1938301017315041633) 2025-06-26T18:19Z [----] followers, [----] engagements "๐ Read more here: https://quetzal.bitso.com/p/interview-with-the-chollima-ii https://quetzal.bitso.com/p/interview-with-the-chollima-ii" [X Link](https://x.com/MauroEldritch/status/1938301222798106717) 2025-06-26T18:19Z [----] followers, [---] engagements "๐ LockSkin: a Ransomware for bioimplants. ๐ Now at BSides Las Vegas" [X Link](https://x.com/MauroEldritch/status/1952413925733277807) 2025-08-04T16:58Z [----] followers, [---] engagements "๐ Can your calendar be abused as C2 ๐ฝ Can replication systems spread malware components ๐ Lets talk about it at the @defcon Data Duplication Village. Because nobody blocks Cloudflare and nobody expects an attack from Google Calendar. ๐ค Today at 15:00 dont miss it" [X Link](https://x.com/MauroEldritch/status/1953885870991585607) 2025-08-08T18:27Z [----] followers, [---] engagements "๐ Can your calendar be abused as C2 ๐ฝ Can replication systems spread malware components ๐ Lets talk about it at the @defcon Data Duplication Village. Because nobody blocks Cloudflare and nobody expects an attack from Google Calendar. ๐ค Today at 15:00 dont miss it" [X Link](https://x.com/MauroEldritch/status/1954259578927104302) 2025-08-09T19:12Z [----] followers, [----] engagements "Join me to dissect North Korean malware at @MalwareVillage at 17:00. ๐พ Well go through samples tactics and a few surprises. ๐ฏ Join the hunt for Otters Ferrets Beavers and Capybaras. Dont miss it" [X Link](https://x.com/MauroEldritch/status/1954318123672207490) 2025-08-09T23:05Z [----] followers, [----] engagements "๐ฅธ New spear-phishing campaign tricks crypto execs posing as CoinMarketCap journalists. ๐ป Attackers use Zoom remote control to steal assets & deploy #malware. โ My first article for Hack Read #Cybercrime #Cybersecurity #Web3 Fake #CoinMarketCap journalist profiles are being used to target crypto execs in a new spear-phishing scam through Zoom interviews. Via @MauroEldritch Read: https://t.co/XUwPxpncTk #CyberSecurity #Crypto #Scam #Fraud #Malware Fake #CoinMarketCap journalist profiles are being used to target crypto execs in a new spear-phishing scam through Zoom interviews. Via" [X Link](https://x.com/MauroEldritch/status/1959285646830235993) 2025-08-23T16:04Z [----] followers, [----] engagements "๐ Were you invited to an important podcast Be careful it could be a trap. ๐พ A new campaign is attempting to distribute AMOS Stealer by disguising it as an installer for platforms like Streamyard and Huddle. We explain it all here on the Quetzal Team blog. #Malware" [X Link](https://x.com/MauroEldritch/status/1968418351383781751) 2025-09-17T20:54Z [----] followers, [---] engagements "๐ Link to the article: https://quetzal.bitso.com/p/todays-host-amos-stealer https://quetzal.bitso.com/p/todays-host-amos-stealer" [X Link](https://x.com/MauroEldritch/status/1968418460339151206) 2025-09-17T20:55Z [----] followers, [---] engagements "#Uruguay: Filtran un lote de datos de la Universidad ORT. ๐พ Contiene [------] registros de estudiantes y profesores consignando nombre completo cdula de identidad domicilio email y fotografa. #Ciberseguridad #Cibercrimen" [X Link](https://x.com/MauroEldritch/status/1972999511984525460) 2025-09-30T12:18Z [----] followers, [----] engagements "See you on May 30-31 in Seoul South Korea for #TyphoonCon where I'll speak about [--] topics: How we discovered the North Korean malware #QRLog (and a teaser about part two). ๐ How to create immortal C2 servers with NFTs of your dog. ๐๐ป See you there #Web3 #DPRK" [X Link](https://x.com/MauroEldritch/status/1793628475045060786) 2024-05-23T13:02Z 10.8K followers, [----] engagements "Meet "Mateo" and "Alfredo" two young #Lazarus agents who thought it was a good idea to steal someone else's ID and resume to try to get a job with us. ๐ชถ We recorded them and found interesting data on how they operate. Read our article on the #QuetzalTeam Blog below" [X Link](https://x.com/anyuser/status/1983977787678396468) 2025-10-30T19:22Z 10.8K followers, 69.5K engagements "๐ Read the full article here: ๐ชถ https://quetzal.bitso.com/p/interview-with-the-chollima-iii https://quetzal.bitso.com/p/interview-with-the-chollima-iii" [X Link](https://x.com/MauroEldritch/status/1983978027676791099) 2025-10-30T19:23Z 10.3K followers, [----] engagements "Meet "Julin" another #Lazarus agent who thought it was a good idea to approach us with a stolen identity. ๐ง He forgot to switch accounts and joined the call as "Arthur". Read our article below. We are the #QuetzalTeam we put the "Famous" in "Famous Chollima"" [X Link](https://x.com/anyuser/status/1985447928383586637) 2025-11-03T20:44Z 10.8K followers, 14.6K engagements "๐ Read the full article here: ๐ชถ https://quetzal.bitso.com/p/interview-with-the-chollima-iv https://quetzal.bitso.com/p/interview-with-the-chollima-iv" [X Link](https://x.com/MauroEldritch/status/1985448062299394280) 2025-11-03T20:44Z 10.4K followers, [----] engagements "Meet "Sebastian" another #Lazarus agent who approached us with a stolen identity. ๐ง He then tried recruiting me on WhatsApp to work at Lazarus LTD. We recorded everything. Read our article below. We are the #QuetzalTeam we put the "Famous" in "Famous Chollima"" [X Link](https://x.com/anyuser/status/1986825896599187560) 2025-11-07T15:59Z 10.8K followers, 41.4K engagements "โ๐ป Article: https://quetzal.bitso.com/p/interview-with-the-chollima-v https://quetzal.bitso.com/p/interview-with-the-chollima-v" [X Link](https://x.com/MauroEldritch/status/1986825978606182841) 2025-11-07T16:00Z 10.4K followers, [----] engagements "Meet "Jess Sebastin" another #Lazarus agent who approached us with a stolen identity. ๐ง We recorded everything and became friends on Discord and other socials. Read our article below. We are the #QuetzalTeam we put the "Famous" in "Famous Chollima"" [X Link](https://x.com/anyuser/status/1987960810266648887) 2025-11-10T19:09Z 10.8K followers, 11.5K engagements "โ๐ป Article: https://quetzal.bitso.com/p/interview-with-the-chollima-vi https://quetzal.bitso.com/p/interview-with-the-chollima-vi" [X Link](https://x.com/MauroEldritch/status/1987960914637656092) 2025-11-10T19:09Z 10.4K followers, [---] engagements "Meet Aaron AKA Blaze a #Lazarus recruiter. ๐ต He offered 35% of a salary if we let his operators use our laptops "to work in" (infiltrate) Western companies. We gave him ANYRUN sandboxes recording everything they did. Full article below. Full disclosure on Dec 4" [X Link](https://x.com/MauroEldritch/status/1995874655937192327) 2025-12-02T15:16Z 10.8K followers, 10K engagements "๐ค This work was a collaboration between: ANY RUN (@anyrun_app) providing the sandbox and analysis platform ๐ BlockOSINT (@0xfigo) handling initial contact with the TAs ๐ค BCA LTD (@BirminghamCyber) leading the threat intelligence analysis ๐ https://thehackernews.com/2025/12/researchers-capture-lazarus-apts-remote.html https://thehackernews.com/2025/12/researchers-capture-lazarus-apts-remote.html https://thehackernews.com/2025/12/researchers-capture-lazarus-apts-remote.html https://thehackernews.com/2025/12/researchers-capture-lazarus-apts-remote.html" [X Link](https://x.com/MauroEldritch/status/1995874658810278285) 2025-12-02T15:16Z 10.7K followers, [----] engagements "@unpacker Wow thank you for taking the time to draw this infographic about our research Really appreciate all the effort put in this piece. Thank you ๐ค" [X Link](https://x.com/MauroEldritch/status/1996065063657242722) 2025-12-03T03:52Z 10.7K followers, [---] engagements "๐ค This work was a collaboration between: ANY RUN (@anyrun_app) providing the sandbox and analysis platform ๐ BlockOSINT (@0xfigo) handling initial contact with the TAs ๐ค BCA LTD (@BirminghamCyber) leading the threat intelligence analysis ๐ https://any.run/cybersecurity-blog/lazarus-group-it-workers-investigation/ https://any.run/cybersecurity-blog/lazarus-group-it-workers-investigation/" [X Link](https://x.com/MauroEldritch/status/1996563151437902210) 2025-12-04T12:52Z 10.7K followers, [---] engagements "@Pop_Collapse Could you please elaborate I'm open to share intel with you in case we can confirm you were attacked by the same Threat Actors. Feel free to DM me" [X Link](https://x.com/MauroEldritch/status/2010451393296154938) 2026-01-11T20:38Z 10.8K followers, [---] engagements "Yes thats me. ๐ช Youre probably wondering how I ended up in a Zoom call with Mexican President Claudia Sheinbaum and her generals being briefed about a hostage situation at [--] AM. Turns out it was a #deepfake campaign. I wrote about it on the Quetzal Team blog https://twitter.com/i/web/status/2021611108713250905 https://twitter.com/i/web/status/2021611108713250905" [X Link](https://x.com/MauroEldritch/status/2021611108713250905) 2026-02-11T15:43Z 10.8K followers, [----] engagements "Livestreaming from a #Lazarus laptop farm. ๐ผ For the first time ever we recorded DPRKs Famous Chollima full attack cycle: interviews internal chats every tool they use and every single click they made. Get ready for tons of raw footage. Full article via ANYRUN" [X Link](https://x.com/MauroEldritch/status/1996562669092921782) 2025-12-04T12:50Z 10.8K followers, [----] engagements "๐ผ Por primera vez en la historia grabamos en video todo el ciclo de ataque de Famous Chollima (#Lazarus #DPRK) mostrando material nico: ๐จ Chats ๐งฐ Herramientas ๐ง Tcticas ๐ y potenciales vctimas. En esta Edicin Especial en espaol contamos todo con videos includos" [X Link](https://x.com/MauroEldritch/status/1996945331972341964) 2025-12-05T14:10Z 10.8K followers, 12.1K engagements "Our research on Famous Chollima was featured in HackerRU #DPRK #Lazarus https://xakep.ru/2025/12/09/apt-machine/ https://xakep.ru/2025/12/09/apt-machine/" [X Link](https://x.com/MauroEldritch/status/1998737906542743903) 2025-12-10T12:53Z 10.8K followers, [---] engagements "RT @blueteamsec1: Interview with the Chollima V #cyber #threathunting #infosec http://dlvr.it/TPmJgw http://dlvr.it/TPmJgw" [X Link](https://x.com/MauroEldritch/status/1999209570489536718) 2025-12-11T20:07Z 10.8K followers, [--] engagements "RT @akaclandestine: How We Caught Lazarus's IT Workers Scheme Live on Camera https://any.run/cybersecurity-blog/lazarus-group-it-workers-investigation/ https://any.run/cybersecurity-blog/lazarus-group-it-workers-investigation/" [X Link](https://x.com/MauroEldritch/status/1999514817875288136) 2025-12-12T16:20Z 10.8K followers, [--] engagements "#Argentina: el grupo de #ransomware SAFEPAY anuncia a AYSA (Agua y Saneamientos Argentinos S.A.) como nueva vctima" [X Link](https://x.com/MauroEldritch/status/2000574853863063834) 2025-12-15T14:33Z 10.8K followers, [----] engagements "RT @anyrun_app: ๐ As [----] wraps up we want to give a shout-out to the researchers and analysts who helped push the cybersecurity community" [X Link](https://x.com/MauroEldritch/status/2003103387538305358) 2025-12-22T14:00Z 10.8K followers, [--] engagements "RT @MauroEldritch: Livestreaming from a #Lazarus laptop farm. ๐ผ For the first time ever we recorded DPRKs Famous Chollima full attack" [X Link](https://x.com/MauroEldritch/status/2003202352539725848) 2025-12-22T20:33Z 10.8K followers, [--] engagements "RT @MauroEldritch: ๐ผ Por primera vez en la historia grabamos en video todo el ciclo de ataque de Famous Chollima (#Lazarus #DPRK) mostrando" [X Link](https://x.com/MauroEldritch/status/2005673074688233835) 2025-12-29T16:11Z 10.8K followers, [--] engagements "RT @tamul_security: ๐ Como parte de nuestra colaboracin con @BirminghamCyber utilizamos su plataforma Sheriff para monitorear de forma c" [X Link](https://x.com/MauroEldritch/status/2008933980771364889) 2026-01-07T16:09Z 10.8K followers, [--] engagements "RT @tamul_security: ๐จ Estas son las primeras filtraciones del ao obtenidas a partir de nuestra colaboracin con @BirminghamCyber y su pla" [X Link](https://x.com/MauroEldritch/status/2015796621590598012) 2026-01-26T14:39Z 10.8K followers, [--] engagements "Our talk Smile youre on camera Livestreaming from a North Korean IT workers laptop farm will be the opening talk at InsomniHack. Join us to learn how we joined the Famous Chollima ranks and recorded their every move from the inside. Dont miss it #DPRK #Lazarus https://twitter.com/i/web/status/2016885465236775074 https://twitter.com/i/web/status/2016885465236775074" [X Link](https://x.com/anyuser/status/2016885465236775074) 2026-01-29T14:45Z 10.8K followers, [----] engagements "๐ค This work was possible thanks to our friends at @0xfigo and @anyrun_app Find out more about InsomniHack here: https://insomnihack.ch/talks/smile-youre-on-camera-livestreaming-from-north-koreas-it-workers-laptop-farm/ https://insomnihack.ch/talks/smile-youre-on-camera-livestreaming-from-north-koreas-it-workers-laptop-farm/" [X Link](https://x.com/MauroEldritch/status/2016886151060050039) 2026-01-29T14:48Z 10.8K followers, [---] engagements "RT @north_scan: Excited to share that were presenting our research at InsomniHack ๐ค If you want the full deep dive join us on March [--] a" [X Link](https://x.com/MauroEldritch/status/2016891652015628373) 2026-01-29T15:10Z 10.8K followers, [--] engagements "RT @BirminghamCyber: Smile youre on camera Livestreaming from a North Korean IT workers laptop farm will be the opening talk at In" [X Link](https://x.com/MauroEldritch/status/2016894276697821262) 2026-01-29T15:20Z 10.8K followers, [--] engagements "RT @teamcapybara_: ๐Alguien dijo #Ransomware Les traemos de la mano de @DC54111 un nuevo resumen de filtraciones el ltimo de enero" [X Link](https://x.com/MauroEldritch/status/2017272459326546353) 2026-01-30T16:23Z 10.8K followers, [--] engagements "RT @DC54111: ๐ "Ransomware para TempleOS": Cero resultados. Vamos a arreglar eso. Nos propusimos crear el primer #ransomware escrito en Ho" [X Link](https://x.com/MauroEldritch/status/2018785358327259424) 2026-02-03T20:35Z 10.8K followers, [--] engagements "RT @DC54111: ๐ #Malware para TempleOS Nos inspiramos en Chaos Ransomware y decidimos crear nuestro propia prueba de concepto para el si" [X Link](https://x.com/MauroEldritch/status/2019057460489736666) 2026-02-04T14:36Z 10.8K followers, [--] engagements "๐ฅฝ Al Jefe de Producto le encant la idea de DuckHuntVR" [X Link](https://x.com/MauroEldritch/status/2019443555337404641) 2026-02-05T16:10Z 10.8K followers, [---] engagements "RT @1ns0mn1h4ck: Are you interested how remote IT operations works in North Korea In this exclusive talk @0xFigo & Heiner Garca Prez ex" [X Link](https://x.com/MauroEldritch/status/2021262174983770239) 2026-02-10T16:37Z 10.8K followers, [--] engagements "โ Article: https://quetzal.bitso.com/p/hostage-situation https://quetzal.bitso.com/p/hostage-situation" [X Link](https://x.com/MauroEldritch/status/2021611278549041275) 2026-02-11T15:44Z 10.8K followers, [---] engagements "@belair6909 @Bitso Gracias por compartir" [X Link](https://x.com/MauroEldritch/status/2022366986194321718) 2026-02-13T17:47Z 10.8K followers, [--] engagements "@gustavojfe @belair6909 @Bitso Gracias me alegro que te haya gustado Saludos" [X Link](https://x.com/MauroEldritch/status/2022367025558139369) 2026-02-13T17:47Z 10.8K followers, [--] engagements "@belair6909 @gustavojfe @Bitso @LaCasaDeSatoshi Gracias Cuando gusten ser un placer ๐ค" [X Link](https://x.com/MauroEldritch/status/2022453060992405750) 2026-02-13T23:29Z 10.8K followers, [--] engagements "Our talk Smile youre on camera Livestreaming from a North Korean IT workers laptop farm will be the opening talk at InsomniHack. Join us to learn how we joined the Famous Chollima ranks and recorded their every move from the inside. Dont miss it #DPRK #Lazarus https://twitter.com/i/web/status/2016885465236775074 https://twitter.com/i/web/status/2016885465236775074" [X Link](https://x.com/anyuser/status/2016885465236775074) 2026-01-29T14:45Z 10.8K followers, [----] engagements "Meet "Mateo" and "Alfredo" two young #Lazarus agents who thought it was a good idea to steal someone else's ID and resume to try to get a job with us. ๐ชถ We recorded them and found interesting data on how they operate. Read our article on the #QuetzalTeam Blog below" [X Link](https://x.com/anyuser/status/1983977787678396468) 2025-10-30T19:22Z 10.8K followers, 69.5K engagements "Meet "Sebastian" another #Lazarus agent who approached us with a stolen identity. ๐ง He then tried recruiting me on WhatsApp to work at Lazarus LTD. We recorded everything. Read our article below. We are the #QuetzalTeam we put the "Famous" in "Famous Chollima"" [X Link](https://x.com/anyuser/status/1986825896599187560) 2025-11-07T15:59Z 10.8K followers, 41.4K engagements "#Argentina: Publican una base de datos de usuarios de Tarjeta Naranja. ๐พ Contendra [-------] registros detallando nombre completo telfono celular direccin nmero de tarjeta y DNI. #Ciberseguridad #Cibercrimen ๐ New #cybercrime intelligence. #Argentina: A threat actor published a database of Tarjeta Naranja cardholders with [------] rows detailing full name mobile phone number address city card number and DNI. ๐ #ThreatIntelligence: @criminaalmambo. https://t.co/BmIXd2TQQq ๐ New #cybercrime intelligence. #Argentina: A threat actor published a database of Tarjeta Naranja cardholders with 200000" [X Link](https://x.com/anyuser/status/1816837850282811819) 2024-07-26T14:07Z 10.8K followers, 108.9K engagements "๐ New #cybercrime intelligence. #Argentina: A threat actor published a database of Tarjeta Naranja cardholders with [------] rows detailing full name mobile phone number address city card number and DNI. ๐ #ThreatIntelligence: @criminaalmambo" [X Link](https://x.com/anyuser/status/1816837453107351787) 2024-07-26T14:06Z 12K followers, 108K engagements "Publican logs de stealers con unas [------] credenciales de usuarios argentinos. ๐พ Contienen ms de [---] credenciales bancarias y varios accesos a fintechs y plataformas de gobierno. #Ciberseguridad #Cibercrimen #Argentina" [X Link](https://x.com/anyuser/status/1653394472938401792) 2023-05-02T13:42Z 10.8K followers, 51.2K engagements "๐ช #ZoeLeaks: Filtracin de datos de compradores de #ZoeCash. ๐พ [----] archivos con contratos inversiones documentos bancarios fiscales de identidad y selfies de verificacin. ๐บ Abarca clientes de y . #ZoeGate #ZoeCrash CC: @BetoMendeIeiv + @Beto_MendeIeiev" [X Link](https://x.com/anyuser/status/1492831009817124864) 2022-02-13T12:00Z 10.8K followers, [---] engagements "El grupo de #ransomware Medusa publica a la CNV (Comisin Nacional de Valores) como nueva vctima. ๐พ [---] TB de documentos y bases de datos sern filtrados si no se abona un rescate de USD [-------] en una semana. #Ciberseguridad #Argentina #Cibercrimen ๐ New #ransomware incident. #Argentina: CNV (Comisin Nacional de Valores) hit by Medusa. ๐ Source: #DarkFeed #ThreatIntelligence #Cybersecurity https://t.co/vsV2FzEOYo ๐ New #ransomware incident. #Argentina: CNV (Comisin Nacional de Valores) hit by Medusa. ๐ Source: #DarkFeed #ThreatIntelligence #Cybersecurity https://t.co/vsV2FzEOYo" [X Link](https://x.com/anyuser/status/1667884088248750080) 2023-06-11T13:18Z 10.8K followers, 135.2K engagements "๐ New #ransomware incident. #Argentina: CNV (Comisin Nacional de Valores) hit by Medusa. ๐ Source: #DarkFeed #ThreatIntelligence #Cybersecurity" [X Link](https://x.com/anyuser/status/1667882765893656576) 2023-06-11T13:13Z 12K followers, 208.2K engagements "๐ดโ Cartuchos pirata: #Hacking & Game Boys. Hace exactamente [--] aos mi pap y yo compramos cartuchos pirata para #GameBoy en una feria en Brasil. Los encontr nuevamente en una mudanza y los etiquet como "Verde" y "Rojo" pero desconoca su contenido. 01/13" [X Link](https://x.com/anyuser/status/1740129623814414704) 2023-12-27T21:56Z 10.8K followers, 47.5K engagements "Una filtracin masiva del Hospital Peditrico #Garrahan fue puesta a la venta en un foro especializado. ๐ฅ El #leak contiene unos 5GB de bases de datos SQL con informacin de pacientes y tratamientos. #Ciberseguridad #Infosec #Seguridad #Cibercrimen #Argentina #filtraciones" [X Link](https://x.com/anyuser/status/1546910139629948928) 2022-07-12T17:31Z 10.8K followers, [---] engagements "#Argentina: A la venta una base de datos de socios del Racing Club de Avellaneda. ๐พ Contiene emails celulares DNIs y domicilios de socios incluyendo menores de edad. #Ciberseguridad #Cibercrimen ๐ New #cybercrime intelligence: #Argentina: A threat actor is selling a database belonging to Racing Club containing [------] entries with emails DNI mobile phone numbers age and address. ๐ #ThreatIntelligence: @chum1ng0. https://t.co/GxARGBaedU ๐ New #cybercrime intelligence: #Argentina: A threat actor is selling a database belonging to Racing Club containing [------] entries with emails DNI mobile" [X Link](https://x.com/anyuser/status/1826606062574899470) 2024-08-22T13:03Z 10.8K followers, 174.5K engagements "๐ New #cybercrime intelligence: #Argentina: A threat actor is selling a database belonging to Racing Club containing [------] entries with emails DNI mobile phone numbers age and address. ๐ #ThreatIntelligence: @chum1ng0" [X Link](https://x.com/anyuser/status/1826605110409261525) 2024-08-22T12:59Z 12K followers, 185.4K engagements "Un usuario logra acceder al sistema de puntos y recompensas de una cadena de heladeras y ofrece productos gratis a quienes puedan reclamarlos. ๐ฆ Vengan al lado oscuro tenemos helado. #Ciberseguridad #Argentina #Cibercrimen" [X Link](https://x.com/anyuser/status/1643971941198606336) 2023-04-06T13:40Z 10.8K followers, 35.9K engagements "Publican una base de datos con [--] millones de registros de ciudadanos argentinos aparentemente de un padrn electoral. ๐น Tambin publican accesos a [---] cmaras de #Argentina comprometidas con una vulnerabilidad de hace [--] aos (CVE-2017-7921). #Ciberseguridad #Cibercrimen" [X Link](https://x.com/anyuser/status/1661353069861273602) 2023-05-24T12:46Z 10.8K followers, 45.6K engagements "#Argentina: A la venta ms de [------] accesos al sistema Mi Argentina que permitiran acceder a documentos oficiales de las vctimas como licencias de conducir ARTs estado de vacunacin y ms. #Ciberseguridad #Cibercrimen ๐ New #cybercrime intelligence. #Argentina: A threat actor is selling 31k credentials for Mi Argentina granting access to victims' driving licenses vaccination records and other government-issued documents. ๐ #ThreatIntelligence: @criminaalmambo (Gracias). https://t.co/egmMCqnyyF ๐ New #cybercrime intelligence. #Argentina: A threat actor is selling 31k credentials for Mi" [X Link](https://x.com/anyuser/status/1751335370090762302) 2024-01-27T20:04Z 10.8K followers, 37.1K engagements "๐ New #cybercrime intelligence. #Argentina: A threat actor is selling 31k credentials for Mi Argentina granting access to victims' driving licenses vaccination records and other government-issued documents. ๐ #ThreatIntelligence: @criminaalmambo (Gracias)" [X Link](https://x.com/anyuser/status/1751334916225142982) 2024-01-27T20:02Z 12K followers, 74.5K engagements "Un usuario coloca a la venta un acceso al panel de administracin de un importante e-commerce. ๐ Las credenciales - a la venta desde Diciembre - permiten generar cdigos de descuento alterar precios y listar compras realizadas en la plataforma. #Argentina #Ciberseguridad" [X Link](https://x.com/anyuser/status/1633077074586902531) 2023-03-07T12:08Z 10.8K followers, 39.4K engagements "Publican logs de stealers con ms de [----] credenciales de gobierno de #Argentina. ๐ Entre los dominios afectados estn AFIP Anses y Polica de la Ciudad entre otros. ๐ช Tambin se exponen [--] accesos de cuentas o dominios militares. #Ciberseguridad #Cibercrimen" [X Link](https://x.com/anyuser/status/1659177002098622465) 2023-05-18T12:39Z 10.8K followers, 43.1K engagements "Una filtracin del Ministerio de Educacin (GCBA) se encuentra disponible gratuitamente en un foro especializado. ๐ง Contiene [-----] direcciones de email de alumnos profesores y externos como la firma de seguridad ESET. #Argentina #Ciberseguridad #DataBreach #Leak" [X Link](https://x.com/anyuser/status/1561697245048750080) 2022-08-22T12:50Z 10.8K followers, [---] engagements "#Argentina: El actor que rob [---] millones de licencias cre un Bot para consultarlas individualmente. ๐ชช Permite una consulta gratuita. #Ciberseguridad #Cibercrimen ๐ New #cybercrime intelligence. #Argentina: Threat actor who stole [---] M driving licenses has launched a Bot to retrieve them individually. First query is free then it asks for payment. https://t.co/87nDA6XuLI ๐ New #cybercrime intelligence. #Argentina: Threat actor who stole [---] M driving licenses has launched a Bot to retrieve them individually. First query is free then it asks for payment. https://t.co/87nDA6XuLI" [X Link](https://x.com/anyuser/status/1784586872351518942) 2024-04-28T14:14Z 10.8K followers, 37.2K engagements "๐ New #cybercrime intelligence. #Argentina: Threat actor who stole [---] M driving licenses has launched a Bot to retrieve them individually. First query is free then it asks for payment" [X Link](https://x.com/anyuser/status/1784586369093734694) 2024-04-28T14:12Z 12K followers, 304.6K engagements "#Argentina: venden [-------] estudios mdicos en lo que sera la filtracin de datos mdicos ms grande del pas y probablemente de Latinoamrica. ๐ฅ Pertenecen a [--] clnicas y sanatorios privados y fueron obtenidos a partir de un ataque de cadena de suministros a un proveedor InformeMedico. ๐ฉป El lote pareciera contener radiografas tomografas ecografas anlisis de laboratorio y otros estudios todos con informacin personal de pacientes y profesionales. ๐ผ El ataque fue realizado por un grupo de Data Extortion no fue #ransomware. #Ciberseguridad #Cibercrimen ๐ New #cybercrime intelligence. #Argentina:" [X Link](https://x.com/anyuser/status/1908144958499865035) 2025-04-04T13:09Z 10.8K followers, 24.2K engagements "๐ New #cybercrime intelligence. #Argentina: Threat Actor is selling [------] medical records stolen from [--] clinics following a supply chain attack on InformeMedico. ๐ #ThreatIntelligence: criminaalmambo & @teamcapybara_. https://sheriff.birminghamcyberarms.co.uk/alertid=166 https://sheriff.birminghamcyberarms.co.uk/alertid=166" [X Link](https://x.com/anyuser/status/1908140151856873599) 2025-04-04T12:50Z 12K followers, 30.5K engagements "Publican una combolist con ms de [-------] credenciales de #Argentina: [----] de mbitos gubernamentales militares y educativos. ๐พ Afecta a [---] dominios incluyendo Sedronar Migraciones BCRA Senado FFSS FFAA y Renaper entre muchos otros. #Ciberseguridad #Cibercrimen" [X Link](https://x.com/anyuser/status/1660628754857639937) 2023-05-22T12:48Z 10.8K followers, 25.2K engagements "Megafiltracin en #Uruguay. Venden cdigo fuente de [--] compaas: Aeromar AFISA ALOY ALUR Ambiental America Software American Chemical Arca Argensun Autoconsultas Avanza Bacardi BD Bebelandia Berkes Biko Bioerix Bromyros COSEM Candrona CCM Celsius Ceramicas Castro Chlorskid Cibeles y "Club de Golf". ๐ฅท Anteriormente el mismo actor public cdigo propietario de Cementos del Plata Aluminios del Uruguay Agro Terra Agro Oriental Campo Abierto CIEMSA Caja Bancaria Centro Oftalmolgico y Clnica Parada siendo el total de vctimas [--]. #Ciberseguridad #Cibercrimen #Montevideo ๐ New #cybercrime intelligence." [X Link](https://x.com/anyuser/status/1779844185744421345) 2024-04-15T12:08Z 10.8K followers, 56K engagements "๐ New #cybercrime intelligence. #Uruguay: Threat actor has leaked source code and DBs from [--] companies. Data was extracted from a software company NODUM. ๐ #ThreatIntelligence: @chum1ng0" [X Link](https://x.com/anyuser/status/1779843846731350315) 2024-04-15T12:06Z 12K followers, 60.9K engagements "Publican combolist con [----] credenciales de gobierno de #Argentina. ๐พ Afecta a [---] dominios incluyendo ANMAT Municipios Fiscalas Polica Gendarmera Prefectura Senado Legislatura y Ministerios entre muchos otros. #Ciberseguridad #Cibercrimen" [X Link](https://x.com/anyuser/status/1655918966127091713) 2023-05-09T12:53Z 10.8K followers, 33.2K engagements "๐ฑ @RugDocIO es una importante herramienta de #seguridad para auditar contratos inteligentes. ๐ช Segn su criterio tcnico #ZoeCash recibe la peor calificacin de seguridad disponible. CC: @BetoMendeleiev_ #ZoeLeaks #ZoeGate #ZoeCrash #Ciberseguridad #SmartContracts ๐ช #ZoeLeaks: Filtracin de datos de compradores de #ZoeCash. ๐พ [----] archivos con contratos inversiones documentos bancarios fiscales de identidad y selfies de verificacin. ๐บ Abarca clientes de y . #ZoeGate #ZoeCrash CC: @BetoMendeIeiv + @Beto_MendeIeiev https://t.co/bocMzbgnf6 ๐ช #ZoeLeaks: Filtracin de datos de compradores de" [X Link](https://x.com/anyuser/status/1492983950632906754) 2022-02-13T22:08Z 10.8K followers, [---] engagements "Un usuario vende una base de datos del difunto exchange SeSocio(.)com. ๐พ Contendra [-------] registros de usuarios con su informacin fiscal bancaria y personal (DNI email telfono domicilio) y de sus wallets (incluyendo claves privadas). #Ciberseguridad #Argentina" [X Link](https://x.com/anyuser/status/1635253973740572673) 2023-03-13T12:18Z 10.8K followers, 23.8K engagements "Mi investigacin sobre QRLog va a publicarse en la legendaria revista Phrack casi tan antigua como el internet. ๐ค Llegu. #Ciberseguridad #Cibercrimen #DPRK #Malware" [X Link](https://x.com/anyuser/status/1797446549582287157) 2024-06-03T01:53Z 10.8K followers, [----] engagements "#Argentina: publican [-------] fotografas oficiales extradas del RENAPER. ๐ Cada foto referencia el DNI al que corresponde. #Ciberseguridad #Cibercrimen ๐ New #cybercrime intelligence. #Argentina: Threat actor shares 116k official face photographs used in passports and IDs extracted from RENAPER. https://t.co/tbpKIa8bpH ๐ New #cybercrime intelligence. #Argentina: Threat actor shares 116k official face photographs used in passports and IDs extracted from RENAPER. https://t.co/tbpKIa8bpH" [X Link](https://x.com/anyuser/status/1774883957252804929) 2024-04-01T19:38Z 10.8K followers, 26K engagements "๐ New #cybercrime intelligence. #Argentina: Threat actor shares 116k official face photographs used in passports and IDs extracted from RENAPER" [X Link](https://x.com/anyuser/status/1774883092664144154) 2024-04-01T19:34Z 12K followers, 915K engagements "Meet "Julin" another #Lazarus agent who thought it was a good idea to approach us with a stolen identity. ๐ง He forgot to switch accounts and joined the call as "Arthur". Read our article below. We are the #QuetzalTeam we put the "Famous" in "Famous Chollima"" [X Link](https://x.com/anyuser/status/1985447928383586637) 2025-11-03T20:44Z 10.8K followers, 14.6K engagements "๐บ En mi hotel si sintonizs el canal interno de publicidad a la [--] AM podes ver el momento exacto en que la transmisin termina unos servidores XAMPP y MySQL se reinician y mis pensamientos intrusivos comienzan" [X Link](https://x.com/anyuser/status/1843678373966721126) 2024-10-08T15:42Z 10.8K followers, [----] engagements "Un usuario vende accesos al servidor de correo electrnico de la Polica de Crdoba #Argentina. ๐ Tambin surge una combolist con [---] credenciales de gobierno incluyendo: BCRA Municipios INTA INDEC MEcon Senasa y Produccin entre otros. #Ciberseguridad #Cibercrimen" [X Link](https://x.com/anyuser/status/1658100114441789444) 2023-05-15T13:20Z 10.8K followers, 48.3K engagements "๐ช Un actor de amenazas afirma tener acceso a los sistemas del Ejrcito Argentino. ๐ฎ Otro actor ofrece [--] GB de data de la Polica de la Ciudad. Seran [----] documentos de la Direccin Investigacin del #Cibercrimen. ๐ฐ Ambos a la venta en un foro especializado. #Argentina" [X Link](https://x.com/anyuser/status/1575836731928035328) 2022-09-30T13:15Z 10.8K followers, [---] engagements "Publican combolist con [------] credenciales de #Argentina. ๐พ Contiene [--] accesos bancarios [---] acadmicos y [---] gubernamentales (AFIP Comisin Nacional de Energa Nuclear ANMAT Fiscalas Policas CONICET y Ministerios). ๐ค Intel: @AdanZkx #Ciberseguridad #Cibercrimen" [X Link](https://x.com/anyuser/status/1654098984359669760) 2023-05-04T12:21Z 10.8K followers, 25.8K engagements "Publican una filtracin de #Montevideo Portal que contendra [------] celulares [------] emails y el volcado de [--] casillas con adjuntos sensibles. ๐พ La muestra compartida expone recibos de BPS OSE Uber y Cdulas de identidad de menores. #Uruguay #Ciberseguridad 1/2" [X Link](https://x.com/anyuser/status/1641457631951994881) 2023-03-30T15:09Z 10.8K followers, 42.3K engagements "#Argentina: A la venta base de datos de Tarjeta Naranja. ๐พ Contiene domicilio telfono e informacin completa de tarjetas. ๐ Inteligencia: @larm182luis. #Ciberseguridad #Cibercrimen ๐ New #cybercrime intelligence. #Argentina: Threat actor is selling a database containing credit card information of Tarjeta Naranja cardholders. ๐ Intel: @larm182luis (gracias). ๐ค Stay informed with #Sheriff for the latest #ThreatIntelligence insights. https://t.co/RAYg26cYYK ๐ New #cybercrime intelligence. #Argentina: Threat actor is selling a database containing credit card information of Tarjeta Naranja" [X Link](https://x.com/anyuser/status/1676217004032655361) 2023-07-04T13:10Z 10.8K followers, 25.5K engagements "๐ New #cybercrime intelligence. #Argentina: Threat actor is selling a database containing credit card information of Tarjeta Naranja cardholders. ๐ Intel: @larm182luis (gracias). ๐ค Stay informed with #Sheriff for the latest #ThreatIntelligence insights" [X Link](https://x.com/anyuser/status/1676216346294493185) 2023-07-04T13:08Z 12K followers, 89K engagements "Un usuario publica una combolist con casi [-------] credenciales de usuarios argentinos. ๐ [--] pertenecen a dominios militares (mil) [-----] a dominios educativos (edu) y [-----] a dominios de gobierno (gob/gov). ๐ค Intel: @AdanZkx. #Argentina #Ciberseguridad #Cibercrimen" [X Link](https://x.com/anyuser/status/1645767409142202371) 2023-04-11T12:35Z 10.8K followers, 24.6K engagements "#Uruguay: los bots de un candidato comenzaron a fallar en cadena durante una transmisin. ๐ค Kegagalan bot coba lagi #Montevideo" [X Link](https://x.com/anyuser/status/1848042982185816457) 2024-10-20T16:45Z 10.8K followers, [----] engagements "Meet "Jess Sebastin" another #Lazarus agent who approached us with a stolen identity. ๐ง We recorded everything and became friends on Discord and other socials. Read our article below. We are the #QuetzalTeam we put the "Famous" in "Famous Chollima"" [X Link](https://x.com/anyuser/status/1987960810266648887) 2025-11-10T19:09Z 10.8K followers, 11.5K engagements "#Argentina: Venden [--] millones de licencias de conducir. ๐พ El lote (1.2TB) que incluye licencias del Presidente Ministros y famosos consigna datos como firma tipo de sangre restricciones del conductor direccin y ms. #Ciberseguridad #Cibercrimen ๐ New #cybercrime intelligence. #Argentina: Threat actor selling 5.7M (1.2 TB) driving licences extracted from the DNRPA (Direccin Nacional de Registro de Propiedad del Automotor). Shared sample includes licenses belonging to the President Ministers and celebrities. https://t.co/ACW0ebwixd ๐ New #cybercrime intelligence. #Argentina: Threat actor" [X Link](https://x.com/anyuser/status/1780243243214442683) 2024-04-16T14:33Z 10.8K followers, 20.6K engagements "๐ New #cybercrime intelligence. #Argentina: Threat actor selling 5.7M (1.2 TB) driving licences extracted from the DNRPA (Direccin Nacional de Registro de Propiedad del Automotor). Shared sample includes licenses belonging to the President Ministers and celebrities" [X Link](https://x.com/anyuser/status/1780243016608854182) 2024-04-16T14:33Z 12K followers, 76.6K engagements "๐พ Surgen nuevos logs con credenciales robadas a usuarios de #Uruguay y #Argentina. [--] credenciales: OSE ANV BROU RedPagos MiDinero Gur Ceibal BPS OCA etc. [---] credenciales: Polica de la Ciudad YPF SUBE MJyS CABA etc. #Ciberseguridad #Cibercrimen" [X Link](https://x.com/anyuser/status/1661708802691874818) 2023-05-25T12:20Z 10.8K followers, 26.1K engagements "Un usuario publica un lote de [--] DNIs argentinos en un foro especializado. ๐ฐ Sostiene tener una cantidad mayor disponible a la venta. #Argentina #Ciberseguridad #Cibercrimen #RENAPER" [X Link](https://x.com/anyuser/status/1621141990338617344) 2023-02-02T13:42Z 10.8K followers, 25K engagements "#Argentina Un mismo actor publica tres bases de datos: Aerolneas Argentinas NaranjaX y Movistar Argentina. Contienen nombres completos telfonos celulares domicilios y DNIs. #Ciberseguridad #Cibercrimen ๐ New #cybercrime intelligence. #Argentina: Threat Actor shared databases for three companies: Aerolneas Argentinas NaranjaX and Movistar containing clients' full names mobile phone numbers addresses and DNIs. ๐ #ThreatIntelligence: @criminaalmambo (Gracias). https://t.co/6MFOqf1iRq ๐ New #cybercrime intelligence. #Argentina: Threat Actor shared databases for three companies: Aerolneas" [X Link](https://x.com/anyuser/status/1759918939088261306) 2024-02-20T12:32Z 10.8K followers, 10.6K engagements "๐ New #cybercrime intelligence. #Argentina: Threat Actor shared databases for three companies: Aerolneas Argentinas NaranjaX and Movistar containing clients' full names mobile phone numbers addresses and DNIs. ๐ #ThreatIntelligence: @criminaalmambo (Gracias)" [X Link](https://x.com/anyuser/status/1759918109257843063) 2024-02-20T12:29Z 12K followers, 30.1K engagements "#Argentina: Actor que filtr [---] millones de licencias de conducir publica un comunicado. ๐ฃ "Todo lo que podemos hacer es reirnos. Se estn burlando de ustedes cuando dicen que no se comprometi informacin sensible .". #Ciberseguridad #Cibercrimen ๐ New #cybercrime intelligence. #Argentina: Threat actor selling the 5.7M driving licences shared a statement. ๐ฃ "All we can do is laugh. They are straight up clowning y'all saying sensitive data ain't compromised .". https://t.co/aacfDmK9yx ๐ New #cybercrime intelligence. #Argentina: Threat actor selling the 5.7M driving licences shared a" [X Link](https://x.com/anyuser/status/1780373781556478242) 2024-04-16T23:12Z 10.8K followers, 13.2K engagements "๐ New #cybercrime intelligence. #Argentina: Threat actor selling the 5.7M driving licences shared a statement. ๐ฃ "All we can do is laugh. They are straight up clowning y'all saying sensitive data ain't compromised ."" [X Link](https://x.com/anyuser/status/1780372590709600526) 2024-04-16T23:07Z 12K followers, 28.6K engagements "Publican logs con [--] credenciales de devs del Gobierno. ๐พ Afecta a sistemas internos como Portainer Nagios Matomo Jenkins Git y SSO de entornos de QA y Lab de Innovacin y Anses. ๐ผ Perteneceran a contratistas de Leafnoise. #Ciberseguridad #Cibercrimen #Argentina" [X Link](https://x.com/anyuser/status/1660991211308474368) 2023-05-23T12:48Z 10.8K followers, 13K engagements "#Argentina: A la venta una base de datos de socios del Club Atltico Vlez Sarsfield. ๐พ Contiene [-------] registros con emails celulares DNIs y domicilios de socios. #Ciberseguridad #Cibercrimen ๐ New #cybercrime intelligence. #Argentina: Threat actor selling a database from Club Vlez Sarsfield containing [------] entries with DNI full name address cellphone number and email. ๐ #ThreatIntelligence: @mbec03. https://t.co/WLCRVRijlf ๐ New #cybercrime intelligence. #Argentina: Threat actor selling a database from Club Vlez Sarsfield containing [------] entries with DNI full name address cellphone" [X Link](https://x.com/anyuser/status/1836392975405830472) 2024-09-18T13:12Z 10.8K followers, 24.2K engagements "๐ New #cybercrime intelligence. #Argentina: Threat actor selling a database from Club Vlez Sarsfield containing [------] entries with DNI full name address cellphone number and email. ๐ #ThreatIntelligence: @mbec03" [X Link](https://x.com/anyuser/status/1836391049163411562) 2024-09-18T13:05Z 12K followers, 35.8K engagements "#Argentina: Publican 82.000+ credenciales de usuarios de AFIP obtenidas a partir de logs de Stealers. #Ciberseguridad #Cibercrimen ๐ New #cybercrime intelligence. #Argentina: 82k+ credentials belonging to AFIP (Administracin Federal de Ingresos Pblicos) users were shared. ๐ฆ Allegedly parsed from stealer logs. AFIP was not compromised. ๐ #ThreatIntelligence: @criminaalmambo (Gracias). https://t.co/FjD2hKZj5L ๐ New #cybercrime intelligence. #Argentina: 82k+ credentials belonging to AFIP (Administracin Federal de Ingresos Pblicos) users were shared. ๐ฆ Allegedly parsed from stealer logs." [X Link](https://x.com/anyuser/status/1757398379502489841) 2024-02-13T13:36Z 10.8K followers, 21.3K engagements "๐ New #cybercrime intelligence. #Argentina: 82k+ credentials belonging to AFIP (Administracin Federal de Ingresos Pblicos) users were shared. ๐ฆ Allegedly parsed from stealer logs. AFIP was not compromised. ๐ #ThreatIntelligence: @criminaalmambo (Gracias)" [X Link](https://x.com/anyuser/status/1757398032910336254) 2024-02-13T13:35Z 12K followers, 123.7K engagements "๐ Escrib un artculo para la revista @phrack y ya est disponible en lnea. Cmo fue la diseccin del malware norcoreano QRLog paso a paso y da a da como un diario. โ Eldritchs Quetzals Chollimas. #Ciberseguridad #DPRK #Malware" [X Link](https://x.com/anyuser/status/1825683002728292461) 2024-08-19T23:55Z 10.8K followers, 18.3K engagements "El grupo de #Ransomware #Lockbit anuncia a #OSDE (red de servicios mdicos) como su nueva vctima. ๐ฐ El lote de informacin se vende a [-------] dlares. #Argentina #Ciberseguridad #Cibercrimen #Seguridad" [X Link](https://x.com/anyuser/status/1550577545107718144) 2022-07-22T20:24Z 10.8K followers, [---] engagements "Un actor de amenazas pone a la venta un lote de informacin sobre "todos los ciudadanos de #Uruguay". ๐พ Contendra [--] millones de registros incluyendo cdula y nombre completo. Habra sido extrado de una universidad nacional. #Ciberseguridad #Cibercrimen #MeFiltraron #Leak" [X Link](https://x.com/anyuser/status/1605909622967177216) 2022-12-22T12:54Z 10.8K followers, 121.7K engagements "Un actor de amenazas afirma tener accesos a los sistemas del Ministerio de Economa y Finanzas Pblicas (#MEcon) y los vende en un foro especializado. ๐ฆ A threat actor is (allegedly) selling access to the Ministry of Economy. #Argentina #Cybersecurity #Cybercrime #Hacking" [X Link](https://x.com/anyuser/status/1572554177569763328) 2022-09-21T11:51Z 10.8K followers, [---] engagements "๐ช #ZoeLeaks: Filtracin de datos del sistema de soporte de #ZoeCash. ๐พ Se filtran [--] tickets con informacin personal como usuarios montos de inversin telfonos emails y otros adjuntos. #ZoeGate #ZoeCrash #ciberseguridad CC: @BetoMendeleiev_ ๐ช #ZoeLeaks: Filtracin de datos de compradores de #ZoeCash. ๐พ [----] archivos con contratos inversiones documentos bancarios fiscales de identidad y selfies de verificacin. ๐บ Abarca clientes de y . #ZoeGate #ZoeCrash CC: @BetoMendeIeiv + @Beto_MendeIeiev https://t.co/bocMzbgnf6 ๐ช #ZoeLeaks: Filtracin de datos de compradores de #ZoeCash. ๐พ [----] archivos" [X Link](https://x.com/anyuser/status/1497226973550161924) 2022-02-25T15:08Z 10.8K followers, [---] engagements "#Uruguay: El grupo de #ransomware Cactus libera la totalidad de la informacin secuestrada a Geocom. ๐พ El lote de datos contiene 77GB de informacin confidencial e incluye pasaportes. #Ciberseguridad #Cibercrimen #Montevideo ๐ New #ransomware update. #Uruguay: Cactus group releases Geocom full dump (77GB). ๐ Stay informed with for the latest Ransomware #ThreatIntelligence. https://t.co/AGnMzz8dCL ๐ New #ransomware update. #Uruguay: Cactus group releases Geocom full dump (77GB). ๐ Stay informed with for the latest Ransomware #ThreatIntelligence. https://t.co/AGnMzz8dCL" [X Link](https://x.com/anyuser/status/1736815089230262282) 2023-12-18T18:26Z 10.8K followers, 32.8K engagements "๐ New #ransomware update. #Uruguay: Cactus group releases Geocom full dump (77GB). ๐ Stay informed with for the latest Ransomware #ThreatIntelligence" [X Link](https://x.com/anyuser/status/1736814690087711156) 2023-12-18T18:24Z 12K followers, 33.4K engagements "#Argentina: Actor coloca a la venta archivos sustrados del servidor FTP del Ministerio de Ciencia Tecnologa e Innovacin. ๐ Crditos: @chum1ng0 #Cibercrimen #Ciberseguridad #ThreatIntelligence ๐ New #cybercrime intelligence. #Argentina: Threat Actor offers a copy of FTP server contents from Ministerio de Ciencia y Tecnologa. ๐ #ThreatIntelligence: @chum1ng0 (Gracias). ๐ค Stay informed with #Sheriff. https://t.co/12mJxRPUOF ๐ New #cybercrime intelligence. #Argentina: Threat Actor offers a copy of FTP server contents from Ministerio de Ciencia y Tecnologa. ๐ #ThreatIntelligence: @chum1ng0" [X Link](https://x.com/anyuser/status/1692988563992797612) 2023-08-19T19:55Z 10.8K followers, 22.1K engagements "๐ New #cybercrime intelligence. #Argentina: Threat Actor offers a copy of FTP server contents from Ministerio de Ciencia y Tecnologa. ๐ #ThreatIntelligence: @chum1ng0 (Gracias). ๐ค Stay informed with #Sheriff" [X Link](https://x.com/anyuser/status/1692988044712788374) 2023-08-19T19:52Z 12K followers, 126.3K engagements "#Argentina: El grupo de #ransomware Knight anuncia al Hospital Italiano de Buenos Aires como vctima. ๐พ No hay informacin sobre la naturaleza o cantidad de datos comprometidos ni sobre el monto del rescate solicitado. #Ciberseguridad #Cibercrimen ๐ New #ransomware incident. #Argentina: Hospital Italiano de Buenos Aires announced by Knight (ex Cyclops). ๐ Stay informed with #DarkFeed for the latest Ransomware #ThreatIntelligence. https://t.co/OpiZRGAH2m ๐ New #ransomware incident. #Argentina: Hospital Italiano de Buenos Aires announced by Knight (ex Cyclops). ๐ Stay informed with #DarkFeed" [X Link](https://x.com/anyuser/status/1712808658281623710) 2023-10-13T12:33Z 10.8K followers, 21.5K engagements "๐ New #ransomware incident. #Argentina: Hospital Italiano de Buenos Aires announced by Knight (ex Cyclops). ๐ Stay informed with #DarkFeed for the latest Ransomware #ThreatIntelligence" [X Link](https://x.com/anyuser/status/1712807996156207465) 2023-10-13T12:30Z 12K followers, 93.2K engagements "Can you hack someone using only a pair of speakers ๐ Can a company be compromised using only a keyboard @larm182luis @f_perezs and I will be answering this at @defcon @VillageRedTeam on August 6th and 9th. Don't miss our talks #hacking #argentina #colombia #defcon28" [X Link](https://x.com/anyuser/status/1287153229772591112) 2020-07-25T22:30Z 10.8K followers, [---] engagements "#Argentina: Filtran una base de datos de Heladeras Grido. ๐พ Contiene informacin de usuarios del programa de puntos y recompensas de todo el pas. #Ciberseguridad #Cibercrimen ๐ค Sheriff: new #cybercrime intelligence. #Argentina: TA leaked the full database from Heladeras Gridos loyalty programme exposing sensitive user information from across the country. Post was later deleted. Details below. https://t.co/U6Dtc5wTIA ๐ค Sheriff: new #cybercrime intelligence. #Argentina: TA leaked the full database from Heladeras Gridos loyalty programme exposing sensitive user information from across the" [X Link](https://x.com/anyuser/status/1950953079244837199) 2025-07-31T16:13Z 10.8K followers, [----] engagements "๐ค Sheriff: new #cybercrime intelligence. #Argentina: TA leaked the full database from Heladeras Gridos loyalty programme exposing sensitive user information from across the country. Post was later deleted. Details below" [X Link](https://x.com/anyuser/status/1950952460970844300) 2025-07-31T16:11Z 12K followers, 24.5K engagements "Una filtracin del Poder Judicial de #Neuquen fue puesta a la venta en un foro especializado. ๐งโ Son casi [----] registros de funcionarios incluyendo nombre completo usuarios y direcciones de correo. #Argentina #Cibercrimen #Ciberseguridad #DataBreach #Leak #Seguridad" [X Link](https://x.com/anyuser/status/1560630872943996935) 2022-08-19T14:12Z 10.8K followers, [---] engagements "Una filtracin de la Suprema Corte de Buenos Aires fue puesta a la venta en un foro especializado. ๐งโ Son [------] registros de Jueces y otros funcionarios incluyendo DNI mail y claves. ๐ Habran comprometido el sitio web. #Ciberseguridad #Cibercrimen #DataBreach #Argentina" [X Link](https://x.com/anyuser/status/1550162622988828672) 2022-07-21T16:55Z 10.8K followers, [--] engagements "#Argentina: A la venta base de datos de NOSIS (con casi [--] millones de registros) y acceso privilegiado al CRM de una agencia de cobro de deudas. ๐พ El CRM contendra telfonos recibos e informacin sobre deudas de entre [--] y [--] mil USD. #Cibercrimen #Ciberseguridad ๐ New #cybercrime intelligence. #Argentina: Database from NOSIS & CRM Access to a debt collection agency for sale. ๐พ DB contains 2M records with DNI Phone and Address. ๐ #ThreatIntelligence: @chum1ng0 & @criminaalmambo (Gracias) #ThreatIntel #Cybersecurity #Sheriff https://t.co/zT09e3sE8h ๐ New #cybercrime intelligence." [X Link](https://x.com/anyuser/status/1711712906323063046) 2023-10-10T11:58Z 10.8K followers, 18K engagements "๐ New #cybercrime intelligence. #Argentina: Database from NOSIS & CRM Access to a debt collection agency for sale. ๐พ DB contains 2M records with DNI Phone and Address. ๐ #ThreatIntelligence: @chum1ng0 & @criminaalmambo (Gracias) #ThreatIntel #Cybersecurity #Sheriff" [X Link](https://x.com/anyuser/status/1711711486354063794) 2023-10-10T11:53Z 12K followers, 35.3K engagements "Habl brevemente con un agente de #Lazarus que intent hackearme. ๐ฆฆ Me envi una variante de #OtterCookie que se activaba de la forma ms creativa que vi en los ltimos aos. ๐ Lo recib con una remera nica regalo del gran @juanbrodersen. ๐ Link al artculo debajo. ๐ด 22:40 de un jueves cualquiera. Andaba con ganas de hacer historia. Entrevist a un afiliado de #Lazarus pero l no saba quin soy y crey que me estaba engaando. ๐ฆฆ Le rob una muestra de #OtterCookie y grab la charla. Maana se viene mi mejor artculo. #DPRK https://t.co/MYj6tWXcM2 ๐ด 22:40 de un jueves cualquiera. Andaba con ganas de" [X Link](https://x.com/anyuser/status/1910819781764403478) 2025-04-11T22:18Z 10.8K followers, 20.1K engagements "๐ด 22:40 de un jueves cualquiera. Andaba con ganas de hacer historia. Entrevist a un afiliado de #Lazarus pero l no saba quin soy y crey que me estaba engaando. ๐ฆฆ Le rob una muestra de #OtterCookie y grab la charla. Maana se viene mi mejor artculo. #DPRK" [X Link](https://x.com/anyuser/status/1910513084680012111) 2025-04-11T01:59Z 10.8K followers, 19.2K engagements "Notable aumento en la oferta de tarjetas de crdito asociadas a #Rappi #Argentina en foros especializados. #Ciberseguridad #Cibercrimen #Seguridad" [X Link](https://x.com/anyuser/status/1646141247164129282) 2023-04-12T13:20Z 10.8K followers, 16.4K engagements "Publican nuevas combolists con [------] credenciales de #Argentina [---] de Gobierno. ๐พ Dominios afectados: ANMAT Armada Cancillera Diputados Ejrcito Hospitales Garrahan y Oativia Lotera Nacional y Suprema Corte de Bs As entre otros. #Ciberseguridad #Cibercrimen ๐ New combolists discovered. #Argentina: [------] users impacted with government domains ANSES ANMAT Armada Cancillera Diputados Ejrcito Hospital Garrahan Hospital Oativa Lotera Nacional INTA Migraciones and Suprema Corte Buenos Aires among them. #ThreatIntel https://t.co/b9B0LHPgWX ๐ New combolists discovered. #Argentina: [------] users" [X Link](https://x.com/anyuser/status/1664257104528519168) 2023-06-01T13:06Z 10.8K followers, 22.7K engagements "๐ New combolists discovered. #Argentina: [------] users impacted with government domains ANSES ANMAT Armada Cancillera Diputados Ejrcito Hospital Garrahan Hospital Oativa Lotera Nacional INTA Migraciones and Suprema Corte Buenos Aires among them. #ThreatIntel" [X Link](https://x.com/anyuser/status/1664255572055564292) 2023-06-01T13:00Z 12K followers, 31.7K engagements "Publican varias filtraciones de #Uruguay. ๐ง๐ซ Docentes (40.152): CI Nombre Apellido Departamento. ๐ฅ [----] / CASMU (202.574): CI Nombre completo Fecha de Nacimiento Telfono Email Direccin. ๐พ Y otra filtracin sobre [-------] ciudadanos. #Ciberseguridad #Cibercrimen" [X Link](https://x.com/anyuser/status/1659249983319572482) 2023-05-18T17:29Z 10.8K followers, 16.7K engagements "Un actor de amenazas pone a la venta un lote de informacin del Registro de la Propiedad Automotor. ๐พ Seran 1.133.264 registros con informacin de propietarios y vehculos a nivel nacional. #Ciberseguridad #Argentina #Cibercrimen" [X Link](https://x.com/anyuser/status/1600848888184782848) 2022-12-08T13:44Z 10.8K followers, [---] engagements "#Argentina: publican una combolist con casi [--] mil credenciales en un foro especializado. ๐ฆ [---] pertenecen a cuentas de Gobierno. ๐ Dominios afectados: AFIP Diputados Fiscala Presidencia Ministerio de Seguridad y Defensa entre otros. #Ciberseguridad #Cibercrimen ๐ New combolists discovered. #Argentina: [------] users impacted (907 gov accounts) with government domains AFIP Diputados Fiscala (GBA) Presidencia Ministerio de Seguridad & Ministerio de Defensa among them. ๐ #ThreatIntel: @chum1ng0 (Gracias) #Cybercrime https://t.co/UvnZZKznml ๐ New combolists discovered. #Argentina: 88.863" [X Link](https://x.com/anyuser/status/1721901959651979536) 2023-11-07T14:46Z 10.8K followers, 16.3K engagements "๐ New combolists discovered. #Argentina: [------] users impacted (907 gov accounts) with government domains AFIP Diputados Fiscala (GBA) Presidencia Ministerio de Seguridad & Ministerio de Defensa among them. ๐ #ThreatIntel: @chum1ng0 (Gracias) #Cybercrime" [X Link](https://x.com/anyuser/status/1721901325645140460) 2023-11-07T14:44Z 12K followers, 48.5K engagements "Un actor de amenazas coloca a la venta accesos privilegiados a sistemas de la Secretara de Energa. ๐พ Permitiran administrar usuarios y compaas empadronados y monitorear la infraestructura energtica. ๐ค Crditos: @Dandrewsp #Argentina #Ciberseguridad #Cibercrimen" [X Link](https://x.com/anyuser/status/1631745125041807363) 2023-03-03T19:55Z 10.8K followers, 10.5K engagements "El grupo de #ransomware #Lockbit anuncia a La Segunda Seguros como su nueva vctima. ๐พ Aseguran tener en su poder documentos internos de clientes incluyendo sus plizas y pasaportes. #Ciberseguridad #Cibercrimen #Argentina #Rosario" [X Link](https://x.com/anyuser/status/1628085583322001425) 2023-02-21T17:33Z 10.8K followers, 29.2K engagements "#Argentina: Venden 5.300+ fotografas de usuarios de RainbowExLife utilizadas durante el proceso de KYC. ๐พ El lote contendra 10GB de imgenes de identificaciones nacionales de varios pases de LATAM y selfies de usuarios sostenindolas. #Ciberseguridad #Cibercrimen ๐ New #cybercrime intelligence. #Argentina: Threat actor selling 5300+ KYC photos from RainbowExLife including ID cards (front and back) and verification selfies from individuals across LATAM. ๐ #ThreatIntelligence: @criminaalmambo. https://t.co/0luwVRglaB ๐ New #cybercrime intelligence. #Argentina: Threat actor selling 5300+ KYC" [X Link](https://x.com/anyuser/status/1842572935699005489) 2024-10-05T14:29Z 10.8K followers, 12.1K engagements "๐ New #cybercrime intelligence. #Argentina: Threat actor selling 5300+ KYC photos from RainbowExLife including ID cards (front and back) and verification selfies from individuals across LATAM. ๐ #ThreatIntelligence: @criminaalmambo" [X Link](https://x.com/anyuser/status/1842571880659845242) 2024-10-05T14:25Z 12K followers, 60K engagements "Un usuario vendi accesos a dos compaas de #Argentina en un foro especializado. ๐ฐ Las vctimas tendran ganancias de $14 y $60 millones anuales sus accesos fueron valuados en $400 y $100 respectivamente. #Ciberseguridad #Cibercrimen" [X Link](https://x.com/anyuser/status/1638512491717181443) 2023-03-22T12:06Z 10.8K followers, 17K engagements "#Uruguay: Escrib un breve informe sobre el incidente de #ransomware sufrido por Guyer & Regules a manos de Lockbit. ๐ Entre los archivos expuestos se encuentran documentos de la fintech Lemon Cash. ๐ดโ El lote contina a la venta. #Ciberseguridad #Cibercrimen #Montevideo ๐ New paper released. ๐ "#Ransomware: Lockbit vs Guyer & Regules" by @MauroEldritch (Spanish). ๐ https://t.co/SWUT0I2uEE ๐ค Stay safe with #Sheriff #Cybersecurity #Cybercrime #ThreatIntel #Uruguay #Montevideo ๐ New paper released. ๐ "#Ransomware: Lockbit vs Guyer & Regules" by @MauroEldritch (Spanish). ๐" [X Link](https://x.com/anyuser/status/1699421605577789515) 2023-09-06T13:57Z 10.8K followers, 18.5K engagements "๐ New paper released. ๐ "#Ransomware: Lockbit vs Guyer & Regules" by @MauroEldritch (Spanish). ๐ ๐ค Stay safe with #Sheriff #Cybersecurity #Cybercrime #ThreatIntel #Uruguay #Montevideo https://bca.ltd/BCA-0003 https://bca.ltd/BCA-0003" [X Link](https://x.com/anyuser/status/1699420622718189758) 2023-09-06T13:53Z 12K followers, 24.4K engagements "Filtran una base de datos con [-------] registros de estudiantes de la Universidad de Buenos Aires (#UBA). ๐พ Contendra direcciones de email nombre completo y domicilio. Indicara en algunos casos nacionalidad. #Ciberseguridad #Cibercrimen #Argentina ๐ New data breach discovered. #Argentina: A database containing [------] student records from the University of Buenos Aires has been leaked online. The leaked data includes email addresses full names and physical addresses. #ThreatIntelligence #ThreatIntel #Sheriff https://t.co/7L1pyrC3jI ๐ New data breach discovered. #Argentina: A database" [X Link](https://x.com/anyuser/status/1666051653949177857) 2023-06-06T11:57Z 10.8K followers, 13.8K engagements "๐ New data breach discovered. #Argentina: A database containing [------] student records from the University of Buenos Aires has been leaked online. The leaked data includes email addresses full names and physical addresses. #ThreatIntelligence #ThreatIntel #Sheriff" [X Link](https://x.com/anyuser/status/1666051120832163848) 2023-06-06T11:55Z 12K followers, 349.8K engagements "#Argentina: A la venta dos bases de datos: ๐ Una con 5.4M de registros de automotores que incluyen patente modelo nombre y domicilio del dueo. ๐ฑ Otra de Movistar con 10M de registros que incluyen telfono DNI nombre y domicilio. #Ciberseguridad #Cibercrimen ๐ New #cybercrime intelligence. #Argentina: TA selling a car owners database (5M records) with plate ID car model owner full name and address; and a Movistar DB with 10M records including phone number name and address. ๐ #ThreatIntelligence: @criminaalmambo. https://t.co/FJqLYIXAiK ๐ New #cybercrime intelligence. #Argentina: TA selling" [X Link](https://x.com/anyuser/status/1818997669055934602) 2024-08-01T13:10Z 10.8K followers, [----] engagements "๐ New #cybercrime intelligence. #Argentina: TA selling a car owners database (5M records) with plate ID car model owner full name and address; and a Movistar DB with 10M records including phone number name and address. ๐ #ThreatIntelligence: @criminaalmambo" [X Link](https://x.com/anyuser/status/1818995150988759465) 2024-08-01T13:00Z 12K followers, 14.6K engagements "๐ Un usuario publica una combolist con credenciales para el servicio de streaming Paramount+. Contiene [---] registros y afecta a usuarios de #Uruguay #Brasil #Argentina y #Mexico entre otros. #Ciberseguridad #Cibercrimen" [X Link](https://x.com/anyuser/status/1633800895661047809) 2023-03-09T12:04Z 10.8K followers, 11.1K engagements "#Argentina: Publican una base de datos perteneciente a NOSIS. ๐พ Contiene [-------] registros detallando DNI nombre completo / razn social email y nmero de telfono celular. #Ciberseguridad #Cibercrimen ๐ New #cybercrime intelligence. #Argentina: Threat actor shared database belonging to NOSIS containing [-------] lines with DNI full name email and mobile phone number. https://t.co/meC7fsWh95 ๐ New #cybercrime intelligence. #Argentina: Threat actor shared database belonging to NOSIS containing [-------] lines with DNI full name email and mobile phone number. https://t.co/meC7fsWh95" [X Link](https://x.com/anyuser/status/1778185591034945848) 2024-04-10T22:17Z 10.8K followers, 11.1K engagements Limited data mode. Full metrics available with subscription: lunarcrush.com/pricing
@MauroEldritch Mauro Eldritch ๐ดโโ ๏ธ
Mauro Eldritch ๐ดโโ ๏ธ posts on X about argentina, actor, uruguay, de la the most. They currently have [------] followers and [---] posts still getting attention that total [---] engagements in the last [--] hours.
Engagements: [---] #
- [--] Week [-----] -40%
- [--] Month [------] -17%
- [--] Months [-------] +2,693%
- [--] Year [-------] +530%
Mentions: [--] #
- [--] Week [--] +160%
- [--] Month [--] +133%
- [--] Months [--] +657%
- [--] Year [--] +88%
Followers: [------] #
- [--] Week [------] +0.05%
- [--] Month [------] -0.11%
- [--] Months [------] +11%
- [--] Year [------] +18%
CreatorRank: undefined #
Social Influence
Social category influence countries travel destinations finance technology brands currencies exchanges stocks cryptocurrencies social networks products
Social topic influence argentina, actor, uruguay, de la, montevideo, grupo, buenos aires, lazarus, sobre, address
Top assets mentioned Cloudflare, Inc. (NET) Alphabet Inc Class A (GOOGL)
Top Social Posts
Top posts by engagements in the last [--] hours
"Thanks @DDV_DC crew We have to solve this puzzle @LiorKolnik @defcon #DEFCON26"
X Link 2018-08-12T00:40Z [----] followers, [--] engagements
"El grupo #BlackCat anuncia a TGS (Transportadora de Gas del Sur) como nueva vctima. ๐ Amenazan con filtrar [---] GB de informacin financiera legal contable y tcnica incluyendo esquemticos y planos de gasoductos. #Argentina #Cibercrimen #Ciberseguridad #Security"
X Link 2022-04-09T12:22Z [----] followers, [--] engagements
"๐ฏ #Hive filtra informacin confidencial de #CaracolTV. Incluye documentos aduaneros y pasaportes de ciudadanos de y . ๐ฏ Hive releases confidential data from CaracolTV including customs documents and passports of citizens of & . #Ransomware #Colombia"
X Link 2022-05-30T23:00Z [----] followers, [--] engagements
"#Uruguay: Escrib un breve informe sobre el incidente de #ransomware sufrido por Guyer & Regules a manos de Lockbit. ๐ Entre los archivos expuestos se encuentran documentos de la fintech Lemon Cash. ๐ดโ El lote contina a la venta. #Ciberseguridad #Cibercrimen #Montevideo ๐ New paper released. ๐ "#Ransomware: Lockbit vs Guyer & Regules" by @MauroEldritch (Spanish). ๐ https://t.co/SWUT0I2uEE ๐ค Stay safe with #Sheriff #Cybersecurity #Cybercrime #ThreatIntel #Uruguay #Montevideo ๐ New paper released. ๐ "#Ransomware: Lockbit vs Guyer & Regules" by @MauroEldritch (Spanish). ๐"
X Link 2023-09-06T13:57Z 10.8K followers, 18.5K engagements
"๐ Esta semana en Dark News (ex SecOps): #Ransomware al Hospital Italiano de Buenos Aires. #DataBreach del Parlamento del #Uruguay. ๐ Link: #Argentina #Ciberseguridad #Cibercrimen"
X Link 2023-10-27T13:09Z [----] followers, [---] engagements
"๐ Sobre el incidente de #ransomware ocurrido en el Jockey Club nota de @carolamberti1 con comentarios de mi parte (gracias por el espacio). ๐ Link: #Ciberseguridad #Cibercrimen #Argentina"
X Link 2023-11-02T16:29Z [----] followers, [---] engagements
"#Argentina: A la venta tres importantes bases de datos en un foro especializado. ๐พ IRSA (1.4 millones de registros) Gimnasios Megatlon (1.1 millones) e Ibero Renault (300.000). ๐ #ThreatIntel: @chum1ng0. #Ciberseguridad #Cibercrimen"
X Link 2023-11-22T19:10Z [----] followers, [----] engagements
"#Uruguay: Actor afiliado a Esteem Restoration Eagle desfigura el sitio de Geikko (educacin). โ Primer ataque registrado en Uruguay relacionado al conflicto en Israel. Esteem Restoration Eagle es un grupo hacktivista pro-Palestina. #Ciberseguridad #Cibercrimen #Montevideo"
X Link 2023-11-27T19:14Z [----] followers, [----] engagements
"#Uruguay: El grupo Ransomexx2 liber 54GB de informacin secuestrada a Universal Assistance SA. ๐ข El lote incluye datos de compaas como Htal. Evanglico Sistarbanc Intendencia de #Montevideo CASMU Santander BROU Ita Seguro Americano Zurich. #Ciberseguridad"
X Link 2023-11-28T17:00Z [----] followers, [----] engagements
"#Uruguay: El grupo de #ransomware Cactus libera la totalidad de la informacin secuestrada a Geocom. ๐พ El lote de datos contiene 77GB de informacin confidencial e incluye pasaportes. #Ciberseguridad #Cibercrimen #Montevideo ๐ New #ransomware update. #Uruguay: Cactus group releases Geocom full dump (77GB). ๐ Stay informed with for the latest Ransomware #ThreatIntelligence. https://t.co/AGnMzz8dCL ๐ New #ransomware update. #Uruguay: Cactus group releases Geocom full dump (77GB). ๐ Stay informed with for the latest Ransomware #ThreatIntelligence. https://t.co/AGnMzz8dCL"
X Link 2023-12-18T18:26Z 10.8K followers, 32.8K engagements
"@MarchuGonnet Al haber pasaportes junto con informacin de ventas usuarios y clientes el lote es muy interesante para actores que se dediquen al robo de identidad y estafas similares. No slo se expone informacin interna de la empresa sino tambin de terceros (lo que es ms grave)"
X Link 2023-12-18T20:07Z [----] followers, [---] engagements
"๐ณ Sobre la liberacin del lote de 77GB de informacin confidencial de Geocom en #Uruguay. ๐ Nota en @ObservadorUY (gracias por la mencin a nuestro trabajo). ๐ Link: #Ciberseguridad #Cibercrimen #Montevideo"
X Link 2023-12-19T12:09Z [----] followers, [---] engagements
"#Uruguay: Nuevo actor de amenazas publica tres lotes de datos filtrados. ๐ฅ Saico (Compaa de Software). Club Uruguayo Britnico. โฝ Sitio web del jugador y DT Gustavo Muna. ๐พ Contienen emails hashes de passwords y lista de clientes. #Ciberseguridad #Cibercrimen"
X Link 2023-12-22T12:49Z [----] followers, [---] engagements
"#Argentina: Actor de amenazas comparte credenciales para el sistema CIDI (Ciudadano Digital de la Provincia de Crdoba). ๐พ Sostiene tener acceso a [-----] credenciales sin el respectivo PIN de autorizacin. #Ciberseguridad #Cibercrimen #Cordoba"
X Link 2024-01-24T12:29Z [--] followers, [--] engagements
"#Argentina: A la venta acceso con privilegios de administrador al Colegio de Abogados de la Provincia de Buenos Aires. โ El acceso privilegiado permitira validar ttulos modificar legajos y emitir nuevas matrculas y credenciales entre otros. #Ciberseguridad #Cibercrimen ๐ New #cybercrime intelligence. #Argentina: Admin access to Colegio de Abogados de la Provincia de Buenos Aires for sale. Allows privileged actions such as validate diplomas alter personal records and issue new credentials and professional licenses. https://t.co/31h4iO1nO1 ๐ New #cybercrime intelligence. #Argentina: Admin"
X Link 2024-01-25T12:38Z 10.8K followers, 10K engagements
"#Argentina: A la venta acceso administrador al sitio de Mediaciones del Ministerio de Justicia de la Provincia de Buenos Aires. Permitira la visualizacin y modificacin de ms de [----] casos. #Ciberseguridad #Cibercrimen ๐ New #cybercrime intelligence. #Argentina: Admin access to Ministerio de Justicia de la Provincia de Buenos Aires for sale granting alleged access to view download and modify data for 2k criminal cases. ๐ #ThreatIntelligence: @criminaalmambo & @chum1ng0 (Gracias). https://t.co/Z0X2wygX6k ๐ New #cybercrime intelligence. #Argentina: Admin access to Ministerio de Justicia de la"
X Link 2024-01-29T11:02Z [----] followers, [----] engagements
"#Argentina: A la venta accesos a dos correos gubernamentales. ๐ฐ Precio: $10 USD. #Ciberseguridad #Cibercrimen"
X Link 2024-01-30T12:42Z [----] followers, [--] engagements
"๐ Qu son los #Drainers y por qu son una amenaza para el ecosistema #Web3 Qu es el modelo Drainers as a Service โ Lo explico en "Signing the Crypto Devil's Contract" artculo que escrib para @Bitso. ๐ Link: #Ciberseguridad #Cibercrimen"
X Link 2024-01-30T13:17Z [----] followers, [--] engagements
"๐ Sobre la filtracin de #Geocom - por Juan Pablo De Marco (gracias). ๐พ A pesar de la versin oficial se filtraron planillas con claves de Intendencias padrones documentacin tcnica y cdigo fuente. ๐ Link: #Ciberseguridad #Uruguay #Montevideo"
X Link 2024-01-31T17:57Z [----] followers, [--] engagements
"#Argentina: A la venta una base de datos de un e-commerce con [--] mil registros que incluyen nombre completo email telfono e informacin de pago (tarjetas de dbito/crdito). ๐ฐ Precio: $350 USD. #Ciberseguridad #Cibercrimen ๐ New #cybercrime intelligence. #Argentina: DB leak belonging to an argentine e-commerce is up for sale. Leak contains 3k lines with full name email phone and payment information (credit/debit cards). ๐ #ThreatIntelligence: @criminaalmambo (Gracias). https://t.co/zfpHZ9iMyI ๐ New #cybercrime intelligence. #Argentina: DB leak belonging to an argentine e-commerce is up for"
X Link 2024-02-01T16:32Z [----] followers, [----] engagements
"๐๐ป Gracias @vogelbit #Ciberseguridad #Web3 chate un clavado al mundo de los smart contracts maliciosos en nuestro blog "Drainers: Signing the Crypto Devils Contract" cortesa de @MauroEldritch. Como un mega fan de web3 espero que este blog te ayude a informarte y no caer en trampas digitales https://t.co/TWJIP2QKzr chate un clavado al mundo de los smart contracts maliciosos en nuestro blog "Drainers: Signing the Crypto Devils Contract" cortesa de @MauroEldritch. Como un mega fan de web3 espero que este blog te ayude a informarte y no caer en trampas digitales https://t.co/TWJIP2QKzr"
X Link 2024-02-01T20:00Z [----] followers, [---] engagements
"#Argentina: A la venta un juego de credenciales de correo y [---] archivos confidenciales del Ministerio de Seguridad de la Provincia de Buenos Aires. โ El acceso ya habra sido revocado. #Ciberseguridad #Cibercrimen"
X Link 2024-02-05T13:49Z [----] followers, [--] engagements
"๐ Hackearon a la Intendencia de Flores - Nota en @ObservadorUY donde contamos cmo observamos y documentamos la actividad de un actor que hasta la fecha slo ha atacado a objetivos de #Uruguay. ๐ Link: #Ciberseguridad #Cibercrimen"
X Link 2024-02-14T22:27Z [----] followers, [--] engagements
"#Argentina: Desfiguran el subsitio del Coro Municipal de Trelew con un mensaje anti Israel. #Ciberseguridad #Cibercrimen ๐ New #cybercrime intelligence. #Argentina: Coro Municipal de Trelew was defaced. ๐ #ThreatIntelligence: @chum1ng0 (Gracias). https://t.co/sFGb6N58jC ๐ New #cybercrime intelligence. #Argentina: Coro Municipal de Trelew was defaced. ๐ #ThreatIntelligence: @chum1ng0 (Gracias). https://t.co/sFGb6N58jC"
X Link 2024-02-19T22:34Z [----] followers, [----] engagements
"๐บ Estuve hablando brevemente en @TelemundoUY sobre la Operacin Cronos. ๐๐ป Gracias por invitarme #Ciberseguridad #Cibercrimen #Uruguay"
X Link 2024-02-21T00:25Z [----] followers, [--] engagements
"@Marce_I_P Gracias por mencionarlo Marce Estamos algo atrasados con la carga de novedades porque bsicamente pas de todo. Pero se vienen muchas mejoras este ao : )"
X Link 2024-02-22T12:17Z [----] followers, [--] engagements
""Riding with the Chollimas" debuts in #Seoul South #Korea this May. ๐ด And I have good news: We've got another sample and nearly enough data to write a second chapter soon. #Cybersecurity #APT #Lazarus #DPRK Riding with the Chollimas: Our 100-day quest to profile a North Korean State-Sponsored Threat Actor at @defcon @ReconVillage. #DEFCON31 #Hacking #DPRK #Malware https://t.co/Th6hsqgfGZ Riding with the Chollimas: Our 100-day quest to profile a North Korean State-Sponsored Threat Actor at @defcon @ReconVillage. #DEFCON31 #Hacking #DPRK #Malware https://t.co/Th6hsqgfGZ"
X Link 2024-02-23T18:27Z [----] followers, [----] engagements
"๐ฅ Podran los NFTs tener un rol activo en una cadena de infeccin Le saqu fotos a Leopoldo las hice NFT con una descripcin "maliciosa" y vamos a contarles este experimento en Insomni'Hack #Suiza en Abril. ๐ช Server C2 inmortal por $7 Deme dos. #Ciberseguridad #Web3"
X Link 2024-03-04T14:22Z [----] followers, [--] engagements
"@criminaalmambo Y casi que apostara a que habr una gran cantidad de archivos cuyo nombre empezar con "WhatsApp Image""
X Link 2024-03-06T14:44Z [----] followers, [--] engagements
"#Uruguay: Publican certificados VPN del Correo Uruguayo acompaados por un manual de usuario. #Ciberseguridad #Cibercrimen #Montevideo ๐ New #cybercrime intelligence. #Uruguay: Threat actor shares VPN certificates from Correo Uruguayo. Includes PDF manual with connection instructions. ๐ #ThreatIntelligence: @chum1ng0 (gracias). https://t.co/bLoZ4t8dSu ๐ New #cybercrime intelligence. #Uruguay: Threat actor shares VPN certificates from Correo Uruguayo. Includes PDF manual with connection instructions. ๐ #ThreatIntelligence: @chum1ng0 (gracias). https://t.co/bLoZ4t8dSu"
X Link 2024-03-13T12:49Z [----] followers, [----] engagements
"#Uruguay: A la venta bases de datos y cdigo fuente de Aluminios del Uruguay Agro Terra Agro Oriental Campo Abierto y CIEMSA. ๐ฅท El actor de amenazas indica a NODUM una empresa uruguaya de software como origen de la filtracin. #Ciberseguridad #Cibercrimen #Montevideo ๐ New #cybercrime intelligence. #Uruguay: Threat actor has leaked source code and DBs from five companies: Aluminios del Uruguay Agro Terra Agro Oriental Campo Abierto & CIEMSA. Data was extracted from another company NODUM. ๐ #ThreatIntelligence: @chum1ng0. https://t.co/jwY8NiedjR ๐ New #cybercrime intelligence. #Uruguay:"
X Link 2024-04-12T12:24Z [----] followers, [----] engagements
"Megafiltracin en #Uruguay. Venden cdigo fuente de [--] compaas: Aeromar AFISA ALOY ALUR Ambiental America Software American Chemical Arca Argensun Autoconsultas Avanza Bacardi BD Bebelandia Berkes Biko Bioerix Bromyros COSEM Candrona CCM Celsius Ceramicas Castro Chlorskid Cibeles y "Club de Golf". ๐ฅท Anteriormente el mismo actor public cdigo propietario de Cementos del Plata Aluminios del Uruguay Agro Terra Agro Oriental Campo Abierto CIEMSA Caja Bancaria Centro Oftalmolgico y Clnica Parada siendo el total de vctimas [--]. #Ciberseguridad #Cibercrimen #Montevideo ๐ New #cybercrime intelligence."
X Link 2024-04-15T12:08Z 10.8K followers, 56K engagements
"Just [--] days left until Insomni'Hack #Switzerland ๐ GoldenLocker and I will present "Malicious Fungible Tokens" or how to build an "immortal" C2 server using the blockchain some Ruby code and a golden retriever mastermind. ๐ April 26th. Hope to see all of you there ๐จ๐ข Insomni'hack [----] ๐กSPEAKER mFT: Malicious Fungible Tokens by Mauro Eldritch ๐ Dont miss the opportunity to attend this conference Details and registration: https://t.co/Prie8YweeV #INSO24 #Insomnihack #cybersecurity ๐จ๐ข Insomni'hack [----] ๐กSPEAKER mFT: Malicious Fungible Tokens by Mauro Eldritch ๐ Dont miss the"
X Link 2024-04-15T15:20Z [----] followers, [----] engagements
"#Argentina: Colocan a la venta una nueva versin de la base de datos sustrada al #BCRA. ๐พ La misma contendra [------] entradas (40.000 ms que la versin anterior) y consigna mayormente informacin pblica. #Cibercrimen #Ciberseguridad ๐ New #cybercrime intelligence. #Argentina: Threat actor selling a newer version of the database extracted from Banco Central de la Repblica Argentina. This one contains [-----] entries with mostly publicly available information. ๐ #ThreatIntelligence: @criminaalmambo. https://t.co/VNkMZJiIJf ๐ New #cybercrime intelligence. #Argentina: Threat actor selling a newer"
X Link 2024-05-03T12:07Z [----] followers, [----] engagements
"๐ Ya sali la segunda edicin del newsletter semanal de #MeFiltraron. ๐ฆฆ Felicidades Capys (RFC: Ya es hora de agregar un emoji de carpincho). #Ciberseguridad #Cibercrimen #Argentina #Uruguay"
X Link 2024-05-10T14:14Z [----] followers, [--] engagements
"๐ฆฉ PinkDrainer anuncia su cierre. ๐ท Tras sobrepasar su umbral de 75M en fondos (drenados a ms de [------] vctimas) y con un anuncio en su canal oficial el proyecto alcanz su fin. ๐ Convirtieron la mayora de sus fondos a $DAI anoche. #Ciberseguridad #Web3 #Cibercrimen"
X Link 2024-05-17T12:52Z [----] followers, [--] engagements
"#Uruguay: La Asociacin de Bancarios del Uruguay manifiesta que el Banco Santander minimiz la filtracin de datos de empleados. ๐พ Se tratara de una base de datos con informacin personal de funcionarios locales de Espaa y Chile. #Ciberseguridad #Cibercrimen #Montevideo"
X Link 2024-05-22T12:48Z [----] followers, [--] engagements
"๐ช Here we go. #TyphoonCon #Seoul"
X Link 2024-05-29T23:59Z [----] followers, [---] engagements
"๐ฆฎ Todo listo para Malicious Fungible Tokens. ๐พ Vamos a construir servidores C2 inmortales utilizando NFTs Ruby y un Golden Retriever. #Ciberseguridad #Web3 #C2 #RedTeam #RedTeaming"
X Link 2024-05-30T16:32Z [----] followers, [----] engagements
"#Argentina: El grupo de #ransomware Cl0p anuncia a UNICRED como vctima. #Ciberseguridad #Cibercrimen ๐ New #ransomware intelligence. #Argentina: UNICRED announced by Cl0p. ๐ #ThreatIntelligence: @mbec03. https://t.co/YHTXkiwKIV ๐ New #ransomware intelligence. #Argentina: UNICRED announced by Cl0p. ๐ #ThreatIntelligence: @mbec03. https://t.co/YHTXkiwKIV"
X Link 2024-05-30T18:38Z [----] followers, [----] engagements
"@cyb3113 Gracias Bora"
X Link 2024-06-03T13:04Z [----] followers, [--] engagements
"๐ฐ Los invito a leer Drainers: Firmando un pacto con el Crypto Diablo en @pagedout_zine (pgina 51). ๐ชถ Con #QuetzalTeam nos dedicamos a investigar amenazas #Web3 y esta fue una gran oportunidad para concientizar sobre los contratos inteligentes maliciosos. #Ciberseguridad"
X Link 2024-06-04T17:28Z [----] followers, [----] engagements
"๐ฆฎ After Switzerland and Korea "Malicious Fungible Tokens" has been accepted at @defcon @AdversaryVillag. ๐ดโ Time for a photo shoot session with GoldenLocker to prepare new malicious NFTs for this next chapter. #DEFCON #Web3 #Hacking"
X Link 2024-06-07T17:36Z [----] followers, [----] engagements
"#Argentina: A la venta una DB del sitio TravelSale. ๐พ Contiene [------] registros de clientes con nombre completo email telfono mensajes de soporte llaves de API y passwords hasheados. #Ciberseguridad #Cibercrimen ๐ New #cybercrime intelligence. #Argentina: A threat actor is selling a DB from TravelSales with [------] customer records containing full names emails support requests phone numbers API tokens and hashed passwords. ๐ #ThreatIntelligence: @chum1ng0 (gracias). https://t.co/fdUV8c0eLy ๐ New #cybercrime intelligence. #Argentina: A threat actor is selling a DB from TravelSales with"
X Link 2024-06-20T12:58Z [----] followers, [----] engagements
"@cyb3113 No pienso parar hasta que Crowdstrike haga una estatua gigante de Chococat para la Blackhat. Aunque seguro le ponen un nombre como Charming Cocoa Kitten o algo as"
X Link 2024-07-10T14:39Z [----] followers, [--] engagements
"#Uruguay: A la venta un lote de datos de Desarrollo del Sur. ๐พ Contendra cdigo fuente de aplicaciones web y Android de [--] clientes y archivos de configuracin de servidores afectados. #Ciberseguridad #Cibercrimen ๐ New #cybercrime intelligence. #Uruguay: Threat Actor selling full server dump for Desarrollo del Sur including source code (Web Apps + Android) and configuration files for multiple clients. ๐ #ThreatIntelligence: @chum1ng0. https://t.co/2zJdew5fyV ๐ New #cybercrime intelligence. #Uruguay: Threat Actor selling full server dump for Desarrollo del Sur including source code (Web"
X Link 2024-08-06T12:32Z [----] followers, [----] engagements
"#Uruguay: A la venta accesos a un sitio gubernamental (RDP/VPN/Email) junto con escaneos de pasaportes y documentos nacionales. #Ciberseguridad #Cibercrimen"
X Link 2024-10-17T15:06Z [----] followers, [--] engagements
"#Argentina: el grupo de #Ransomware Brain Cipher anuncia a COTECAL (Cooperativa Telefnica de Calafate) como nueva vctima. ๐พ Habran secuestrado 150GB de informacin confidencial de la compaa. #Ciberseguridad #Cibercrimen"
X Link 2024-11-13T16:57Z [----] followers, [----] engagements
"#Uruguay: el grupo de #Ransomware Bashe elimina el post sobre Botiga. ๐ท El lote de datos fue probablemente vendido. #Ciberseguridad #Cibercrimen ๐ New #ransomware intelligence. #Uruguay: Bashe has deleted their post about Botiga. ๐ #ThreatIntelligence: @AdanZkx. https://t.co/9fqeelZaoe ๐ New #ransomware intelligence. #Uruguay: Bashe has deleted their post about Botiga. ๐ #ThreatIntelligence: @AdanZkx. https://t.co/9fqeelZaoe"
X Link 2024-11-15T12:15Z [----] followers, [----] engagements
"#Uruguay: El grupo de #Ransomware Akira libera un lote de datos secuestrados a Supermercados El Dorado. ๐พ Se tratara de informacin comercial financiera y de empleados. #Ciberseguridad #Cibercrimen #Montevideo"
X Link 2024-11-15T12:37Z [----] followers, [--] engagements
"๐ If you use (or work with) implants and this reader youve probably had a bad experience. โ Its one of the most popular but it works (sometimes partially) with very few applications: all GUI-based and impractical for automation or workflow integration. ๐๐ป Thats why we at DC5411 wrote Sense/Net a Python application to interact with Dangerous Things implants directly from the terminal. It supports [--] different models including NExT and xSIID and allows you to retrieve implant info read and write data. ๐ Link below"
X Link 2025-01-05T15:29Z [----] followers, [--] engagements
"๐ https://quetzal.bitso.com/p/a-phishing-trip https://quetzal.bitso.com/p/a-phishing-trip"
X Link 2025-01-17T20:25Z [----] followers, [---] engagements
"My analysis of the North Korean #malware InvisibleFerret is now live in collaboration with ๐ค Huge thanks to Ekaterina and the team http://ANY.RUN http://ANY.RUN ๐จ #InvisibleFerret is a cross-platform #malware linked to North Korea and often paired with #BeaverTail Read detailed technical analysis of this threat from @MauroEldritch https://t.co/WPxlFoPLIb https://t.co/6OkwWeo13A http://ANY.RUN http://ANY.RUN ๐จ #InvisibleFerret is a cross-platform #malware linked to North Korea and often paired with #BeaverTail Read detailed technical analysis of this threat from @MauroEldritch"
X Link 2025-01-21T14:22Z [----] followers, [----] engagements
"#Argentina: Publican un lote de datos de UPCN Buenos Aires. ๐พ Contiene registros de [------] usuarios con datos personales y vnculos familiares de cada afiliado. #Ciberseguridad #Cibercrimen"
X Link 2025-06-16T13:07Z [----] followers, [----] engagements
"DPRK Fake IT workers thought getting a job with us would be easy. ๐ฅธ We uncovered them and got a close look at their operation. ๐ณ Meet the Wage Moles the latest threat out of Pyongyang in an investigation by our Quetzal Team. ๐ Link below. #WageMole #FamousChollima"
X Link 2025-06-26T18:19Z [----] followers, [----] engagements
"๐ Read more here: https://quetzal.bitso.com/p/interview-with-the-chollima-ii https://quetzal.bitso.com/p/interview-with-the-chollima-ii"
X Link 2025-06-26T18:19Z [----] followers, [---] engagements
"๐ LockSkin: a Ransomware for bioimplants. ๐ Now at BSides Las Vegas"
X Link 2025-08-04T16:58Z [----] followers, [---] engagements
"๐
Can your calendar be abused as C2 ๐ฝ Can replication systems spread malware components ๐ Lets talk about it at the @defcon Data Duplication Village. Because nobody blocks Cloudflare and nobody expects an attack from Google Calendar. ๐ค Today at 15:00 dont miss it"
X Link 2025-08-08T18:27Z [----] followers, [---] engagements
"๐
Can your calendar be abused as C2 ๐ฝ Can replication systems spread malware components ๐ Lets talk about it at the @defcon Data Duplication Village. Because nobody blocks Cloudflare and nobody expects an attack from Google Calendar. ๐ค Today at 15:00 dont miss it"
X Link 2025-08-09T19:12Z [----] followers, [----] engagements
"Join me to dissect North Korean malware at @MalwareVillage at 17:00. ๐พ Well go through samples tactics and a few surprises. ๐ฏ Join the hunt for Otters Ferrets Beavers and Capybaras. Dont miss it"
X Link 2025-08-09T23:05Z [----] followers, [----] engagements
"๐ฅธ New spear-phishing campaign tricks crypto execs posing as CoinMarketCap journalists. ๐ป Attackers use Zoom remote control to steal assets & deploy #malware. โ My first article for Hack Read #Cybercrime #Cybersecurity #Web3 Fake #CoinMarketCap journalist profiles are being used to target crypto execs in a new spear-phishing scam through Zoom interviews. Via @MauroEldritch Read: https://t.co/XUwPxpncTk #CyberSecurity #Crypto #Scam #Fraud #Malware Fake #CoinMarketCap journalist profiles are being used to target crypto execs in a new spear-phishing scam through Zoom interviews. Via"
X Link 2025-08-23T16:04Z [----] followers, [----] engagements
"๐ Were you invited to an important podcast Be careful it could be a trap. ๐พ A new campaign is attempting to distribute AMOS Stealer by disguising it as an installer for platforms like Streamyard and Huddle. We explain it all here on the Quetzal Team blog. #Malware"
X Link 2025-09-17T20:54Z [----] followers, [---] engagements
"๐ Link to the article: https://quetzal.bitso.com/p/todays-host-amos-stealer https://quetzal.bitso.com/p/todays-host-amos-stealer"
X Link 2025-09-17T20:55Z [----] followers, [---] engagements
"#Uruguay: Filtran un lote de datos de la Universidad ORT. ๐พ Contiene [------] registros de estudiantes y profesores consignando nombre completo cdula de identidad domicilio email y fotografa. #Ciberseguridad #Cibercrimen"
X Link 2025-09-30T12:18Z [----] followers, [----] engagements
"See you on May 30-31 in Seoul South Korea for #TyphoonCon where I'll speak about [--] topics: How we discovered the North Korean malware #QRLog (and a teaser about part two). ๐ How to create immortal C2 servers with NFTs of your dog. ๐๐ป See you there #Web3 #DPRK"
X Link 2024-05-23T13:02Z 10.8K followers, [----] engagements
"Meet "Mateo" and "Alfredo" two young #Lazarus agents who thought it was a good idea to steal someone else's ID and resume to try to get a job with us. ๐ชถ We recorded them and found interesting data on how they operate. Read our article on the #QuetzalTeam Blog below"
X Link 2025-10-30T19:22Z 10.8K followers, 69.5K engagements
"๐ Read the full article here: ๐ชถ https://quetzal.bitso.com/p/interview-with-the-chollima-iii https://quetzal.bitso.com/p/interview-with-the-chollima-iii"
X Link 2025-10-30T19:23Z 10.3K followers, [----] engagements
"Meet "Julin" another #Lazarus agent who thought it was a good idea to approach us with a stolen identity. ๐ง He forgot to switch accounts and joined the call as "Arthur". Read our article below. We are the #QuetzalTeam we put the "Famous" in "Famous Chollima""
X Link 2025-11-03T20:44Z 10.8K followers, 14.6K engagements
"๐ Read the full article here: ๐ชถ https://quetzal.bitso.com/p/interview-with-the-chollima-iv https://quetzal.bitso.com/p/interview-with-the-chollima-iv"
X Link 2025-11-03T20:44Z 10.4K followers, [----] engagements
"Meet "Sebastian" another #Lazarus agent who approached us with a stolen identity. ๐ง He then tried recruiting me on WhatsApp to work at Lazarus LTD. We recorded everything. Read our article below. We are the #QuetzalTeam we put the "Famous" in "Famous Chollima""
X Link 2025-11-07T15:59Z 10.8K followers, 41.4K engagements
"โ๐ป Article: https://quetzal.bitso.com/p/interview-with-the-chollima-v https://quetzal.bitso.com/p/interview-with-the-chollima-v"
X Link 2025-11-07T16:00Z 10.4K followers, [----] engagements
"Meet "Jess Sebastin" another #Lazarus agent who approached us with a stolen identity. ๐ง We recorded everything and became friends on Discord and other socials. Read our article below. We are the #QuetzalTeam we put the "Famous" in "Famous Chollima""
X Link 2025-11-10T19:09Z 10.8K followers, 11.5K engagements
"โ๐ป Article: https://quetzal.bitso.com/p/interview-with-the-chollima-vi https://quetzal.bitso.com/p/interview-with-the-chollima-vi"
X Link 2025-11-10T19:09Z 10.4K followers, [---] engagements
"Meet Aaron AKA Blaze a #Lazarus recruiter. ๐ต He offered 35% of a salary if we let his operators use our laptops "to work in" (infiltrate) Western companies. We gave him ANYRUN sandboxes recording everything they did. Full article below. Full disclosure on Dec 4"
X Link 2025-12-02T15:16Z 10.8K followers, 10K engagements
"๐ค This work was a collaboration between: ANY RUN (@anyrun_app) providing the sandbox and analysis platform ๐ BlockOSINT (@0xfigo) handling initial contact with the TAs ๐ค BCA LTD (@BirminghamCyber) leading the threat intelligence analysis ๐ https://thehackernews.com/2025/12/researchers-capture-lazarus-apts-remote.html https://thehackernews.com/2025/12/researchers-capture-lazarus-apts-remote.html https://thehackernews.com/2025/12/researchers-capture-lazarus-apts-remote.html https://thehackernews.com/2025/12/researchers-capture-lazarus-apts-remote.html"
X Link 2025-12-02T15:16Z 10.7K followers, [----] engagements
"@unpacker Wow thank you for taking the time to draw this infographic about our research Really appreciate all the effort put in this piece. Thank you ๐ค"
X Link 2025-12-03T03:52Z 10.7K followers, [---] engagements
"๐ค This work was a collaboration between: ANY RUN (@anyrun_app) providing the sandbox and analysis platform ๐ BlockOSINT (@0xfigo) handling initial contact with the TAs ๐ค BCA LTD (@BirminghamCyber) leading the threat intelligence analysis ๐ https://any.run/cybersecurity-blog/lazarus-group-it-workers-investigation/ https://any.run/cybersecurity-blog/lazarus-group-it-workers-investigation/"
X Link 2025-12-04T12:52Z 10.7K followers, [---] engagements
"@Pop_Collapse Could you please elaborate I'm open to share intel with you in case we can confirm you were attacked by the same Threat Actors. Feel free to DM me"
X Link 2026-01-11T20:38Z 10.8K followers, [---] engagements
"Yes thats me. ๐ช Youre probably wondering how I ended up in a Zoom call with Mexican President Claudia Sheinbaum and her generals being briefed about a hostage situation at [--] AM. Turns out it was a #deepfake campaign. I wrote about it on the Quetzal Team blog https://twitter.com/i/web/status/2021611108713250905 https://twitter.com/i/web/status/2021611108713250905"
X Link 2026-02-11T15:43Z 10.8K followers, [----] engagements
"Livestreaming from a #Lazarus laptop farm. ๐ผ For the first time ever we recorded DPRKs Famous Chollima full attack cycle: interviews internal chats every tool they use and every single click they made. Get ready for tons of raw footage. Full article via ANYRUN"
X Link 2025-12-04T12:50Z 10.8K followers, [----] engagements
"๐ผ Por primera vez en la historia grabamos en video todo el ciclo de ataque de Famous Chollima (#Lazarus #DPRK) mostrando material nico: ๐จ Chats ๐งฐ Herramientas ๐ง Tcticas ๐ y potenciales vctimas. En esta Edicin Especial en espaol contamos todo con videos includos"
X Link 2025-12-05T14:10Z 10.8K followers, 12.1K engagements
"Our research on Famous Chollima was featured in HackerRU #DPRK #Lazarus https://xakep.ru/2025/12/09/apt-machine/ https://xakep.ru/2025/12/09/apt-machine/"
X Link 2025-12-10T12:53Z 10.8K followers, [---] engagements
"RT @blueteamsec1: Interview with the Chollima V #cyber #threathunting #infosec http://dlvr.it/TPmJgw http://dlvr.it/TPmJgw"
X Link 2025-12-11T20:07Z 10.8K followers, [--] engagements
"RT @akaclandestine: How We Caught Lazarus's IT Workers Scheme Live on Camera https://any.run/cybersecurity-blog/lazarus-group-it-workers-investigation/ https://any.run/cybersecurity-blog/lazarus-group-it-workers-investigation/"
X Link 2025-12-12T16:20Z 10.8K followers, [--] engagements
"#Argentina: el grupo de #ransomware SAFEPAY anuncia a AYSA (Agua y Saneamientos Argentinos S.A.) como nueva vctima"
X Link 2025-12-15T14:33Z 10.8K followers, [----] engagements
"RT @anyrun_app: ๐ As [----] wraps up we want to give a shout-out to the researchers and analysts who helped push the cybersecurity community"
X Link 2025-12-22T14:00Z 10.8K followers, [--] engagements
"RT @MauroEldritch: Livestreaming from a #Lazarus laptop farm. ๐ผ For the first time ever we recorded DPRKs Famous Chollima full attack"
X Link 2025-12-22T20:33Z 10.8K followers, [--] engagements
"RT @MauroEldritch: ๐ผ Por primera vez en la historia grabamos en video todo el ciclo de ataque de Famous Chollima (#Lazarus #DPRK) mostrando"
X Link 2025-12-29T16:11Z 10.8K followers, [--] engagements
"RT @tamul_security: ๐ Como parte de nuestra colaboracin con @BirminghamCyber utilizamos su plataforma Sheriff para monitorear de forma c"
X Link 2026-01-07T16:09Z 10.8K followers, [--] engagements
"RT @tamul_security: ๐จ Estas son las primeras filtraciones del ao obtenidas a partir de nuestra colaboracin con @BirminghamCyber y su pla"
X Link 2026-01-26T14:39Z 10.8K followers, [--] engagements
"Our talk Smile youre on camera Livestreaming from a North Korean IT workers laptop farm will be the opening talk at InsomniHack. Join us to learn how we joined the Famous Chollima ranks and recorded their every move from the inside. Dont miss it #DPRK #Lazarus https://twitter.com/i/web/status/2016885465236775074 https://twitter.com/i/web/status/2016885465236775074"
X Link 2026-01-29T14:45Z 10.8K followers, [----] engagements
"๐ค This work was possible thanks to our friends at @0xfigo and @anyrun_app Find out more about InsomniHack here: https://insomnihack.ch/talks/smile-youre-on-camera-livestreaming-from-north-koreas-it-workers-laptop-farm/ https://insomnihack.ch/talks/smile-youre-on-camera-livestreaming-from-north-koreas-it-workers-laptop-farm/"
X Link 2026-01-29T14:48Z 10.8K followers, [---] engagements
"RT @north_scan: Excited to share that were presenting our research at InsomniHack ๐ค If you want the full deep dive join us on March [--] a"
X Link 2026-01-29T15:10Z 10.8K followers, [--] engagements
"RT @BirminghamCyber: Smile youre on camera Livestreaming from a North Korean IT workers laptop farm will be the opening talk at In"
X Link 2026-01-29T15:20Z 10.8K followers, [--] engagements
"RT @teamcapybara_: ๐Alguien dijo #Ransomware Les traemos de la mano de @DC54111 un nuevo resumen de filtraciones el ltimo de enero"
X Link 2026-01-30T16:23Z 10.8K followers, [--] engagements
"RT @DC54111: ๐ "Ransomware para TempleOS": Cero resultados. Vamos a arreglar eso. Nos propusimos crear el primer #ransomware escrito en Ho"
X Link 2026-02-03T20:35Z 10.8K followers, [--] engagements
"RT @DC54111: ๐ #Malware para TempleOS Nos inspiramos en Chaos Ransomware y decidimos crear nuestro propia prueba de concepto para el si"
X Link 2026-02-04T14:36Z 10.8K followers, [--] engagements
"๐ฅฝ Al Jefe de Producto le encant la idea de DuckHuntVR"
X Link 2026-02-05T16:10Z 10.8K followers, [---] engagements
"RT @1ns0mn1h4ck: Are you interested how remote IT operations works in North Korea In this exclusive talk @0xFigo & Heiner Garca Prez ex"
X Link 2026-02-10T16:37Z 10.8K followers, [--] engagements
"โ Article: https://quetzal.bitso.com/p/hostage-situation https://quetzal.bitso.com/p/hostage-situation"
X Link 2026-02-11T15:44Z 10.8K followers, [---] engagements
"@belair6909 @Bitso Gracias por compartir"
X Link 2026-02-13T17:47Z 10.8K followers, [--] engagements
"@gustavojfe @belair6909 @Bitso Gracias me alegro que te haya gustado Saludos"
X Link 2026-02-13T17:47Z 10.8K followers, [--] engagements
"@belair6909 @gustavojfe @Bitso @LaCasaDeSatoshi Gracias Cuando gusten ser un placer ๐ค"
X Link 2026-02-13T23:29Z 10.8K followers, [--] engagements
"Our talk Smile youre on camera Livestreaming from a North Korean IT workers laptop farm will be the opening talk at InsomniHack. Join us to learn how we joined the Famous Chollima ranks and recorded their every move from the inside. Dont miss it #DPRK #Lazarus https://twitter.com/i/web/status/2016885465236775074 https://twitter.com/i/web/status/2016885465236775074"
X Link 2026-01-29T14:45Z 10.8K followers, [----] engagements
"Meet "Mateo" and "Alfredo" two young #Lazarus agents who thought it was a good idea to steal someone else's ID and resume to try to get a job with us. ๐ชถ We recorded them and found interesting data on how they operate. Read our article on the #QuetzalTeam Blog below"
X Link 2025-10-30T19:22Z 10.8K followers, 69.5K engagements
"Meet "Sebastian" another #Lazarus agent who approached us with a stolen identity. ๐ง He then tried recruiting me on WhatsApp to work at Lazarus LTD. We recorded everything. Read our article below. We are the #QuetzalTeam we put the "Famous" in "Famous Chollima""
X Link 2025-11-07T15:59Z 10.8K followers, 41.4K engagements
"#Argentina: Publican una base de datos de usuarios de Tarjeta Naranja. ๐พ Contendra [-------] registros detallando nombre completo telfono celular direccin nmero de tarjeta y DNI. #Ciberseguridad #Cibercrimen ๐ New #cybercrime intelligence. #Argentina: A threat actor published a database of Tarjeta Naranja cardholders with [------] rows detailing full name mobile phone number address city card number and DNI. ๐ #ThreatIntelligence: @criminaalmambo. https://t.co/BmIXd2TQQq ๐ New #cybercrime intelligence. #Argentina: A threat actor published a database of Tarjeta Naranja cardholders with 200000"
X Link 2024-07-26T14:07Z 10.8K followers, 108.9K engagements
"๐ New #cybercrime intelligence. #Argentina: A threat actor published a database of Tarjeta Naranja cardholders with [------] rows detailing full name mobile phone number address city card number and DNI. ๐ #ThreatIntelligence: @criminaalmambo"
X Link 2024-07-26T14:06Z 12K followers, 108K engagements
"Publican logs de stealers con unas [------] credenciales de usuarios argentinos. ๐พ Contienen ms de [---] credenciales bancarias y varios accesos a fintechs y plataformas de gobierno. #Ciberseguridad #Cibercrimen #Argentina"
X Link 2023-05-02T13:42Z 10.8K followers, 51.2K engagements
"๐ช #ZoeLeaks: Filtracin de datos de compradores de #ZoeCash. ๐พ [----] archivos con contratos inversiones documentos bancarios fiscales de identidad y selfies de verificacin. ๐บ Abarca clientes de y . #ZoeGate #ZoeCrash CC: @BetoMendeIeiv + @Beto_MendeIeiev"
X Link 2022-02-13T12:00Z 10.8K followers, [---] engagements
"El grupo de #ransomware Medusa publica a la CNV (Comisin Nacional de Valores) como nueva vctima. ๐พ [---] TB de documentos y bases de datos sern filtrados si no se abona un rescate de USD [-------] en una semana. #Ciberseguridad #Argentina #Cibercrimen ๐ New #ransomware incident. #Argentina: CNV (Comisin Nacional de Valores) hit by Medusa. ๐ Source: #DarkFeed #ThreatIntelligence #Cybersecurity https://t.co/vsV2FzEOYo ๐ New #ransomware incident. #Argentina: CNV (Comisin Nacional de Valores) hit by Medusa. ๐ Source: #DarkFeed #ThreatIntelligence #Cybersecurity https://t.co/vsV2FzEOYo"
X Link 2023-06-11T13:18Z 10.8K followers, 135.2K engagements
"๐ New #ransomware incident. #Argentina: CNV (Comisin Nacional de Valores) hit by Medusa. ๐ Source: #DarkFeed #ThreatIntelligence #Cybersecurity"
X Link 2023-06-11T13:13Z 12K followers, 208.2K engagements
"๐ดโ Cartuchos pirata: #Hacking & Game Boys. Hace exactamente [--] aos mi pap y yo compramos cartuchos pirata para #GameBoy en una feria en Brasil. Los encontr nuevamente en una mudanza y los etiquet como "Verde" y "Rojo" pero desconoca su contenido. 01/13"
X Link 2023-12-27T21:56Z 10.8K followers, 47.5K engagements
"Una filtracin masiva del Hospital Peditrico #Garrahan fue puesta a la venta en un foro especializado. ๐ฅ El #leak contiene unos 5GB de bases de datos SQL con informacin de pacientes y tratamientos. #Ciberseguridad #Infosec #Seguridad #Cibercrimen #Argentina #filtraciones"
X Link 2022-07-12T17:31Z 10.8K followers, [---] engagements
"#Argentina: A la venta una base de datos de socios del Racing Club de Avellaneda. ๐พ Contiene emails celulares DNIs y domicilios de socios incluyendo menores de edad. #Ciberseguridad #Cibercrimen ๐ New #cybercrime intelligence: #Argentina: A threat actor is selling a database belonging to Racing Club containing [------] entries with emails DNI mobile phone numbers age and address. ๐ #ThreatIntelligence: @chum1ng0. https://t.co/GxARGBaedU ๐ New #cybercrime intelligence: #Argentina: A threat actor is selling a database belonging to Racing Club containing [------] entries with emails DNI mobile"
X Link 2024-08-22T13:03Z 10.8K followers, 174.5K engagements
"๐ New #cybercrime intelligence: #Argentina: A threat actor is selling a database belonging to Racing Club containing [------] entries with emails DNI mobile phone numbers age and address. ๐ #ThreatIntelligence: @chum1ng0"
X Link 2024-08-22T12:59Z 12K followers, 185.4K engagements
"Un usuario logra acceder al sistema de puntos y recompensas de una cadena de heladeras y ofrece productos gratis a quienes puedan reclamarlos. ๐ฆ Vengan al lado oscuro tenemos helado. #Ciberseguridad #Argentina #Cibercrimen"
X Link 2023-04-06T13:40Z 10.8K followers, 35.9K engagements
"Publican una base de datos con [--] millones de registros de ciudadanos argentinos aparentemente de un padrn electoral. ๐น Tambin publican accesos a [---] cmaras de #Argentina comprometidas con una vulnerabilidad de hace [--] aos (CVE-2017-7921). #Ciberseguridad #Cibercrimen"
X Link 2023-05-24T12:46Z 10.8K followers, 45.6K engagements
"#Argentina: A la venta ms de [------] accesos al sistema Mi Argentina que permitiran acceder a documentos oficiales de las vctimas como licencias de conducir ARTs estado de vacunacin y ms. #Ciberseguridad #Cibercrimen ๐ New #cybercrime intelligence. #Argentina: A threat actor is selling 31k credentials for Mi Argentina granting access to victims' driving licenses vaccination records and other government-issued documents. ๐ #ThreatIntelligence: @criminaalmambo (Gracias). https://t.co/egmMCqnyyF ๐ New #cybercrime intelligence. #Argentina: A threat actor is selling 31k credentials for Mi"
X Link 2024-01-27T20:04Z 10.8K followers, 37.1K engagements
"๐ New #cybercrime intelligence. #Argentina: A threat actor is selling 31k credentials for Mi Argentina granting access to victims' driving licenses vaccination records and other government-issued documents. ๐ #ThreatIntelligence: @criminaalmambo (Gracias)"
X Link 2024-01-27T20:02Z 12K followers, 74.5K engagements
"Un usuario coloca a la venta un acceso al panel de administracin de un importante e-commerce. ๐ Las credenciales - a la venta desde Diciembre - permiten generar cdigos de descuento alterar precios y listar compras realizadas en la plataforma. #Argentina #Ciberseguridad"
X Link 2023-03-07T12:08Z 10.8K followers, 39.4K engagements
"Publican logs de stealers con ms de [----] credenciales de gobierno de #Argentina. ๐ Entre los dominios afectados estn AFIP Anses y Polica de la Ciudad entre otros. ๐ช Tambin se exponen [--] accesos de cuentas o dominios militares. #Ciberseguridad #Cibercrimen"
X Link 2023-05-18T12:39Z 10.8K followers, 43.1K engagements
"Una filtracin del Ministerio de Educacin (GCBA) se encuentra disponible gratuitamente en un foro especializado. ๐ง Contiene [-----] direcciones de email de alumnos profesores y externos como la firma de seguridad ESET. #Argentina #Ciberseguridad #DataBreach #Leak"
X Link 2022-08-22T12:50Z 10.8K followers, [---] engagements
"#Argentina: El actor que rob [---] millones de licencias cre un Bot para consultarlas individualmente. ๐ชช Permite una consulta gratuita. #Ciberseguridad #Cibercrimen ๐ New #cybercrime intelligence. #Argentina: Threat actor who stole [---] M driving licenses has launched a Bot to retrieve them individually. First query is free then it asks for payment. https://t.co/87nDA6XuLI ๐ New #cybercrime intelligence. #Argentina: Threat actor who stole [---] M driving licenses has launched a Bot to retrieve them individually. First query is free then it asks for payment. https://t.co/87nDA6XuLI"
X Link 2024-04-28T14:14Z 10.8K followers, 37.2K engagements
"๐ New #cybercrime intelligence. #Argentina: Threat actor who stole [---] M driving licenses has launched a Bot to retrieve them individually. First query is free then it asks for payment"
X Link 2024-04-28T14:12Z 12K followers, 304.6K engagements
"#Argentina: venden [-------] estudios mdicos en lo que sera la filtracin de datos mdicos ms grande del pas y probablemente de Latinoamrica. ๐ฅ Pertenecen a [--] clnicas y sanatorios privados y fueron obtenidos a partir de un ataque de cadena de suministros a un proveedor InformeMedico. ๐ฉป El lote pareciera contener radiografas tomografas ecografas anlisis de laboratorio y otros estudios todos con informacin personal de pacientes y profesionales. ๐ผ El ataque fue realizado por un grupo de Data Extortion no fue #ransomware. #Ciberseguridad #Cibercrimen ๐ New #cybercrime intelligence. #Argentina:"
X Link 2025-04-04T13:09Z 10.8K followers, 24.2K engagements
"๐ New #cybercrime intelligence. #Argentina: Threat Actor is selling [------] medical records stolen from [--] clinics following a supply chain attack on InformeMedico. ๐ #ThreatIntelligence: criminaalmambo & @teamcapybara_. https://sheriff.birminghamcyberarms.co.uk/alertid=166 https://sheriff.birminghamcyberarms.co.uk/alertid=166"
X Link 2025-04-04T12:50Z 12K followers, 30.5K engagements
"Publican una combolist con ms de [-------] credenciales de #Argentina: [----] de mbitos gubernamentales militares y educativos. ๐พ Afecta a [---] dominios incluyendo Sedronar Migraciones BCRA Senado FFSS FFAA y Renaper entre muchos otros. #Ciberseguridad #Cibercrimen"
X Link 2023-05-22T12:48Z 10.8K followers, 25.2K engagements
"Megafiltracin en #Uruguay. Venden cdigo fuente de [--] compaas: Aeromar AFISA ALOY ALUR Ambiental America Software American Chemical Arca Argensun Autoconsultas Avanza Bacardi BD Bebelandia Berkes Biko Bioerix Bromyros COSEM Candrona CCM Celsius Ceramicas Castro Chlorskid Cibeles y "Club de Golf". ๐ฅท Anteriormente el mismo actor public cdigo propietario de Cementos del Plata Aluminios del Uruguay Agro Terra Agro Oriental Campo Abierto CIEMSA Caja Bancaria Centro Oftalmolgico y Clnica Parada siendo el total de vctimas [--]. #Ciberseguridad #Cibercrimen #Montevideo ๐ New #cybercrime intelligence."
X Link 2024-04-15T12:08Z 10.8K followers, 56K engagements
"๐ New #cybercrime intelligence. #Uruguay: Threat actor has leaked source code and DBs from [--] companies. Data was extracted from a software company NODUM. ๐ #ThreatIntelligence: @chum1ng0"
X Link 2024-04-15T12:06Z 12K followers, 60.9K engagements
"Publican combolist con [----] credenciales de gobierno de #Argentina. ๐พ Afecta a [---] dominios incluyendo ANMAT Municipios Fiscalas Polica Gendarmera Prefectura Senado Legislatura y Ministerios entre muchos otros. #Ciberseguridad #Cibercrimen"
X Link 2023-05-09T12:53Z 10.8K followers, 33.2K engagements
"๐ฑ @RugDocIO es una importante herramienta de #seguridad para auditar contratos inteligentes. ๐ช Segn su criterio tcnico #ZoeCash recibe la peor calificacin de seguridad disponible. CC: @BetoMendeleiev_ #ZoeLeaks #ZoeGate #ZoeCrash #Ciberseguridad #SmartContracts ๐ช #ZoeLeaks: Filtracin de datos de compradores de #ZoeCash. ๐พ [----] archivos con contratos inversiones documentos bancarios fiscales de identidad y selfies de verificacin. ๐บ Abarca clientes de y . #ZoeGate #ZoeCrash CC: @BetoMendeIeiv + @Beto_MendeIeiev https://t.co/bocMzbgnf6 ๐ช #ZoeLeaks: Filtracin de datos de compradores de"
X Link 2022-02-13T22:08Z 10.8K followers, [---] engagements
"Un usuario vende una base de datos del difunto exchange SeSocio(.)com. ๐พ Contendra [-------] registros de usuarios con su informacin fiscal bancaria y personal (DNI email telfono domicilio) y de sus wallets (incluyendo claves privadas). #Ciberseguridad #Argentina"
X Link 2023-03-13T12:18Z 10.8K followers, 23.8K engagements
"Mi investigacin sobre QRLog va a publicarse en la legendaria revista Phrack casi tan antigua como el internet. ๐ค Llegu. #Ciberseguridad #Cibercrimen #DPRK #Malware"
X Link 2024-06-03T01:53Z 10.8K followers, [----] engagements
"#Argentina: publican [-------] fotografas oficiales extradas del RENAPER. ๐ Cada foto referencia el DNI al que corresponde. #Ciberseguridad #Cibercrimen ๐ New #cybercrime intelligence. #Argentina: Threat actor shares 116k official face photographs used in passports and IDs extracted from RENAPER. https://t.co/tbpKIa8bpH ๐ New #cybercrime intelligence. #Argentina: Threat actor shares 116k official face photographs used in passports and IDs extracted from RENAPER. https://t.co/tbpKIa8bpH"
X Link 2024-04-01T19:38Z 10.8K followers, 26K engagements
"๐ New #cybercrime intelligence. #Argentina: Threat actor shares 116k official face photographs used in passports and IDs extracted from RENAPER"
X Link 2024-04-01T19:34Z 12K followers, 915K engagements
"Meet "Julin" another #Lazarus agent who thought it was a good idea to approach us with a stolen identity. ๐ง He forgot to switch accounts and joined the call as "Arthur". Read our article below. We are the #QuetzalTeam we put the "Famous" in "Famous Chollima""
X Link 2025-11-03T20:44Z 10.8K followers, 14.6K engagements
"๐บ En mi hotel si sintonizs el canal interno de publicidad a la [--] AM podes ver el momento exacto en que la transmisin termina unos servidores XAMPP y MySQL se reinician y mis pensamientos intrusivos comienzan"
X Link 2024-10-08T15:42Z 10.8K followers, [----] engagements
"Un usuario vende accesos al servidor de correo electrnico de la Polica de Crdoba #Argentina. ๐ Tambin surge una combolist con [---] credenciales de gobierno incluyendo: BCRA Municipios INTA INDEC MEcon Senasa y Produccin entre otros. #Ciberseguridad #Cibercrimen"
X Link 2023-05-15T13:20Z 10.8K followers, 48.3K engagements
"๐ช Un actor de amenazas afirma tener acceso a los sistemas del Ejrcito Argentino. ๐ฎ Otro actor ofrece [--] GB de data de la Polica de la Ciudad. Seran [----] documentos de la Direccin Investigacin del #Cibercrimen. ๐ฐ Ambos a la venta en un foro especializado. #Argentina"
X Link 2022-09-30T13:15Z 10.8K followers, [---] engagements
"Publican combolist con [------] credenciales de #Argentina. ๐พ Contiene [--] accesos bancarios [---] acadmicos y [---] gubernamentales (AFIP Comisin Nacional de Energa Nuclear ANMAT Fiscalas Policas CONICET y Ministerios). ๐ค Intel: @AdanZkx #Ciberseguridad #Cibercrimen"
X Link 2023-05-04T12:21Z 10.8K followers, 25.8K engagements
"Publican una filtracin de #Montevideo Portal que contendra [------] celulares [------] emails y el volcado de [--] casillas con adjuntos sensibles. ๐พ La muestra compartida expone recibos de BPS OSE Uber y Cdulas de identidad de menores. #Uruguay #Ciberseguridad 1/2"
X Link 2023-03-30T15:09Z 10.8K followers, 42.3K engagements
"#Argentina: A la venta base de datos de Tarjeta Naranja. ๐พ Contiene domicilio telfono e informacin completa de tarjetas. ๐ Inteligencia: @larm182luis. #Ciberseguridad #Cibercrimen ๐ New #cybercrime intelligence. #Argentina: Threat actor is selling a database containing credit card information of Tarjeta Naranja cardholders. ๐ Intel: @larm182luis (gracias). ๐ค Stay informed with #Sheriff for the latest #ThreatIntelligence insights. https://t.co/RAYg26cYYK ๐ New #cybercrime intelligence. #Argentina: Threat actor is selling a database containing credit card information of Tarjeta Naranja"
X Link 2023-07-04T13:10Z 10.8K followers, 25.5K engagements
"๐ New #cybercrime intelligence. #Argentina: Threat actor is selling a database containing credit card information of Tarjeta Naranja cardholders. ๐ Intel: @larm182luis (gracias). ๐ค Stay informed with #Sheriff for the latest #ThreatIntelligence insights"
X Link 2023-07-04T13:08Z 12K followers, 89K engagements
"Un usuario publica una combolist con casi [-------] credenciales de usuarios argentinos. ๐ [--] pertenecen a dominios militares (mil) [-----] a dominios educativos (edu) y [-----] a dominios de gobierno (gob/gov). ๐ค Intel: @AdanZkx. #Argentina #Ciberseguridad #Cibercrimen"
X Link 2023-04-11T12:35Z 10.8K followers, 24.6K engagements
"#Uruguay: los bots de un candidato comenzaron a fallar en cadena durante una transmisin. ๐ค Kegagalan bot coba lagi #Montevideo"
X Link 2024-10-20T16:45Z 10.8K followers, [----] engagements
"Meet "Jess Sebastin" another #Lazarus agent who approached us with a stolen identity. ๐ง We recorded everything and became friends on Discord and other socials. Read our article below. We are the #QuetzalTeam we put the "Famous" in "Famous Chollima""
X Link 2025-11-10T19:09Z 10.8K followers, 11.5K engagements
"#Argentina: Venden [--] millones de licencias de conducir. ๐พ El lote (1.2TB) que incluye licencias del Presidente Ministros y famosos consigna datos como firma tipo de sangre restricciones del conductor direccin y ms. #Ciberseguridad #Cibercrimen ๐ New #cybercrime intelligence. #Argentina: Threat actor selling 5.7M (1.2 TB) driving licences extracted from the DNRPA (Direccin Nacional de Registro de Propiedad del Automotor). Shared sample includes licenses belonging to the President Ministers and celebrities. https://t.co/ACW0ebwixd ๐ New #cybercrime intelligence. #Argentina: Threat actor"
X Link 2024-04-16T14:33Z 10.8K followers, 20.6K engagements
"๐ New #cybercrime intelligence. #Argentina: Threat actor selling 5.7M (1.2 TB) driving licences extracted from the DNRPA (Direccin Nacional de Registro de Propiedad del Automotor). Shared sample includes licenses belonging to the President Ministers and celebrities"
X Link 2024-04-16T14:33Z 12K followers, 76.6K engagements
"๐พ Surgen nuevos logs con credenciales robadas a usuarios de #Uruguay y #Argentina. [--] credenciales: OSE ANV BROU RedPagos MiDinero Gur Ceibal BPS OCA etc. [---] credenciales: Polica de la Ciudad YPF SUBE MJyS CABA etc. #Ciberseguridad #Cibercrimen"
X Link 2023-05-25T12:20Z 10.8K followers, 26.1K engagements
"Un usuario publica un lote de [--] DNIs argentinos en un foro especializado. ๐ฐ Sostiene tener una cantidad mayor disponible a la venta. #Argentina #Ciberseguridad #Cibercrimen #RENAPER"
X Link 2023-02-02T13:42Z 10.8K followers, 25K engagements
"#Argentina Un mismo actor publica tres bases de datos: Aerolneas Argentinas NaranjaX y Movistar Argentina. Contienen nombres completos telfonos celulares domicilios y DNIs. #Ciberseguridad #Cibercrimen ๐ New #cybercrime intelligence. #Argentina: Threat Actor shared databases for three companies: Aerolneas Argentinas NaranjaX and Movistar containing clients' full names mobile phone numbers addresses and DNIs. ๐ #ThreatIntelligence: @criminaalmambo (Gracias). https://t.co/6MFOqf1iRq ๐ New #cybercrime intelligence. #Argentina: Threat Actor shared databases for three companies: Aerolneas"
X Link 2024-02-20T12:32Z 10.8K followers, 10.6K engagements
"๐ New #cybercrime intelligence. #Argentina: Threat Actor shared databases for three companies: Aerolneas Argentinas NaranjaX and Movistar containing clients' full names mobile phone numbers addresses and DNIs. ๐ #ThreatIntelligence: @criminaalmambo (Gracias)"
X Link 2024-02-20T12:29Z 12K followers, 30.1K engagements
"#Argentina: Actor que filtr [---] millones de licencias de conducir publica un comunicado. ๐ฃ "Todo lo que podemos hacer es reirnos. Se estn burlando de ustedes cuando dicen que no se comprometi informacin sensible .". #Ciberseguridad #Cibercrimen ๐ New #cybercrime intelligence. #Argentina: Threat actor selling the 5.7M driving licences shared a statement. ๐ฃ "All we can do is laugh. They are straight up clowning y'all saying sensitive data ain't compromised .". https://t.co/aacfDmK9yx ๐ New #cybercrime intelligence. #Argentina: Threat actor selling the 5.7M driving licences shared a"
X Link 2024-04-16T23:12Z 10.8K followers, 13.2K engagements
"๐ New #cybercrime intelligence. #Argentina: Threat actor selling the 5.7M driving licences shared a statement. ๐ฃ "All we can do is laugh. They are straight up clowning y'all saying sensitive data ain't compromised .""
X Link 2024-04-16T23:07Z 12K followers, 28.6K engagements
"Publican logs con [--] credenciales de devs del Gobierno. ๐พ Afecta a sistemas internos como Portainer Nagios Matomo Jenkins Git y SSO de entornos de QA y Lab de Innovacin y Anses. ๐ผ Perteneceran a contratistas de Leafnoise. #Ciberseguridad #Cibercrimen #Argentina"
X Link 2023-05-23T12:48Z 10.8K followers, 13K engagements
"#Argentina: A la venta una base de datos de socios del Club Atltico Vlez Sarsfield. ๐พ Contiene [-------] registros con emails celulares DNIs y domicilios de socios. #Ciberseguridad #Cibercrimen ๐ New #cybercrime intelligence. #Argentina: Threat actor selling a database from Club Vlez Sarsfield containing [------] entries with DNI full name address cellphone number and email. ๐ #ThreatIntelligence: @mbec03. https://t.co/WLCRVRijlf ๐ New #cybercrime intelligence. #Argentina: Threat actor selling a database from Club Vlez Sarsfield containing [------] entries with DNI full name address cellphone"
X Link 2024-09-18T13:12Z 10.8K followers, 24.2K engagements
"๐ New #cybercrime intelligence. #Argentina: Threat actor selling a database from Club Vlez Sarsfield containing [------] entries with DNI full name address cellphone number and email. ๐ #ThreatIntelligence: @mbec03"
X Link 2024-09-18T13:05Z 12K followers, 35.8K engagements
"#Argentina: Publican 82.000+ credenciales de usuarios de AFIP obtenidas a partir de logs de Stealers. #Ciberseguridad #Cibercrimen ๐ New #cybercrime intelligence. #Argentina: 82k+ credentials belonging to AFIP (Administracin Federal de Ingresos Pblicos) users were shared. ๐ฆ Allegedly parsed from stealer logs. AFIP was not compromised. ๐ #ThreatIntelligence: @criminaalmambo (Gracias). https://t.co/FjD2hKZj5L ๐ New #cybercrime intelligence. #Argentina: 82k+ credentials belonging to AFIP (Administracin Federal de Ingresos Pblicos) users were shared. ๐ฆ Allegedly parsed from stealer logs."
X Link 2024-02-13T13:36Z 10.8K followers, 21.3K engagements
"๐ New #cybercrime intelligence. #Argentina: 82k+ credentials belonging to AFIP (Administracin Federal de Ingresos Pblicos) users were shared. ๐ฆ Allegedly parsed from stealer logs. AFIP was not compromised. ๐ #ThreatIntelligence: @criminaalmambo (Gracias)"
X Link 2024-02-13T13:35Z 12K followers, 123.7K engagements
"๐ Escrib un artculo para la revista @phrack y ya est disponible en lnea. Cmo fue la diseccin del malware norcoreano QRLog paso a paso y da a da como un diario. โ Eldritchs Quetzals Chollimas. #Ciberseguridad #DPRK #Malware"
X Link 2024-08-19T23:55Z 10.8K followers, 18.3K engagements
"El grupo de #Ransomware #Lockbit anuncia a #OSDE (red de servicios mdicos) como su nueva vctima. ๐ฐ El lote de informacin se vende a [-------] dlares. #Argentina #Ciberseguridad #Cibercrimen #Seguridad"
X Link 2022-07-22T20:24Z 10.8K followers, [---] engagements
"Un actor de amenazas pone a la venta un lote de informacin sobre "todos los ciudadanos de #Uruguay". ๐พ Contendra [--] millones de registros incluyendo cdula y nombre completo. Habra sido extrado de una universidad nacional. #Ciberseguridad #Cibercrimen #MeFiltraron #Leak"
X Link 2022-12-22T12:54Z 10.8K followers, 121.7K engagements
"Un actor de amenazas afirma tener accesos a los sistemas del Ministerio de Economa y Finanzas Pblicas (#MEcon) y los vende en un foro especializado. ๐ฆ A threat actor is (allegedly) selling access to the Ministry of Economy. #Argentina #Cybersecurity #Cybercrime #Hacking"
X Link 2022-09-21T11:51Z 10.8K followers, [---] engagements
"๐ช #ZoeLeaks: Filtracin de datos del sistema de soporte de #ZoeCash. ๐พ Se filtran [--] tickets con informacin personal como usuarios montos de inversin telfonos emails y otros adjuntos. #ZoeGate #ZoeCrash #ciberseguridad CC: @BetoMendeleiev_ ๐ช #ZoeLeaks: Filtracin de datos de compradores de #ZoeCash. ๐พ [----] archivos con contratos inversiones documentos bancarios fiscales de identidad y selfies de verificacin. ๐บ Abarca clientes de y . #ZoeGate #ZoeCrash CC: @BetoMendeIeiv + @Beto_MendeIeiev https://t.co/bocMzbgnf6 ๐ช #ZoeLeaks: Filtracin de datos de compradores de #ZoeCash. ๐พ [----] archivos"
X Link 2022-02-25T15:08Z 10.8K followers, [---] engagements
"#Uruguay: El grupo de #ransomware Cactus libera la totalidad de la informacin secuestrada a Geocom. ๐พ El lote de datos contiene 77GB de informacin confidencial e incluye pasaportes. #Ciberseguridad #Cibercrimen #Montevideo ๐ New #ransomware update. #Uruguay: Cactus group releases Geocom full dump (77GB). ๐ Stay informed with for the latest Ransomware #ThreatIntelligence. https://t.co/AGnMzz8dCL ๐ New #ransomware update. #Uruguay: Cactus group releases Geocom full dump (77GB). ๐ Stay informed with for the latest Ransomware #ThreatIntelligence. https://t.co/AGnMzz8dCL"
X Link 2023-12-18T18:26Z 10.8K followers, 32.8K engagements
"๐ New #ransomware update. #Uruguay: Cactus group releases Geocom full dump (77GB). ๐ Stay informed with for the latest Ransomware #ThreatIntelligence"
X Link 2023-12-18T18:24Z 12K followers, 33.4K engagements
"#Argentina: Actor coloca a la venta archivos sustrados del servidor FTP del Ministerio de Ciencia Tecnologa e Innovacin. ๐ Crditos: @chum1ng0 #Cibercrimen #Ciberseguridad #ThreatIntelligence ๐ New #cybercrime intelligence. #Argentina: Threat Actor offers a copy of FTP server contents from Ministerio de Ciencia y Tecnologa. ๐ #ThreatIntelligence: @chum1ng0 (Gracias). ๐ค Stay informed with #Sheriff. https://t.co/12mJxRPUOF ๐ New #cybercrime intelligence. #Argentina: Threat Actor offers a copy of FTP server contents from Ministerio de Ciencia y Tecnologa. ๐ #ThreatIntelligence: @chum1ng0"
X Link 2023-08-19T19:55Z 10.8K followers, 22.1K engagements
"๐ New #cybercrime intelligence. #Argentina: Threat Actor offers a copy of FTP server contents from Ministerio de Ciencia y Tecnologa. ๐ #ThreatIntelligence: @chum1ng0 (Gracias). ๐ค Stay informed with #Sheriff"
X Link 2023-08-19T19:52Z 12K followers, 126.3K engagements
"#Argentina: El grupo de #ransomware Knight anuncia al Hospital Italiano de Buenos Aires como vctima. ๐พ No hay informacin sobre la naturaleza o cantidad de datos comprometidos ni sobre el monto del rescate solicitado. #Ciberseguridad #Cibercrimen ๐ New #ransomware incident. #Argentina: Hospital Italiano de Buenos Aires announced by Knight (ex Cyclops). ๐ Stay informed with #DarkFeed for the latest Ransomware #ThreatIntelligence. https://t.co/OpiZRGAH2m ๐ New #ransomware incident. #Argentina: Hospital Italiano de Buenos Aires announced by Knight (ex Cyclops). ๐ Stay informed with #DarkFeed"
X Link 2023-10-13T12:33Z 10.8K followers, 21.5K engagements
"๐ New #ransomware incident. #Argentina: Hospital Italiano de Buenos Aires announced by Knight (ex Cyclops). ๐ Stay informed with #DarkFeed for the latest Ransomware #ThreatIntelligence"
X Link 2023-10-13T12:30Z 12K followers, 93.2K engagements
"Can you hack someone using only a pair of speakers ๐ Can a company be compromised using only a keyboard @larm182luis @f_perezs and I will be answering this at @defcon @VillageRedTeam on August 6th and 9th. Don't miss our talks #hacking #argentina #colombia #defcon28"
X Link 2020-07-25T22:30Z 10.8K followers, [---] engagements
"#Argentina: Filtran una base de datos de Heladeras Grido. ๐พ Contiene informacin de usuarios del programa de puntos y recompensas de todo el pas. #Ciberseguridad #Cibercrimen ๐ค Sheriff: new #cybercrime intelligence. #Argentina: TA leaked the full database from Heladeras Gridos loyalty programme exposing sensitive user information from across the country. Post was later deleted. Details below. https://t.co/U6Dtc5wTIA ๐ค Sheriff: new #cybercrime intelligence. #Argentina: TA leaked the full database from Heladeras Gridos loyalty programme exposing sensitive user information from across the"
X Link 2025-07-31T16:13Z 10.8K followers, [----] engagements
"๐ค Sheriff: new #cybercrime intelligence. #Argentina: TA leaked the full database from Heladeras Gridos loyalty programme exposing sensitive user information from across the country. Post was later deleted. Details below"
X Link 2025-07-31T16:11Z 12K followers, 24.5K engagements
"Una filtracin del Poder Judicial de #Neuquen fue puesta a la venta en un foro especializado. ๐งโ Son casi [----] registros de funcionarios incluyendo nombre completo usuarios y direcciones de correo. #Argentina #Cibercrimen #Ciberseguridad #DataBreach #Leak #Seguridad"
X Link 2022-08-19T14:12Z 10.8K followers, [---] engagements
"Una filtracin de la Suprema Corte de Buenos Aires fue puesta a la venta en un foro especializado. ๐งโ Son [------] registros de Jueces y otros funcionarios incluyendo DNI mail y claves. ๐ Habran comprometido el sitio web. #Ciberseguridad #Cibercrimen #DataBreach #Argentina"
X Link 2022-07-21T16:55Z 10.8K followers, [--] engagements
"#Argentina: A la venta base de datos de NOSIS (con casi [--] millones de registros) y acceso privilegiado al CRM de una agencia de cobro de deudas. ๐พ El CRM contendra telfonos recibos e informacin sobre deudas de entre [--] y [--] mil USD. #Cibercrimen #Ciberseguridad ๐ New #cybercrime intelligence. #Argentina: Database from NOSIS & CRM Access to a debt collection agency for sale. ๐พ DB contains 2M records with DNI Phone and Address. ๐ #ThreatIntelligence: @chum1ng0 & @criminaalmambo (Gracias) #ThreatIntel #Cybersecurity #Sheriff https://t.co/zT09e3sE8h ๐ New #cybercrime intelligence."
X Link 2023-10-10T11:58Z 10.8K followers, 18K engagements
"๐ New #cybercrime intelligence. #Argentina: Database from NOSIS & CRM Access to a debt collection agency for sale. ๐พ DB contains 2M records with DNI Phone and Address. ๐ #ThreatIntelligence: @chum1ng0 & @criminaalmambo (Gracias) #ThreatIntel #Cybersecurity #Sheriff"
X Link 2023-10-10T11:53Z 12K followers, 35.3K engagements
"Habl brevemente con un agente de #Lazarus que intent hackearme. ๐ฆฆ Me envi una variante de #OtterCookie que se activaba de la forma ms creativa que vi en los ltimos aos. ๐ Lo recib con una remera nica regalo del gran @juanbrodersen. ๐ Link al artculo debajo. ๐ด 22:40 de un jueves cualquiera. Andaba con ganas de hacer historia. Entrevist a un afiliado de #Lazarus pero l no saba quin soy y crey que me estaba engaando. ๐ฆฆ Le rob una muestra de #OtterCookie y grab la charla. Maana se viene mi mejor artculo. #DPRK https://t.co/MYj6tWXcM2 ๐ด 22:40 de un jueves cualquiera. Andaba con ganas de"
X Link 2025-04-11T22:18Z 10.8K followers, 20.1K engagements
"๐ด 22:40 de un jueves cualquiera. Andaba con ganas de hacer historia. Entrevist a un afiliado de #Lazarus pero l no saba quin soy y crey que me estaba engaando. ๐ฆฆ Le rob una muestra de #OtterCookie y grab la charla. Maana se viene mi mejor artculo. #DPRK"
X Link 2025-04-11T01:59Z 10.8K followers, 19.2K engagements
"Notable aumento en la oferta de tarjetas de crdito asociadas a #Rappi #Argentina en foros especializados. #Ciberseguridad #Cibercrimen #Seguridad"
X Link 2023-04-12T13:20Z 10.8K followers, 16.4K engagements
"Publican nuevas combolists con [------] credenciales de #Argentina [---] de Gobierno. ๐พ Dominios afectados: ANMAT Armada Cancillera Diputados Ejrcito Hospitales Garrahan y Oativia Lotera Nacional y Suprema Corte de Bs As entre otros. #Ciberseguridad #Cibercrimen ๐ New combolists discovered. #Argentina: [------] users impacted with government domains ANSES ANMAT Armada Cancillera Diputados Ejrcito Hospital Garrahan Hospital Oativa Lotera Nacional INTA Migraciones and Suprema Corte Buenos Aires among them. #ThreatIntel https://t.co/b9B0LHPgWX ๐ New combolists discovered. #Argentina: [------] users"
X Link 2023-06-01T13:06Z 10.8K followers, 22.7K engagements
"๐ New combolists discovered. #Argentina: [------] users impacted with government domains ANSES ANMAT Armada Cancillera Diputados Ejrcito Hospital Garrahan Hospital Oativa Lotera Nacional INTA Migraciones and Suprema Corte Buenos Aires among them. #ThreatIntel"
X Link 2023-06-01T13:00Z 12K followers, 31.7K engagements
"Publican varias filtraciones de #Uruguay. ๐ง๐ซ Docentes (40.152): CI Nombre Apellido Departamento. ๐ฅ [----] / CASMU (202.574): CI Nombre completo Fecha de Nacimiento Telfono Email Direccin. ๐พ Y otra filtracin sobre [-------] ciudadanos. #Ciberseguridad #Cibercrimen"
X Link 2023-05-18T17:29Z 10.8K followers, 16.7K engagements
"Un actor de amenazas pone a la venta un lote de informacin del Registro de la Propiedad Automotor. ๐พ Seran 1.133.264 registros con informacin de propietarios y vehculos a nivel nacional. #Ciberseguridad #Argentina #Cibercrimen"
X Link 2022-12-08T13:44Z 10.8K followers, [---] engagements
"#Argentina: publican una combolist con casi [--] mil credenciales en un foro especializado. ๐ฆ [---] pertenecen a cuentas de Gobierno. ๐ Dominios afectados: AFIP Diputados Fiscala Presidencia Ministerio de Seguridad y Defensa entre otros. #Ciberseguridad #Cibercrimen ๐ New combolists discovered. #Argentina: [------] users impacted (907 gov accounts) with government domains AFIP Diputados Fiscala (GBA) Presidencia Ministerio de Seguridad & Ministerio de Defensa among them. ๐ #ThreatIntel: @chum1ng0 (Gracias) #Cybercrime https://t.co/UvnZZKznml ๐ New combolists discovered. #Argentina: 88.863"
X Link 2023-11-07T14:46Z 10.8K followers, 16.3K engagements
"๐ New combolists discovered. #Argentina: [------] users impacted (907 gov accounts) with government domains AFIP Diputados Fiscala (GBA) Presidencia Ministerio de Seguridad & Ministerio de Defensa among them. ๐ #ThreatIntel: @chum1ng0 (Gracias) #Cybercrime"
X Link 2023-11-07T14:44Z 12K followers, 48.5K engagements
"Un actor de amenazas coloca a la venta accesos privilegiados a sistemas de la Secretara de Energa. ๐พ Permitiran administrar usuarios y compaas empadronados y monitorear la infraestructura energtica. ๐ค Crditos: @Dandrewsp #Argentina #Ciberseguridad #Cibercrimen"
X Link 2023-03-03T19:55Z 10.8K followers, 10.5K engagements
"El grupo de #ransomware #Lockbit anuncia a La Segunda Seguros como su nueva vctima. ๐พ Aseguran tener en su poder documentos internos de clientes incluyendo sus plizas y pasaportes. #Ciberseguridad #Cibercrimen #Argentina #Rosario"
X Link 2023-02-21T17:33Z 10.8K followers, 29.2K engagements
"#Argentina: Venden 5.300+ fotografas de usuarios de RainbowExLife utilizadas durante el proceso de KYC. ๐พ El lote contendra 10GB de imgenes de identificaciones nacionales de varios pases de LATAM y selfies de usuarios sostenindolas. #Ciberseguridad #Cibercrimen ๐ New #cybercrime intelligence. #Argentina: Threat actor selling 5300+ KYC photos from RainbowExLife including ID cards (front and back) and verification selfies from individuals across LATAM. ๐ #ThreatIntelligence: @criminaalmambo. https://t.co/0luwVRglaB ๐ New #cybercrime intelligence. #Argentina: Threat actor selling 5300+ KYC"
X Link 2024-10-05T14:29Z 10.8K followers, 12.1K engagements
"๐ New #cybercrime intelligence. #Argentina: Threat actor selling 5300+ KYC photos from RainbowExLife including ID cards (front and back) and verification selfies from individuals across LATAM. ๐ #ThreatIntelligence: @criminaalmambo"
X Link 2024-10-05T14:25Z 12K followers, 60K engagements
"Un usuario vendi accesos a dos compaas de #Argentina en un foro especializado. ๐ฐ Las vctimas tendran ganancias de $14 y $60 millones anuales sus accesos fueron valuados en $400 y $100 respectivamente. #Ciberseguridad #Cibercrimen"
X Link 2023-03-22T12:06Z 10.8K followers, 17K engagements
"#Uruguay: Escrib un breve informe sobre el incidente de #ransomware sufrido por Guyer & Regules a manos de Lockbit. ๐ Entre los archivos expuestos se encuentran documentos de la fintech Lemon Cash. ๐ดโ El lote contina a la venta. #Ciberseguridad #Cibercrimen #Montevideo ๐ New paper released. ๐ "#Ransomware: Lockbit vs Guyer & Regules" by @MauroEldritch (Spanish). ๐ https://t.co/SWUT0I2uEE ๐ค Stay safe with #Sheriff #Cybersecurity #Cybercrime #ThreatIntel #Uruguay #Montevideo ๐ New paper released. ๐ "#Ransomware: Lockbit vs Guyer & Regules" by @MauroEldritch (Spanish). ๐"
X Link 2023-09-06T13:57Z 10.8K followers, 18.5K engagements
"๐ New paper released. ๐ "#Ransomware: Lockbit vs Guyer & Regules" by @MauroEldritch (Spanish). ๐ ๐ค Stay safe with #Sheriff #Cybersecurity #Cybercrime #ThreatIntel #Uruguay #Montevideo https://bca.ltd/BCA-0003 https://bca.ltd/BCA-0003"
X Link 2023-09-06T13:53Z 12K followers, 24.4K engagements
"Filtran una base de datos con [-------] registros de estudiantes de la Universidad de Buenos Aires (#UBA). ๐พ Contendra direcciones de email nombre completo y domicilio. Indicara en algunos casos nacionalidad. #Ciberseguridad #Cibercrimen #Argentina ๐ New data breach discovered. #Argentina: A database containing [------] student records from the University of Buenos Aires has been leaked online. The leaked data includes email addresses full names and physical addresses. #ThreatIntelligence #ThreatIntel #Sheriff https://t.co/7L1pyrC3jI ๐ New data breach discovered. #Argentina: A database"
X Link 2023-06-06T11:57Z 10.8K followers, 13.8K engagements
"๐ New data breach discovered. #Argentina: A database containing [------] student records from the University of Buenos Aires has been leaked online. The leaked data includes email addresses full names and physical addresses. #ThreatIntelligence #ThreatIntel #Sheriff"
X Link 2023-06-06T11:55Z 12K followers, 349.8K engagements
"#Argentina: A la venta dos bases de datos: ๐ Una con 5.4M de registros de automotores que incluyen patente modelo nombre y domicilio del dueo. ๐ฑ Otra de Movistar con 10M de registros que incluyen telfono DNI nombre y domicilio. #Ciberseguridad #Cibercrimen ๐ New #cybercrime intelligence. #Argentina: TA selling a car owners database (5M records) with plate ID car model owner full name and address; and a Movistar DB with 10M records including phone number name and address. ๐ #ThreatIntelligence: @criminaalmambo. https://t.co/FJqLYIXAiK ๐ New #cybercrime intelligence. #Argentina: TA selling"
X Link 2024-08-01T13:10Z 10.8K followers, [----] engagements
"๐ New #cybercrime intelligence. #Argentina: TA selling a car owners database (5M records) with plate ID car model owner full name and address; and a Movistar DB with 10M records including phone number name and address. ๐ #ThreatIntelligence: @criminaalmambo"
X Link 2024-08-01T13:00Z 12K followers, 14.6K engagements
"๐ Un usuario publica una combolist con credenciales para el servicio de streaming Paramount+. Contiene [---] registros y afecta a usuarios de #Uruguay #Brasil #Argentina y #Mexico entre otros. #Ciberseguridad #Cibercrimen"
X Link 2023-03-09T12:04Z 10.8K followers, 11.1K engagements
"#Argentina: Publican una base de datos perteneciente a NOSIS. ๐พ Contiene [-------] registros detallando DNI nombre completo / razn social email y nmero de telfono celular. #Ciberseguridad #Cibercrimen ๐ New #cybercrime intelligence. #Argentina: Threat actor shared database belonging to NOSIS containing [-------] lines with DNI full name email and mobile phone number. https://t.co/meC7fsWh95 ๐ New #cybercrime intelligence. #Argentina: Threat actor shared database belonging to NOSIS containing [-------] lines with DNI full name email and mobile phone number. https://t.co/meC7fsWh95"
X Link 2024-04-10T22:17Z 10.8K followers, 11.1K engagements
Limited data mode. Full metrics available with subscription: lunarcrush.com/pricing