Catalin Cimpanu

@campuscodi

Cybersecurity news reporter at Past bylines: ZDNet, Bleeping Computer, Softpedia I like pew pew maps!

EU
therecord.media
Joined May 2009
26.1K Photos and videos Photos and videos

Tweets

You blocked @campuscodi

Are you sure you want to view these Tweets? Viewing Tweets won't unblock @campuscodi

  1. 2 hours ago

    Nice honeypot you got there... 😆

    3 replies 4 retweets 17 likes
    Undo
  2. Retweeted
    13 hours ago

    Looks like a Friday update to & today to prevent some (new) XCSSET hashes via an expanded rule MACOS_ 6eaea4b. XProtect: 2147 MRT: 1.79

    1 reply 6 retweets 18 likes
    Undo
  3. 9 hours ago

    Facefish attacks were detected by both Juniper and Netlab. Neither saw any cryptomining activity and Juniper believes attackers are renting access to the servers

    2 retweets 5 likes
    Show this thread
    Show this thread
    Undo
  4. 9 hours ago

    CWP is like cPanel, and is used to host server infrastructure. Used by both web hosters and corporate IT departments. Per BinaryEdge, there are currently more than 185,000 of these systems around, but it's unclear which are patched and which are not

    1 reply 6 likes
    Show this thread
    Show this thread
    Undo
  5. 9 hours ago

    NEW: Since at least February this year, a threat actor has targeted Linux systems running server hosting software CWP to install a backdoor named Facefish

    1 reply 5 retweets 20 likes
    Show this thread
    Show this thread
    Undo
  6. Retweeted
    10 hours ago

    The Russian ringleader of the Methbot advertising fraud scheme was found guilty by a Brooklyn federal jury today of scamming brands, ad platforms, and other businesses out of more than $7 million

    1 reply 6 retweets 7 likes
    Undo
  7. Retweeted
    May 27

    U.S. announces new security directives for pipelines after hack

    14 retweets 35 likes
    Undo
  8. 12 hours ago

    lol... I reached out to the wrong company about a ransomware attack... no wonder they were so confused ooops... I guess 😳

    10 replies 4 retweets 123 likes
    Undo
  9. Retweeted
    May 27
    Replying to

    Do you want to know what most of these gangs did before ransomware? Bank fraud.

    5 replies 4 retweets 30 likes
    Undo
  10. Retweeted
    16 hours ago

    The Russian hacking group that breached software provider SolarWinds has conducted a massive spear-phishing operation aimed at government agencies, think tanks, consultants, and NGOs

    18 retweets 22 likes
    Undo
  11. Retweeted
    13 hours ago

    Through interviews with government officials, public records requests, and estimates from academic and government bodies, we obtained a snapshot of the huge gap in spending between cybersecurity programs around the globe

    14 retweets 25 likes
    Undo
  12. 13 hours ago

    Looks like FluBot spam has reached Romania... sigh 😕

    2 replies 1 retweet 11 likes
    Undo
  13. Retweeted
    14 hours ago

    That awkward moment when you’re trying to make a death threat but the government employee is ready with a witty retort.

    13 replies 122 retweets 543 likes
    Undo
  14. 14 hours ago

    Lacework said it temporarily disrupted the activities of the TeamTNT botnet -botnet found Docker Hub credentials in a GitHub account and used them to host malicious Docker images -Lacework alerted the user who changed creds and removed the images

    9 retweets 15 likes
    Undo
  15. Retweeted
    May 27

    In a perfect of example why being a defender sucks, the FBI said today that an APT breached a local US municipality government via an unpatched Fortinet appliance, even if the FBI sent an alert about patching these things a month before

    1 reply 41 retweets 110 likes
    Undo
  16. Retweeted
    May 27

    😂

    7 replies 12 retweets 87 likes
    Undo
  17. 21 hours ago

    Shadowserver says that based on a recent scan, around 317,848 Exim email servers are still vulnerable to the 21Nails vulnerabilities

    17 retweets 24 likes
    Undo
  18. Retweeted
    May 27

    NEW: The FBI will feed hacked passwords directly into Have I Been Pwned More specifically, into the Pwned Passwords component

    9 replies 213 retweets 538 likes
    Undo
  19. Retweeted
    May 27

    Joern will be presented at BlackHat Arsenal this summer:

    17 retweets 71 likes
    Undo
  20. Retweeted
    May 18

    Nice airbag you've got there; would be a shame if it didn't activate.

    1 reply 12 retweets 11 likes
    Undo

@campuscodi hasn't Tweeted yet.

Loading seems to be taking a while.

Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.

    You may also like

    ·