Lmst

Cybercriminals Leverage Vercel for Phishing and Malware Delivery

Pulse ID: 6857726b470b54b0e5a2523a
Pulse Link: https://otx.alienvault.com/pulse/6857726b470b54b0e5a2523a
Pulse Author: cryptocti
Created: 2025-06-22 03:03:07

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#CyberSecurity #InfoSec #Malware #OTX #OpenThreatExchange #Phishing #RCE #bot #cryptocti

Possible Phishing 🎣
on: ⚠️hxxps[:]//arstmping005[.]firebaseapp[.]com
🧬 Analysis at: https://urldna.io/scan/685739d73b775000117cd92d
#cybersecurity #phishing #infosec #urldna #scam #infosec

This dumb password rule is from University of Western Australia (Pheme).

Passwords:
1. Must contain at least 8 characters;
2. Must contain at least 3 out of 4 types of characters
(uppercase letters, lowercase letters, digits, special characters);
and
3. Must not contain
"the user's account name or parts of the user's full name
that exceed two consecutive characters".
...

https://dumbpasswordrules.com/sites/university-of-western-australia-pheme/

#password #passwords #infosec #cybersecurity #dumbpasswordrules

Possible Phishing 🎣
on: ⚠️hxxps[:]//pd-investec-proof[.]weebly[.]com
🧬 Analysis at: https://urldna.io/scan/68573d703b775000117cd96a
#cybersecurity #phishing #infosec #urldna #scam #infosec

I mean, just read this crap with your #infosec glasses on. FML. (swedish)

https://www.svd.se/a/63Gj48/volvo-cars-forstor-bilar-for-miljoner-i-krocklabbet

Reverse Engineering Cursor's LLM Client

https://www.tensorzero.com/blog/reverse-engineering-cursors-llm-client/

#ai #cursor #llm #infosec #cybersecurity #security

Possible Phishing 🎣
on: ⚠️hxxp[:]//wura[.]business-minagne[.]com/
🧬 Analysis at: https://urldna.io/scan/685763a93b775000090c1941
#cybersecurity #phishing #infosec #urldna #scam #infosec

Possible Phishing 🎣
on: ⚠️hxxps[:]//sdcfvgfbvcxzcvfvccc[.]weebly[.]com
🧬 Analysis at: https://urldna.io/scan/685739dc3b7750000c0ba265
#cybersecurity #phishing #infosec #urldna #scam #infosec

Operation Sindoor and India-Pakistan’s Escalated Rivalry in Cyberspace https://www.rusi.org/explore-our-research/publications/commentary/operation-sindoor-and-india-pakistans-escalated-rivalry-cyberspace #cybersecurity #infosec

New Phishing Threat Leverages Government Domains to Targetv Employee Credentials

Recently a sophisticated phishing campaign targeting employees has beenidentified using fake toll payment notices to deceive victims.

Pulse ID: 68575ac30df6bedce4b1b5c0
Pulse Link: https://otx.alienvault.com/pulse/68575ac30df6bedce4b1b5c0
Pulse Author: cryptocti
Created: 2025-06-22 01:22:11

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#CyberSecurity #Government #InfoSec #OTX #OpenThreatExchange #Phishing #bot #cryptocti

Possible Phishing 🎣
on: ⚠️hxxps[:]//webmailaccountonllne[.]weebly[.]com
🧬 Analysis at: https://urldna.io/scan/685739e43b775000117cd957
#cybersecurity #phishing #infosec #urldna #scam #infosec

Possible Phishing 🎣
on: ⚠️hxxps[:]//docwq579w4q3345896925892434782781291913file302538923pdf[.]pages[.]dev
🧬 Analysis at: https://urldna.io/scan/685737683b7750000e999f4a
#cybersecurity #phishing #infosec #urldna #scam #infosec

Possible Phishing 🎣
on: ⚠️hxxps[:]//jup-drop[.]com
🧬 Analysis at: https://urldna.io/scan/6857416d3b775000117cd9b4
#cybersecurity #phishing #infosec #urldna #scam #infosec

2025-06-21 RDP #Honeypot IOCs - 42801 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
24.173.30.170 - 27738
14.225.202.191 - 12240
157.230.248.35 - 2610

Top ASNs:
AS11427 - 27738
AS135905 - 12240
AS14061 - 2631

Top Accounts:
hello - 42618
Administr - 42
Test - 18

Top ISPs:
Charter Communications Inc - 27738
Vietnam Posts and Telecommunications Group - 12240
DigitalOcean, LLC - 2631

Top Clients:
Unknown - 42801

Top Software:
Unknown - 42801

Top Keyboards:
Unknown - 42801

Top IP Classification:
Unknown - 40092
hosting - 2703
proxy - 6

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
https://pastebin.com/jdVFPH4b

#CyberSec #SOC #Blueteam #SecOps #Security

2025-06-21 RDP #Honeypot IOCs - 28534 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
24.173.30.170 - 18492
14.225.202.191 - 8160
157.230.248.35 - 1740

Top ASNs:
AS11427 - 18492
AS135905 - 8160
AS14061 - 1754

Top Accounts:
hello - 28412
Administr - 28
Test - 12

Top ISPs:
Charter Communications Inc - 18492
Vietnam Posts and Telecommunications Group - 8160
DigitalOcean, LLC - 1754

Top Clients:
Unknown - 28534

Top Software:
Unknown - 28534

Top Keyboards:
Unknown - 28534

Top IP Classification:
Unknown - 26728
hosting - 1802
proxy - 4

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
https://pastebin.com/DrbKmz8F

#CyberSec #SOC #Blueteam #SecOps #Security

2025-06-21 RDP #Honeypot IOCs - 14267 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
24.173.30.170 - 9246
14.225.202.191 - 4080
157.230.248.35 - 870

Top ASNs:
AS11427 - 9246
AS135905 - 4080
AS14061 - 877

Top Accounts:
hello - 14206
Administr - 14
Test - 6

Top ISPs:
Charter Communications Inc - 9246
Vietnam Posts and Telecommunications Group - 4080
DigitalOcean, LLC - 877

Top Clients:
Unknown - 14267

Top Software:
Unknown - 14267

Top Keyboards:
Unknown - 14267

Top IP Classification:
Unknown - 13364
hosting - 901
proxy - 2

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
https://pastebin.com/10SgDg75

#CyberSec #SOC #Blueteam #SecOps #Security

Possible Phishing 🎣
on: ⚠️hxxps[:]//upkjhg[.]weebly[.]com
🧬 Analysis at: https://urldna.io/scan/685739e23b7750000c0ba27a
#cybersecurity #phishing #infosec #urldna #scam #infosec

#INFOSEC

Client Info