Understanding CyberEYE RAT Builder: Capabilities and Implications

CyberEye is a modular, .NET-based Remote Access Trojan that utilizes Telegram for Command and Control, eliminating the need for attackers to maintain their own infrastructure. It offers a wide array of surveillance and data theft capabilities, including keylogging, file grabbing, and clipboard hijacking. The malware employs advanced defense evasion techniques, disabling Windows Defender through PowerShell and registry manipulations. Its modules harvest browser credentials, Wi-Fi passwords, gaming profiles, and session data from various applications. The builder framework allows adversaries to customize payloads, making it accessible to less technically skilled threat actors. CyberEye's persistence mechanisms, anti-analysis features, and use of public messaging platforms for C2 make it a significant threat to both consumers and enterprises.

Pulse ID: 684bd5faa39b8d0620c49060
Pulse Link: https://otx.alienvault.com/pulse/684bd5faa39b8d0620c49060
Pulse Author: AlienVault
Created: 2025-06-13 07:40:42

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#Browser #Clipboard #CyberSecurity #DataTheft #InfoSec #Malware #NET #OTX #OpenThreatExchange #Password #Passwords #PowerShell #RAT #RemoteAccessTrojan #SMS #Telegram #Trojan #Windows #Word #bot #AlienVault

Beware of AI Pickpockets: Pickai Backdoor Spreading Through ComfyUI Vulnerability

A new backdoor named Pickai is exploiting ComfyUI vulnerabilities to spread and steal sensitive AI data. Developed in C++, Pickai offers remote command execution and reverse shell capabilities with strong persistence and evasion techniques. It uses multiple C2 servers for redundancy and has infected nearly 700 devices globally. The malware is hosted on Rubick.ai, an AI e-commerce platform serving major brands, posing significant supply chain risks. Pickai employs various obfuscation methods, including string encryption, process disguise, and multiple persistence mechanisms. Its network communication uses a three-tier timing strategy for C2 communication and device information reporting.

Pulse ID: 684bd7d3b9ea8f2eadcc407c
Pulse Link: https://otx.alienvault.com/pulse/684bd7d3b9ea8f2eadcc407c
Pulse Author: AlienVault
Created: 2025-06-13 07:48:35

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#BackDoor #CyberSecurity #Encryption #InfoSec #Malware #OTX #OpenThreatExchange #PoC #RAT #RCE #RemoteCommandExecution #SMS #SupplyChain #Vulnerability #bot #AlienVault

@snow @Rusty if you want a phone "that just works" consider an #Iridium 9555 or Iridium Extreme PTT.

https://www.youtube.com/watch?v=RjkNPvzCRKg
https://www.youtube.com/watch?v=sZWN65NqNOc
https://www.youtube.com/watch?v=v8CJ01KBXkM
https://www.youtube.com/watch?v=Xjig4NBAPZQ

• Bonus points: it'a way too exensive for #Robocalling & #Spam-#SMS!

#sarcasm #shitpost

Hang On (1985) (Racing) (Sega Master System) [GAMEPLAY] [EN] [HD]

#retrogaming #HangOn #sms #1985 #racing #jgo #johnnygameover #videogame #gameplay #games #gaming #Sega

https://www.youtube.com/watch?v=9-tLYu1Fd-Q

Big (well, huge) #Emulsion (v0.4.5) update

One night in #inkscape (except Atari joystick made in #Blender) :blobfoxcofeowo:

We now handle 24 MACHINES! 🏆

#atari #spectrum #nes #sms #pcengine #amiga #megadrive #gameboy #lynx #gamegear #snes #jaguar #saturn #psx #n64 #dreamcast #ps2 #gamecube #xbox #psp #ps3 #3ds #xbox360 #ps4

#gamedev #retrogaming #emulation #console #game #IndieDev #gaming #linux #floss

🌐 https://yphil.gitlab.io/emulsion/
:gitlab: https://gitlab.com/yphil/emulsion

#Emulsion is nearing completion!

#atari #spectrum #nes #sms #pcengine #amiga #megadrive #gameboy #lynx #gamegear #snes #jaguar #saturn #psx #n64 #dreamcast #ps2 #gamecube #xbox #psp #ps3 #3ds #xbox360 #ps4

#gamedev #retrogaming #emulation #game #IndieDev #gaming #linux #floss

🌐 https://yphil.gitlab.io/emulsion/
:gitlab: https://gitlab.com/yphil/emulsion

Phone and text messages: Apple opens up core iPhone functions in the EU

RCS/SMS messages and telephony have always only been available in Apple's Phone and Messages app. That will change soon.

https://www.heise.de/en/news/Phone-and-text-messages-Apple-opens-up-core-iPhone-functions-in-the-EU-10440745.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon

#Apple #iOS #iPhone #IT #Messaging #Mobiles #SMS #news

Telefon und Kurznachrichten: Apple öffnet iPhone-Kernfunktionen in der EU

RCS/SMS-Nachrichten und Telefonie gab es seit jeher nur in Apples Telefon- und Nachrichten-App. Das ändert sich bald.

https://www.heise.de/news/Telefon-und-Kurznachrichten-Apple-oeffnet-iPhone-Kernfunktionen-in-der-EU-10440714.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon

#Apple #iOS #iPhone #IT #Messaging #Mobiles #SMS #news

After what seems like 24-48 hours of work, I have finally 'maintained' the unknown sms conversations on my phone going back almost 15 years...roughly akin to laying down 40 pallets of sod...lol

#sms #maintenance

Why we need a #EU only #CPaaS solution: #CPaaS (Communications Platform as a Service) enables companies to integrate #voice, #SMS, or chat features via #REST #API directly into their software – without needing their own telephony infrastructure. When it comes to voice and messaging, however, highly #sensitive user #data is transmitted, such as phone numbers, call content, and communication metadata, making data protection a top priority.
https://mycpaas.io/en/what-is-cpaas-and-why-phone-messaging-raise-special-privacy-concerns/

Complex SMS APIs driving you crazy?

Send text messages in 5 min:

- No phone numbers to buy
- No Twilio complexity
- Just simple HTTP requests

Perfect for server alerts, security notifications, and critical warnings.

One API for SMS, Slack, email. Switch channels anytime.

https://msggo.io/blog/article/how-to-send-sms-messages-in-5-minutes-without-complex-apis?utm_source=mastodon

#DevOps #Monitoring #SMS

Letná dovolenka je čas oddychu, no používanie mobilu v zahraničí môže nepríjemne predražiť účet. Ako prežiť letnú dovolenku bez vysokých účtov za roaming?

https://www.techarena.sk/2025/06/08/ako-pouzivat-smartfon-na-dovolenke-bez-vysokych-uctov-za-roaming/

#roaming #Slovensko #EÚ #operátori #internet #volania #SMS #Orange #Telekom #O2 #4ka

Utifall någon fortfarande skulle använda Telegram: jag fick precis detta bluff-sms. Länken leder till en sajt som kapar Telegram-konton.

Kom ihåg! Du kan aldrig lita på avsändaren av ett sms, inte ens ifall sms:et kommer i en tråd av befintliga äkta meddelanden.

#Telegram #sms

Lấy Mã OTP TPBank Trên Điện Thoại: Hướng Dẫn Từ A Đến Z

👉 Chi tiết: https://otpsms247.com/huong-dan-lay-ma-otp-tpbank/

#SMS #OTP #TPBank

Die News vom Tage:
1️⃣#UDLasPalmas hat einen neuen #Trainer ⚽️
2️⃣#Spanien verbietet ab heute #Werbeanrufe über #Mobilfunknummern📲
Jetzt alle Beiträge unter❗️ Infos-GranCanaria.com ❗️lesen

Im Kampf gegen illegale #Werbeanrfe sind Anrufe über #Handynummern in #Spanien ab heute verboten. Auch dürfen #Callcenter keine #SMS mer verschicken, diese werden "abgefangen": https://infos-grancanaria.com/2025/spanien-verbietet-ab-heute-callcentern-werbeanrufe-ueber-handynummern/

F..k!
Habe heute mein #Smartphone verloren.

Wozu das alles führt und wie abhängig wahrscheinlich selbst alle, die immer vom #Digitalzwang reden, wir davon sind, wird einem erst in so einem Fall klar.

Das fängt mit so kleinen Dingen an wie:
"Wir haben ihnen eine #SMS mit dem Bestätigungscode an ihr Mobiltelefon mit der Nummer **99 geschickt"
🤷‍♂️ 🤦

Es muss bei mir in jedem Fall wieder mehr de-
digitalisiert werden.

@EdwinG

I've run into this with a number of businesses. I'm also with you that as far as I know, there's no way to text a "regular" landline.

The stupid part of this is that this problem is both solvable *and* detectable in advance. I've written integrations with the big communications providers, that you use to let your application/website send texts - there is a mostly-reliable way to query "can this number receive texts?" before you try to send a text, and they generally also give you the option to send a robot-voice message, so you can fall back to that.

Without being too much Old Man Yells At Cloud, I'm pretty much in agreement with others that say that these kinds of fails are the result of young / inexperienced designers or developers not considering anything outside of their personal experience - most of them have never used a phone that couldn't send and receive texts. They don't even contemplate the possibility of a user of their system not being in exactly the same circumstances as themselves. This kind of oversight should be caught by project management, but ... 🤷

#OldManYellsAtCloud #phone #landline #ancient #WebDev #designer #comms #SMS #API #management

PSA: Not from #AnPost. Easy to spot I guess but just in case you hear anyone asking "did you order something via an post", there's a bit of it going about at the moment. No doubt some will fall for it though. #sms #spam #phishing #smishing

For the #Emulsion #GUI I drew *every* #Game platform / console / machine #gamecontroller in :inkscape: #inkscape ; Today, the #SMS (#Sega Master System) @dailysms 🙂 #game #IndieDev #gamedev #retrogaming #emulation #gaming #linux #floss

🌐 https://yphil.gitlab.io/emulsion/
:gitlab: https://gitlab.com/yphil/emulsion

Tauschen sich #Friedrich und #Donald wirklich per #SMS aus? #SMS ist doch quasi das neue #Fax: völlig aus der Zeit gefallen und unsicher. #Merz #Trump