wanderer is now the first tchncs thing with #anubis in front of it (partially) 👀
if (apart from sporadic timeouts - which hopefully now happen much less if at all) something seems broken - such as federation - please dm me. however so far, things luckily seem fine.

its still somewhat experimental. just as with claude yesterday, today i had to deny amazonbot by hand which i dont think should be required...

dashboard source: https://github.com/TecharoHQ/anubis/discussions/653#discussioncomment-13469606

plan is to get all my pub-facing sites behind #anubis by end of 25. besides building a community portal with a bunch of services - IdP integration a must. yeehaw ;) https://anubis.techaro.lol/

trying #anubis - while it looks like claude was stopped many times, it somehow still managed to request and download tons of forgejo archives - this used the example that challenged for useragents that include mozilla. i am denying now but at the same time i am confused

(this pretty much made forgejo fill up something around 1.5T of disk space this day)

Moved ymt.fi #domain from #CloudFlare to #BunnyCDN. Not only bc of their latest blackout (which actually didn’t affect us), but also to move all tech services to #EU.

1) Would you recommend something else instead? (Plz don’t say self-#hosting. My brain hurts already.) I was lured by Bunny’s ”first 20 000 000 queries for free” offer.

2) CloudFlare has built-in #AI crawler blocking. Don’t see anything like that at Bunny. So do I now have to setup #Anubis for the site or smt? (Hello, brain hurt.)

Updated my post on the Anubis attack on Mid South Pulmonary Specialists after getting additional info from Anubis.

It seems they used their wiper to delete all of MSPS's backups, and then encrypted all of their systems.

That sounds pretty grim. MSPS has not posted anything (perhaps they can't) or issued any notice anywhere about whether patient care has been affected at all by any breach.

https://databreaches.net/2025/12/07/theyve-escaped-a-lot-of-media-attention-but-anubis-raas-is-a-threat-to-the-medical-sector/

#HIPAA #healthsec #cybersecurity #databreach #ransomware #Anubis #wiper #backups #incidentresponse

@campuscodi @amvinfe

I commented on an attack on Trumbull County, Ohio, by Anubis that @amvinfe reported this week. I will continue to try to follow up, but in the meantime, I posted this:

"Tell the truth, or someone will tell it for you — Trumbull County, Ohio edition."
https://databreaches.net/2025/12/09/tell-the-truth-or-someone-will-tell-it-for-you-trumbull-county-ohio-edition/

#databreach #ransomware #wiper #govsec #incidentresponse #transparency #Anubis #Trumbull_County

So apparently, anti-bot filters are seeing #seamonkey as an AI agent. This means that the only AI blocker that seamonkey can get through now is #anubis , since the other ones don't even make an attempt at checking if you're legit

Also, I didn't hear codeberg switching to iocaine from anubis, they seem to have done that quietly

𝐓𝐡𝐞 𝐃𝐚𝐭𝐚 𝐁𝐫𝐞𝐚𝐜𝐡 𝐭𝐡𝐞 𝐓𝐫𝐮𝐦𝐛𝐮𝐥𝐥 𝐂𝐨𝐮𝐧𝐭𝐲 𝐃𝐞𝐧𝐢𝐞𝐝: 𝟑𝟓𝟎 𝐆𝐁 𝐨𝐟 𝐒𝐞𝐧𝐬𝐢𝐭𝐢𝐯𝐞 𝐃𝐚𝐭𝐚 𝐏𝐮𝐛𝐥𝐢𝐬𝐡𝐞𝐝 𝐛𝐲 𝐭𝐡𝐞 𝐀𝐧𝐮𝐛𝐢𝐬 𝐆𝐫𝐨𝐮𝐩

The group also claims to have remained active inside the network the entire time:
“We remained inside their network the entire time.”
“We watched them perform their security audit and collect artifacts… They prepared a report saying ‘Everything is fine and secure.’ We laughed for a long time.”

https://www.suspectfile.com/the-data-breach-the-trumbull-county-denied-350-gb-of-sensitive-data-published-by-the-anubis-group/

#Trumbull_County #Anubis #Ransomware #Infosec #HIPAA

Anubis hasn't really had a lot of media coverage, but @amvinfe's post about the attack on Mid South Pulmonary & Sleep Specialists was a wake-up call for me. So I took a look at Anubis's dark web leak site and saw they added -- and leaked -- five U.S. healthcare entities in November.

Given that they are not loath to encrypt and wipe victims' data... well... yikes.

My post:
https://databreaches.net/2025/12/07/theyve-escaped-a-lot-of-media-attention-but-anubis-raas-is-a-threat-to-the-medical-sector/

#databreach #ransomware #Anubis #HealthSec #cybersecurity #HIPAA #wiper

I'm using #Anubis to protect our Forgejo instance from scrapper #bots, but it doesn't seem to be enough for "classic" malicious scanners that try thousands of paths looking for vulnerabilities.

Granted, presenting a challenge increases the cost for the malicious scanners, but at some point I'd like a smarter tool that detects what's happening and blocks any further attempt.

Does anyone know about good solutions for this? I'm sure there must be something out there, I'm just ignorant about it.

#infosec #WebSecurity

This year, 39% of our web traffic was done through scrapping bots. This is not our mission, and a load we do not want to impose on our host, so we are deploying #anubis to protect the wiki as a first step.

Do not be alarmed and let's hope this will improve bandwidth usage.

@amvinfe Great reporting!

"“Can you imagine our outrage when we saw the VPN domain administrator’s password was ‘Password’?

(UGH)

and...

" In one night, we struck them and paralyzed their entire network. To this day, they still can’t do anything. And they won’t. We deleted the decryption key because they didn’t care about their clients, their own organization, and simply abandoned the negotiations.”

From that, it sounds like there were some negotiations. Any idea of why they were abandoned?

#databreach #ransomware #Anubis

𝐃𝐚𝐭𝐚 𝐁𝐫𝐞𝐚𝐜𝐡 𝐚𝐭 𝐌𝐢𝐝 𝐒𝐨𝐮𝐭𝐡 𝐏𝐮𝐥𝐦𝐨𝐧𝐚𝐫𝐲 & 𝐒𝐥𝐞𝐞𝐩 𝐒𝐩𝐞𝐜𝐢𝐚𝐥𝐢𝐬𝐭𝐬: 𝐀𝐧𝐮𝐛𝐢𝐬 𝐒𝐩𝐞𝐚𝐤𝐬

Mid South Pulmonary & Sleep Specialists (MSPS), a major clinical center specializing in respiratory diseases and sleep disorders in Tennessee, has been hit by a severe cyberattack claimed by the ransomware group Anubis. The attackers provided SuspectFile.com with both technical and operational details of the incident.

#MSPS #Anubis #Ransomware #Infosec #HIPAA

New post from #Anubis : Trumbull County
More at : https://www.ransomlook.io/group/Anubis #Ransomware

New post from #Anubis : Duhabex
More at : https://www.ransomlook.io/group/Anubis #Ransomware

[ANUBIS] - Ransomware Victim: Smith Fire Systems - https://www.redpacketsecurity.com/anubis-ransomware-victim-smith-fire-systems/

#anubis #dark_web #data_breach #OSINT #ransomware #threatintel #tor

New post from #Anubis : Smith Fire Systems
More at : https://www.ransomlook.io/group/Anubis #Ransomware

24 hours in… #Anubis denied more than 20k requests of #ai crawlers, clients and the like. But also handed out just short a few million challenges to moderate and mild suspicious clients. In the default configuration, that is to say.

Wow.