Divided Flatworm at an #Oahu #Hawaii #reef . Your #sealife #photooftheday
Prints available - DM me. #flat #worm #Wednesday #creature #ocean #pacificocean #marinelife #animals #nature #wildlife #outdoors #explore #environment #earth #photo #photography #scuba #discover #underwater #art #critter #follow
XWorm V6: Exploring Pivotal Plugins
Pulse ID: 68e5f815bfa2c45b87022d0b
Pulse Link: https://otx.alienvault.com/pulse/68e5f815bfa2c45b87022d0b
Pulse Author: Tr1sa111
Created: 2025-10-08 05:35:17
Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#CyberSecurity #InfoSec #OTX #OpenThreatExchange #Worm #XWorm #bot #Tr1sa111
So much fun working with shapes and textures
Worm on a string for knightyknight on ArtFight
.
.
.
.
.
.
#wormonastring #artfight #oc #shapes #textures #worm #furry #glasses #artfight #painting #artfigh2025 #digitalart #commissionsopen #drawing #cartoon #commission #originalcharacter #lechuzaz #digitalart #ilustration
#artfightfossils #furry #feral
XWorm V6: Exploring Pivotal Plugins
Pulse ID: 68e4116d2907e024806e89fc
Pulse Link: https://otx.alienvault.com/pulse/68e4116d2907e024806e89fc
Pulse Author: AlienVault
Created: 2025-10-06 18:58:53
Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#CyberSecurity #InfoSec #OTX #OpenThreatExchange #Worm #XWorm #bot #AlienVault
Modular RAT XWorm Returns With Ransomware Module
The full list of people who have signed up to take part in the 2016 Olympics and Paralympics in Rio de Janeiro has been released by the United States and Canada.. and the UK.
Pulse ID: 68e411bc454047b7f61cea73
Pulse Link: https://otx.alienvault.com/pulse/68e411bc454047b7f61cea73
Pulse Author: cryptocti
Created: 2025-10-06 19:00:12
Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#Canada #CyberSecurity #ICS #InfoSec #OTX #OpenThreatExchange #RAT #RansomWare #UK #UnitedStates #Worm #XWorm #bot #cryptocti
2. J’ai une infestation de mites dans mon placard, jai l’impression de bien les connaître car je les vois naître dans mon riz puis prendre leur envol et vivre leur vie. Vous avez déjà imaginer ce qui pourrait vous arriver si jamais vous en consommiez sans faire exprès ? Mais bien entendu en réalité la seule bestiole qui me consume s’appelle Anxiété.
Weird Ink Society has Weird Ink-Tober. October 1st is "worm" (and hopefully they don't mind digital - it's too late in the day/night to start pulling out pen and ink!) Done with MediBang Paint on my phone. #weirdinktober #medibangpaint #digital #worm I am a glutton for punishment, yes.
You can find the prompts list through Weird Ink Society on Facebook and Instagram (and a comment on this post).
Worm skull
#art #sketch #dailydoodle #ChaotiCreations #day280 #doodle #monster #worm #skull
XWorm RAT Delivered via Shellcode: Multi-Stage Attack Analysis
Pulse ID: 68dcaba5348ce63bf26d9841
Pulse Link: https://otx.alienvault.com/pulse/68dcaba5348ce63bf26d9841
Pulse Author: Tr1sa111
Created: 2025-10-01 04:18:45
Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#CyberSecurity #InfoSec #OTX #OpenThreatExchange #RAT #ShellCode #Worm #XWorm #bot #Tr1sa111
In retrospect, I'm frankly surprised it took so long for someone to name a worm "Shai-Hulud". I should have been waiting for it for years; it seems so obvious in hindsight.
#security #ComputerSecurity #malware #worm #ShaiHulud #infosec
https://unit42.paloaltonetworks.com/npm-supply-chain-attack/ - self-replicating #worm is compromising #NPM packages. #CISO #security #SupplyChain
XWorm RAT Delivered via Shellcode: Multi-Stage Attack Analysis
This analysis details a sophisticated multi-stage attack delivering the XWorm RAT. The campaign begins with a phishing email containing a malicious .xlam file. The file harbors embedded shellcode that, when executed, retrieves a secondary payload. This payload is a .NET binary that reflectively loads a DLL into memory. The DLL, heavily obfuscated and encrypted, injects another DLL using reflective injection. The final stage involves process injection into the main executable, establishing persistence and exfiltrating data to Command & Control servers associated with the XWorm family. The attack chain demonstrates advanced evasion techniques, including the use of shellcode, steganography, and multiple stages of reflective DLL injection.
Pulse ID: 68da3ed188175c68ce3021fc
Pulse Link: https://otx.alienvault.com/pulse/68da3ed188175c68ce3021fc
Pulse Author: AlienVault
Created: 2025-09-29 08:09:53
Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#CyberSecurity #Email #InfoSec #NET #OTX #OpenThreatExchange #Phishing #RAT #ShellCode #Steganography #Worm #XLAM #XWorm #bot #AlienVault
Bookworm to Stately Taurus Using the Attribution Framework
Pulse ID: 68da2cea825487e1dd9d8c0a
Pulse Link: https://otx.alienvault.com/pulse/68da2cea825487e1dd9d8c0a
Pulse Author: Tr1sa111
Created: 2025-09-29 06:53:30
Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#CyberSecurity #InfoSec #OTX #OpenThreatExchange #StatelyTaurus #Taurus #Worm #bot #Tr1sa111
Bookworm to Stately Taurus Using the Attribution Framework
Pulse ID: 68da2cf3b6720bdcf2cef8b1
Pulse Link: https://otx.alienvault.com/pulse/68da2cf3b6720bdcf2cef8b1
Pulse Author: Tr1sa111
Created: 2025-09-29 06:53:39
Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#CyberSecurity #InfoSec #OTX #OpenThreatExchange #StatelyTaurus #Taurus #Worm #bot #Tr1sa111
Bookworm Malware and PlugX RATs Target Asian Networks
Pulse ID: 68d8208d01f0822bb2affc1e
Pulse Link: https://otx.alienvault.com/pulse/68d8208d01f0822bb2affc1e
Pulse Author: cryptocti
Created: 2025-09-27 17:36:13
Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#Asia #CyberSecurity #InfoSec #Malware #OTX #OpenThreatExchange #PlugX #RAT #Worm #bot #cryptocti
Bookworm Malware and PlugX RATs Target Asian Networks
Pulse ID: 68d8209726f669c4eb1de314
Pulse Link: https://otx.alienvault.com/pulse/68d8209726f669c4eb1de314
Pulse Author: cryptocti
Created: 2025-09-27 17:36:23
Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#Asia #CyberSecurity #InfoSec #Malware #OTX #OpenThreatExchange #PlugX #RAT #Worm #bot #cryptocti
NPM Supply-chain attack via maintainer account takeover
https://www.drupal.org/psa-2025-09-17
#npm #supplychainsecurity #psa #infosec #cybersecurity #worm #malware #js #Javascript #security #drupal
Shai-Hulud worm infects npm packages
A self-propagating malware called Shai-Hulud has infected over 500 npm packages, including one with over two million weekly downloads. The worm steals sensitive data, exposes private repositories, and hijacks victim credentials to spread further. It executes when an infected package is installed, collecting system information and GitHub tokens. The malware exfiltrates secrets from repositories, migrates private repositories to public, and self-replicates by infecting the victim's most downloaded packages. Notable infected libraries include those from CrowdStrike. The infection started with ngx-bootstrap version 18.1.4. Prevention measures include using specialized solutions for monitoring open-source components and implementing comprehensive security systems.
Pulse ID: 68d54d3a400fcca666cb3fe5
Pulse Link: https://otx.alienvault.com/pulse/68d54d3a400fcca666cb3fe5
Pulse Author: AlienVault
Created: 2025-09-25 14:10:02
Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#CrowdStrike #CyberSecurity #ELF #GitHub #InfoSec #Malware #NPM #OTX #OpenThreatExchange #RAT #RCE #Worm #bot #AlienVault
Bookworm to Stately Taurus Using the Attribution Framework
This analysis examines the Bookworm malware family and its connection to the Chinese APT group Stately Taurus. Using a structured attribution framework, the study evaluates tactics, tooling, operational security, infrastructure, victimology and timelines to establish a high-confidence link between Bookworm and Stately Taurus. Key evidence includes shared program database paths, overlapping command and control infrastructure, and consistent targeting of Southeast Asian governments. The framework assigns scores to each piece of evidence, resulting in an overall attribution confidence score of 58.4 out of 100, indicating strong confidence in the connection. This systematic approach aims to improve analytical rigor and collaboration in threat intelligence.
Pulse ID: 68d54d860104d98d5199b518
Pulse Link: https://otx.alienvault.com/pulse/68d54d860104d98d5199b518
Pulse Author: AlienVault
Created: 2025-09-25 14:11:18
Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#Asia #Chinese #CyberSecurity #Government #ICS #InfoSec #LUA #Malware #OTX #OpenThreatExchange #RAT #StatelyTaurus #Taurus #Worm #bot #AlienVault
