MuddyWater leak (OnGoing)

Followed by OilRig/APT32/MOIS leak I've reported about here. A new telegram channel emerged called "افشاگران سبز | Green Leakers".The actor (which I assume is the same one behind the OilRig leak) claims to own information regarding another Iranian Cyber Attack group dubbed MuddyWater which they claim are also…

Simple Rules to Protect Against Spoofed & windows.net Phishing Attacks

Recently I've seen an extended rise in usage of Microsoft Azure Blob Storage to host phishing websites targeting Office365 users. Websites hosted under Azure Blob Storage can be accessed using windows.net domains which will naturally add a convincing feature -  valid Microsoft SSL certificate. This “feature” has high probability…

APT34 Hacking Tools Leak

As reported by Catalin Climpanu today some of the tools used by OilRig attack group have been leaked by a persona using the "Lab Dookhtegan pseudonym". You can read the full article in the link here.I have uploaded the full leak and tools as published on Lab Dookhtegan Telegram…

NotCarbanak Mystery - Source Code Leak

I got a tip a very short time ago in our slack group about possible Carbanak source code leak. A quick google search proven this is indeed a possibility. hxxp://mal4all.com/showthread.php?tid=494&action=lastpost Here is the source code in a zip file. Please make…