هیچی برگر [﷼]
Открыть в Telegram
shit/schizo posting
БольшеСтрана не указанаКатегория не указана
218
Подписчики
-124 часа
Нет данных7 дней
+130 день
Архив постов
Repost from vx-underground
Just cancelled my Codex Claude Slop subscription.
I'm running my own AI thingie at home. It'll be cheaper in the long run, it just required a few hardware purchases.
Repost from vx-underground
> be gamers
> "I DONT TRUST KERNEL MODE ANTI CHEATS!11"
> "ILL NEVER TRUST A VIDEO GAME COMPANY"
> runs anime_waifu_wallpaper.exe as admin
Repost from vx-underground
More information:
(the link is cooked, it's in Mandarin so it's really, really, really long)
https://rayblog.rising.com.cn/2026/06/%E4%BE%9B%E5%BA%94%E9%93%BE%E6%94%BB%E5%87%BB%E7%9B%AF%E4%B8%8Aai%E5%85%AC%E5%8F%B8%ef%bc%9a%E6%99%BA%E8%B0%B1ai%E8%BE%93%E5%85%A5%E6%B3%95%E5%AE%98%E7%BD%91%E4%B8%8B%E8%BD%BD%E9%93%BE%E6%8E%A5/
Repost from vx-underground
I haven't checked the Chinese Threat Intelligence places in awhile. I said, "Hmph, I wonder what's going on over in Mandarin city" (I don't know any cities in China, so I make up names).
I checked out Rising (瑞星), they do technical write-ups about malware hitting China, and stuff, because they're ... headquartered in China. They're a Chinese company.
Anyway:
> be me
> open rising blog
> all mandarin
> damn i wish i could read
> translate page
> supply chain attack
> wtf.jpeg?
> AutoGLM hit
> wtf.mp4?
> Chinese AI agent thingie
> made by Z ai
> (idk wtf that is)
> GitHub for AutoGLM compromised
> download link replaced with malware payload
I said, "What the fuck? You guys have premium AI slop too? You guys have nerds attacking your supply chains too?"
Wow, we have so much in common
Repost from vx-underground
> malware campaign
> malicious chrome extension
> fakes web traffic to websites
> fakes adsense stuff
> fakes website references
> v v silly
> 105,000 installs
> ...
> A HUNDRED AND FIVE THOUSAND INSTALLS
> look inside
> anime wallpapers for chrome
Repost from vx-underground
> be pakistan government
> develop custom malware
> used to target high profile targets
> used against indian military and political ppl
> named SHEETCREEP
> send indian ppl file
> UAE-India Strategic Partnership Week
> malicious .lnk file
> .lnk executes malicious c sharp code
> does a bunch of stuff for persistence
> exfiltrates data to Google Sheets
> Google Sheets can be used to control victim pcs
> pakistan gov hardcodes google c2 sheet
> PAKISTAN GOV HARDCODES GOOGLE C2 SHEET
> embed access key in payload
> EMBED ACCESS KEY IN PAYLOAD
> malware nerds find it
> look inside
> find all targets from pakistan gov
> monitoring 91 ppl they think important
THEY STARTED SO STRONG. WHY DID YOU HARDCODE EVERYTHING. YOU BURNED YOUR OPERATION
https://www.securonix.com/blog/sheetcreep-evolved-google-sheets-rat/
