Next Friday, November 25, I will be at jeff giving a talk about the creation of intelligence based on the malware network protocol with malware such as like Hydra and Qbot! See you there <3 Happy Hunting :)

Después de la comida, en la sala 19 es el turno de Albert Priego (Albert Priego), Threat Research & Malware Analyst de Group-IB con la ponencia: "Creando inteligencia a partir del protocolo de red del malware". #XVIJornadasCCNCERT #IVJornadasCiberdefensaESPDEFCERT

I'm very glad to present my first huge report about #SideWinder #APT written in solo. I hope that this research will bring order to the attribution. x.com/GroupIB_TI/sta…

Susp #APT #MustangPanda html->js->msi pdf00029620230426124841.html virustotal.com/gui/file/73645… The msi file is downloaded from URL: hxxps://www.jcswcd[.]com/ghyms

Microsoft eliminará VBScript en Windows para bloquear la entrega de malware ↘️ VBScript (también conocido como Visual Basic Script o Microsoft Visual Basic Scripting Edition) sucesor de VBA learn.microsoft.com/en-us/windows/…

Manu {G²} aportó una visión forense del #flipperZero Me dejo muchas ponencias más en el tintero, incluso me quedaron pendientes la charlas de Sandra Bardón y Marc R trabajando en equipo y la de Albert Priego

Susp #APT #SharpPanda out.png (#RoyalRoad RTF) virustotal.com/gui/file/c16cd… WSWtmf.a (5t Downloader) 6dfba2e6ae44c0efc5835e0c5838c5ea C2: hxxp://38.54.31[.]43/WindowsTime/update.php?Data=<encrypted_data> Task: WindowsUpdateTaskMachine - rundll32.exe %TEMP%\WSWtmf.a StartW nao_sec

🛡️🛡️🛡️🛡️🛡️🛡️🛡️🛡️🛡️🛡️🛡️ 🎟️🎟️ tickets available !! 🎟️🎟️ 🛡️🛡️🛡️🛡️🛡️🛡️🛡️🛡️🛡️🛡️🛡️ Event #ncn2k24 #cybersecurity track #privacy track Click here to get your PASS 👇🏼👇🏼👇🏼👇🏼 noconname.org/#buytickets Hurry up! Are running out Here we go Barcelona Activa!

🚨#cybersecurity #track #ncn2k24 #talks 👾Unveiling a New Botnet - Diving into the Unknown (ES) _by Albert Priego 📆 November, 19th, 20th 2024 👇 👇We have tickets available 👇 👇 noconname.org/#buytickets 🤳 with the support of Barcelona Activa 📌 Cibernàrium Nou Barris -

La última charla del día de #cybersecurity #track de #ncn2k24 viene de la mano de Albert Priego , a él le hubiera gustado contar con esta información cuando empezaba en #IR en “unveilling a new Botnet - Diving into the unknown”

💻 🥷🏼 No cON Name. Hacking & IT Security conference 2024: Hasta pronto 💻 Ayer tuve la oportunidad de volver a presentar en No cON Name, la conferencia de hacking más antigua de España. En esta edición compartí mi investigación de desmantelar por completo una botnet desconocida. #CyberSecurity #ThreatIntelligence

this is us, guys

🔥 RootedCON 2025 – Here we go! 🔥 I’m thrilled to be back as a speaker at /RootedCON , and this time, I’ll be sharing the stage with my friend Pol Thill. If last year was incredible, this year we’re taking it up a notch! 💡 Are you ready? 📅 Talk slot: March 6, 2025 | 14:00

🕵️ Unmasking Dark Pink: APAC’s Stealthy Threat Actor Join Pol Thill & Albert Priego as they reveal Dark Pink’s tactics & how TeleScout tracks attackers via Telegram C2. 📅 22-23 May 2025 | 📍 voco Orchard, SG 🎟️Conference Pass: event.cybersecuritysg.com/39kL3 #SINCON2025

🚨 Excited to speak at SINCON, Singapore’s top cybersecurity conference! 🚨 Join me & Pol Thill on Fri 23 May as we uncover APT Dark Pink via Telegram C2 message extraction. Come say hi & grab a 🍻 after! #SINCON2025 #CyberSecurity #ThreatIntel