Join a discord group, invitations are sent through a Printer-Vulnerability on TCP-1900.🤣

这个就有点恐怖了

Our latest blog, blog.netlab.360.com/smoke-loader-t… Smoke Loader: The Admin Panel, the 3rd Party Patch, and few other things

This new fbot has shutdown its' reporter port so loader cannot plant payload to its victims now, we will have more detail later on our blog, stay tuned.

Good Job.

No more updates and Downloads. rootkiter.com/EarthWorm/en/i… rootkiter.com/Termite/index-…

Thanks for promotion.

Our latest blog is about taking a look at NTP pool usage in China through our massive pdns data. blog.netlab.360.com/look-at-ntp-po…

This sample is a good news for honeypot plugin developers and snort like rule writers. If you don't know where to find common exploits used by Linux malwares, e.g., #Mirai, #Gafgyt, this sample is a a good entry.

Our latest blog, The Bigviktor Botnet, which targets DrayTek Vigor Router, the botnet uses DGA for C2 connection, and we were able to register few of the C2 domains so we can see the infected hosts. blog.netlab.360.com/bigviktor-dga-…

Shocked by murder of Afghan civilians & prisoners by Australian soldiers. We strongly condemn such acts, &call for holding them accountable.

Our latest blog, "DNS data mining case study - skidmap " This is our first time talking about our DNSmon system, the system has actually been actively tagging and then blocking high-risk security-related domain names on a large scale for two years. blog.netlab.360.com/security-with-…

战忽局的工作太成功了。

2021年にもなって、中国の若者が中古のSony HB-10を取り寄せ、MSX-FANの1画面プログラムを手入力し、エラーなく実行できたことに感動し、それに100万人の視聴者が喝采を送ることになるとは思わなかったな〜 bilibili.com/video/BV1cv4y1…

Our latest blog, blog.netlab.360.com/necro/ an old botnet Necro is now on its v3, adding DGA and trying to sniff and forward victim's traffic. While we were writing the blog article, we notice other vendors have published articles about this botnet's v2, which has stopped spreading.

Our latest blog, Pink is the largest botnet we have observed in the last six years, and it faced off with the device vendor to retain control over the infected devices, which is really rare. blog.netlab.360.com/pink-en/

#Muhstik #Botnet is spreading through #log4j2 RCE now. Exp: http://45.130.229.168:9999/Exploit.class

What are the most active P2P based botnets on the internet now, and what are their sizes? We(360netlab) have a tracking system in place for a while and here are some basic information about Pink,Mozi,Hajime,FritzFrog and Panchan. blog.netlab.360.com/p2p-botnets-re…

怎么还不发😭

Wala, so now only Mac users are in the audience....