Phishing Kit Targets Iran’s Keshavarzi Bank (Agribank)

Phishing Kit Targets Iran's Keshavarzi Bank (Agribank)
A seemingly rare phishing kit that targets Iran’s Keshavarzi Bank (Agribank) users and steals their login + OTP.
Read more →

Send Love to Exfil Telegram Bots

Send Love to Exfil Telegram Bots
A Python script used for sending love messages to any Telegram bots used for exfiltration of stolen data or other cybercrime activity.
Read more →

X-SniPer Chase Phishing Kit Targets Fullz for Account Takeover

X-SniPer Chase Phishing Kit Targets Fullz for Account Takeover
X-SniPer phishing kit even tries to steal the victim’s mobile phone carrier PIN to perform a SIM swap attack to “bypass” 2FA.
Read more →

restore-metamask.com Used to Steal Entire Crypto Wallets

restore-metamask.com Used to Steal Entire Crypto Wallets
The malicious domain restore-metamask.com was used to steal existing crypto wallets of metamask.io users. It also allowed new wallets to be created and cryptocurrencies deposited to the new wallet, but it would ultimately go to the attackers.
Read more →

Bad Opsec: xcazanova -> thetoxichydra -> utoxic

Bad Opsec: xcazanova - thetoxichydra - utoxic
Utoxic is very likely xcazanova, or at minimum very close to him based on the evidence I will show. A leopard don’t change its spots.
Read more →
Disclaimer: The research posted on this website is for information purposes only. Do not use it for illegal purposes.