Christian Lawson-Perfect @christianp

0 posts0 participants0 posts today

**not Evander Sinque** @FiLiS@mastodon.social · Apr 15

Apr 15

not Evander Sinque @FiLiS@mastodon.social

Es gibt nichts zu sehen, bitte gehen Sie weiter. #microsoft #keylogger #malware

Replied in thread

**OMG** @pascal_f@infosec.exchange · Apr 14 *

Apr 14 *

OMG @pascal_f@infosec.exchange

@politik
Können wir #Palantir und die Vordergrundgeschalteten #AIassistenten als #digitaleWaffen deklarieren und sie als das bezeichnen, was sie vordergründig sind, #keylogger. Was wurde aus dem #bundestrojaner? Steckt man Palantir da als Malwarebundle zusammen?
https://de.m.wikipedia.org/wiki/Keylogger

@digitalcourage
@netzpolitik_feed
@heiseonline

de.m.wikipedia.orgKeylogger – Wikipedia

#Politik #Propaganda #Fakenews

**Jérôme Herbinet - FLOSS sower** @jerome_herbinet@pouet.chapril.org · Apr 11 *

Apr 11 *

Jérôme Herbinet - FLOSS sower @jerome_herbinet@pouet.chapril.org

Sous #Android, à défaut d'avoir e/OS/, on pense à remplacer nos applis propriétaires par des #LogicielsLibres et #OpenSource ... appels, agenda, SMS, cloud, galerie, vidéos YouTube, GPS / cartographie, magasins d'applications, etc... mais QUID de votre clavier ?

Et oui, il faut aussi remplacer votre clavier car c'est aussi via cette application que les données fuitent !

Dites-vous que le clavier natif de #Google est un véritable #keylogger

Mon clavier actuel : https://f-droid.org/packages/helium314.keyboard/

f-droid.orgHeliBoard | F-Droid - Free and Open Source Android App RepositoryCustomizable open-source keyboard

**Dissent Doe** @PogoWasRight@infosec.exchange · Apr 5 *

Apr 5 *

Dissent Doe @PogoWasRight@infosec.exchange

Today's reminder of the insider threat involves a pharmacist in Maryland who over a period of 8 years or more, used keyloggers and installed spyware on about 400 computers at the University of Maryland Medical System so he could spy on female co-workers in private moments at work (such as changing clothes, breastfeeding their babies), and in their homes. He was reportedly fired in October 2024, and was able to get another job in another healthcare facility in Maryland because there has been no criminal charges filed against him yet and UMMS apparently didn't alert his new employer.

If Maryland law is like my state's laws, the hospital may be barred legally from revealing what happened if asked for a recommendation by the new employer. And it seems the Maryland state pharmacy board can't just suspend a license unless there's been a conviction, so the failure to have criminal charges filed already seems to have put more potential victims at risk.

Unsurprisingly, a potential class action lawsuit has already been filed against UMMS with six plaintiffs so far. There are estimates that there are more than 80 victims of the now-former employee.

Some of the media coverage on the case: https://thedailyrecord.com/2025/04/04/six-women-sue-umms-claiming-staffer-spied-on-them-after-security-breach/

Maryland Daily Record · Apr 4Six women sue UMMS, claiming staffer spied on them after security breachBy Ian Round

#InsiderThreat #keylogger #workplace

**Pyrzout** @jos1264@social.skynetcloud.site · Mar 14

Mar 14

Pyrzout @jos1264@social.skynetcloud.site

DeepSeek’s Malware-Generation Capabilities Put to Test – Source: www.securityweek.com https://ciso2ciso.com/deepseeks-malware-generation-capabilities-put-to-test-source-www-securityweek-com/ #rssfeedpostgeneratorecho #ArtificialIntelligence #CyberSecurityNews #Malware&Threats #securityweekcom #securityweek #ransomware #keylogger #DeepSeek #Malware #AI

CISO2CISO.COM & CYBER SECURITY GROUP · Mar 14DeepSeek’s Malware-Generation Capabilities Put to Test – Source: www.securityweek.comSource: www.securityweek.com - Author: Eduard Kovacs Researchers at security firm Tenable have analyzed the ability of the Chinese gen-AI DeepSeek to dev

**Brad** @malware_traffic@infosec.exchange · Mar 10

Mar 10

Brad @malware_traffic@infosec.exchange

Social media post I wrote about #RemcosRAT for my employer at https://www.linkedin.com/posts/unit42_remcos-rat-keylogger-activity-7304958245322768385-tu-a/ and https://x.com/malware_traffic/status/1899207006939947440

2025-03-10 (Monday): #Remcos #RAT activity. Email distribution used a zip archive attachment with a .7z file extension. During a test infection, we saw indicators of a #Keylogger and a Hacking tool to view browser passwords.

More info at https://github.com/PaloAltoNetworks/Unit42-timely-threat-intel/blob/main/2025-03-10-IOCs-for-Remcos-RAT-activity.txt

A #pcap of the infection traffic and the associated #malware files are available at https://malware-traffic-analysis.net/2025/03/10/index.html

Screenshot of the email distributing Remcos RAT, focusing on the attached archive and its contents.

Traffic from the Remcos RAT infection filtered in Wireshark. It show information about the infected Windows host, and it also shows a Windows EXE sent over the C2 traffic. The Windows EXE is a hacker tool to view browser passwords.

Location of a text file for an offline keylogger. The image shows the beginning of the contents of this keylogger data file.

$This infection was persistent through copies of the initial malware saved to the AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup directory. This image also shows a Windows Registry update caused by the Remcos RAT infection.$

**Tino Eberl** @tinoeberl@mastodon.online · Feb 20

Feb 20

Tino Eberl @tinoeberl@mastodon.online

Ein neuer Angriff mit dem Snake-#Keylogger betrifft Millionen von #Windows-Nutzern.

Die #Schadsoftware zeichnet unbemerkt #Tastatureingaben auf, um #Passwörter und sensible Daten zu stehlen.

Laut Fortinet wurden seit Jahresbeginn über 280 Millionen #Infektionsversuche registriert. Besonders verbreitet ist der Angriff in #China, der #Türkei, #Indonesien, #Taiwan und #Spanien. Der Keylogger wird meist über #Phishing-Mails verbreitet.

https://www.golem.de/news/zugangsdaten-in-gefahr-windows-nutzer-millionenfach-mit-keylogger-attackiert-2502-193493.html

Golem.de · Feb 19Zugangsdaten in Gefahr: Windows-Nutzer millionenfach mit Keylogger attackiert - Golem.deBy Marc Stöckel

#Cybersecurity #Malware

**Hackread.com** @Hackread@mstdn.social · Feb 18

Feb 18

Hackread.com @Hackread@mstdn.social

Alert for Windows users! A new variant of Snake Keylogger is targeting #Windows users worldwide with over 280 million blocked infection attempts globally.

Learn more: https://hackread.com/snake-keylogger-variant-windows-data-telegram-bots/

Hackread - Latest Cybersecurity, Tech, AI, Crypto & Hacking News · Feb 18Snake Keylogger Variant Hits Windows, Steals Data via Telegram BotsFollow us on Bluesky, Twitter (X) and Facebook at @Hackread

#CyberSecurity #Malware #Hackers

**Netzpalaver** @Netzpalaver@social.tchncs.de · Jan 31

Jan 31

Netzpalaver @Netzpalaver@social.tchncs.de

Jailbreaking von Deepseek

#AI #Cybersecurity #Datenexfiltration #DeepSeek #GenAI #Keylogger #künstlicheIntelligenz #LLM @PaloAltoNetworks #Security #Unit42

https://netzpalaver.de/2025/01/31/jailbreaking-von-deepseek/

Continued thread

**Marko Jahnke** @markojahnke@bonn.social · Dec 10, 2024 *

Dec 10, 2024 *

Marko Jahnke @markojahnke@bonn.social

Wenn man jedoch einmal Opfer eines #Infostealer geworden sein sollte, reicht auch ein starkes Masterpasswort nicht, Das Passwort kann über einen #Keylogger mitgelesen und exfiltriert worden sein.

Da hilft dann nur noch das zügige Auswechseln aller Passwörter. Je weniger im betroffenen Passwort-Tresor drin waren, desto besser. Alles nicht ständig benötigte sollte man ohnehin nicht dauerhaft auf einem PC speichern, der online geht.

Nur entnehmbare Token für #2FA können vor sowas schützen.

**DeFrisselle** @defrisselle@mastodon.sdf.org · Dec 5, 2024

Dec 5, 2024

DeFrisselle @defrisselle@mastodon.sdf.org

Investigating Malicious Hardware with Industrial CT: https://www.lumafield.com/article/investigating-malicious-hardware-with-industrial-ct

#InfoSec #Cables #Thunderbold
#Malicious #Keylogger

www.lumafield.com · Dec 2, 2024Investigating Malicious Hardware with Industrial CTDive into the O.MG Cable with Mike Grover and Lumafield’s Neptune scanner, revealing hidden threats with CT’s unmatched supply chain security insights.

**Marek** @centopus@101010.pl · Oct 10, 2024 *

Oct 10, 2024 *

Marek @centopus@101010.pl

Windows 11 24H2 dostaje automatycznie keyloggera, znaczy się recall. Bawcie się dobrze.

https://www.youtube.com/watch?v=G9FRadIkkE0

YouTubeMicrosoft Recall is MANDATORYBy Chris Titus Tech

#windows #windows11 #spyware

**teufelswerk** @teufelswerk@social.tchncs.de · Oct 9, 2024

Oct 9, 2024

teufelswerk @teufelswerk@social.tchncs.de

IONOS-Kunden aufgepasst! Es werden massiv sehr gut imitierte #Phishing Mails versendet. Mails von IONOS sollten sofort gelöscht werden, bitte nicht öffnen und nicht auf den Link in der Mail klicken! Loggt euch ausschliesslich über die offizielle #IONOS Website in euren #Account ein und schaut euch dort eure Benachrichtigungen an! Die gefälschten Login-Seiten sehen täuschend echt aus. Die enthaltenen #Scripte sind verschleiert (#obfuscatet) und mit einem bösen, fiesen #Keylogger versehen.

#scam

**Linux Is Awesome** @Linux_Is_Awesome@mastodon.social · Aug 31, 2024

Aug 31, 2024

Linux Is Awesome @Linux_Is_Awesome@mastodon.social

Pidgin users warned of ss-otr plugin containing a keylogger, shares screenshots. Immediate uninstall is advised.

Source: https://pidgin.im/posts/2024-08-malicious-plugin/

pidgin.im · Aug 22, 2024Malicious PluginGreetings everyone. It is with much regret that I am writing this post. A plugin, ss-otr, was added to the third party plugins list on July 6th. On August 16th we received a report from 0xFFFC0000 that the plugin contained a key logger and shared screen shots with unwanted parties. We quietly pulled the plugin from the list immediately and started investigating. On August 22nd Johnny Xmas was able to confirm that a keylogger was present.

#Pidgin #Linux #Security

**Tarnkappe.info** @tarnkappeinfo@social.tchncs.de · Aug 30, 2024

Aug 30, 2024

Tarnkappe.info @tarnkappeinfo@social.tchncs.de

Keylogger versteckte sich in Erweiterung von Pidgin
#Cyberangriffe #Darkgate #Eset #Jabber #Keylogger #Pidgin https://sc.tarnkappe.info/b4019a

Tarnkappe.info · Aug 30, 2024Keylogger versteckte sich in Erweiterung von PidginEine schädliche Erweiterung des Messengers Pidgin versteckte sich für fast sechs Wochen in einem offiziell zum Download angebotenen Plug-in.

**9x0rg** @9x0rg@mamot.fr · Aug 26, 2024

Aug 26, 2024

9x0rg @9x0rg@mamot.fr

So vous utilisez Pidgin/XMPP avec le plugin `oss-otr`, ce dernier contient un keylogger.

À désinstaller immédiatement.
https://pidgin.im/posts/2024-08-malicious-plugin/

#XMPP #Pidgin #KeyLogger

Replied in thread

**Kevin Karhan** @kkarhan@infosec.space · Jun 13, 2024

Jun 13, 2024

Kevin Karhan @kkarhan@infosec.space

@Quinnypig the sheer fact that #Microsoft and #Windows11 ain't banned across the #EU to this day is an indictment to the #TechIlliteracy of politicans in the @EUCommission & @europarl_en despite

#PRISM
#GoldenKeyBoot (aka. #CensorBoot got owned!)
#CryptoAPI #backdoors they refuse to acknowledge or fix at all!
#CloudAct
Unwillingness to comply with #GDPR out if the box

and now

#Recall aka. the worst disguised #Govware / #Spyware in existance that allows anyone to simply extract credentials without the need to install a #Keylogger, #ScreenRecorder and/or commit #ProvilegueEscalatiom successfully at all...

And since @GossiTheDog managed to get it running on a system w/o "#AI" acceleration aka. "#NPU" it's safe to assume that it'll be perfectly possible to retroactively shove it down everyones' throats without recourse!

Actually there are options for recourse besides "#ThoughtsAndPrayers" that regulators like @bsi would actually take this seriously:

Like: Stop using #Windows and get some help migrating away from it to a good #Linux distro!

GitHubGitHub - kkarhan/windows-ca-backdoor-fix: Fixes a critical backdoor in Windows' CryptoAPI, which allows to unconsenting Update of CA Certificates in the background. See https://www.heise.de/ct/ausgabe/2013-17-Zweifelhafte-Updates-gefaehrden-SSL-Verschluesselung-2317589.htmlFixes a critical backdoor in Windows' CryptoAPI, which allows to unconsenting Update of CA Certificates in the background. See https://www.heise.de/ct/ausgabe/2013-17-Zweifelhafte-Updates-gefae...

#WhatYouAllowIsWhatWillContinue

Replied in thread

**Rpsu (326 ppm)** @rpsu@mas.to · Jun 1, 2024

Jun 1, 2024

Rpsu (326 ppm) @rpsu@mas.to

@tankgrrl To me this MS Keylogger a.k.a Recall looks a lot like a product of toxic culture where asking questions (how does this affect privacy? Can you convince users their usage data is never abused?) is considered hostile activity and punished by managers.

I can’t explain this happening in any other sane way.
#Microsoft #recall #keylogger #privacy #dataBreach

**Unixorn - 90% Snark by weight** @unixorn@hachyderm.io · May 31, 2024

May 31, 2024

Unixorn - 90% Snark by weight @unixorn@hachyderm.io

#infosec #copilot+ #microsoft_recall

On the one hand #Microsoft has Windows Defender that blocks keyloggers. On the other hand, they're about to ship a #keylogger and screen logger as part of the OS.

Tweet from @GossiTheDog.

Microsoft told media outlets a hacker cannot exfiltrate Copilot+ Recall activity remotely.

Reality: how do you think hackers will exfiltrate this plain text database of everything the user has ever viewed on their PC? Very easily, I have it automated.

Followed by a screen shot of opening the sqlite activity database with some example activity

**Newk** @Newk@infosec.exchange · May 21, 2024

May 21, 2024

Newk @Newk@infosec.exchange

Call me old fashioned but I even like my #keyloggers without #AI.

#microsoft #keylogger

Recent searches

Search options

Administered by:

Server stats:

#keylogger