Krypt3ia

(Greek: κρυπτεία / krupteía, from κρυπτός / kruptós, “hidden, secret things”)

Archive for the ‘Uncategorized’ Category

MORTY! LOOK MORTY! I AM NO LONGER A MALICIOUS SITE MORTY! SOMEHOW THIS IS ANTICLIMACTIC MORTY! BRRRRP!

with 2 comments

Written by Krypt3ia

2017/10/03 at 20:33

Posted in Uncategorized

LOOK MORTY! I’M A DANGEROUS PAGE MORTY!

with 2 comments

 

Still the page is marked as bad yet no malware can be shown to live here.

Written by Krypt3ia

2017/10/02 at 13:16

Posted in Uncategorized

EQUIHAX

with 3 comments

Trawling the darknet as one does, I came across this little simple page this morning. It claims to be the real EQUIFAX hackers, unlike the last darknet site that was soon taken down by morons. I have looked at all the data on the pages (see screen shots below) and have come to the conclusion that whoever this is they too had access to Equifax. As this is an evolving nightmare I thought it prudent to do a quick write up on this site and let you all know. These actors are offering a crowd source solution to the whole database for the same amount as the fake site the other day (600btc) but also are offering single records as well as 1,000,000 entries for 4 bitcoins or 56 ETC for the same amount of records.

This time the actors actually give you samples, a taste, as they say on the street as bona fides…

 

These samples are what makes me think that this actor had access. I know for a fact that as the ongoing arguments take place online over what the compromise consisted of (what attack worked) that I personally saw a tweet from an alleged Russian actor claiming to have shell access on one of their servers online. This later was proven out to have ADMIN/ADMIN as the log and pass which is just horrid security, or should I say lack thereof? Anyway, you can see above that those records seem legit as do the screen shots of the access to the systems using real internal server names etc.

An onion scan of the site turns up no real vulnerabilities…

The bitcoin wallet shows no activity as yet.

EDIT/UPDATE:

In the process of watching this a change has been made to a small point of data that leads me to believe that this is a fake. Someone pointed out that the data for Bill Gates address was incorrect. Since then it has changed…

Oopsies… State : WA

BEFORE

Screenshot from 2017-09-14 14-16-55

AFTER

Screenshot from 2017-09-14 14-07-43

UPDATE TWO:

A new story has surfaced online that makes the claim that the site creators have access to Equifax and there are other screen shots. I am still concerned with the changes to the data seen here but for what it’s worth here’s the link to the story.

https://t.co/IGoKPCXcDD

Written by Krypt3ia

2017/09/14 at 11:38

Posted in Uncategorized

Asymmetric Propaganda Warfare & Network Warfare

leave a comment »

Why is it that the military just can’t grasp that on the net you can’t just use a sledge hammer to make things go away? It seems they finally have gotten a taste of reality in the war against Da’esh with their cyber weaponry hitting their targets only for the Da’eshbags to re-constitute from backups and new domains bought cheaply. I for one have been saying that it is pointless to just DoS them offline or fuck with them in hopes they would go away for many a year, guess now they might get it after their failures.

Ya see kids, it is not about big cyber booms and these guys go away and unless you are using some super software that pops GPS coords into a Raptor’s telemetry and launch a hellfire, you are pretty much gonna be shit outta luck in making a big difference here. Now the prosecution of the war itself may be benefited by such tools (if they exist) but when you see things like the text from the NYT’s article you see that even the administration just fundamentally did not get it. The NSA is a SPY agency and that is their charter, so asking them to dismantle portable networks that are easily re-constituted with new off the shelf hardware and software bespeaks a fundamental lack of understanding about the technology.

So here’s my advice to all you cyber warriors; Use the technologies that SPIES use to gather intelligence and then pass that intel to the HUMINT folks. Hell, for that matter have a two way connection here and use the tech to watch them, interact with them, and then use the information to make kinetic retaliation possible. You know what made AQAP’s propaganda machine slow down? It was when we blew their propaganda team off the face of the earth. In essence kill them. End them. Use the technology to get at them and end them. Stop it with all this whiz bang idiocy thinking you can take them offline and have them not come back in a day or so with a backed up copy of their shitty jihadi boards.

Just one man’s opinion, but you don’t need a sledge hammer to put a thumb tack in the wall.

There are no quick fixes here.

Just sayin.

K.

Written by Krypt3ia

2017/06/15 at 18:08

Posted in Uncategorized

The Russia Connection: Paul Manafort

leave a comment »

screenshot-from-2017-02-16-12-39-51

Back when the Russian hacking revelations started around the DNC hack people started to ask questions about Trump’s connections to Russia. Personally for me one of the more spooky connections was in fact Paul Manafort. His connections to Russia come from his connections to Ukraine and Viktor F. Yanukovych. Of course I had heard about Manafort before he had become the campaign chairman for Trump so once he was installed I had to wonder about those ties to Ukraine and it’s leader, who fled to Russia because he is Putin”s boy. What flashed in my head though when this all started was the fact that some documents had come to light about Manafort’s access to monies by proxy of Yanukovych (and being paid about 12 million dollars for his services there) which as it turns out, once his (Yanukovych) files were searched a slush fund was found and the fact that Manafort had access to that slush fund as well.

Fast forward to today and now we have leaks talking about a “number” of Trump acolytes talking consistently with Russian intelligence officers and Manafort making the comment that “How should I know if they are Russian intelligence? it is not like they wear badges!” Well Paul, it seems that maybe you should just have assumed they all were because you were working for Yanukovych in Ukraine during the last days before he fled to Russia, an unstable place because Russian intelligence and the army have made it so. See, the whole point of Putin’s plan is to destabilize Ukraine and take it over. So yeah, you were surrounded by Russian officers man. So Manafort was there, working with the Putin puppet and he claims he had no knowledge of Russian intelligence being close to him… Right. Who knows what kompromat they have on you and since you were placed at the right hand of Trump for this election (until the heat came on over your ties) you were perfectly placed to run Trump and his minions as a de-facto case agent.

Then today I am trawling the Darknet, as is my wont, when I come across a tantalizing dump about you! On February 8th on a darknet site to be named later, Anon’s have given us a taste of their hacking of your daughter it seems. From the look of the data presented, they owned her phone and they owned some other SQL system with data as well. (pics below) In the dump there are allegations of someone using a mail.ru address and a mail.pravda@icloud email address sending messages to your daughter about your misdeeds in Ukraine. Allegations of monies being taken and things like that. I have looked at these and for what it’s worth these look to be potentially real, but there isn’t much else to go on than some screen captures and then there is the SQLi dbase. In the screen captures though, we can see your daughter responding to all the allegations on the iPhone and then we can see in the dbase dump phone numbers for her and others as well as an email address.

man07

man08

man09

man10

man11

man12

man13 man06

man05

man04

man03

man02

I have withheld the images with the phone numbers in full for obvious reasons but to those who dumped this, I would like to see more if you have it that can prove that these are bona fide dumps. I also contacted someone who has hacked the Ukraine government in the past and asked if they had had any additional data in their dumps concerning Manafort and I am waiting on more. It would be interesting if more dox showed up connecting Manafort to the FSB in Ukraine huh?

Well I would be interested….

K.

 

PS, since the kerfuffle with Politico (who just copies shit) as a bona fide check my next post on this debacle which has more interesting tidbits.

Written by Krypt3ia

2017/02/16 at 18:10

Posted in Uncategorized

with one comment

RCA_Indian_Head_test_pattern

Written by Krypt3ia

2015/12/10 at 12:31

Posted in Uncategorized

Anonymous Versus Da’esh: It’s OPCARTEL All Over Again

leave a comment »

anonymous-mask-tayeb-abu-shehada

Sit down kids and let me unfold to you all how idiotic I think you all are. As someone who has been doing research low these 15 years that we have been in the GWOT I have to just say my peace concerning your so called “war on Isis” The short and simple get off my lawn statement is you have no idea what you are doing. The longer more thoughtful commentary will follow shortly.

Honestly, you all mean well I am sure and I am also sure that many are in it not for the moral faggery but more so the attention seeking narcissism that fuels all of your breathless narratives given to any and all hack reporter that will listen and then fill in the blanks per their own clickbaity needs. In either motivation you all are doing a poor job at trying to prosecute a so called war with horrible OSINT and a plan that only annoy’s the da’eshbags more than stops them communicating.

A great Twitter war of Whack A Mole is pointless and in reality the government and Twitter have only shut down accounts that were not only confirmed to be spewing da’eshbag materials but also were real players. The blanket approach that you all have taken drift net like, and capturing not only some real accounts but also others who are just innocent Muslims, Iranians, Palestinians, etc does nothing for any cause save your own attention seeking. Pay attention! Twitter is not using your data. The government is not using your data! Your data is bad and you are an impediment not great warriors in the greater battle against radical jihad.

khaaaaaan-o

Either work smarter or stop.

I have sat in on your pirate and other “pads” and even given you direct information that some of the people you have targeted have nothing whatsoever to do with jihad. You all never seem to listen so I stopped. I am sure nothing I say here will matter either really so you will continue to go on and be a hindrance while making the headlines. Frankly the hardest thing for me lately is to be tagged together in reports on your little war with the story if my locating the dark net site recently that was a feed of da’esh propaganda. I really want nothing to do with you but the media, though I block them, still cannot seem to get their shit straight and report on what is really important over the lede of ERMEGERD ANONYMOUS WILL WAGE WAR ON DA’ESH!

FUCKERY.

Let me just give you the same cautionary that I gave you on OpCartel

You aren’t ready for this kind of real warfare. If da’esh finds out who any of you are and they are able to, they will kill you. Maybe even behead you for the camera because they too need the media cycles to pimp their ideas and propaganda.

It’s that simple.

Work smarter or leave the battlefield.

K.

 

Written by Krypt3ia

2015/12/01 at 18:03

Posted in Uncategorized