North Korean Hackers Hijack Antivirus Updates
Вставка
- Опубліковано 24 кві 2024
- In this video I talk about the GuptiMiner Malware campaign that's been targeting users of the escan antivirus program. Read more about Gutiminer here
decoded.avast.io/janrubin/gup...
My merch is available at
based.win/
Subscribe to me on Odysee.com
odysee.com/@AlphaNerd:8
₿💰💵💲Help Support the Channel by Donating Crypto💲💵💰₿
Monero
45F2bNHVcRzXVBsvZ5giyvKGAgm6LFhMsjUUVPTEtdgJJ5SNyxzSNUmFSBR5qCCWLpjiUjYMkmZoX9b3cChNjvxR7kvh436
Bitcoin
3MMKHXPQrGHEsmdHaAGD59FWhKFGeUsAxV
Ethereum
0xeA4DA3F9BAb091Eb86921CA6E41712438f4E5079
Litecoin
MBfrxLJMuw26hbVi2MjCVDFkkExz8rYvUF - Наука та технологія
If you're actually using eScan, then you getting hacked is just natural selection
why cap in ur rap
It's just quality control.
I thought he said “eScam” lol
tbh this applies to pretty much anyone who solely relies on a third party to make up for users own stupidity...
The moment he said "Indian" I knew what to expect.
If you want the virus deleted you need to buy 5 amazon gift cards of 200$ each
Done. Where should I send the codes? Hurry! My computer is making noises and I’m sure it’s the virus. Halp!
$200*
@@ultimatums1 no that's part of the joke
@@XerrolAvengerII ah my bad
DO NOT REDEEM IT!!!
April 2024 = hell month for CyberSec
so the saying goes april showers bring may flowers.. wtf kinda "flower" are there going to be..
@@w__a__l__eFeds dumping all their 0days to get us patched up since they lost them all to China and North K., who they are warning is “poised” for some big cyber attack. It takes a few weeks to come up with cover stories for leaking each exploit to the public.
Not if you sell CyberSec stuff. Fear is at its highest, customers are ready to drop those green stacks.
@@vinci522Yup then people start installing all the sketchy security apps and the circle of life continues.
Ackchully (lol), just saw a video about the sudden large number of exploits and vulns, but in reality not much has increased except reporting. Better detection and more reporting, dass woots up.
Sirs... its over
SAAR DO NOT REDEEM
@@Mr.Equinox - Never heard of humor?! smh
@@Mr.Equinoxshut up
@@Mr.Equinox
Lurk moar bundle of sticks
@@Mr.Equinox Good morning sirs
eScan? More like "eScam"
India. 😂
Exactly lol. Wouldn't trust that AV.
Great job boomer! This is absolutely freaking hilarious 😂😂😂😂😂😂😂😂💯
If you're background was in tech I assume you would know anything can be broken in to. But yeah, don't get AVs no one has ever heard of. You don't even need AV if you're not a dummy.
@@Communist-Dogespit Brit 😂
NK did the needful
But did they revert kindly?
Saaaaar you need to install the update sar, don't redeem the code please sar
@@pittuk6500 upgradation
NK made them open bob and vagene
Your stomach hurts, you need to poo.
But I won’t let you near the loo!
Begone from here, young Poojeet.
To the designated shitting street!
SAHR, DO NOT REDEEM THE CRYPTO
SAHR
SAHR DO NOT
you forgot.... *ahem* NOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO
BTCH! WHY DID YOU REDEEEEM?!
DO NOT REDEEM MAAA'AAAM!
maaam Maaam MAAAAAAAM!!
Freaking Islamist pedo
Amerishit trying to be funny lmao
Brother Kim Jong really seems to like your Monero XMR videos
They redeemed
Remember, it’s only an “attack” if it’s not done by an employee of FANG or our government, then it’s an “approach”
Imagine if MSM wrote about US spooks and expropriation the same way, "oppressive American regime steals property of innocent civilians!"
i’m really impressed with the security researchers who managed to figure all this out despite all the efforts to hide and making analysis difficult!
also nice to know that my bad habit of always leaving the task manager running has some benefits in making sneaky viruses that are trying to not get caught afraid to come out (9:07)
Escan. Escam ^ Indian antivirus.
no inb4 for me!
"We feel by scamming our clients we are actually counterintuitively protecting them, besides what thief would want to steal from a house that's already been broken into! Dumbasses am I right"
@@QP9237 Indian corruption, outweighs US corruption that even the scammers have competitive scammers.
@@martin22336 without a doubt, I would love to see the "scamming wars" where companies have proxy fights with call centers to take each other down lol
Indian antivirus are the best
So unplugging your computer would actually work for once?
Well you don't have to resort to caveman tactics but sure. All the 12yo gamers following memory overclocking guides for their 14900K probably have a graveyard of decapitated zombie malware sprinkled across their systems.
@@JJFX- I like my malware because it makes my PC run hot, and as a result, my room feels cozy.
sign your updates
Came here to say the same.
Hhahaahahahah updates cannot signs
And always remember ... DO NOT REDEEM!
@@iamwitchergeraltofrivia9670 mate
So security software that is is supposed to protect your device if not properly implemented can increase the attack service for your device and used to infiltrate your system neat...
Reminds me of SELinux. There is a long trail of CVE's with it. Probably be better of using the most simple permission model you can with the base permission system. Its 50 years old and just a few dozen's of lines long of simple code.
*attack surface
It's a well known problem, like ever since Norton abandoned DOS and went with AV. If you add another app/service/applet/daimon etc.., you increase the attack surface. It's that simple.
Wow this month is a total night for cybersecurity
After working within critical infrastructure, which is really just a bunch of private companies that when you combine them together keeps the US running. Like food manufacturing, shit you would never think of like weighted relief valves and air pressure.
But anyways, you get these engineers who are now in their 50s or 60s and running their business and they haven't updated anything within their infrastructure for years. I mean one place they had filemakerpro as their main software running on a cracked version of it since 2015. Windows 7. Computers that were never shut down. Running 24/7 it was kind of insane seeing it.
And that's the majority of these companies. Boomers who don't understand VMs. Or use Excel to store every crucial password
I worked for one of the largest payment processors and payment gateways in North America. I worked on legacy products. I shit you not, our in office IT team REFUSED *MULTIPLE FUCKING TIMES* to allow us to use a password manager. We also had like 30 different logins for various fucking what the hell does this do tool.
Needless to say I moved on. It is fucking insane to ask me to reset passwords monthly, its sadistic to make me use unique passwords every time, no repeats ever, and its all on an excel I mean GOOGLE DOXX page.
I'm telling you dude. It won't be many more mornings before a million Americans wake up to an empty bank account. Something is gonna fucking give and it just might be all of it all at once.
Even as a independent researcher, the amount of this stuff I can figure out from public information is scary tbh and part of why I keep doing it. (Disclaimer: 'it' here means ethical work only) There's far too many people still at those business that were the smartest in the room 30 years ago still at the helm that in reality are actually complete idiots in modern scenarios.
@@apIthletIcc I have seen an out of service Bank ATM screen that had Windows XP running , Fucking xp lol
If you never shut down you are safe against this malware since it never deploys. Checkmate.
if it aint broke dunt fix it
Thank you for the content, your knowledge as a professional network administrator and in cyber security improved my opsec tremendously.
I imagine how the attack started went down the lines of: "herro parjeet du ru want make morries? plug usb in at wok and I giv you five dorra" and the response "I WILL REDEEM, SAARS!"
YT are bunch of pussies for censoring Pa-je-et ...
You went so overboard with the talking style that I can barely read what you're saying. They don't use so many Rs.
as an Indian, this is accurate
saw this pop up in my phone's notifications and actually clicked on one for once. this sounds like a crazy story
Yeah ikr
oh my god you scared me for a moment there i thought I misclicked on a Vegan Gains video. Anyway keep up the good work!
they should have used protogent
I'm just surprised someone hasn't thought of it before.
Some "cracked" antivirus has malware patches.
Yeah who could have thought that anti-virus programs could become a bigger vulnerability than not having one? I'm truly shocked.
At least I got the big boys Norton and McAfee working overtime so I know this thing is basically fort knox. And no, I'm not an idiot so I obviously have everything enabled in Dell's control center as well.
@@JJFX- I genuinely can't tell if you're making a joke... This world is awful, something went wrong with it.
@@Moe_Posting_Chad The world broke a long time ago my friend.
North Koreans also did a ransomware attack on the swedish alcohol dispensary company. Threatening the booze availability.
Proto would be proud
Once again, TempleOS is completely unaffected.
escan most likely comes bundled on prebuilds for offices that have 8 hour shifts and most likely they mine at night. Now indian chad employees are not like Timmy in the US and likely install software on their office pc as they see fit and that's why avast was on it.
For Science, I once tried to run Multiple antivirus at the same time, and it's great. xd
Anti-virus is not enough. You need PROTEGENT
WORLD'S ONLY ANTIVIRUS WITH DATA RECOVERY SOFTWARE
You should do a video on the different hacking groups, one that I've just found out about is the cult of the dead cow, its really interesting.
It would be interesting to implement software that makes bare metal look as much like it's a VM as posible
I really don't use Indian AV products, btw are you related to Jayson Tatum ?
UHHH NOO SAAR NO VIRUS
Wow- also vids with ur face I feel makes the video better
Babe, new indi home packet phoenix just dropped
Please make a video about your minimalist lifestyle. I have a lot of respect for people live below their means.
REDEEMED!
Sirs, did North Korea just redeem?
Slavic sh!t
Ok, this eScan probably obvious for lot of us here, but there was problem eg with Avast too when they sell user data and we hear other misuse news about bigger antivirus companies for time to time. So what is the good approach to find the safest antivirus software supplier?
dont. on ms the deafult defender is enough. any av is a door for maleware (due to its admin privileges) and most av is not secure at all...
use your brain, dont download shady stuff without VM, dont run foreign code, dont visit untrusted sites... more or less: use your brain instead of being braindead "because you are secure because you have AV"
install Kaspersky
Quick Heal Antivirus Pro Max Advanced Web Protect
Pray Terry
explains why I have no wifi
Wat
but u have cable internet
uh oh... stinky
Man in the middle of my favorite Michael Jackson song.
Thank you kindly for doing the needful.
Wish you made more videos. Everything is crap these days.
Quality over quantity
How so?
The Kitboga memes in the comments make me soo happy :D
So you need multiple avs. Super!
Oh well
Maybe we should head back to simple DOS systems.
Was wondering about you bud
Ironically it was poor security practices (having both eScan and Avast running at the same time) which led to Avast discovering this attack in the first place
the best antivirus is common sense, nothing will ever beat that
ples install kindly
How does north Korea have so many hackers?
Government sponsored
Also im pretty sure the learn how to do it in China.
jews
Why do you even ask anymore? Follow that trail of fucking breadcrumbs and it always leads back to jews trying to abuse people.
They're running in shifts on their computer
They are called best Korea for a reason
The name is unfortunate cuz it immediately sounds like "e-scam". Reminds me of "sudden valley" from arrested development 😂
Who would have thought that slave IT work can lead to big attacks
And to think: All they had to do was sign their update files and it would have prevented this....some amazing anti virus company 🙄
EEEEYIKES!
that shirt is fire
3:56 Are you meaning to tell me they did allat with this malware, but they left RTTI just chilling 💀
Well played NK.
I see a Mental Outlaw video, I click.
Me too but when I see this unoriginal comment, I also click… downvote.
@@emmettturner9452 Is it really unoriginal to show support and appreciation for a content creator though?
@@emmettturner9452 God forbid someone show a content creator appreciation.
@@BrennanWest85 God forbid using the comments for constructive feedback without drowning out what little there is. ;)
@@emmettturner9452 With that mindset and attitude I wonder why YT ghosts your comments? 😌
Based Korea strikes again.
Is my arch Linux effected?
"if u're using escan"
lol who in his right mind would use anything made in poopinstan
ay ye
Fyi Avast also lets do do a file scan, a boot scan...
I wonder, does the auto-kill work based on filenames (like wireshark.exe) or is it based on behavior of packet interception code, modules, lib dependencies? like, will T-shark raise the same flag? if it's nation state, shit prolly.
Proving once again the best antivirus is no antivirus (plus common sense)
Bitdefender and eset are good choices that arent windows defender
next podcast when??
Feels illegal to be this early
Respect to Korea
The support calls would be hilarious where they would first Not understand the problem than try to further scam you 🤪😁
LMFAOOOO
😂😂😂
Thank you Sir Pakistan #1
How can you not root for NK. Love those scrappy guys.
Can you do a video on the fbi crypto warning?
i like how north korea has nothing and no internet and the people dont have advanced tech but somehow these intelligent north korean hackers keep reappearing
I think Windows and Linux/Unix should be required courses in elementary school. As in they have to be able to write scripts/macros and master every CLI/Shell. Of course that would destroy the AV software club. You really don't need it once you know how to talk to your computer in it's language.
I'm a complete retard with no knowledge about software, but while you are technically right in a perfect world, we just don't live in one. A decent AV program solves problems automatically, if we actually reached the point where any regular PC user could craft their own AV program then that would be great, but it's not a realistic expectation in the foreseeable future.
@@admontblancdon’t need to even craft your own if you simply are educated enough on internet safety and red flags of how you would end up with malware / noticing if you may be compromised. Haven’t used AV for god knows how long and I have had no issues with being compromised. I think that is what OP is trying to say, as opposed to making your own AV.
WTF is escan? I've never heard of that antivirus.
Here hoping they hack Protegent. Just imagine the memes.
What a relief 😮💨 I don't use antivirus
Only my Russian minified version of windows 🫵
Pajeet software quality TM
How do you pay the license? Amazon gift cards?
@@DonVigaDeFierro tree command
Ok most of these were not in taste but this one made me laugh lmfao
@@VivekYadav-ds8oz no one cares. truth hurts, vivek.
@@ultimatums1 silence American
Then the victim gets a call from Microsoft Support?
Imagine installing an antivirus, tha came from India of all places
How secure is tutanota? Sorry if this seems like a silly question?
Definitely better than Google
@@jinmong5417 oh I agree, rather use that than Gmail
look up the rcmp agent saying its a 🍯pot
@@user-el4su7tl6f why is that never brought up, can I have a source of that, and what is your recommendation then
It's good. Germans really investing in cyber security after big scandal with US government involved. I can reccomend German IT solutions.
you mean the thing facebook did that was 100% ok and no one was held accountable..
Joe need the same text prompt reader to complete the confusion.
I’m way ahead of them, I have Norton 360. Norton already hijacked my pc 😎
Using eScam is crazy
Can't trust anyone and anything these days!
How update if update server bad 😅
as mutahar said
the best antivirus is common sense
Definitely need a normie video on antivirus for PCs & Androids, this shit never ends, & cyber warfare is like biological warfare, it doesn't care where it's targeted.
Oh. Easy. Antivirus is just a virus. The idea is that maybe it can be a benign virus that tries to prevent other viruses from contaminating your system. It never works.
It's too late for normies. No amount of antiviruses will help with the habit of running everything as super user.
The future is a cloud based OS on a touch screen and the screen will dictate your life to you.
We have to stop this nightmare from manifesting.
I don't use escan but I have this malware.😢
multi vm is the answer
I think the victims may have installed a crack version of eScan.
We need a Kim Jong-un wojak.
Guys do not forget postman is also Indian company. Do not be shallow minded
IT this month: AAAAAAAAAAAAAAAAAAAAAAAAAAAA!!!!!
Cyber Vax injury :(
🔦
*indian antivirus*
-escan- eScam