Welcome, Guest
You have to register before you can post on our site.

Username/Email:
  

Password
  





Search Forums

(Advanced Search)

Forum Statistics
» Members: 142
» Latest member: Thief018
» Forum threads: 1,539
» Forum posts: 4,175

Full Statistics

Latest Threads
Crowdstrike greška onespo...
Forum: Vesti, zanimljivosti i razno
Last Post: milos_rs
4 hours ago
» Replies: 3
» Views: 76
Kibernetički napad na KBC...
Forum: Kompromitovani resursi
Last Post: milos_rs
Yesterday, 09:34 PM
» Replies: 4
» Views: 684
Slučajnost ili nešto više...
Forum: Phishing / Scam / Spam kampanje
Last Post: milos_rs
Yesterday, 09:14 PM
» Replies: 76
» Views: 18,833
Poštanska Štedionica šalj...
Forum: Neadekvatno zaštićeni resursi
Last Post: milos_rs
Yesterday, 07:52 AM
» Replies: 0
» Views: 38
BalCCon2k24 - karte na pr...
Forum: Seminari, predavanja, radionice, konferencije
Last Post: milos_rs
07-17-2024, 09:28 PM
» Replies: 0
» Views: 36
Tomislav Vuk: Security Aw...
Forum: Seminari, predavanja, radionice, konferencije
Last Post: milos_rs
07-17-2024, 09:23 PM
» Replies: 0
» Views: 32
Sajber akademija RS - sta...
Forum: Inicijative
Last Post: kernel_priest
07-17-2024, 02:31 PM
» Replies: 0
» Views: 43
Počela prva Sajber akadem...
Forum: Vesti, zanimljivosti i razno
Last Post: milos_rs
07-17-2024, 01:59 PM
» Replies: 0
» Views: 56
Napad na BB
Forum: O forumu
Last Post: y0d4
07-17-2024, 09:13 AM
» Replies: 1
» Views: 2,011
Otvorena javna rasprava o...
Forum: Vesti, zanimljivosti i razno
Last Post: milos_rs
07-15-2024, 07:28 PM
» Replies: 7
» Views: 2,128

 
  Crowdstrike greška onesposobila Windows računare i servere na globalnom nivou.
Posted by: VincaSec - 8 hours ago - Forum: Vesti, zanimljivosti i razno - Replies (3)

Quote:Širom sveta došlo je do velikog tehničkog kvara zbog kog mediji otežano rade i ne mogu da emituju program, aerodromi su blokirani, letova nema, a i pojedine banke imaju poteškoća u radu. Sumnja se da iza ovog globalnog problema stoji greška kompanije Crowdstrike, inače zadužene za sajber bezbednost.

Kako navodi BBC, sada ima izveštaja koji sugerišu da je kompanija za sajber bezbednost pod nazivom Crowdstrike, koja proizvodi antivirusni softver, izdala ažuriranje softvera koje je pošlo naopako i sada da uništava Windows uređaje – što je izazvalo takozvani „plavi ekran smrti“ na računarima.

https://nova.rs/vesti/svet/da-li-je-ovo-...nu-gresku/

Print this item

  Poštanska Štedionica šalje klijentima mejlove bez enkripcije
Posted by: milos_rs - Yesterday, 07:52 AM - Forum: Neadekvatno zaštićeni resursi - No Replies


.jpeg   2twjlmc3r7dd1.jpeg (Size: 209.79 KB / Downloads: 30)

Nemam headere da vidim sa kog mejl servera je stiglo, ali ovo su im mejl serveri u DNS-u:

Code:
posted.co.rs mail is handled by 15 mail-bcp.posted.co.rs.
posted.co.rs mail is handled by 50 exch1.posted.co.rs.
posted.co.rs mail is handled by 60 exch2.posted.co.rs.
posted.co.rs mail is handled by 10 mail.posted.co.rs.
posted.co.rs mail is handled by 20 bmail.posted.co.rs.


Code:
posted.co.rs descriptive text "v=spf1 mx a ip4:194.145.153.16 ip4:194.145.153.18  ip4:194.145.153.19 ip4:194.145.153.150 ip4:194.145.153.151 ip4:194.145.153.146 -all"



Za ulazne mejlove podržava enkripciju:


.png   posted1.png (Size: 194.63 KB / Downloads: 27)

Sertifikat na serverima je difoltni self-signed sertifikat od Trend Micro InterScan™ Messaging Security Virtual Appliance kojeg očigledno koriste:


.png   posted2.png (Size: 121.78 KB / Downloads: 27)

Mejl serveri kažu da su:

Code:
220 posted.co.rs -- ESMTP Server IMSVA
250-imsva.poststed.co.yu

220 posted.co.rs -- ESMTP Server IMSVA
250-imsva-bcp.poststed.co.yu

Samo mail.posted.co.rs i mail-bcp.posted.co.rs su pristupačni sa interneta

Print this item

  BalCCon2k24 - karte na prodaju
Posted by: milos_rs - 07-17-2024, 09:28 PM - Forum: Seminari, predavanja, radionice, konferencije - No Replies

Balkan Computer Congress BalCCon2k24 - Invisible Path 
20 | 21 | 22 September 2024 
Congress Center, Hajduk Veljkova 11 
Novi Sad, Serbia, Earth, Milky Way 

Trodnevne karte su puštene na prodaju https://2k24.balccon.org/index.php?title=Tickets

Print this item

  Tomislav Vuk: Security Awareness - The Human Firewall (webinar)
Posted by: milos_rs - 07-17-2024, 09:23 PM - Forum: Seminari, predavanja, radionice, konferencije - No Replies

Je li Security Awareness Training potreban?

Quote:In the webinar below (Jul 11th 2024), Tomislav Vuk explores both the importance and the pitfalls in building a security awareness program. Tomislav is a cybersecurity consultant with extensive experience in designing and implementing security awareness trainings. Discover why the future of cybersecurity is about building a resilient human firewall within the organizations.

Note: webinar recording in Croatian language

https://www.techinsights.pro/post/webina...n-firewall

Print this item

Lightbulb Sajber akademija RS - sta tacno ne valja u tome svemu?
Posted by: kernel_priest - 07-17-2024, 02:31 PM - Forum: Inicijative - No Replies

Jedan od najvecih failova unazad 2 godine jeste bio davanje 3.5 miliona eur za "sajber akademiju" (znamo li sta je akademija?) za obuku drzavnih radnika.

Da bih pojasnio malo kako je islo krenucu od prostih stvari. Za sektor cyber security je jako bitna motivacija. Onda je bitan pravilan izbor kadrova a onda i odakle ce isti da uce/edukuju se/obucavaju se.

Prvo, firma iz Izraela bavi se uglavnom vojnom industrijom i jedan manji dio je odjeljenje cyber security - cak i nemaju u sklopu svog posla opis za obuku. Izabrao ih je Srdjan Rajicevic - ex ministar.

Drugo, ljudi koji su "prosli" selekciju su radnici iz vlade Srpske. Sad malo da pojasnim. Dosta ljudi nije imalo sanse da dodje do drzavnih firmi, da se bavi unutar istih poslovima koje mozda vole. Vecina tih ljudi iz drzavnih firmi je uglavnom nezainteresovana za bilo sta a o cyber security da ne pisem. I onda tako "motivisane" radnike dovedete na "obuku" koja je javnosti nepoznata a sa cijenom gdje su mogli obuciti preko 2000 ljudi za neke ozbiljnije sertifikate i slicno.

Ono sto znam unazad 15 god i vise o "sigurnosti" od raznih vladinih sektora, mupova i slicno da tamo nikada nisu radili ljudi koji su imali neko znanje vec ko je imao vezu/stelu. I onda takve "motivisane" ljude dovodite da vode bilo sta ozbiljnije je recept za katastrofu.

Eto mozda nekome bude inspiracija da rade THM i HTB sertifikate jer ste opet u velikoj prednosti u odnosu na ove ljude: volite to sto radite, motivisani ste.

Status sa Linkedina: https://www.linkedin.com/feed/update/urn...605816832/

izvor: https://mondo.ba/Info/Drustvo/a1243072/P...ja-RS.html

Print this item

  Počela prva Sajber akademija u RS: Polaznike obučavaju izraleski stručnjaci za bezbje
Posted by: milos_rs - 07-17-2024, 01:59 PM - Forum: Vesti, zanimljivosti i razno - No Replies

Prvi polaznici Sajber akademije u Republici Srpskoj započeli su danas obuku sa instruktorima iz Izraela.

Quote:Ugovor između Vlade Republike Srpske i izraelske kompanije "Elta Systems" o uspostavljanju Sajber akademije potpisan je u novembru prošle godine.
Do kraja 2025. godine u ovaj projekat biće uloženo 6,2 mil KM, a ilj je da Srpska odgovori na sve veće bezbjednosne sajeber izazove.

Tada je saopšteno da je u pitanju izraelska kompanija koja ima oko 16.000 zaposlenih od kojih su 70% inženjeri i naučnici koji nude sajber rješenja na međunarodnom i nacionalnom nivou. Proizvode radare, sisteme bazirane na elektromagnetnim senzorima i druge vrste vojne opreme, te pružaju usluge elektronskog nadzora i kibernetičke bezbjednosti i odbrane.

"U okviru akademije treniraćemo lokalne eksperte da i sami postanu treneri da bismo omogućili nezavisnost i dostupnost domaćih sajber ekperata koji će moći da održe visok nivo sajber bezbjednosti u Srpskoj", rekao je nakon potpisivanja ugovora poslovni direktor Sajber odjeljenja kompanije "Elta Systems" iz Izraela Moti Harvel.

Print this item

  Analiza objavljenih podataka firme mSpy koja nudi špijunski softver za mobilne
Posted by: milos_rs - 07-15-2024, 09:59 AM - Forum: Kompromitovani resursi - Replies (3)

Prošle nedelje je objavljeno, između ostalog i u ovom Techcrunch članku, da su nepoznati napadači ukrali milione upita za korisničku podršku od firme mSpy koja prodaje telefonski špijunski softver za mobilne telefone, uključujući lične podatke, imejlove za podršku i priloge koji uključuju i lična dokumenta poslatati  preko upita za korisničku podršku.


.png   d2.png (Size: 68.78 KB / Downloads: 763)

Odakle su tačno ovi ukradeni podaci? Oni su sa "Zendesk online help-desk" tiketing sistema od firme mspy koji obrađuje upite za tehničku podršku. U podacima se nalaze samo oni koji su poslali neki vid upita za podršku od same firme preko tog sistema. Ovo se ne može uzeti kao spisak stvarnih klijenata špijunske usluge jer ovde ima i upita o tome kako softver funkcioniše, što ne znači da je ta osoba zaista kupila i koristila softver. Takođe ima jako jako puno "ne funkcioniše mi vratite mi novac nazad" upita jer nude povraćaj novca 14 dana posle kupovina i mnogi iskoriste tu mogućnost, da li im zaista ne radi ili su pokupili šta su hteli sa špijunskim softverom pa žele da iskoriste da uzmu novac nazad ne možemo znati.

Upiti za podršku uključuju i druge proizvode, nije samo sa mspy.com nego i eyezy.com, scannero.io, localize.mobi, spynger.net, verovatno i još neke druge koje nisam primetio. Čini mi se da ista firma drži sve ove proizvode mada nije potpuno jasno sa samih sajtova, ali trebalo bi da iza svih stoji firma Brainstack iz Ukrajine.



Slede mejl adrese na ex-yu ccTLD domenima koji se nalaze u spisku korisnika tiketing sistema, kao i datum kada im je nalog kreiran na tiketing sistemu. Ovo je zapravo samo mali deo korisnika jer većina koristi mejl servise kao gmail, yahoo, icloud, itd. Uklonio sam korisničko ime da bih zaštitili nevine, ali oni jesu dostupni u samim podacima...

PAŽNJA: Domene od provajdera koriste njihovi pretplatnici, a ne korporacija koja stoji iza imena firme. Na primer sbb.rs ptt.rs eunet.rs mts.rs inet.hr itd.

Srbija
Code:
"email":"***@vidmark.rs","created_at":"2024-04-21T10:10:31Z"
"email":"***@free.co.rs","created_at":"2024-04-11T19:36:09Z"
"email":"***@hotmail.rs","created_at":"2024-04-07T21:10:06Z"
"email":"***@cep.org.rs","created_at":"2024-03-22T08:30:05Z"
"email":"***@elfak.rs","created_at":"2024-02-25T00:51:38Z"
"email":"***@vencanje.rs","created_at":"2024-01-22T14:48:35Z"
"email":"***@sbb.rs","created_at":"2024-01-19T05:32:38Z"
"email":"***@mts.rs","created_at":"2024-01-14T21:42:48Z"
"email":"***@eunet.rs","created_at":"2023-12-20T15:09:36Z"
"email":"***@mts.rs","created_at":"2023-12-08T20:07:00Z"
"email":"***@ptt.rs","created_at":"2023-10-29T00:16:43Z"
"email":"***@helpcomputers.rs","created_at":"2023-09-07T15:39:49Z"
"email":"***@silprom.rs","created_at":"2023-08-12T20:29:58Z"
"email":"***@gcm.rs","created_at":"2023-07-24T08:55:21Z"
"email":"***@mts.rs","created_at":"2023-06-05T13:18:36Z"
"email":"***@hotmail.rs","created_at":"2023-06-03T06:32:47Z"
"email":"***@bba.edu.rs","created_at":"2023-02-14T15:20:28Z"
"email":"***@jjzmaj.edu.rs","created_at":"2023-01-18T19:06:39Z"
"email":"***@sbb.rs","created_at":"2023-01-15T19:53:40Z"
"email":"***@mts.rs","created_at":"2023-01-14T20:02:09Z"
"email":"***@hotmail.rs","created_at":"2023-01-12T15:58:10Z"
"email":"***@hotmail.rs","created_at":"2022-11-26T13:54:55Z"
"email":"***@polyagram.rs","created_at":"2022-10-13T14:16:37Z"
"email":"***@hotmail.rs","created_at":"2022-09-29T07:27:16Z"
"email":"***@envy.rs","created_at":"2022-08-15T06:33:56Z"
"email":"***@eunet.rs","created_at":"2022-03-08T00:23:10Z"
"email":"***@ozitsolutions.rs","created_at":"2022-01-24T21:15:36Z"
"email":"***@hotmail.rs","created_at":"2021-09-19T19:55:31Z"
"email":"***@berlitz.co.rs","created_at":"2021-06-09T09:20:46Z"
"email":"***@hotmail.rs","created_at":"2021-02-01T22:19:46Z"
"email":"***@apm-build.rs","created_at":"2021-01-18T20:22:11Z"
"email":"***@zepter.rs","created_at":"2020-05-26T09:38:50Z"
"email":"***@berlitz.co.rs","created_at":"2020-03-23T18:57:32Z"
"email":"***@artefacto.rs","created_at":"2019-09-02T11:37:52Z"
"email":"***@subsys.rs","created_at":"2019-08-30T11:39:41Z"
"email":"***@clico.rs","created_at":"2018-10-26T09:06:35Z"
"email":"***@netbridge.rs","created_at":"2017-12-05T09:29:54Z"
"email":"***@proficon-md.rs","created_at":"2017-09-18T22:09:53Z"
"email":"***@ddor.co.rs","created_at":"2017-09-02T09:56:52Z"
"email":"***@eunet.rs","created_at":"2016-12-19T15:00:53Z"
"email":"***@ze.rs","created_at":"2016-10-26T19:06:12Z"
"email":"***@eunet.rs","created_at":"2016-03-07T09:15:14Z"
"email":"***@emipharm.rs","created_at":"2015-08-26T18:49:49Z"
"email":"***@wiland.rs","created_at":"2015-08-04T06:59:37Z"
"email":"***@hotmail.rs","created_at":"2015-08-03T09:26:47Z"
"email":"***@dvor.rs","created_at":"2015-07-03T15:25:50Z"
"email":"***@eunet.rs","created_at":"2015-02-04T17:55:06Z"
Od državnih institucija imamo neke fakultete i škole.

Hrvatska
Code:
"email":***@zg.t-com.hr","created_at":"2024-05-23T09:14:20Z"
"email":***@net.hr","created_at":"2024-04-30T19:28:06Z"
"email":***@arenadental.hr","created_at":"2024-04-08T05:41:24Z"
"email":***@uzop.hov.hr","created_at":"2024-03-26T14:06:44Z" (greška u kucanju od samog korisnika, ovo je uzop.gov.hr)
"email":***@inet.hr","created_at":"2024-03-15T14:17:46Z"
"email":***@sumins.hr","created_at":"2024-01-29T07:24:35Z
"email":***@pbzcard.hr","created_at":"2024-01-15T16:58:58Z"
"email":***@net.hr","created_at":"2024-01-09T21:50:43Z"
"email":***@kraljev-govor.hr","created_at":"2023-12-28T21:33:59Z"
"email":***@vz.t-com.hr","created_at":"2023-12-19T07:43:39Z"
"email":***@irb.hr","created_at":"2023-12-09T03:28:51Z"
"email":***@net.hr","created_at":"2023-10-24T12:22:09Z"
"email":***@fthm.hr","created_at":"2023-10-20T19:26:01Z"
"email":***@net.hr","created_at":"2023-09-17T17:23:08Z"
"email":***@softlink.hr","created_at":"2023-09-04T04:00:29Z"
"email":***@skole.hr","created_at":"2023-08-30T10:06:47Z"
"email":***@zg.t-com.hr","created_at":"2023-08-09T10:03:18Z"
"email":***@mef.hr","created_at":"2023-07-15T16:01:13Z"
"email":***@net.hr","created_at":"2023-07-12T16:26:25Z"
"email":***@mef.hr","created_at":"2023-05-30T07:06:59Z"
"email":***@artanimi.hr","created_at":"2023-05-07T08:04:11Z"
"email":***@gs.t-com.hr","created_at":"2023-05-01T15:50:53Z"
"email":***@net.hr","created_at":"2023-03-13T18:31:45Z"
"email":***@inet.hr","created_at":"2023-02-22T07:00:07Z"
"email":***@pu.t-com.hr","created_at":"2023-02-07T12:08:14Z"
"email":***@pumpe.hr","created_at":"2023-01-26T02:30:07Z"
"email":***@waterways.hr","created_at":"2023-01-02T16:35:35Z"
"email":***@skole.hr","created_at":"2022-12-13T10:03:08Z"
"email":***@pajca.hr","created_at":"2022-11-12T07:56:42Z"
"email":***@inet.hr","created_at":"2022-11-07T22:44:23Z"
"email":***@inet.hr","created_at":"2022-10-03T17:21:31Z"
"email":***@net.hr","created_at":"2022-08-28T09:04:05Z"
"email":***@pozderec.hr","created_at":"2022-08-05T05:19:57Z"
"email":***@net.hr","created_at":"2022-06-03T21:37:52Z"
"email":***@gs.t-com.hr","created_at":"2022-05-28T16:22:33Z"
"email":***@net.hr","created_at":"2022-01-29T09:07:55Z"
"email":***@xnet.hr","created_at":"2022-01-11T10:26:46Z"
"email":***@jeklotehna-ting.hr","created_at":"2022-01-03T18:46:37Z"
"email":***@net.hr","created_at":"2021-12-15T17:37:46Z"
"email":***@buteo.hr","created_at":"2021-11-29T08:05:15Z"
"email":***@dnz.hr","created_at":"2021-11-26T16:12:40Z"
"email":***@zg.ht.hr","created_at":"2021-09-18T13:39:10Z"
"email":***@vipdata.hr","created_at":"2021-08-10T21:19:36Z"
"email":***@mala-luna.hr","created_at":"2021-08-09T06:22:06Z"
"email":***@spz.hr","created_at":"2020-05-15T20:00:31Z"
"email":***@bertol-automobili.hr","created_at":"2020-02-26T14:23:31Z"
"email":***@yahoo.com.hr","created_at":"2020-01-27T17:26:42Z"
"email":***@vip.hr","created_at":"2019-11-26T10:43:54Z"
"email":***@artech.hr","created_at":"2019-11-07T07:38:35Z"
"email":***@kr.t-com.hr","created_at":"2019-08-11T22:48:51Z"
"email":***@zg.t-com.hr","created_at":"2019-07-03T09:40:44Z"
"email":***@net.hr","created_at":"2019-06-08T15:22:05Z"
"email":***@obrt-vugec.hr","created_at":"2019-05-09T10:45:56Z"
"email":***@fsb.hr","created_at":"2019-04-16T13:36:21Z"
"email":***@mireo.hr","created_at":"2018-11-23T14:58:37Z"
"email":***@imz.hr","created_at":"2018-10-03T07:42:58Z"
"email":***@staklarstvo.hr","created_at":"2018-08-15T02:20:00Z"
"email":***@riteh.hr","created_at":"2018-04-30T16:14:08Z"
"email":***@riteh.hr","created_at":"2018-04-29T14:26:01Z"
"email":***@inet.hr","created_at":"2018-02-19T13:40:32Z"
"email":***@zut.hr","created_at":"2018-01-15T12:04:51Z"
"email":***@linijamoderna.hr","created_at":"2017-10-09T15:02:57Z"
"email":***@skole.hr","created_at":"2017-08-10T23:49:44Z"
"email":***@magel.hr","created_at":"2017-07-09T07:46:41Z"
"email":***@magel.hr","created_at":"2017-07-08T07:12:43Z"
"email":***@sk.t-com.hr","created_at":"2017-06-27T17:07:33Z"
"email":***@ls240.t-com.hr","created_at":"2017-06-09T10:25:42Z"
"email":***@indesign-juric.hr","created_at":"2017-06-06T04:33:55Z"
"email":***@carrservice.hr","created_at":"2017-05-22T15:50:15Z"
"email":***@net.hr","created_at":"2017-04-26T10:00:56Z"
"email":***@ppk.hr","created_at":"2017-01-27T15:13:11Z"
"email":***@vip.hr","created_at":"2016-12-21T10:41:00Z"
"email":***@nns-el-ing.hr","created_at":"2016-10-20T12:51:21Z"
"email":***@proactiva.hr","created_at":"2016-08-31T22:16:58Z"
"email":***@pu.t-com.hr","created_at":"2016-08-21T18:58:26Z"
"email":***@indija.hr","created_at":"2016-08-20T14:14:03Z"
"email":***@net.hr","created_at":"2016-04-08T19:27:05Z"
"email":***@prolight.hr","created_at":"2016-03-10T10:48:16Z"
"email":***@ffzg.hr","created_at":"2016-02-17T02:49:24Z"
"email":***@net.hr","created_at":"2016-01-17T13:40:09Z"
"email":***@elevator.hr","created_at":"2015-11-22T08:48:25Z"
"email":***@comping.hr","created_at":"2015-11-09T10:37:30Z"
"email":***@skole.hr","created_at":"2015-11-04T09:39:38Z"
"email":***@comping.hr","created_at":"2015-11-03T12:46:17Z"
"email":***@vz.t-com.hr","created_at":"2015-10-24T13:46:07Z"
"email":***@comping.hr","created_at":"2015-10-21T12:43:01Z"
"email":***@zg.t-com.hr","created_at":"2015-09-09T09:13:04Z"
"email":***@inet.hr","created_at":"2015-08-19T08:23:44Z"
"email":***@media-zd.hr","created_at":"2015-07-23T10:41:25Z"
"email":***@zg.t-com.hr","created_at":"2015-07-23T07:20:23Z"
"email":***@zg.t-com.hr","created_at":"2015-07-20T00:39:20Z"
"email":***@lobaris.hr","created_at":"2015-07-06T21:41:53Z"
"email":***@bolnica-nemec.hr","created_at":"2015-06-17T22:35:06Z"
"email":***@bauerfeind.hr","created_at":"2015-05-17T20:43:15Z"
"email":***@net.hr","created_at":"2015-02-08T13:12:24Z"
"email":***@vef.hr","created_at":"2015-02-08T08:58:10Z"
"email":***@cropellets.hr","created_at":"2015-01-30T05:52:36Z"
"email":***@northstar.hr","created_at":"2015-01-29T16:45:20Z"
"email":***@inet.hr","created_at":"2014-12-13T17:43:22Z"
"email":***@vip.hr","created_at":"2014-11-06T16:35:44Z"
"email":***@zg.t-com.hr","created_at":"2014-11-03T14:25:39Z"
"email":***@pravst.hr","created_at":"2014-10-13T05:46:25Z"
Što se tiče državnihi institucija, ovde prepoznajem uzop.gov.hr i skole.hr

Bosna i Hercegovina
Code:
"email":"***@hl-group.ba","created_at":"2024-04-22T08:12:19Z"
"email":"***@bih.net.ba","created_at":"2024-01-17T13:28:04Z"
"email":"***@infocomp.ba","created_at":"2023-09-10T18:00:42Z"
"email":"***@asautocentar.ba","created_at":"2023-08-25T12:10:37Z"
"email":"***@ius.edu.ba","created_at":"2023-08-17T23:22:00Z"
"email":"***@fkn.unsa.ba","created_at":"2023-04-30T13:03:23Z"
"email":"***@gmail.com.ba","created_at":"2023-04-09T18:18:38Z"
"email":"***@tscze.ba","created_at":"2023-04-04T10:52:33Z"
"email":"***@bih.net.ba","created_at":"2022-12-15T16:09:24Z"
"email":"***@tradeup.ba","created_at":"2022-05-12T06:12:13Z"
"email":"***@securitas.ba","created_at":"2017-07-11T08:36:28Z"
"email":"***@jobstep.ba","created_at":"2015-12-01T13:30:45Z"
"email":"***@bih.net.ba","created_at":"2015-05-02T10:03:06Z"
"email":"***@logosoft.ba","created_at":"2014-12-13T10:10:23Z"
"email":"***@bts.ba","created_at":"2014-12-01T17:03:45Z"
Od državnih institucija prepoznajem škole i fakultete

Slovenija
Code:
"email":***@artegis.si","created_at":"2024-05-06T09:44:01Z"
"email":***@procommerce.si","created_at":"2024-03-06T15:02:20Z"
"email":***@sunokto.si","created_at":"2024-03-04T07:53:24Z"
"email":***@procommerce.si","created_at":"2024-02-26T19:05:49Z"
"email":***@f5.si","created_at":"2024-02-18T17:35:07Z"
"email":***@lely.si","created_at":"2024-01-15T12:19:42Z"
"email":***@sat-control.si","created_at":"2023-12-14T18:46:47Z"
"email":***@rubin1.si","created_at":"2023-12-07T07:38:16Z"
"email":***@keranovic.si","created_at":"2023-11-21T19:39:28Z"
"email":***@soluciones.si","created_at":"2023-11-14T09:50:23Z"
"email":***@badger.si","created_at":"2023-10-05T07:07:17Z"
"email":***@delavska-hranilnica.si","created_at":"2023-08-31T08:04:42Z"
"email":***@stojanovic.si","created_at":"2023-07-31T12:11:23Z"
"email":***@imp-pumps.si","created_at":"2023-07-13T07:37:15Z"
"email":***@imp-pumps.si","created_at":"2023-07-10T06:12:25Z"
"email":***@nkbm.si","created_at":"2023-06-22T07:37:53Z"
"email":***@merkatura.si","created_at":"2023-05-30T02:33:35Z"
"email":***@via-digital.si","created_at":"2023-05-02T21:07:22Z"
"email":***@antonukmar.si","created_at":"2023-04-24T11:23:29Z"
"email":***@student.uni-lj.si","created_at":"2023-04-08T13:47:05Z"
"email":***@zerjal.si","created_at":"2023-03-31T11:10:04Z"
"email":***@pucelj.si","created_at":"2023-03-16T19:51:28Z"
"email":***@guest.arnes.si","created_at":"2023-02-24T05:40:11Z"
"email":***@varso.si","created_at":"2023-01-05T08:24:53Z"
"email":***@groot.sinhro.si","created_at":"2022-12-08T17:04:44Z"
"email":***@f5.si","created_at":"2022-09-27T21:55:49Z"
"email":***@bisol.si","created_at":"2022-09-16T07:02:32Z"
"email":***@tesis.si","created_at":"2022-07-27T15:29:28Z"
"email":***@termovod.si","created_at":"2022-07-15T10:43:27Z"
"email":***@logo.si","created_at":"2022-03-18T13:49:15Z"
"email":***@hsi.si","created_at":"2022-03-11T12:09:08Z"
"email":***@guest.arnes.si","created_at":"2022-03-07T16:57:06Z"
"email":***@pesko.si","created_at":"2022-02-04T06:20:43Z"
"email":***@kclj.si","created_at":"2022-01-23T20:07:44Z"
"email":***@maver.si","created_at":"2022-01-06T11:08:00Z"
"email":***@amon.si","created_at":"2021-01-28T15:41:45Z"
"email":***@trgopek.si","created_at":"2020-07-18T08:39:40Z"
"email":***@f5.si","created_at":"2020-06-04T14:51:00Z"
"email":***@epr.si","created_at":"2019-12-23T02:42:41Z"
"email":***@levar.si","created_at":"2019-08-17T22:08:45Z"
"email":***@ekoman.si","created_at":"2018-10-16T02:56:25Z"
"email":***@pks.si","created_at":"2018-10-05T09:10:03Z"
"email":***@t-1.si","created_at":"2018-05-31T10:08:14Z"
"email":***@lipic-sp.si","created_at":"2018-02-18T07:39:50Z"
"email":***@lipic-sp.si","created_at":"2018-02-17T23:50:46Z"
"email":***@zgs.gov.si","created_at":"2018-02-01T06:34:22Z"
"email":***@tgm.si","created_at":"2018-01-12T07:18:57Z"
"email":***@goat.si","created_at":"2017-11-30T19:15:32Z"
"email":***@gpo-gradnje.si","created_at":"2017-09-06T18:31:51Z"
"email":***@mreza.si","created_at":"2017-08-14T13:20:54Z"
"email":***@malin.si","created_at":"2017-01-20T10:59:39Z"
"email":***@t-2.si","created_at":"2016-09-19T21:30:06Z"
"email":***@arslonga.si","created_at":"2016-06-20T08:25:41Z"
"email":***@arslonga.si","created_at":"2016-06-17T15:36:31Z"
"email":***@evidentium.si","created_at":"2016-05-13T12:49:55Z"
"email":***@akustikagroup.si","created_at":"2016-02-27T08:30:24Z"
"email":***@marand.si","created_at":"2015-11-21T15:42:06Z"
"email":***@agencija-poti.si","created_at":"2015-04-23T13:31:34Z"
"email":***@gmt.si","created_at":"2015-04-14T14:07:01Z"
"email":***@andersen.si","created_at":"2015-03-30T11:12:36Z"
"email":***@radiostudent.si","created_at":"2015-03-29T13:21:58Z"
"email":***@gem.si","created_at":"2015-01-16T14:02:31Z"
Slabo sam upoznat sa .SI domenima, ne znam da li ima državnih institucija, vidim zgs.gov.si i univerzitet

Severna Makedonija
Code:
"email":"***@halkmed.mk","created_at":"2024-05-12T00:07:16Z"
"email":"***@nlb.mk","created_at":"2024-04-12T17:18:57Z"
"email":"***@nlb.mk","created_at":"2024-04-12T17:18:57Z"
"email":"***@autosk.com.mk","created_at":"2024-04-06T06:15:20Z"
"email":"***@porsche.com.mk","created_at":"2024-02-19T07:42:25Z"
"email":"***@relisys.com.mk","created_at":"2024-01-15T09:20:44Z"
"email":"***@mt.net.mk","created_at":"2023-09-15T18:19:32Z"
"email":"***@termalift.com.mk","created_at":"2023-08-13T20:36:02Z"
"email":"***@decimala.mk","created_at":"2023-07-18T16:06:29Z"
"email":"***@juba.com.mk","created_at":"2023-04-21T00:10:40Z"
"email":"***@skyradio.mk","created_at":"2022-12-18T10:03:59Z"
"email":"***@kumanovo.gov.mk","created_at":"2022-10-17T10:55:47Z"
"email":"***@seeu.edu.mk","created_at":"2022-09-15T14:20:15Z"
"email":"***@connectel.com.mk","created_at":"2022-08-12T11:24:15Z"
"email":"***@amerit.org.mk","created_at":"2022-07-07T08:56:08Z"
"email":"***@grrggr.mk","created_at":"2021-11-21T13:31:35Z"
"email":"***@edrf.mk","created_at":"2021-11-21T11:55:41Z"
"email":"***@mms.t-mobile.com.mk","created_at":"2017-08-21T12:05:23Z"
"email":"***@rezerva.mk","created_at":"2016-01-04T22:43:38Z"
Od državnih institucija prepoznajem kumanovo.gov.mk



Da bi imali kompletniju sliku i nekakvu rang listu exyu zemalja, ovo je broj jedinstvenih e-mail adresa među samim upitima za podršku za koje je sistem utvrdio da su postavljeni sa IP adresa u nekoj od zemalja, ovo uključuje gornje ccTLD mejlove kao i ostale tipa gmail.com yahoo.com hotmail.com itd:


.png   export.png (Size: 30.5 KB / Downloads: 770)

*Ovo je veoma neobjektivna statistika jer uključuje sve koji su sa IP adresa iz zemlje poslali upit za podršku, što uključuje i turiste (na primer izgube telefon pa koriste localize.mobi uslugu da ga pronađu ali nešto im ne radi pa pošalju upit), VPN korisnike sa izlaznom IP adresom iz zemlje, itd.



Dalje bih podelio nekoliko uglavnom dosadnih upita podršci, ovo je samo iz podataka koji su za Srbiju, ostale zemlje nisam pregledao:

Code:
"body":"Kako da pratim viber svom decku,ja ne mogu uzeti njegov telefon u ruke,ne mogu instalirati na njegov telefon?"

"body":"Zanima me detaljno kako da instaliram eyezy? Da li je dovoljno da pratim korake instalacije na nadgledati telefon ili moram da dodatno nešto instaliram na svom telefonu da bih mogla da  nadgledam ciljani telefon?"

"body":"Is there feature to live record, audio and video surrounding?  And to record calls? Will it work from Serbia?"

"body":"Da li sam u obavezi da instaliram ovu aplikaciju na telefon svog dečka i ako je tako da , kako posle da sakrijem istu od njega tj da li je moguće da je on posle ne primeti?"

"body":"Hello.nCan you tell me do you plan to include monitoring for Signal App ?"

"body":"You said you could localize a phone number, I don't want to send any message, I just want to localize the number, that's why I paid!!!!!!!"

"body":"Pratit telefon sms veber wapcap istragram meseđer razgovor email osobe ***@Gmail.com REDMi Note 11 yREĐAj prisuškivanje razgovora hvala na pomoći"

"body":"Hello, I have purchase mspay and I can not track Instagram on child phone. Can you send to me instructions? Best regards"

"body":"Zelim da pratim tel Samsung a53..zelim poruke mesendzer i sve sta moze"

"body":"Hi,  We are looking to integrate an app that will track most of our devices. We are in the process of choosing the right application for this work, and managed to find your application. From what I have seen, you do not have a free trial option. Is that something that can be integrated, maybe for a couple of days, so we can test, and if not, is it okay if I ask a couple of questions regarding the functionality of the app, and if it works for us.    Pozdrav,  ***  Security Engineer    Belgrade, Serbia  ***@***

Ljudi imaju dosta problema sa korišćenjem softvera:

Code:
"body":"look, my child is coming back tomorrow from rehab. The situation is very serious. He will use his phone non stop and I will not have a chance to get it again. **(10:01:39)** ****  I though that I will control his conversations because of his own good, if you understand me? But what you told me, it is all very comlicated. **(10:02:23)** ****  Please, perform a refund now. **(10:02:50)**

"body":"I did everything that was required, I turned on the child's location, AND IT DOESN'T WORK, IT DOESN'T DISPLAY, THE CONTACTS ARE DISPLAYED IN SOME NUMBERS, THERE IS NO NAME OR NUMBER OR ANY SIGNS. I WANT MY MONEY BACK WHEN YOU ARE NO LONGER WORKING IS THE PROBLEM OR THE RESOLUTION"

"body":"Hello team Mspy, I installed the program on Sunday evening. The reason for my supervision  is the suspicious correspondence of my child with a person with whom he  has a certain  correspondence, mostly through the Whatsapp application.  Some messages arrive, some messages don't, it's very confusing to read.  Based on the context, I can guess who wrote which message, I have no  registered calls via Whatsapp, I have no voice messages, I have absolutely nothing registered on Viber. Some messages are placed in the  Keylogger, and there are unfinished, abbreviated, repetitive, completely  chaotic...Today one email appeared in the form of 20 of the same  messages, and maybe more. I want to ask you what is the problem? I duly  paid for the application  and I want to work. My child's safety is at  stake and it is very important to me to know who he is communicating  with, to have complete insight into all forms of communication. Do they need additional tuning? On the child's phone or on the  dashboard? Please let me know what I can do and check, because  definitely something is not working properly.

"body":"I cannot see viber and tick tock activities on my Child phone"

"body":"Nisam se snašao na aplikaciji za praćenje telefonskog broja i želim da se odjavim."

"body":"Ne mogu da vidim poruke sa Vibera na uređaju koji se prati? Koje je rešenje za to?"

"body":"After long talking with our daughter, we decided that it's better to take her phone for a few days for punishment if her grades go down again in the school, than invading her privacy."

"body":"I couldn't install mSpy on target device because target device recognizes application as virus, even I followed instructions given in Wizard. Target device is Xiaomi POCO 3 PRO."

I izuzetno puno ljudi koji traže novac nazad ili smatraju da su prevareni, ovo je samo mali delić ogromne većine poruka koja se tiču vraćanja novca:

Code:
"body":"Nisam se snašao na aplikaciji za praćenje telefonskog broja i želim da se odjavim."

"body":"I VONA TO CENCEL LICENC AND GET REFUND"

"body":"I kindly ask you for a refund because in middle of installation, I realized this is too much stress for me to spy on my husband, I don’t want to do it anymore.  Please if you would be kind to grant me a refund. Best regards."

"body":"Application is useless for the phone I linked (IOS) iPhone 13 Pro. 99% features doesn't work."

"body":"My brother used my credit card and started membership on your site with mine credit card, i would like if you can refund me money because he can not afford this, neither can i. Sorry if my English is bad, it is not my first languege.

"body":"  Dear sirs,    I'm warning you, don't promote scannero.io and their services on your website because they are phishing site.  They billed me for one day trial  0.89EUR and send me bill for that service.  After less then 24 hours they tooked me 49USD without any notice, mail warning or any bill.  But I'm assured  that you already has info about their \"operations\", so consider this mail as a warning to remove any positive reviews about scannero.io or I'll be forced to report your site as phishing site and scummers too.    Best regards,  Aleksandar

"body":"Aplikacija mi je trazila e mail adresu, unela sam je, nije bilo polja za pasword, pritisla sam  Continue,  i popunila sve trazene podatke  za placanje za koriscenje aplikacije za 1 mesec, potvrdila uslove... onda  se pojavilo da  pokusam kasnije i sve me vratilo na pocetak. Iako sam unela podatke za placanje  ne mogu da koristim aplikaciju, ne mogu da se ulogujem jer nigde nisam imala polje za pasword a on se trazi za log in.  Sta sada treba  da uradim, da li je koriscenje aplikacije naplaceno i kako  onda da je koristim"

"body":"A few features are not working. Photos, Videos as well GPS locations not regularly updating. Also, updates are not regular as setuped in device management."

"body":"How to gey my money???? You said that trial is 0.89USD and I use it only for 20min and end the trial and everything, you take 40USD from my card without my comfirmation... Now I want my money back, how can I get it????

"body":"I WANTED IT ONE TIME FOR FUCKING 89 CENTS. IDK WHO TOLD YOU THAT I WANT TO PAY 50 EUROS FOR TGHIS SHITTY APP.CANCEL MY CARD RN"

"body":"I want you to refund me, because I didn't know I will be charged 49.80 dollars per month."

Lekcija naučena? Nemojte koristiti ove softvere, em ne funkcionišu kako treba jer uglavnom zahtevaju root/jailbreak da bi radili, em koriste nepoštene prakse da vas navuku da bi vam naplaćivali velike sume kojih niste svesni osim ako ne pročitate sitna slova na sajtovima pri naručivanju.

Print this item

  The latest Ticketmaster leak impacts top celebrities and events including Taylor Swif
Posted by: VincaSec - 07-13-2024, 08:20 PM - Forum: Vesti, zanimljivosti i razno - No Replies

Quote:The latest Ticketmaster leak impacts top celebrities and events including Taylor Swift, Jennifer Lopez, and Justin Timberlake concerts. Hackers claim barcodes can’t be refreshed, undermining security.

Ticketmaster hackers have released 10 million tickets, including barcodes for high-profile events featuring top celebrities like Taylor Swift, Jennifer Lopez, and Justin Timberlake. This latest attack directly challenges Ticketmaster’s “SafeTix” technology, which is designed to prevent ticket theft by continuously refreshing barcodes.

The hackers posted the data on Breach Forums early this morning, claiming that the barcodes cannot be refreshed, undermining Ticketmaster’s security measures specifically designed for mobile tickets.

According to threat actors behind the latest leak, the data includes mail and e-ticket event barcodes for hundreds of events, inviting users to print their own tickets from home without fear of the barcodes changing.
https://hackread.com/hackers-leak-10-mil...r-tickets/

Print this item

  Incident u HR - email poslat sa pmg.med.bg.ac.rs
Posted by: kernel_priest - 07-12-2024, 02:51 PM - Forum: Kompromitovani resursi - No Replies

Prvo domena HZZO . HR nema SPF, DMARC - znaci nista.
Drugo sa gore navedene pmg med bg ac rs SMTP servera su poslane mail poruke sa attachmentom ({naziv} . tar )

Zanimljivo mi je jer se neko koristi znaci serverom u Srbiji da bi spoofo mail adresu iz Hrvatske i pritome salju phishing prema raznim email adresama u HR.

Poslace mi sadrzaj atachmenta pa cu prijaviti detalje.



Attached Files
.png   Screenshot 2024-07-12 at 16-46-27 temp_image_20240712_132007_6677bb49-3742-4b1b-9a95-e6e481f9cb2c.webp (WEBP Image 583 × 212 pixels).png (Size: 150.25 KB / Downloads: 66)
Print this item

Exclamation Pošte BiH/RS/FBiH - SMShing kampanja
Posted by: kernel_priest - 07-12-2024, 02:31 PM - Forum: Phishing / Scam / Spam kampanje - Replies (1)

Veliki broj ljudi je dobilo SMS u kojima se pozivaju da provjere poslate pakete preko domene (na slici, u SMS )



Attached Files
.jpg   postaprevare.jpg (Size: 143.51 KB / Downloads: 41)
Print this item