Ido Naor 🇮🇱
@IdoNaor1
Followers
7,122
Following
569
Media
2,013
Statuses
10,263
CEO at @securityjoes | Malware Eater & Incident Agnostic | ex-Ploit Writer | CVE-2017-147** CVSS v3 9.8 | Book Writer | Black Belt | Father | Here to play
Israel 🇮🇱
Joined November 2011
Don't wanna be here?
Send us removal request.
Explore trending content on Musk Viewer
FEMA
• 1439705 Tweets
#turkishwomenareindanger
• 123833 Tweets
Mancuso
• 117114 Tweets
Best Record
• 109397 Tweets
Grammy
• 90160 Tweets
Pogba
• 74907 Tweets
Joker 2
• 64998 Tweets
#ikbaluzuner
• 44335 Tweets
Dolly
• 37521 Tweets
Flint
• 36105 Tweets
#yasaistiyoruz
• 32475 Tweets
Bonaparte
• 28257 Tweets
Semih Çelik
• 26586 Tweets
#hassasiçerik
• 16978 Tweets
Angers
• 16797 Tweets
Leeds
• 15664 Tweets
Magic Johnson
• 11511 Tweets
WINAMP 1st version was exactly 25 years ago. Forever changing the way we consume media.
137
1K
7K
@miakhalifa
What about this?
Is this resistance?
Woman being kidnapped along with her two baby boys (small baby bleeding from his head). They will sleep in Gaza today. Next to your loved freedom fighters who killed 200 of ours in 1 day. Most are civilians - elderly, children, parents. In
9
8
361
Hi
#infosec
,
I noticed a group of my followers support HAMAS and their acts, commenting with smiles and laughter about babies being murdered in-front of their mothers. (Please bare with me)
Started blocking them, but how many are there in our global community?
I’M CALLING 🔈
159
78
361
WhatsApp message: “Ido we have a ransomware incident! How soon can you come?!”
Me: <swiping up the message to ignore notification> “Smile everybody! 😁”
Life is short. Don’t let work set the pace.
10
13
328
תעדכנו את דפדפן Chrome עכשיו.
אני בינתיים אסביר פה למטה מה קרה.
36
42
330
Imagine you were born in 1900.
When you're 14, World War I begins and ends when you're 18 with 22 million dead.
Soon after a global pandemic, the Spanish Flu, appears, killing 50 million people. And you're alive and 20 years old.
4
99
303
This is Sasha.
Sasha is an
@awscloud
@amazon
employee. Everybody knows him in the Israeli office.
Sasha was kidnapped to Gaza along with his girlfriend and other family members (including a 73yo elder woman).
#BringThemHomeNow
@StopAntisemites
#Hamas_is_ISIS
9
132
303
*Malware Analysis question*
You bumped into this code:
xor ecx, ecx
mov edx, 0xabcdefff
add edx, 0x12345678
mov eax, [edx]
add eax, ecx
In the context of malware, what are you suspecting that it’s responsible for?
32
36
299
Talking to SysAdmin during IR:
Me: Found patient zero
Him: Huh cool, which one was it?
Me: <username>
Him: There, I deleted everything related to that user.
Nooo…🤦🏻♂️🤦🏻♂️🤦🏻♂️🤦🏻♂️
19
24
222
Yesterday, 10AM, first step into the mettress. 45min endurance, 10hrs of techniques in Karate, Krav Maga, Judo, JiuJitsu, BJJ and more and more. An endless day!!
Then, at 9:30PM, grand finale - 25 straight full-contact fights.
Achievement Unlocked.
#BlackBelt
14
4
141
1 in a million 😯
#Mimikatz
command detected based on strings in CMD, but this is actually a legitimate MS
#Defender
Base64 payload.
For some *COOL* reason the Base64 actually reads “sekurlsa” 🤩
Fun {Incident Response} with
@dark0pcodes
7
15
140
You like the first one, so here’s another *malware analysis RE question*
You’ve stumbled on this code snippet:
mov ecx, 0x12345678
mov edx, 0x87654321
mov eax, [edi]
add eax, ecx
rol eax, 0x7
xor eax, edx
push eax
call some_function
Can you identify the hidden pattern?
22
16
127
I was able to capture 115 samples that uses
#samba_init_module
from
#SambaCry
; this MD5: 7405984777402b340eb938148d19cb69 is called worm.so
4
77
107
Behind every Tw profile is a person. Having 100K followers or only 20, it doesn’t change the fact that we’re alone at the end of the day. Be nice, be responsive, loosen up a little. Military distance won’t make you more attractive. The security industry is small. Stay human.
7
23
93
If you ain’t using AI, you’re missing out.
Lots of your work’s heavy lifting can be done faster when using AI, almost regardless of what your occupation is.
Use it!
Origin: Linkedin
1
18
105
Kaspersky leak:
NB65 released a link to grab the “leaked source code”
Long story short - I don’t see any leak.
8
27
96
משעות הבוקר מתקבלים דיווחים לגבי ההשתלטות על חשבונות אפליקציית התשלומים BIT.
מנסים לבדוק במה מדובר. מענה מחברת ביט - אפס.
@amitaiz
@BenMittelman
@barzik
17
16
99
Hell of a ride, but after long 6 years - I'll be leaving
@kaspersky
GReAT. Time for my next chapter 😎
19
5
97
Meet Eliana Bergman, a top-notch pentest we with over 6y experience & military background.
But Eliana is not only herself. She’s also a German model named Zoe.
Anybody said HAMAS? I couldn’t hear well. What?
12
17
82
גוגל הוציאו ממש עכשיו עדכון חירום לדפדפן שלהם עד גרסה 99. זה אומר שתוקפים מנצלים חולשה בדפדפן ממש בזמן שאנחנו קוראים. עדכנתם כבר? יופי.
לא? תעצרו, תעדכנו ותחזרו.
5
3
91
That’s insane.
Posting about a CTO of global startup who was MURDERED by
#HAMAS_is_ISIS
.
Look at the reaction of Fares Walid to another person’s death,
#infosec
.
“I am sure he’s going to hell as you [emojis]”.
There are many like him.
@Hacker0x01
stays silent.
@k8em0
69
11
76
Good night Israel 🇮🇱
Our children will sleep on the floor in safe rooms today. We’ll calm them down as they try to comprehend what is happening.
Lock your doors. Trust no one.
13
4
74
A woman contacted me today after her son was a victim to sexstortion. I was (surprisingly) able to take down the user & block dozens of videos he/they uploaded to XVideos.
FYI - The attacker actually contacted the victim over WhatsApp and recorded audio threat!
TV recorded it👇🏼
6
4
73
@hacker_
Not trying to be offensive, but are you trying to pitch IDOR to non-technical people?
Anyone can hack, Yeah, maybe. Not from your 3 tweets about it, IMHO. It requires skills and understanding, technical experience and nights of hard work.
Give those who do it some credit.
3
0
69
לא הרבה ידוע על החולשה המדוברת חוץ מהעובדה שהחולשה נקראת Type Confusion V8 והיא מדברת על בעיה במנוע הJavaScript. מסיבות ברורות, גוגל לא חושפים את פרטים הטכניים, אבל בדיקה מעמיקה לתוך הpatch אולי תניב יותר מידע.
1
0
71
A child born in 1985 thinks his grandparents have no idea how difficult life is, but they have survived several wars and catastrophes.
Today we have all the comforts in a new world, amid a new pandemic. But we complain because we need to wear masks.
1
3
63
A small change in our perspective can generate miracles. We should be thankful that we are alive.
Credit: Ido Katz
2
2
65
גוגל פרסמה ב-25/3 שהיא מודעת לחולשה שמספרה CVE-2022-1096 ולכן כל 3.2 מיליארד המשתמשים שלה חייבים לעדכן במיידי. גם אלו עם כרומיום.
2
0
67
We complain because we must stay confined to our homes where we have food, electricity, running water, wifi, even Netflix! None of that existed back in the day. But humanity survived those circumstances and never lost their joy of living.
1
6
62
🛑 SHARE THE TRUTH 🛑 Suhaib Abu Amr, a 22-year-old Palestinian from East Jerusalem who worked as a bus driver at a party in Ra'im - was brutally executed by
#Hamas_is_ISIS
terrorists, even though they understood beyond any doubt that he was a Palestinian 🇵🇸❗️
Due to the
2
15
64
My daughter this morning was like:”Dad... can I put a sticker on your laptop too?”.
TBH, one of the best gifts someone ever gave me.
2
0
56
11th
#theSAS2019
, Singapore.
@inbarraz
@msuiche
@k8em0
@juanandres_gs
@evacide
@smoothimpact
@craiu
@e_kaspersky
6
8
57
When you're 39, World War II begins and ends when you're 45 years old with a 60 million dead. In the Holocaust, 6 million Jews die.
When you're 52, the Korean War begins.
When you're 64, the Vietnam War begins and ends when you're 75.
1
4
49
I see a thread coming...
So this is hilarious. I already have the Israeli CERT on
@virusbay_io
and I just got an email from the Iranian CERT, asking to join. Grab your popcorn people, I just sent them an invite.
6
9
48
Israel under rain of rockets!
Iron Dome plays hero taking down dozens of them live above our heads!
1
12
53
Really excited to announce that
@0verfl0w_
is our No.12 ninja!
He will be joining
@SecurityJoes
to fight side by side against nation-sponsored beasts & other creations lurking the wires.
Soon I’m going to disclose number 12 in my company,
@SecurityJoes
, and you’re gonna love it. Stay tuned 😈
0
1
8
5
6
54
You haven’t got a response from
@virusbay_io
about an invite code?
No, you’re not rejected, not pretty enough, not part of the wrong race/culture/origin or all the rest of your guesses) it’s just my wife is abroad on vacation and I’m responsible for 3 little monsters. 🙈🙊🙉
4
3
49
Here’s a hack for you:
WhatsApp does not allow DELETE FOR EVERYONE whenever you want. Once time passes - doomed. Right? Wrong.
Rewind your phone’s time and try again. WhatsApp calc it based on your mobile’s clock ⏰ 😎
Try it. I heard it works. 😉
6
9
50
I have to be honest. Promoting my own company is so much better. Started fresh and the excitement is off the roof.
New title: Making Things Tick at
@SecurityJoes
. 🍻
#DFIR
#ThreatIntel
& other recepies
10
4
51
When you're 29, you survive the global economic crisis that started with the collapse of the New York Stock Exchange, causing inflation, unemployment, and famine.
When you're 33 years old, the nazis come to power.
1
2
45
1/5 Been writing a book for the past 3 months. After 140p I have to say it’s almost done. The book is based on a life of a simple person (yours truly) and his journey to investigating prolific malware groups in an ever growing war of attacker vs. defenders.
3
6
46
Meet Youssef.
Youssef is a CTO of respected company in Egypt.
Youssef is a good person.
Youssef doesn’t know the difference between HAMAS & Palestine.
Youssef is angry because he doesn’t know how to read English.
Youssef doesn’t like Israel.
Help Youssef understand that
46
3
46
In the upcoming days, right before
@virusbay_io
’s new version (Yes, API!) these {not so} little tubes will travel to 18 countries -> 29 destinations.
#Kickstarter
supporters 🤘🏽🎉 Thank you!
1
10
46
1/2 My daughter's kindergarten is using an app to track kids activity, upload pics and contact the teacher. All in all, its really nice. But I was still curious so I streamed the app traffic via
@Burp_Suite
and after 5 minutes I could enter any kindergarten
2
22
42
דברים שצריך ללמד בבית ספר יסודי:
(1) ניהול יומן
(2) ניהול תקציב
(3) מבנה אירגוני
(4) בניית תוכנית עסקית
6
2
46
It’s 23:00 here in Poland,
@CONFidence_news
was over hours ago, but we’re working extra hours to get
@virusbay_io
v2.01 out in time! Root for us.
6
2
42
כיכר קולומבוס ניו-יורק
נראה אתכם תולשים את זה, חלאות אדם חסרי עמוד שדרה, גיבורים על ניירות ודבק
0
2
46
We found a new Wiper malware targeting Israeli companies. It is attributed to Pro-Hamas groups
2
23
44
@fbacurio
RAT you mentioned
#Remcos
#Jigsaw
#Autoit
Tools + victims
@malwrhunterteam
@x0rz
@BleepinComputer
5
25
42
An Israeli website nagish[.]co[.]il was compromised and one of its subdomains (embedded in dozens of websites (including gov and media) became temporary water holes for Israeli residents. We are still investigating, but its important to share the sample and protect your users.
5
13
41
A new
#Facebook
#Messenger
malware is running around. Victims are getting messages coming from their friends as "video_xxxxx.bz" where 'x's are \d
Sample available on
@virusbay_io
:
Also added screenshot from our
@kaspersky
ThreatIntelPortal.
4
29
40
אני באמת בשוק!!
אני בשוק שאיזה ילד מלזי בזבז לי 5דק בלעבור על 139 תמונות משנת 2012 שכוללים חשבונות ארנונה ותשלום קנסות ובין השאר כמה תעודות זהות… 19MB של בדיחה.
חג שמח
@BenMittelman
@amitaiz
@talshahaf
@barzik
5
3
40
Last year, an unknown actor distributed phishing via
@wallamail
, that infected Israeli victims with a crafted
@ScreenConnect
implant. Same actor now returns to a 2nd round via Fb:
An APK wrapped with
#RevCode
WebMonitor (recently covered by
@briankrebs
-)
1
14
37
@idokius
6:30 בבוקר כשהתעוררתי מהאזעקה ופתאום ערוצי טלגרם של החמאס פרסמו תמונות וסרטוני ״אקשן״ על מוצב של חיילים שנרצחו תוך דקות והכל שם - ויזואלי. כאילו זה טאליבן באפגניסטן. וזה פה - בדרום - יש שם פסטיבל, נזכרתי, 3500 איש יש שם! נחנקתי.
מאז אני בטלפון כל היום. ליטרלי כל היום.
0
1
40
Simple question:
If you were holding the rifle, would you be able to shoot?
Face to face. No combat, no intelligence, not from an airplane or tank. Not from distance or from a car drive by and shooting at a mob running for their lives.
In a room. Silently. Hearing nothing but
6
17
36
Reading through
@virusbay_io
emails is such a breeze. I’m looking at this incoming one:
“Hi VirusBay,
I’m ——-, a malware & exploit researcher from XXXXX asking for an invite code.
Regards,
——- ——
Sales Engineer at XXXXX
🤷🏻♂️
3
5
32
Have you ever seen full contact
#kyokushin
fight between a man and his daughter before?
Here you go. My baby. 1hr techniques & endurance test and 5 straight fights.
After, coach asked if she wants to do another one... with dad.
Underneath a face full of tears we heard:”Yes”.
3
0
36
I’m don’t always read through our Qx reports on
@Securelist
, but when I do, I mark
#Pirrit
and tell
@0xAmit
to expose some more about these bastards.
2
13
35
A date was set for my Black Belt test. No, it’s not in Yara or reversing - the actual martial arts black belt. After 10 years of long dedication, I was finally chosen by my Master (Dan 9, Red belt) to go through the horror of a 10 hours test.
What does it includes?
9
1
34
Peace?
There’s no peace with murderers, rapists, kidnappers and inhuman monsters.
Their supporters will pay the same price.
4
13
37
*יושבים בפלורה בחוף הרצליה*
המלצר: מה אתה עושה בחיים?
אני: מתעסק בסייבר
המלצר: וואו, אז היית ב-8200? 81? 49? 9900? 913?? איפה היית??
אני: לוחם
הוא: 🤔
אני: 🫤
בתמונה: רגע יצירתי שלי
3
0
39
הבת שלי בכתה היום.
הייתה אזעקה בהוד השרון בזמן בית הספר.
היא רצה למקלט, אבל אני נשארתי בחוץ.
בימים אלה אנחנו שומרים בבית הספר.
מתנדבים חמושים.
היא רצה החוצה בבכי ולא נרגעה עד שחיבקה אותי חזק.
אני כל הזמן אומר לה ״לא יכול לקרות לי כלום״, אבל כולנו יודעים שזה לא נכון.
אין
7
0
37
Me thinking: “Now that I no longer with Kaspersky I lost my VT unlimited... How the hell can I get fresh samples...?”
My inner me: “Oh yeah... Now I remember... I created a social network for malware analysis. Phew...”
Go
@virusbay_io
🤙🏻
1
3
38
צחוק בצד, אוניברסיטה ברמה הזו הייתה אמורה להתקין מערכות לניתוק מיידי בעת תקיפה. אני מקווה שהנייר הזה לא באמת ה-Last frontier.
10
1
37
Yes,
@virusbay_io
requires you to tell me who you are. All three letter agencies, state-sponsored APT actors and newbies with fake emails, you too. Are we done now?
2
13
36
I don’t usually go into illustrating APT actors, but when I do it’s probably bcz I really want to listen to my
@kaspersky
colleagues and my ADHD tries to win me over.
3
5
36
