Advertisement
zmnkh

Untitled

Aug 1st, 2017
565
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 3.86 KB | None | 0 0
  1. -=--=--=- Section #1: Mandiant and Adi Peretz Leaks Part #1 -=--=--=-
  2. It was fun to be inside a giant company named “Mandiant” we enjoyed watching how they try to protect their clients and how their dumb analysts are trying to reverse engineer malwares and stuffs.
  3. Now that “Mandiant” knows how deep we breached into its infrastructure its so-called threat analysts are trying to block us. Let's see how successful they are going to be :D
  4.  
  5. Mandiant Internal Leaks:
  6. Target: Mandiant, FireEye, High Profile Personels
  7. Initial Access: 2016
  8. Final Access: 2017
  9.  
  10. Victim #1 Profile:
  11. --- Name: Adi Peretz
  12. --- Op. Nickname: Mr. Muscle AKA FatFuck
  13. --- Position: Senior Threat Intelligence Analyst at Mandiant
  14. --- Layer #1 Targets: Chrome, Firefox, Windows (What kind of a dumb security specialist uses windows anyway??? FUCKIN’ IDIOT...)
  15.  
  16. Potential Layer #2 Targets:
  17. --- Outlook Contacts (HVT)
  18. --- Prime Ministry Office of Israel
  19. --- Mandiant
  20. --- FireEye Internal
  21. ---- Hapoalim Bank
  22. --- Linked-in Contacts
  23. --- 3rd Party Contractors
  24.  
  25. Upcomming Event:
  26. --- Jul/25 – Adi has HR Interview with Novartis (might be canceled :)))) )
  27.  
  28. Depth of the Breach:
  29. --- Mandiant Internal networks and its clients data has been compromised (might be leaked separately)
  30. --- Credentials (Mandiant-FireEye Docs, Mandiant-FireEye WebEx, Mandiant -FireEye JIRA, Staffs Emails, Amazon Account, Linkedin Account, And much more which we might leak after using them for our benefit! :D )
  31. --- Full access over victim's Linkedin profile
  32. --- Full access over victim's live account (including full control over his private windows machine, online GPS tracking of the victim for a year (2016-2017), OneDrive, official calendar events, contacts, billing address (both Ireland and Israel))
  33. --- Paypal invoices
  34.  
  35. Leaks:
  36. --- Geo Locations of the victim
  37. --- Top Secret Document
  38. --- Credentials
  39. --- Favorite Password Patterns
  40. --- Compelete Business and Personal emails dump
  41. --- FireEye Licenses
  42. --- Private Contracts
  43. --- FireEye Worksheets
  44. --- Network Topology Drawings (Probably FireEye’s Core Analysis Lab)
  45. --- Linked-in contacts (potential layer #2 targets)
  46.  
  47. Final words:
  48. This leak was just a glimpse of how deep we breached into Mandiant, we might publish more critical data in the future. So DO NOT FUCK WITH US!
  49.  
  50. Special Thanks To:
  51. --- APT29
  52. --- APT32
  53. --- DragonOK
  54. --- The Shadow Brokers
  55. --- APT1
  56. --- WebEx :D
  57. --- Microsoft Windows :))))))))
  58.  
  59. link: https://ufile.io/u7n5g
  60. Mirror: http://www.megafileupload.com/1qrbo/FireEye_Mandiant_AdiPeretz_Leak.7z
  61. pass: leaktheanalyst@mandiant
  62.  
  63. Hack locally, Leak globally,
  64. Expect Us.
  65.  
  66. -=--=--=- Section #2: Op. #LeakTheAnalyst -=--=--=--=-
  67. Operation #LeakTheAnalyst:
  68.  
  69. In Blackhats we trust,
  70.  
  71. Nobody understands the amount of dedication it takes to break into a highly secured network, to bypass every state of the art security measure installed to make a targeted network unbreakable, to code and hack not for the money but for the pleasure of being somewhere no one can be in, to be addicted to pain.
  72.  
  73. From time to time there is a know-it-all security professional tries to read your sick mind and blow your breach plan up to hell.
  74.  
  75. For a long time we - the 31337 hackers - tried to avoid these fancy ass "Analysts" whom trying to trace our attack footprints back to us and prove they are better than us. In the #LeakTheAnalyst operation we say fuck the consequence let’s track them on Facebook, Linked-in, Tweeter, etc. let’s go after everything they’ve got, let’s go after their countries, let’s trash their reputation in the field. If during your stealth operation you pwned an analyst, target him and leak his personal and professional data, as a side job of course ;).
  76.  
  77. In the operation #LeakTheAnalyst our motto is:
  78. If they are going to send us back to hell, Let’s unleash hell upon them; Before it’s too late...
  79.  
  80. Join us @ Op. #LeakTheAnalyst.
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement