An individual on Reddit reported purchasing a USB-based vibrator and, when attempting to charge the device, was inundated with web browser pages opening, the antivirus flagged the files as malicious. tl;dr vibrator delivering Lumma stealer File shared: tria.ge/240215-xvx86seb91

lumma | 3729104fc485ea9c5a752f6de9226ad5add663f528b8114050d0f958a68ae774 | Triage

Check this lumma report malware sample 3729104fc485ea9c5a752f6de9226ad5add663f528b8114050d0f958a68ae774, with a score of 10 out of 10.

tria.ge

Feb 17, 2024 · 7:49 PM UTC

32
151
48
964
However, it would be extremely unusual for a device to deliver an info stealer.. although not outside the realm of possibility. Either it is a user error, attributing the stealer to the sex toy, or this vibrator is delivering malware Original post: teddit.net/r/Malware/comment…
6
12
3
194
Replying to @vxunderground
😂 I will use this story for my webinars
1
1
59
we can't have anything anymore, damn infostealers
65
Replying to @vxunderground
Original, unused?, is sold out. spencersonline.com/product/p…
1
3
Inb4 go to mall and buy every USB sell toy we can find 😎
2
Replying to @vxunderground
Sigh… thanks. Now I can add “buys used sex toys for research” to my resume. Sadly these are out of stock, but I reached out to the OP to ask to buy them. I’ll do a physical teardown for yall if I get them.
4
1
1
57
Replying to @vxunderground
bro the comments are killing me
1
1
41
Replying to @vxunderground
I mean... in contrast to toothbrushes, there are WiFi-enabled vibrators. 🧐
3
Replying to @vxunderground
First tooth brushes then vibrators, what in the hell is going on in the scene? It is clear the user should have used Lubewarebytes before plugging it in.
12
Replying to @vxunderground
9
GIF
Replying to @vxunderground
Remember the Energizer Battery USB plugin recharger? It had a keylogger or whatever. It’s possible. Stupid, but possible.
6
Replying to @vxunderground
Lmao there’s a website that tests the security of these dildos. internetofdon.gs/

The Internet Of Dongs Project

Hacking Sex Toys For Security And Privacy

internetofdon.gs
6
Replying to @vxunderground
Interesting. I submitted the same file (hashes match) 2 days after this submission and it came back with 8/10 instead of 10/10? Diff machine selection for analysing it? tria.ge/240217-27slnsbf3x

 3729104fc485ea9c5a752f6de9226ad5add663f528b8114050d0f958a68ae774 | Triage

Check this report malware sample 3729104fc485ea9c5a752f6de9226ad5add663f528b8114050d0f958a68ae774, with a score of 8 out of 10.

tria.ge
1
5
Replying to @vxunderground
should've practiced safe charging smh
3
Replying to @vxunderground
this is a very... unique way to deliver malware
3
Replying to @vxunderground
Now everyone buys them for “penetration testing” :D
2
Replying to @vxunderground
Should've used a usb condom.
1
Replying to @vxunderground
Teledildonics
1
Replying to @vxunderground
Infected P*$$y in BIO
1
Replying to @vxunderground
From passwords stealers to adn stealer
1
Replying to @vxunderground
Imagine getting ransomware on your pu*** Yisus 😂😂😂😂😂😂
1
Replying to @vxunderground
@emmangoldstein
1
This tweet is unavailable
Replying to @vxunderground
can't get better than this
Replying to @vxunderground
The question is how the malware somehow was in the "device" 😅. The device was plug in to any laptop sometime? or after the sandboxing the malware was found.. 🤔
Replying to @vxunderground
GIF
Replying to @vxunderground
Charge it on dumb usb wall plug
Replying to @vxunderground
👀
Replying to @vxunderground
La petite (cyber) mort Sad to see sexuality being targeted jet in an other way.
Replying to @vxunderground
Ugh, why would you plug that into your PC if it only needs to charge?
Replying to @vxunderground
🤣