I Bought 25 Million Computer Viruses - VX Underground Malware HDD
0 up · 0 down · 0 ratings
Promos
Thank you ThreatLocker for helping with this video. If you want to learn more about Ringfencing and how to protect your network, start a free trial or book a demo: lmg.gg We bought an external 8TB hard drive filled to the brim with malware from a faceless group of researchers known as VX Underground. What is on it? What can we do with it? What are OTHERS doing with it? Big thanks to smelly and lil cheezer for sending this to us. Discuss on the forum: linustechtips.com Try Any.Run Interactive Sandbox app.any.run Purchases made through some store links may provide some compensation to Linus Media Group. ► GET MERCH: lttstore.com ► GET EXCLUSIVE CONTENT ON FLOATPLANE: lmg.gg ► GET A VPN: piavpn.com ► SPONSORS, AFFILIATES, AND PARTNERS: lmg.gg ► EQUIPMENT WE USE TO FILM LTT: lmg.gg ► OUR WAN PODCAST GEAR: lmg.gg FOLLOW US --------------------------------------------------- Twitter: twitter.com Facebook: @LinusTech Instagram: @linustech TikTok: @linustech Twitch: twitch.tv MUSIC CREDIT --------------------------------------------------- Intro: Laszlo - Supernova Video Link: youtube.com iTunes Download Link: itunes.apple.com Artist Link: soundcloud.com Outro: Approaching Nirvana - Sugar High Video Link: youtube.com Listen on Spotify: spoti.fi Artist Link: youtube.com Intro animation by MBarek Abdelwassaa @mbarek_abdel Monitor And Keyboard by vadimmihalkevich / CC BY 4.0 geni.us Mechanical RGB Keyboard by BigBrotherECE / CC BY 4.0 geni.us Mouse Gamer free Model By Oscar Creativo / CC BY 4.0 geni.us CHAPTERS --------------------------------------------------- 0:00 Intro 1:52 Is this dangerous? 2:55 Borat 4:55 We're in 7:53 How does these rats do so much 10:30 What about Linux? 12:28 That's a little scary 14:25 How to protect yourself 16:38 This is almost too simple 19:38 Who is doing this? 21:18 How will we use this power?
The video opens with a stark premise: a hard drive purportedly filled with 25 million malware samples from VX Underground has arrived, and the host is about to explore what it contains and what risks it poses. Windows Defender is shown as disabled, setting the stage for an in-depth look at malware capabilities and defensive blind spots. The host explains that VX Underground is a repository of malware samples, research papers, blog posts, and source code, donated to support the maintenance of a valuable security textbook. This segment establishes the central tension between learning from dangerous code and the inherent danger of handling live samples. The discussion then pivots to a broader security philosophy, arguing that trust is the biggest vulnerability in modern systems, since new threats appear daily and defenses must account for constant zero-day activity. A sponsor segment for ThreatLocker introduces zero-trust principles as a practical countermeasure, framing the episode around how to limit what potentially dangerous software can do inside a network. The host emphasizes the balance between educational value and safety, acknowledging the risks while outlining strategic protections like ring fencing and sandbox testing. The overall arc of the video is to demystify malware tools, demonstrate how attackers operate, and present pragmatic defenses for organizations and individuals alike.
Topics · Technology · Security · Education · Cybersecurity
Questions answered
- What is Borat Rat, and what kind of capabilities does it demonstrate in the video?
- Borat Rat is shown as a remote access tool with modules for system information gathering, file management, keylogging, webcam control, and potential ransomware actions. The video demonstrates building a client, achieving admin privileges, and deploying a controller that can exfiltrate data and control a victim machine. It also illustrates how attackers might chain tools to achieve persistence and broader access.
- What defenses does ThreatLocker offer as discussed in the video?
- ThreatLocker is described as a zero-trust endpoint protection platform. It blocks executables from running unless they are proven innocent, requires containment for potentially risky software, and provides ring fencing to limit what a program can do, such as blocking internet access, registry writes, or interaction with high-risk apps. It also integrates with a testing environment to safely analyze malware before allowing it on production systems.
- Why is the VX Underground hard drive considered both dangerous and educational, according to the video?
- The hard drive contains a large collection of real malware samples and research materials that can teach defenders how threats operate, how they are built, and how they can be detected or blocked. However, handling such material is inherently dangerous, as it can enable weaponization if misused. The video stresses the importance of controlled environments, proper safety measures, and ethical guidelines to prevent harm.