Hackers' Pub

Syntax	Description	Examples
`"` keyword `"`	Finds the string within quotes, including spaces. Case-insensitive. (Escape quotes inside with `\"`)	`"Hackers' Pub"`
`from:` handle	Finds content written by the specified user.	`from:hongminhee` `from:hongminhee@hollo.social`
`lang:` ISO 639-1	Finds content written in the specified language.	`lang:en`
`#` tag	Finds content with the specified tag. Case-insensitive.	`#HackersPub`
condition condition	Finds content that satisfies both conditions on either side of the space (logical AND).	`"Hackers' Pub" lang:en`
condition `OR` condition	Finds content that satisfies at least one of the conditions on either side of the OR operator (logical OR).	`#HackersPub OR "Hackers' Pub" lang:en`
`(` condition `)`	Combines the operators within the parentheses first.	`(#HackersPub OR "Hackers' Pub" OR "Hackers Pub") lang:en`

boB Rudis 🇺🇦 🇬🇱 🇨🇦 @hrbrmstr@mastodon.social

1/22/2026, 11:38:41 AM

Public

We caught a few (desperate) fiends trying to have their way with our vulnerable-to Telnetd -f Auth Bypass vuln (CVE-2026-24061) systems and I took a spelunk in the PCAPs:

Some of the least clever and least capable actors I've seen in a while.

"-f Around and Find Out: 18 Hours of Unsolicited Telnet Houseguests “ takes you on a deep dive into the packets.

https://www.labs.greynoise.io//grimoire/2026-01-22-f-around-and-find-out-18-hours-of-unsolicited-houseguests/

cc: @darses

-f Around and Find Out: 18 Hours of Unsolicited Telnet Houseguests – GreyNoise Labs

Detailed analysis of the Inetutils Telnetd ‘-f’ authentication bypass, covering 18 exploit attempts, attacker tactics, and detection insights.

www.labs.greynoise.io · GreyNoise Labs

If you have a fediverse account, you can quote this note from your own instance. Search https://mastodon.social/users/hrbrmstr/statuses/115938552820592809 on your instance and quote it. (Note that quoting is not supported in Mastodon.)