0xchris

This topology made me smile. thingiverse.com/thing:1622876

.@adam3us joined @SquawkCNBC to weigh in on the recent @nytimes Satoshi Nakamoto article.

Finding a block with a Bitaxe is "impossible"... until it actually happens. ⚡️⛏️ Huge win for the Brazilian 🇧🇷 Bitcoin community! One of our own just found a block. We’re a small group, but the talent is real: 3 awarded BTC++ hackers, Bitdevs builders, node runners, LoRa mesh hackers, cybersec experts, and now one very lucky (and happy) solo miner. ⛏️✨ Some say you're "elite" just for owning BTC. I disagree. The real elite comes from being surrounded by a community of builders and dreamers like this. Incredibly proud of what we’re growing here. 🚀 BLOCO, vcs são FODA! #Bitcoin #Bitaxe #SoloMining #BitcoinBrazil #btc @Cointelegraph @BrCointelegraph @DecryptMedia @CoinDesk @criptofacil @BitcoinNewsCom @TheBlockCo @BitcoinMagazine 🧵👇

🚨 CRITICAL: Active supply chain attack on axios -- one of npm's most depended-on packages. The latest axios@1.14.1 now pulls in plain-crypto-js@4.2.1, a package that did not exist before today. This is a live compromise. This is textbook supply chain installer malware. axios has 100M+ weekly downloads. Every npm install pulling the latest version is potentially compromised right now. Socket AI analysis confirms this is malware. plain-crypto-js is an obfuscated dropper/loader that: • Deobfuscates embedded payloads and operational strings at runtime • Dynamically loads fs, os, and execSync to evade static analysis • Executes decoded shell commands • Stages and copies payload files into OS temp and Windows ProgramData directories • Deletes and renames artifacts post-execution to destroy forensic evidence If you use axios, pin your version immediately and audit your lockfiles. Do not upgrade.

x.com/i/article/2036…

x.com/i/article/2036…