Léo PS 

OMG, someone just leaked the linux sourcecode 🤯 github.com/torvalds/linux

AXIOS FOI HACKEADO!!!! É isso. Só n queria ser o único q n postou sobre.

If your tests break every time the UI changes… Are they testing anything? This deep dive explores agentic testing and a better approach to QA 👇 hackernoon.com/what-is-agenti…

“npm install” :

🚨‼️ We're in contact with the actor behind the Trivy and LiteLLM hack. They told us they are currently extorting several multi-billion-dollar companies from which they've exfiltrated data. They've obtained 300 GB of compressed credentials and are working their way through them as we speak. The LiteLLM compromise alone led to half a million stolen credentials, according to the threat actor. Their message to the world: "TeamPCP is here to stay. Long live the supply chain." They've sent us their new logo (see image) and also teamed up with several threat actors, including Xploiters and Vect.

NMAP in moviews. nmap.org/movies/

🚨 Stop scrolling. This is the biggest betrayal in tech this year. The company that built its entire reputation on BLOCKING scrapers just shipped the most powerful scraping tool ever made. > Cloudflare just dropped a /crawl endpoint. One API call and you get an entire website back. Clean HTML, Markdown, or JSON. That's it. That's the whole thing. Let me break it down. For years, Cloudflare sold anti-bot protection. Companies paid them to STOP crawlers. Now those same companies are watching Cloudflare hand everyone a free crawler that bypasses… other people's anti-bot protection. They didn't switch sides. They're playing both sides. And getting paid twice.

Bug hunters: small Chrome DevTools tip that saved me a lot of time. took me way too long to notice the Network → “Preserve log” checkbox in Chrome DevTools.

￣￣￣￣￣￣￣￣￣￣￣￣￣￣| You don't need certs to be succesful in bug bounty |＿＿＿＿＿＿＿＿＿＿＿＿＿＿| \ (•◡•) / \ / —— | | |_ |_

> be kippu > some startup app or something > idfk > goes live > people sign up > realize it's vibe coded > nerds get silly > nerds do http get on api endpoint > dumps entire database *image censored, although it's all over xitter

What this means is that even the dumbest person can now hack, as long as they use a Mac (for now) and can install Kali. The level at which attacks and active scans from different parts of the world will skyrocket has never been seen before. Brace up folks!

$380B company

👀

POV: February 2026

This has never been more accurate at my current stage of life

Sensitive Information Disclosure(path Traversal)🔥 URL: http://IP_removed/index.php/%2e%2e/%2e%2e/.env IMPACT: Database credentials, Laravel app_key.

pagar com FGTS... o fundo que era pra segurar a queda virou cartão de crédito emocional. o drip tá garantido!