VillaRoot

He is Risen.

Christ is risen from the dead, and with him, we too rise to new life! This Easter proclamation embraces the mystery of our lives and the destiny of history, reaching us even in the depths of death. #Easter

*Gets on I-35* I-35:

Bad Omens Tour SanAntonioTx

Another day, another major supply chain attack

🚨 CRITICAL: Active supply chain attack on axios -- one of npm's most depended-on packages. The latest axios@1.14.1 now pulls in plain-crypto-js@4.2.1, a package that did not exist before today. This is a live compromise. This is textbook supply chain installer malware. axios has 100M+ weekly downloads. Every npm install pulling the latest version is potentially compromised right now. Socket AI analysis confirms this is malware. plain-crypto-js is an obfuscated dropper/loader that: • Deobfuscates embedded payloads and operational strings at runtime • Dynamically loads fs, os, and execSync to evade static analysis • Executes decoded shell commands • Stages and copies payload files into OS temp and Windows ProgramData directories • Deletes and renames artifacts post-execution to destroy forensic evidence If you use axios, pin your version immediately and audit your lockfiles. Do not upgrade.

@LindseyOD123 Don't worry they just need a couple of hours for IT to build up their Cyber defenses

Excellent new name for ransomware actors

@medusa_0xf Great work!

I'm happy to share that I’ve just completed the Hugging Face LLM Fundamentals course! ✨ Learned about: - LLM architectures (encoder-decoder vs. decoder-only) - Self-attention and masked attention mechanisms - Tokenization and how LLMs process text, is trained & limits!

When will it end?! 🚨Breaking:AIRedTeamHackPentest

After watching a Physical Pentesting talk at @defcon :

@infosec_fox You trying to AI my AI with your AI using AI?!

All the new AI tool released now uses AI to create new AI to AI your AI into AI with AI

@medusa_0xf Not fully replace it. Part of the toolkit but not a replacement. If anything it might become it's own streamline, how a Vulnerability Assessment is. There's also the risk of it hallucinating and going outside the the ROE scope. And if it causes an outage, clients will be pissed.

Will pentesting be replaced by AI? 🤔

@bngrsec We'd be disappointed if you didn't

gained initial access to a user and had to pivot to someone else because their cat was cute as fuck

Make sure to be checking if Tor connections is blocked on workstations. Useful purple team exercise right here: Try making connections to Tor on an workstation -> Work with detections team -> retest.

@wbmmfq That's pretty interesting!

A fun new-ish #Clickfix payload has been using Node.js to deploy a local SOCKS proxy, then connecting to Tor over that to download a secondary payload. Maybe I'll do a bit more of a writeup of it later. We'll see how the day goes.

It's over.

@medusa_0xf Where my trust issues began:

The only best real life anime adaptation I’ve seen is “one piece”. Like just take a look at what they did to Death Note, Nahh bro 😭🙏

@RussianPanda9xx But will the treat actors still file my taxes for me after I download the malware? I'm already getting robbed with these taxes anyways

Tax season is open 🎯 New blog just dropped on a malvertising campaign targeting W-2/W-9 searches since January 2026 Google Ad -> dual-layer cloaking -> rogue ScreenConnect -> FatMalloc crypter (2GB alloc to choke AV emulators) -> previously undocumented Huawei audio driver killing EDR 60+ rogue SC instances across our customer base 💀 huntress.com/blog/w2-malver…

@brysonbort 🤖✅📈🚀🚀 👤❌📉

Explain AI to me in 0 words.