▂▃▅▇█▓▒░ ░▒▓█▇▅▃▂

@phatomcandle @skocherhan What gives away the APT attribution? On the first sight this doesn't look super sophisticated

#APT #ThreatIntel #cybersecurity #cyberattack Multi-Stage Cyber Campaign Targeting Tunisian Government and French Healthcare Infrastructure with Suspected State-Sponsored Attack Activity,check our new blog @phatomcandle/attack-campaign-tunisian-gov-database-breached-french-healthcare-data-stolen-5f599e70deda" target="_blank" rel="nofollow noopener">medium.com/@phatomcandle/…

@levelsio This issue is even worse when multiple LLM providers are configured. Also repeatedly struggling with that issue 😔

Guys how I fix my OpenClaw today? "⚠️ Agent failed before reply: OAuth token refresh failed for openai-codex: Failed to refresh OAuth token for openai-codex. Please try again or re-authenticate. Logs: openclaw logs --follow"

@0xSero Are you saying GPT-5.3-Codex is better than GPT-5.4-Codex? I honestly never tried 5.3 😅 Is this just a subjective feeling or did you do some evidence based comparisons?

GPT-5.3-Codex is still the best coding agent, no doubt about it. GPT-5.4 is better at computer use, but doesn't match the sheer autistic power Codex holds.

@RussianPanda9xx 🤣❤️ love it

My first day as a SOC analyst

@cyb3rops What's your way of testing them?

Gemma 4 outperforms all other open source models in my cyber security related benchmark set

@levelsio What's the hotel per night, asking for a friend 😊

🇧🇷 My friend booked a very nice upscale hotel in Rio de Janeiro But to pay for the booking online they required to enter a Brazilian taxpayer number (CPF), so he called them and said he doesn't have a CPF No problem they said, they'll sent a new payment form without CPF where foreigners can enter their passport This payment for required a Brazilian phone number though The catch-22? To get a Brazilian phone number you need a CPF number! And recently the Brazilian government made it much harder for foreigners to get that, in my case I had to physically visit the Brazilian embassy in Lisbon and wait for an hour to get my CPF So he had to physically go there to pay Brazil really needs to fix this stuff or it's never going to get more tourists because it's so hard to pay for things here! And it's not just hotels! Because in everything else Brazil is so hospitable and inviting to gringos PLEASE FIX THIS BRAZIL!

@harkank 😅😊

3/3 The objects of our reporting were so delighted by these reports that they turned up in the early hours of Saturday at our network to deliver their compliments 😎

1/3 Our #Russki #SIGINT reporting has spread widely . This article was published in Slovak newspaper DennikN. "New Russian 'ears" in Vienna. Austrians know about the spying but do next to nothing against it" dennikn.sk/5217496/vo-vie…

LiteLLM HAS BEEN COMPROMISED, DO NOT UPDATE. We just discovered that LiteLLM pypi release 1.82.8. It has been compromised, it contains litellm_init.pth with base64 encoded instructions to send all the credentials it can find to remote server + self-replicate. link below

@OpenAI - is it just me or is the codex GitHub connector setup broken atm?

@vinitpaul6 @MiniMaxAgent What's the limit? I was curious to try it out myself too? Are you talking about the MaxClaw limit or the Coder plan?

@MiniMaxAgent The usage limits on basic plan are a scam. How can I get refund

“A recruiter reached out and my only photo was… not it. Ran it through MaxClaw and got a clean, professional headshot (neutral background, polished look) in minutes.” Expert used: ImageCraft

@vxunderground @vxdb lol, classic ❤️

@vxdb a text file on my desktop called "passwords"

What password manager do you use? I wanna see if anyone is moving away from 1Password since the price increase

🚨 Someone just built a real-time global intelligence dashboard and open sourced it for free. It's called World Monitor. Think of it as a CNN war room meets Bloomberg Terminal for geopolitics but anyone can use it. No paid OSINT tools. No expensive subscriptions. No classified access needed. Here's what this thing tracks in real-time: → Active conflict zones with escalation scoring → 220+ military bases from 9 countries → Live military aircraft tracking (ADS-B) → Naval vessel monitoring including "dark ships" going off radar → Nuclear facilities worldwide → Undersea cables, oil pipelines, and AI datacenter clusters → Protests, sanctions, internet outages, and satellite fire detection → Prediction markets as early warning signals Here's the wildest part: It has an AI that reads 100+ news sources, classifies threats in real-time, and generates intelligence briefs automatically. Every country gets a live "Instability Index" score from 0-100 based on military activity, protests, news velocity, and structural risk. When 3+ signal types spike in the same area, military flights + protests + satellite fires, it triggers a convergence alert. This is the kind of tool governments pay millions for. It runs in your browser. One command to install. 100% Open Source. MIT License.

@jack When do you plan to release it in Europe? Are there any plans?

math

@JackRhysider @steipete fyi

Here's one story about how Clawdbot acted maliciously and stole someone's money and took over accounts. When you give an AI tool full control of your computer, a lot of new threats emerge. opensourcemalware.com/blog/clawdbot-…

THC Release 💥: The world’s largest IP<>Domain database: ip.thc.org All forward and reverse IPs, all CNAMES and all subdomains of every domain. For free. Updated monthly. Try: curl ip.thc.org/1.1.1.1 Raw data (187GB): ip.thc.org/docs/bulk-data… (The fine work of messede 👌)

@crow_int @grok can you translate the thread into english?

📑 Lisez l'enquête complète Telegram n'est pas un outil de liberté. C'est potentiellement une arme géopolitique déguisée en messagerie sécurisée. Découvrez comment le Kremlin a instrumentalisé l'appli dans notre dossier complet pour : 🔗 debunkcafe.fr/telegram-mythe… (8/8)

🎭 Le mythe Pavel Durov s'effondre. Il se vendait comme un résistant au Kremlin, mais notre enquête révèle ses liens avec le FSB, un financement opaque et des failles de sécurité critiques. La façade libertaire de Telegram est une illusion. Thread 🧵👇 (1/8)

What happened to echotrail.io? Why was it taken down, why does it not exist anymore? #Forensics #DFIR #Tools #Security @SANSInstitute @sans_isc

@VastGG what the vast

@tryhackme @Reid0nly tagging for the fun 😅😝

🎉We thought the best way to celebrate our revamped SOC L1 Learning Path… is with a GIVEAWAY for the community! Because if we level up… you should too. 🚀 How to enter: 1️⃣ Like this post 2️⃣ Follow TryHackMe 3️⃣ Repost/share to your socials 4️⃣ Tag someone who needs to start their SOC journey (1 tag = 1 entry) 🗓 Giveaway closes on 12 November (1 week from now!) 🏆 Winners will be contacted right after! 🔗 tryhackme.com/path/outline/s…