Daddy T

“Nothing in this world is more expensive than free.”

Let’s call it the “Jenifization” of Yoruba society, the normalization of an olodo culture that has, in turn, produced a new generation of celebrities like Peller and others. By the way, the last Funke Akindele film I watched from start to finish was the original Jenifa. I watched it with my dad, and he got annoyed halfway through. At the time, I thought he was overreacting, but I later came to understand his perspective. The prolonged expansion of the entire Jenifa franchise only made things worse. I don’t find it funny or interesting, it all comes across as shallow, slapstick nonsense. So there you have it.😏

There’s this “let’s just give up on this country” mentality some of you have that pisses me off Do you have another country somewhere?

stop using your big account to spread misinformation on things you don’t know and have not confirmed. You’re adding to our problems!

People have mind sha. You’re doing a guided tour of the inside and outside of your house. Mu ra si. Honestly don’t know why anyone will engage in this act of foolishness unprovoked.

Engine & key sold separately.

This week in security: - LiteLLM, backdoored release exfiltrating secrets - Axios, supply chain malware via dependency - Railway, CDN caching leaked user data - OpenAI Codex, command injection via GitHub branch names - Mercor 1TB data leak - Delve, data leak + compliance risk infra is the attack surface now

I post this every year during Holy Week! 😂 It cracks me up every time. Good Christian humor.

A tiny piece of code called axios runs inside almost every app on your phone and every website you visit. Developers download it 100 million times a week. A few hours ago, someone poisoned it with malware that hands an attacker full control of your computer. If you’ve never heard of axios, that’s normal. It does one boring but important job: it lets apps talk to the internet. When a website pulls up your feed or an online checkout processes your card, axios is probably doing the work underneath. Over 173,000 other code packages plug into it. It’s everywhere. The attacker stole a lead developer’s login for npm (think of it as an app store, but for code that programmers use to build software). Once inside, they swapped the developer’s email to an anonymous ProtonMail account and uploaded the poisoned version by hand. That jumped past every security check the project normally runs before new code goes live. And this was not some rushed job. The attacker staged the malware at least 18 hours before pulling the trigger. They built separate versions for Windows, Mac, and Linux. They poisoned both the current version and an older one within 39 minutes of each other, casting the widest net possible. Once the malware ran on a machine, it deleted itself to cover its tracks. The trick was smart. They never touched a single line of code inside axios itself. Instead, they tucked in a fake add-on called plain-crypto-js, built to pass as a well-known, trusted library. It copied the real library’s description and author info, so nothing looked off at a glance. When a developer installed axios, this fake package quietly ran the malware on its own. When a smaller package called ua-parser-js got hijacked back in 2021 with about 8 million weekly downloads, the security world treated it like a four-alarm fire. Axios has 100 million. Over 12x the exposure, with 173,000+ packages depending on it. Socket, the security firm that flagged this, caught it in about 6 minutes. That’s fast. But 6 minutes is still plenty of time for automated systems at companies everywhere to pull and install the bad version before anyone can react. If you or your team runs axios: lock your version to 1.14.0 (or 0.30.3 for the older branch). Change every password, API key, and access token on any machine that installed the compromised update. And check your network logs for connections to sfrclak dot com or the IP address 142.11.206.73.

We’re so easily distracted, gosh. People are dead, FGS.

This little girl has been missing since February 16. May God keep her safe. Please reshare. 🙏

What the hell???! 😂

Yoruba Nollywood folks are the biggest support of bad governance. It’s partly why I don’t rate them and their YouTube movies.

That Nigerian bracelet is non-existent. No Nigerian has seen or worn it before.

Bad boy. I’ll never forget this goal 🔥

And to all of you saying you’ll not go out to vote next election because you already feel this cankerworm of a party will rig it, I understand it o but that’s also what they’re banking on. And would you rather keep lamenting rather than putting your best foot forward?

I hope there's a section of ADC that plans to fight dirty or at least play defense because we don see say good girl no dey pay o!😭✋

There is no ideological umbrella I sit under or group I belong to that’s immune to criticism from me. We don’t do that support all rights and wrongs nonsense here.

Stop contributing to misinformation if you do not understand a thing. It’s absolutely crazy, we should be better off. We are educated.

I don’t know if we as Nigerians are emotionally invested in these primary 6 relationship conversations as a way to distract ourselves from the constant killings in our country or that’s just the things that interest us