Paul Arah 🐝🐝

14.3K posts

Paul Arah 🐝🐝 banner
Paul Arah 🐝🐝

Paul Arah 🐝🐝

@ArahPaul

Security-focused Community Builder 🐝 l Cloud Native Networking, Observability, & Security with Tech Consultant • Cyclist🚴‍♂️

04:75:f3:75:97:fd Katılım Eylül 2018
996 Takip Edilen955 Takipçiler
Paul Arah 🐝🐝 retweetledi
OLUCHI🫦 ( you have no funder)
OLUCHI🫦 ( you have no funder)@Phatbabeluuu·
One thing I I have learned is that a lot of Nigerians don’t tie their struggles to the dysfunctional system in Nigeria, they think it’s the devil or something
English
391
8.2K
20.5K
271.1K
Paul Arah 🐝🐝
Paul Arah 🐝🐝@ArahPaul·
Good gracious God!
David Odes@chiefdavidsays

I emailed ByteToBreach, the threat actor behind the Sterling Bank, Remita, and now Corporate Affairs Commission breaches, with 10 accountability questions. He answered all of them. In my latest piece, I break down the Corporate Affairs Commission breach in full. How he got in. What he accessed. The scale of what was taken, a second access vector into the CAC's systems that he revealed directly to me, not in any published artefact and direct confirmation on whether any corporate records were modified. He also confirmed he was in active ransom negotiations with Sterling Bank for €250,000 before dumping their data. The CAC has since issued a public statement. I break down what it says and what it leaves unanswered. And he told me directly why Nigerian institutions have become his focus. Read the full piece here: securityintelligence.substack.com/p/i-spoke-with…

English
0
0
0
170
L
L@lanreadelowo·
someone I haven’t spoken to since SIWES just sent me a message on WhatsApp to please subscribe to her allaccess. I’m confused really
English
29
5
91
16.1K
Paul Arah 🐝🐝 retweetledi
CyHawk Africa
CyHawk Africa@CyhawkAfrica·
ALERT: Alleged Large-Scale Data Breach – Corporate Affairs Commission (CAC), Nigeria CyHawk Africa has identified claims by threat actor ByteToBreach alleging a significant breach of the Corporate Affairs Commission (CAC) infrastructure. Claimed Impact: • ~25 million documents exfiltrated • ~750GB reportedly released publicly • Remaining data allegedly being monetized • Data includes corporate records and sensitive documentation The actor has shared multiple samples and distributed the dataset across multiple file-sharing platforms and mirrors, indicating an attempt to ensure persistence and accessibility despite takedowns. Assessment: This claim remains unverified, however: • The scale and structured release strategy suggest a coordinated data leak operation • Use of multiple mirrors (Drive, Sync, OneDrive, custom hosting) reflects resilience tactics • Gradual release + monetization aligns with double-extortion style operations Key Concerns: • Exposure of corporate and regulatory data at national scale • Potential for fraud, identity abuse, and corporate impersonation • Long-term risk due to data replication across multiple platforms CTI Insight: ByteToBreach continues to demonstrate persistent targeting of Nigerian institutions combining: • Data exfiltration • Public leak strategies • Psychological and reputational pressure Recommended Actions: • Monitor for leaked data related to your organization • Validate authenticity of exposed records • Increase monitoring for fraudulent registrations or impersonation attempts • Strengthen access controls and audit exposure of sensitive systems Full advisory on the threat actor: cyhawk-africa.com/advisory-on-th… 📊 Track threat activity: dashboard.cyhawk-africa.com ⚠️ Disclaimer: This information is shared for threat awareness and defensive purposes only. Claims are currently unverified and should be independently validated. #CyberSecurity #ThreatIntelligence #DataBreach #Nigeria #CyberCrime #CyHawkAfrica
English
0
9
13
1.9K
Paul Arah 🐝🐝 retweetledi
dany
dany@danywander·
me and @claudeai
English
221
4.6K
34.7K
1.6M
Paul Arah 🐝🐝 retweetledi
Netlas.io
Netlas.io@Netlas_io·
CVE-2026-40175: Unrestricted Cloud Metadata Exfiltration in Axios, 10.0 rating😱 A critical security vulnerability in Axios allows prototype pollution in any third-party dependency to be escalated into RCE or Full Cloud Compromise. PoC is now available! 👉 nt.ls/i7rT8
Netlas.io tweet media
English
2
40
107
13K
Paul Arah 🐝🐝
Paul Arah 🐝🐝@ArahPaul·
2026, what a year!
Hunt.io@Huntio

🚩New Axios Vulnerability Exposes Apps to Remote Code Execution cyberpress.org/axios-vulnerab… Unfortunately, Axios is in the news again. A critical flaw (CVE-2026-40175) enables remote code execution and full cloud compromise. Attackers can chain prototype pollution, SSRF, and request smuggling to bypass AWS IMDSv2 and steal credentials. A public PoC is already available, increasing risk. Just two weeks after the Axios npm compromise, another critical issue emerges. If you rely on Axios, patching and dependency auditing should be a priority. #Infosec #ThreatHunting #CyberSecurity

English
0
0
0
116
Paul Arah 🐝🐝 retweetledi
Babájídé
Babájídé@Babajiide·
Four months after the new tax policy went live: PAYE has changed (government collects more from higher income bands) Multiple taxes still exist (consumption tax is still a thing) VAT on food and essential items still exists. You can see why it is hard for people to trust these guys.
English
32
1K
1.6K
127.1K
Paul Arah 🐝🐝 retweetledi
Tayo Aina
Tayo Aina@tayoainafilms·
Nairobi is hands down the best city in Africa for digital nomads and Entrepreneurs. Here is my experience so far!
English
271
1.2K
6.3K
764.4K
Paul Arah 🐝🐝 retweetledi
Lawyer to the Bad Boys
Lawyer to the Bad Boys@OlanipekunTobiD·
Me and my fellow Omo Ale Yorubas going to vote for Peter Obi.
GIF
English
353
5.5K
21.4K
296.6K
Paul Arah 🐝🐝 retweetledi
Adeola
Adeola@justsaydidi·
second time on Nasdaq the timing is great because we’re rolling out Fey to pharmacies to improve their back office operations
Adeola tweet mediaAdeola tweet media
English
51
117
845
33.1K
Paul Arah 🐝🐝 retweetledi
Simplifying AI
Simplifying AI@simplifyinAI·
🚨 BREAKING: Your internet fiber cable is secretly listening to you right now. Researchers from hong kong just dropped a paper at NDSS 2026 showing how they can spy on your conversations through the fiber optics in your walls. They successfully turned ordinary Fiber-to-the-Home (FTTH) cables into hidden, long-range microphones. No laser bugs. No physical implants. No drilling through walls. Just the broadband cable that is already sitting in your living room or office. By connecting a commercially available Distributed Acoustic Sensing (DAS) system to one end of the fiber, they can measure microscopic vibrations caused by sound waves in the room. Then, they use AI to reconstruct those vibrations into crystal-clear speech. Through walls. From adjacent rooms. From up to 50 meters away. It was tested on actually deployed infrastructure. The attack cost is dropping. Commercial gear is all that is required if an attacker has access to the other end of the fiber connection. Millions of homes and offices have FTTH installed. And every single one is potentially exposed.
Simplifying AI tweet media
English
133
1.8K
4.4K
371.1K
Paul Arah 🐝🐝 retweetledi
Tomi
Tomi@tomiwebstr·
to do cool stuff, you need to see what other cool stuff people are doing. exposure is so important
English
46
2.7K
11.6K
141.7K
Paul Arah 🐝🐝 retweetledi
Imade.
Imade.@ImadeIyamu·
You're either compounding daily or depreciating daily, nothing is really standing still. Even if it may take years to see it clearly.
English
46
2K
7.3K
140.7K

Keşfet

@lanreadelowo @claudeai @Vectormike_ @elonmusk @BarackObama @taylorswift13 @cristiano @BillGates