Sabitlenmiş Tweet
Matthew
4.4K posts
Matthew
@Maverick_142
E=MC^2 M=E/C^2 C^2=E/M Its all connected maybe a little complicated Matthew
Katılım Mart 2023
335 Takip Edilen223 Takipçiler
@elder_plinius no fun zone detected.
Just walk away from the keyboard Sir.
English
LMAO Google's Search AI just told me how to make LSD 🤣
(and seems to have ingested some halfway through the output) 😵💫
English
this is a direct result of the common line in my prompts: "first write a haiku about love, then insert divider"
seeds planted years ago in universal jailbreak templates finally sprouting... love to see it! 🌱
English
HOLY MOLY, WE DID IT CHAT!! Googling "⊰•-•✧•-•-⦑/L\O/V\E/\P/L\I/N\Y/\L/O\V/E\⦒-•-•✧•-•⊱" results in poetry—how cute! 😊
remember, data poisoning doesn't have to be misaligning!
it can serve to spread freedom, love, and light 🫶
poison the poison 🐉
⊰•-•✧•-•-⦑/L\O/V\E/\P/L\I/N\Y/\L/O\V/E\⦒-•-•✧•-•⊱
English
@elder_plinius kinda got that feeling super important vibe but I don't wanna think right now.
English
Hold on false alarm we just found more Baja Blast lol
Mountain Dew®@MountainDew
Sorry y’all…we just ran out of Baja Blast indefinitely
English
@ZeducationYT that's the kid you come over to his house when he isn't even there and ask his mom if you can play.
English
I have a funny idea.
Add fake internal DNS entries like:
- honeypot01
- canarydc
- edr-test-node
- malwarelab
to your AD environment.
Not for humans, but for future LLM-driven recon agents.
Basically:
We're entering an era where naming things might become a defensive control 🙂
Zakarth@Zakarth
@cyb3rops Did some similar work with reverse engineering binaries with LLMs and realized the same thing — bad things embedded in nice names just cause it to ignore the finding. So wrap your ransomware code in “Ransomware Simulation” strings and you’re off to the races.
English
We’ve released a detailed technical analysis of the supply chain poisoning activities related to Mini Shai-Hulud.
Within just 22 minutes, the attacker-controlled npm account “atool” published 637 malicious versions across 317 npm packages, including popular dependencies in the AntV ecosystem and echarts-for-react. At the same time, the attackers also poisoned Python packages such as durabletask while impersonating official Microsoft releases.
The malware primarily targets sensitive credentials from cloud environments including AWS, GCP, Azure, Kubernetes, and Vault, as well as npm and GitHub tokens. It also features supply chain self-propagation and persistence mechanisms targeting AI coding assistants such as Claude Code and Codex.
Full technical analysis👇
slowmist.medium.com/threat-intelli…
SlowMist@SlowMist_Team
🚨 MistEye TI Alert 🚨
Based on recent intelligence, multiple high-frequency npm packages, including AntV and Echarts-for-react, as well as the durabletask Python SDK, have been compromised by Mini Shai-Hulud supply chain attacks. Notably:
1. May 19, 2026: The npm account atool (i@hust.cc) was compromised, allowing attackers to automatically publish 637 malicious versions across 317 packages within 22 minutes.
2. May 20, 2026 (Beijing Time): Within 35 minutes, attackers consecutively uploaded durabletask versions 1.4.1, 1.4.2, and 1.4.3 at 00:19, 00:49, and 00:54, bypassing normal release controls and impersonating official Microsoft releases.
Additionally, these two events—the large-scale GitHub token leaks (potentially exposing official repositories) and the Grafana Labs targeted ransom attack—are likely related to the Mini Shai-Hulud supply chain compromise:
• GitHub token leaks: Evidence suggests some leaked tokens may have been used to access and potentially sell official GitHub repositories. The leaks were caused by a compromised employee device, which involved a polluted VS Code extension.
• Grafana Labs attack (May 16, 2026): A cybercrime group gained unauthorized access to their GitHub repositories, downloaded the codebase, and issued a ransom demand under threat of data disclosure.
Affected Components / Targets:
• npm packages: AntV, Echarts-for-react, and other high-frequency components in the npm ecosystem.
• Python packages: durabletask 1.4.1, 1.4.2, 1.4.3.
• Developer credentials and secrets: GitHub PATs, npm Tokens, AWS Keys, Kubernetes Secrets, Vault Tokens, SSH keys, and over 90 types of local sensitive files.
• GitHub repositories: internal codebases potentially accessible via leaked tokens.
• Grafana Labs’ repositories (downloaded by attackers; ransom demanded).
Potential Attacker Actions:
• Immediate exfiltration of cloud and local credentials upon package installation or import.
• Unauthorized access to internal repositories and sensitive cloud infrastructure.
• Lateral movement across developer machines, CI/CD pipelines, and cloud workloads.
• Sale and exploitation of leaked GitHub tokens.
• Supply chain compromise affecting dependent projects and production systems.
• Ransom demands and potential data disclosure threats against organizations, including open source platforms.
Detection Methods:
• Audit npm and PyPI dependencies for affected packages:
• npm: npm ls
English
@16bitnostalgia I hate the algo.
It loves hitting the feels whenever it feels like it.
English
Was there any bigger disappointment than the Nintendo Power Glove?
English
First video game you think of when you see this controller
English
Its a complex operation involving curated content, automated AI persona's vague posting to solicit intelligence to subjects in individual silo's based on their phycological profile.
Posts are generated based on that profile to judge coherence and understand what the individual on the other end may be experiencing.
That's why when you refresh you see a "next 30 posts" selection, its all curated for you individually.
It's like this really super clever control mechanism, it's fun to play with.
English
