Server Crew

@QDrop2450 @grok are these photos ai generated?

As of January 18, 2026, Russia’s Kamchatka Peninsula is grappling with what local residents and media are calling a "snow apocalypse". How's your Winter going so far?!? 😲🥶

Someone found an RCE on my website yesterday. CVE-2025-55182. React2Shell. I don't have a bug bounty program. I never asked for a security assessment. I woke up to a DM: "Hey I found a critical vulnerability in your site. I only ran the exploit to verify it worked. Here's my PayPal for the bounty." Bounty? I checked my logs. Forty-seven requests to my RSC endpoint. Something, something ... Prototype pollution payloads. They used the GitHub script. The one with 2,000 stars. The one that runs id automatically "for verification purposes." They spawned a shell on my production server. uid=1001(nextjs) gid=65533(nogroup) They took a screenshot. They posted it on Twitter. "Popped a Shell on a Live Website 🚀💀 #BugBounty #CVE-2025-55182 #YOLO" They got 84781 likes. My customers' data was on that server. I asked them to delete the screenshots. They said "I removed the domain name, you should be thanking me." Thanking them. For unauthorized access to my production infrastructure. For running arbitrary commands on systems I own. For posting proof of exploitation for clout. They called it "responsible disclosure." I called my lawyer. They called me "ungrateful." I called the FBI. Now they're in my DMs explaining that "this is how the industry works" and I "don't understand pen testing." A pen what? I understand it perfectly. I understand that running react2shell-ultimate.py against random websites isn't research. I understand that "I removed the identifying info" doesn't undo the unauthorized access. I understand that #BugBounty doesn't apply when there's no bounty program. I understand that finding my site on Shodan doesn't constitute authorization. Their followers are defending them now. "Presumption of innocence." "You don't know if it was authorized." "The screenshots were redacted." Three hundred people are calling me a bootlicker for reporting a crime. Someone said I should be grateful they didn't deploy a cryptominer. The bar is underground. I just wanted to run a small Next.js app. I didn't ask to be someone's proof-of-concept. I didn't consent to being their "first" I didn't sign up for an unscheduled penetration test from a stranger with a GitHub account. There is no safe harbor for spraying public exploits at random websites. There is no legal protection for "I was just verifying the vulnerability." There is no ethical framework where unauthorized prototype pollution is a favor. But sure. Thank you for your service. You found a CVE that was already public. Using a tool someone else wrote. Against a target that never authorized you. And you posted about it on main. For likes. Hero.

Want to quickly scan your codebase for security vulnerabilities? 🤠 Arm recently open-sourced Metis, an open-source, AI-driven tool that uses LLMs to perform deep security code reviews on your codebase. Unlike traditional SAST tools, Metis can understand contexts and catch complex vulnerability types like logic and design flaws. Plus, it supports C, C++, Python, Rust, and TypeScript out of the box! 😎 Check it out! 👇 github.com/arm/metis

@TheQeye_ @argosaki @CMDRVALTHOR @ElizabethRepp1 @JFKFan12345 @NiclasQSwede @TrumpsManInAust @ShannonCam82757 @SabrinaGal182 @WhiteHouse

💥BQQQQQQQM💥 PRESIDENT TRUMP - THE AMERICAN DREAM!!! #TRUMP2028

@TheQeye_ @argosaki @CMDRVALTHOR @JFKFan12345 @WyattCatarina @TrumpsManInAust @WhiteHouse @ShannonCam82757 @SabrinaGal182 @NiclasQSwede

💥BQQQQQQQM💥 GOD BLESS OUR MILITARY #MAGA #MILITARYISTHEONLYWAY

@TheQeye_ @argosaki @CMDRVALTHOR @ElizabethRepp1 @JFKFan12345 @NiclasQSwede @SabrinaGal182 @ShannonCam82757 @TrumpsManInAust @RussellEldredg1

EDUCATION DEPT. CLOSED 🔥

@NoshrtCutz @TheWarMonitor This is what the rest of the world is saying about the US

@TheWarMonitor After what I’ve seen from Texas law enforcement today. I have no need to go there a long while

In Texas, ICE Agents entered his property with no warrant, dropped him on a cement block, knelt on his neck, punched him, and tazed him into a coma. Witnesses say he only moved from the pain.

@ayu_DPalupi Do you mean the hole that they're putting the grease into?

What is that black thing? Does anyone know?

Yet again The Aus appearing to be a mouthpiece of the failed LNP

@danobrien20 "Irish Twitter" accounts aren't necessarily Irish.

Amazing the volume of vitriol and anti-western bilge that comes from Irish twitter on the subject of Nato. Reminder: Every single one of our neighbours facing onto the north Atlantic are members. Are they all wrong, and Ireland uniquely right, on the benefits and costs of membership?

@australian Are you kidding me? Alan Joyce is the reason I still refuse to fly with QANTAS. Why would we listen to him?

Qantas’s controversial former chief executive Alan Joyce will stun the aviation industry with a warning that it risks becoming a national pariah unless it agrees to a climate pact to preserve its trust, regulatory standing and social licence. More at: bit.ly/4lL1ETf

I’m a psychiatrist. In 2025, I’ve seen 12 people hospitalized after losing touch with reality because of AI. Online, I’m seeing the same pattern. Here’s what “AI psychosis” looks like, and why it’s spreading fast: 🧵

@Philippe_Tweets I wonder how much private prison companies contributed to GOP/Trump campaigns. There seems to be a lot of "lock 'em up" going on in the US

Imprisoning homeless people is probably what Jesus would do.

Supply chain attack with malware hits Gravity Forms for WordPress itnews.com.au/news/supply-ch…

If you’re in SF, be careful out there. I had two licenses of Microsoft Teams in my car, and someone broke in and left two more

@mlb0752 @inland_training @grok @DeanPaul003 @elonmusk Obviously if your figures are correct 60% of them are. And you haven't included any information about how much tax the 40% are paying. They could be (and probably are) only paying %1-2.

@inland_training @grok @DeanPaul003 @elonmusk 40 percent of the wealthiest people pay taxes according to IRS. They aren't getting out of taxes.

Wow

The current state of education. She has a point.

"The Defence Housing Authority is a 100% govt owned agency that buys land, builds houses, rents them to soldiers & makes a profit." "What if we had a Nurse's Housing Authority or a Teacher's Housing Authority? Or just a Housing Authority?" @RDNS at @CHIA_News Housing Summit

🧵Talking point lies that Peter Dutton is allowed to repeat unchallenged. Australians are paying $1000 more for the electricity bills. 🤔 #Auspol #LNPNeverAgain

Australia is in good shape under @AustralianLabor, don't ruin it by installing @PeterDutton_MP & his $trillion dollar debt specialists! #LNPNeverAgain #auspol