Aaryaman Sharma
1.1K posts
North Korean intelligence agents built an entire fake company to compromise one JavaScript developer. And it worked.
UNC1069 didn't hack Axios. They befriended its maintainer. They cloned a real company founder's identity, built a branded Slack workspace with fake employee profiles and LinkedIn post channels, then scheduled a Microsoft Teams call with what appeared to be a full team. During the call, a fake error message said his system needed an update. He installed it. That update was the RAT.
From one developer's laptop, they had everything: npm credentials, publishing access, the keys to a package installed in 80% of cloud environments. Axios gets 100 million downloads per week. The attackers published two poisoned versions at 12:21 AM UTC on a Sunday night, tagging both the latest and legacy branches within 39 minutes. The malicious dependency had been pre-staged 18 hours earlier with a clean decoy version to build registry history. Three separate RAT payloads were pre-built for macOS, Windows, and Linux. The malware self-deleted after execution to erase forensic evidence.
The poisoned versions were live for about three hours before npm pulled them. Huntress observed 135 endpoints across all operating systems calling the attacker's command-and-control server during that window. Wiz found the malicious versions in roughly 3% of environments scanned. Every affected machine needs full credential rotation: npm tokens, AWS keys, SSH keys, CI/CD secrets, everything in .env files.
The part that keeps getting worse: this isn't isolated. The same threat cluster compromised Trivy (a security scanner), KICS, LiteLLM, and multiple GitHub Actions in the two weeks before Axios. Google estimates hundreds of thousands of stolen secrets are now circulating from these combined attacks. The maintainer had 2FA enabled. He said himself: "I have 2FA/MFA on practically everything." The exact method of token compromise is still undetermined.
One person. One fake Teams call. 100 million weekly downloads weaponized in under three hours. The npm ecosystem runs on mass trust in individual maintainers who volunteer their time, and North Korean intelligence now has a repeatable playbook for turning that trust into a delivery mechanism.
flavio@flaviocopes
How Axios was compromised 🤯
English
@aethernet_port @ElaraJordan It’s probably some kind of shell company format, which is at play
English
@ElaraJordan He has 0 so he can tell Congress he has 0. He has equity in Y Combinator which itself has equity in OpenAI from its beginning. I’d assume he has equity in some of the other VC firms on the cap table as well
English
OPENAI LEAKED CAP TABLE 🚨🚨
> Sam Altman Owns 0%!?
> SoftBank investment in OpenAI: ~$64.6B (11.75%)
> SoftBank is *already* up $50 BILLION
> A lot of oddities with the nonprofit and “phantom equity”
What in the world is going on…
English
Sam Altman just admitted OpenAI deliberately keeps life-saving AI capabilities locked because they're too dangerous to release.
A guy flew in from Australia to tell Altman how he used ChatGPT to design a custom mRNA vaccine for his dog's cancer.
He had no medical background or research team. Did what would've taken an entire research institute with just ChatGPT.
And the dog actually survived.
Altman called it the coolest meeting he had all week.
Then he admitted that OpenAI intentionally restricts how powerful their models can be in biology.
Said more people could save lives if they "turned up the power." But they won't. Because that same power could let a terrorist group engineer a novel pandemic.
So right now there is a version of ChatGPT that could potentially help cure diseases that OpenAI will not give you access to. Not because it doesn't work but because it works TOO well.
And that tension defines everything about where AI is headed.
Altman says within 2 years there will be more cognitive capacity inside data centers than inside every human brain on Earth combined.
Automated AI researchers could compress 10 years of scientific progress into one year. Then 100 years into one year.
A physicist using one of OpenAI's latest internal systems told Altman his mind was "completely blown" and that decades of theoretical physics breakthroughs are about to happen in the next couple of years.
This is what nobody's paying attention to.
Everyone's arguing about chatbots and which AI writes better emails. But the ACTUAL play is automated research that could reshape energy, medicine, and materials science faster than any institution can process.
But Altman is also terrified of what happens when individuals get that much power.
He says open source models will eventually be capable of designing pathogens. When that happens it won't matter what safety restrictions OpenAI puts on their products. The threat literally comes from everywhere.
And here's the part that tells you everything about where his head is at:
He won't let his own son use AI.
The CEO of the most powerful AI company in history would rather be on the "late end of what's reasonable" when it comes to his kid using the technology HE built.
He used to write his baby a letter every night about the decisions he was making at OpenAI. What went wrong. What he was worried about. What he decided and why. Said writing to your kid forces you to be the most honest version of yourself because you can't hide anything.
His lawyers told him to stop.
The man building the most powerful technology ever created was writing nightly confessions to his infant son about what he was doing. And the legal team said that's too DANGEROUS to continue.
He also confirmed the first one-person billion-dollar company already exists. Built entirely by one founder using AI agents. No team. He promised not to share details until the founder announces it.
And he killed Sora despite a billion-dollar Disney deal because "competing in short-form video would force OpenAI to optimize for addiction."
The picture that emerges is a man who believes he's building something that could save or destroy civilization. And he's making trillion-dollar bets on the assumption he can thread that needle.
- Locking up capabilities that could cure diseases because they could also engineer plagues
- Deploying AI for the military while admitting he "miscalibrated" public trust
- Raising a child he won't let touch the product he built
That's not confidence.
Sam Altman is negotiating with the future in real time and hoping he gets it right.
English
Whoever leaked this does not know the rules of Bookface. There is a reason why Garry posted this on Bookface and not on X.
SPEC@___4o____
Here’s what Garry Tan had to say about the Delve situation on Bookface. This is the whole message.
English
@affaanmustafa It seems to me like they didn’t choose to disassociate until Delve took their customer’s code (another yc company).
YC partners were supporting the crisis response posts from Delve when it was just fraud.
Looks like fraud is okay at YC but you can’t screw other yc companies
English
@uwu_underground “we got hacked” but the hacker only published receipts? that’s not a breach defense, that’s just someone else doing the discovery work
English
Hahahhahahahahahhahahahhahahahahhahahahhahahahhahahahhaahahahahahahahhahahahahhahahahhaha
So wait.... Hang on.... Holy fuck
You're entire fucking defense is "you were hacked and they discovered your crimes?"
They didn't drop ransomware, delete your files, and used a blog site to post intricate company details instead of a dark web site? This ain't no hacking group.
Bro, yous going to prison from a whistleblower
Karun Kaushik@karunkaushik_
There’s been a lot of allegations against Delve. But we haven’t been able to share our side of the story until today due to ongoing cybersecurity and forensics investigations. Maintaining customer trust is central to everything we do. That said, we grew too fast and fell short of our own standard. To our customers, we deeply apologize for the inconveniences caused. We take these allegations seriously and have made changes: a new auditor network, free re-audits and pentests for all customers, enhanced transparency in audit communications, and more. However, we also want to set the record straight on the anonymous attacks. The evidence we have points to a targeted cyberattack from a malicious actor, not a “whistleblower.” We believe the attacker purchased Delve under false pretenses, exfiltrated internal company data, and used it to launch a coordinated smear campaign. The posts rely on a mix of fabricated claims, cherry-picked screenshots, and stolen data taken out of context. See the link in the comments for more details. Delve was built to modernize compliance. We are not going anywhere and are committed to building what's next.
English
@MarkySnarkie @uwu_underground Is it just me or she has a smug smile throughout the video
English
@uwu_underground I just saw that she's a 30 under 30, people need to start rejecting that. It's just for sociopaths with no morals.
English
@dvassallo They could have stopped or said no these practices they didn’t. Lying or alleged fraud reports is not the only way to break fast and move quickly to raise another round!
English
Maybe the Delve founders are genuine psychopaths. Maybe they set out to defraud people from day one.
But they're 21. Both of them. Basically kids.
More likely: they got into YC, got surrounded by people telling them to move fast and break things, grow at all costs, fake it till you make it, and so on. They wanted to impress their batchmates, their partners, the alumni network, their parents. So they pushed too hard and broke things they shouldn't have broken.
YC selects for this. They want young naive founders who are aggressive, ambitious, a little reckless. They celebrate the ones who bend the rules and win. When a 21 year old bends the rules and loses, suddenly it's a "trust" issue and they get a cold three-sentence farewell on Bookface.
No mentorship. No "hey, you're heading in a dangerous direction." No community stepping in before it got this far. Just "we asked them to leave, we wish them well."
That's not a community. That's a machine that takes credit for your wins and disowns you when you mess up.
English
@karunkaushik_ i have no idea what this is nor care to watch more than 30secs on it because i saw this in the bio and laughed out loud for real 🤣
English
There’s been a lot of allegations against Delve.
But we haven’t been able to share our side of the story until today due to ongoing cybersecurity and forensics investigations.
Maintaining customer trust is central to everything we do.
That said, we grew too fast and fell short of our own standard. To our customers, we deeply apologize for the inconveniences caused.
We take these allegations seriously and have made changes: a new auditor network, free re-audits and pentests for all customers, enhanced transparency in audit communications, and more.
However, we also want to set the record straight on the anonymous attacks.
The evidence we have points to a targeted cyberattack from a malicious actor, not a “whistleblower.”
We believe the attacker purchased Delve under false pretenses, exfiltrated internal company data, and used it to launch a coordinated smear campaign.
The posts rely on a mix of fabricated claims, cherry-picked screenshots, and stolen data taken out of context.
See the link in the comments for more details.
Delve was built to modernize compliance. We are not going anywhere and are committed to building what's next.
English
Scientists and designers unveiled a handbag made with lab-grown collagen derived from Tyrannosaurus rex fossils reut.rs/4sK5BM5
English
Crazy how a single dev is able to make a game this good.
The Beat em' up succesor to Sifu?
🎥🎮Acts of Blood
Coming soon
English
The animation I made a while ago simulates the three-body problem. One of my favorite works so far.
English
This small, international indie team is making a fast paced 3rd person mech action game that looks amazing, having a fantastic art style as well as a ton of customization options.
This is Code RAPID, interested?
English
This indie dev is making a horror game about Thalassophobia - the fear of deep water.
- Must descend into a deep sinkhole
- Explore caverns using sonar system
- Pilot a small submarine through darkness
It's called There's Nothing Down There. Would you play this?
English
@antoinpreaubert @OpenAI @gaganghotra_ These VC’s might get a rude awakening or the circus would go on. Let’s see!
English
@OpenAI @gaganghotra_ how Sam Altman feels after convincing VCs to bet all their savings on OpenAI bc “AGI is just around the corner
English
Today, we closed our latest funding round with $122 billion in committed capital at an $852B post-money valuation.
The fastest way to expand AI’s benefits is to put useful intelligence in people’s hands early and let access compound globally.
This funding gives us resources to lead at scale. openai.com/index/accelera…
English