Palioh

@67_throwaway @akaclandestine threat actors caring about UI design for their RAT software is like a roadman asking for a light after they rob you (the joke is the RATs are often dualhooked)

@akaclandestine How does someone make a RAT with that many features yet the UI looks worse than Dark Comet which is like 2 decades old at this point. 😞

🚨 CTI ALERT – HIGH-RISK THREAT Threat Intelligence confirms the April 2026 launch of a highly sophisticated new private Windows Remote Access Trojan: FALKONc2 (ROTEMELLI stubs). Developed entirely from scratch in C++ + MASM64, 100% fileless (operates exclusively in memory), with ultra-lightweight stubs of 23-35 KB and zero third-party code. Full focus on advanced evasion and long-term persistence. 1/5 Two strategic variants: • ROTEMELLI1 (Consumer targets) – €249/month
Bypasses 50+ AVs | HTTP + custom encryption (mm4/ChaCha20) | Weekly C2 domain rotation • ROTEMELLI2 (Corporate targets) – €1,499/month
Bypasses 50+ EDR/XDR | DNS + HTTP (+ ICMP on legacy systems) | C2 rotation every 72 hours 2/5 Critical confirmed capabilities: •Silent HVNC/RMM + remote shell •Advanced local network reconnaissance (SMB, FTP/SSH/RDP) •Active Directory, QuickBooks & Sage50 detection •Automatic privilege escalation + kernel-mode BSOD •Synchronous 1080p screen capture + GPS tracking •Resident loader + custom Builder/Morpher (latest MM12 version) •x86/x64/ARM64 support + custom icon No public samples or IOCs available — the seller explicitly prohibits uploads to any public scanners. 3/5 Professional MaaS sales model: Sold exclusively via Telegram and select underground forums after rigorous buyer verification. Geographic restrictions apply (no CIS countries or Japan). Elevated risk to corporate environments due to next-generation EDR/XDR evasion and long-term stealth persistence. 4/5 Immediate recommendation for SOC and Threat Hunting teams: •Prioritize behavioral detection of fileless execution and memory injection •Monitor anomalous low-footprint DNS/HTTP/ICMP traffic •Keep EDR/XDR behavioral analytics rules fully updated Stay vigilant. Full technical report and deep-dive analysis available upon request. 5/5 #CyberSecurity #ThreatIntelligence #Malware #RAT #EDR #XDR #FilelessMalware #InfoSec #CyberThreat #APT #DarkWeb #C2 #CyberDefense #WindowsSecurity

@kataansqueue @vagueviolet Seriously? This was my cheatsheet for my signals final this yesterday

@vagueviolet My cheat sheet for Signals and Systems when I was at university for Electrical engineering 😿

this is the work of a 2.8 gpa student

@hellorymi @dabit3 good boy Ryan

@dabit3 Time to intercept local requests to api.github.com/user to return 200 no matter what as you clean up this mess

This is crazy. The hacker installed a dead-man's switch that will wipe your computer if you revoke the GitHub token they stole from you. Revoking the token is what triggers the wipe.

@realCrackWatch I had the choice of paying 50$ for the past 2 years but always held out hope and I’m glad I did.

Black.Myth.Wukong-voices38 #crackwatch #denuvo

@mojito_flow @bogdan_qclay yeah one of those UI designer AI bait videos

@bogdan_qclay Im sorry big man but there’s no way that design was AI generated.

Guess how many Lovable credits this took

@reiaYuri3 @forgetmaenott salt and roast him like a marshmallow after

that is a BABY and this is how that piece of shit portrayed her

@thesomewhatyou @DivyanshT91162 Even then can be bypassed but all in all anubis is leagues better than this

@DivyanshT91162 just use Anubis, man

CAPTCHA IS OFFICIALLY OUTDATED A new open-source library called Cap is changing how websites stop bots. No puzzles. No traffic lights. No “select all bikes” anymore. Instead, it uses a SHA-256 proof-of-work system — simple, silent, and fast. Why devs are switching: • Only ~20KB in size • Zero tracking, zero data collection • No images, no user friction • Works with any JS runtime • Fully customizable (visible, invisible, floating modes) • Zero dependencies • Can be deployed instantly via Docker This is a full replacement for traditional CAPTCHA systems. Cleaner UX. Faster websites. Better privacy. 100% open-source on GitHub Link in comments.

@cryptopunk7213 when I write BS posts glamorizing benchmark tests open source models intentionally train to score highest on instead of actual applications.

it’s official - china’s fucking dominating AI. they’ve caught up. new DeepSeek v4 matches GPT-5.5, costs 86% less. 100% open source. don’t take my word for it: -> deepseek v4 flash is 99% cheaper than opus 4.7 (not a typo). $0.28 per million tokens -> ranks #1 on code forces benchmark beating gpt 5.4. competitive to 5.5 and opus. in the last week: → Mon: Moonshot drops Kimi K2.6 → Wed: Alibaba drops Qwen 3.6-27B → Thurs: DeepSeek drops V4 3 chinese labs, 3 frontier OPEN source models in < 4 (FOUR) days there is no way you can argue china hasn’t caught up. gg

@7N7 if only their models werent so censored to shit over xoring a string

holy framemog

@idealworld236 @oprktr ur actually evil for that 😭

@oprktr Thank you for template 😋🙏

"The new ChatGPT images 2.0 is insane" - ok Here are some posters I created without AI prompts slops

@hemzadev @HeyAnsariUX I mean. Not really but it certainly can be done with a vision model + sonnet 4.6

@HeyAnsariUX This is what I got from my daily Lovable limit, pretty close to the original

AI can never match this level of quality

@vokaysh @pastaraspberry yeah codex guardrails really suck hates doing anything.

@pastaraspberry I do security so I can't use codex for many types of tasks because it's just too bothersome to jailbreak and plan around refusals but I like clodex for many types of tasks: x.com/vokaysh/status…

codex compaction seems to do something really good, I honestly don't even notice when it happens and just do all the work in the single endless thread. Claude Code in comparison really lobotomizes model the moment compaction happens.

@XBToshi @kyc_rip lol if anyone falls for this crap they deserve it.

The parallel economy doesn't run on the clearnet, have been optimizing the performance on Tor🧅. @kyc_rip Tor v1 beta is live. • Native .onion routing • 6,500+ pairs aggregated • 100% No-JS compatible • Absolute zero KYC Stop leaking your metadata.

@AmpereSh @Xiaoxin031029 lol typical “unlimited use” misleading headline

I hear you that’s definitely not the experience we want you to have. The plan isn’t capped by dollar value, but by compute usage. Some requests (especially heavier ones like coding or multi-step tasks) can use more capacity than expected, which can make it feel limited. That said, I’d like to take a closer look and help fix this—please DM me your details and I’ll get it sorted 👍

🚨 UNLIMITED Claude Opus 4.6 is LIVE for EVERYONE on ALL Ampere plans! No limits. Full Opus on every request your Openclaw makes. 7 Days of UNLIMITED for users on ALL plans. World's hot favourite model is FINALLY UNLIMITED - for one whole week. You waited long. And you get it on Ampere👇

@JungleOfx @durov Telegram doesn’t guarantee privacy outside of secret chats either, don’t anticipate them to accommodate your ban appeal on the world’s largest cyber crime network.

@durov Telegram is a worse app to use, you ban users as you like without any justification.

That’s why Telegram Secret Chats never show message content in push notifications. Since 2013, Secret Chats have remained the most secure usable way to communicate. US gov funded Signal has too many questionable dependencies on other US companies (AWS, MS, Intel SGX…)

@Coder9420948594 @FireworksAI_HQ Yeah its really bad

@FireworksAI_HQ Speed is really awful, even zai has better speed

GLM 5.1 is live on Fireworks! SOTA for agents and coding: →Plans and executes multi-hour workflows without falling apart →Planning, executing, testing, and refining over hundreds of rounds to deliver real, production-grade results. Go build something: app.fireworks.ai/models/firewor…

@7N7 Probably marketing purposes as well. I can believe a model twice as strong as opus but to the level they’re describing I’m not totally sure if its not exaggerated

i have some thoughts about this (which, surprisingly, are mostly negative and catastrophic in multiple ways), but i think its better if i keep them to myself. 🌞

@luke_watch56789 @tragicbirdapp Better idea is to just do that while playing that one CBAT song in rhythm to beat her argument

@tragicbirdapp Just bang her and then continue the argument, gotta take advantage of your post nut clarity.

@LyashchMaxim @bridgemindai Your gonna be spending a lot of tokens. Here’s what openclaw did to my glm 5 usage. I think it was because it was generating so many skills and pulling too much data from existing skills. Hopefully 5.1 isn’t the same.

@bridgemindai trying it for open claw

GLM 5.1 just dropped on OpenRouter. $1.40/$4.40 per million tokens. 202K context. Released today. The model that claims to work independently on a single task for over 8 hours. Autonomously planning, executing, and self-improving. That's a bold claim. Time to prove it. BridgeBench results coming soon. bridgebench.ai

@IntCyberDigest bros timing be like

‼️ A BreachForums administrator has allegedly been identified — caught using his real IP and reusing the same passwords across his criminal persona and business accounts. Meet Angel Tsvetkov AKA N/A: a Bulgarian cybersecurity specialist, penetration tester and bug bounty researcher known for responsibly disclosing vulnerabilities in major global platforms.