Cyberkryption

@gadievron @Digits3c What would be super useful is an RSS feed or similar that is updated very frequently maybe every 20 mins. One use case would be to download feed and modify siem rules to hunt for malicious extensions on dev machines. It would also be useful for awareness

Due to GitHub breach, we released a feed for malicious VS Code extensions, auto-generated with IoCs out of Agent Mesh. I hope it's useful. If it is, let me know and we'll do this regularly, Can add in skills, MCP servers, etc.: knostic.ai/blog/agentic-t… Let me know if useful.

I put a prompt injection into my LinkedIn bio and recruiters are messaging me in Old English and calling me Lord.

If you need some RSS feeds for cyber stuff check this out: github.com/mr-r3b00t/cybe…

Urgent Security Alert: Mistral AI npm packages compromised in the ongoing Mini Shai-Hulud supply chain attack. Affected versions: @mistralai/mistralai v2.2.2, 2.2.3, 2.2.4 @mistralai/mistralai-azure v1.7.1–1.7.3 @mistralai/mistralai-gcp v1.7.1–1.7.3 If you or your CI/CD pipeline recently installed any of these, treat your environment as fully compromised. Immediate action: Rotate npm tokens, GitHub PATs, cloud credentials, and all secrets from a clean machine. This is the same self-spreading worm (linked to TeamPCP) that just hit 80+ TanStack packages with millions of weekly downloads.

Yay! Microsoft is working on removing PowerShell v2 from Windows, and making PS7 default on Windows! #PSConfEU

the official OpenSearch client for Node.js has also been compromised

Let’s Encrypt has suspended issuance due to an active incident letsencrypt.status.io

@mattpocockuk Have you seen this. github.com/Arcanum-Sec/se…

The top trending repo in the world is mine Madness

@jedisct1 How do you know Mythos was used? Do you have any other sources that confirm the leak? BTW i am not saying it did not happen, i just like multiple citations

Breaking: The results of Mythos’s audit of the Rust standard library have been leaked #rust-standard-library-audit-findings" target="_blank" rel="nofollow noopener">github.com/Swival/securit…

Many of you know the Linux #auditd config I’ve maintained for years. It was always meant to be a simplified, detection-agnostic baseline for #Linux 🐧 We’ve now changed the way it works ⚡️ The core idea is: audit.rules should act as the sensor, not the detection engine That means: - generic process_creation - fewer brittle per-binary rules - better portability - CI validation We preserved the old baseline as v0.1.0 and released v0.2.0 as the new streamlined model github.com/Neo23x0/auditd… co-op with @petri_ph

@Zephyr_hg NEWS

I never run out of content to post anymore. Built an automation that monitors 50+ news sources, scores articles for relevance, and writes social posts automatically. It finds trending topics in my niche before they explode everywhere else. Saves me 15-20 hours monthly and keeps me ahead of every trend. Comment "NEWS" and I'll DM it to you (must be following)

CLAUDE IS CONTROLLING MY PC! New update from Claude and now you can allow Claude to fully use your computer I gave Claude $200, said that you can do anything you want on my PC, but you need to profit on Polymarket 2 hours later, it monitored each wallet on Polymarket for the ability to copytrade them It filtered 10 best wallets and started copytrading through this bot Firstly, it lost $50 triyng each wallet to understand capability of copytrading it Then, finally decided on 2 and copytraded each, resulting in ~10 hours, I had $3K Now I reinvest it and continue copytrading cause it's insane now what you can do with that. You only need Claude + laptop + 1 hour/day. Giving This Free for 24 hours. To get it: 1. Comment the word 'OpenClaw' 2. Like and Retweet this post 3. Follow me @marryevan999 (so i can DM you)

Social engineering ... credential abuse ... Living off the Land techniques ... all common hallmarks of Iranian operational tradecraft. Here's how to defend your organization: bit.ly/4rWkydF #cybersecurity #phishing

OpenClaw users solving a problem with AI instead of a script

@Evil_Mog That's a wide choice?

There is one metal song that is my absolute favourite in the world, the melodic guitar intro to this day gives me chills Can you guess what it is

Suricata IDS/IPS is affected by CVE-2026-22262, a critical stack buffer overflow that may allow DoS or code execution when large datasets are saved. Update to Suricata 7.0.14 or 8.0.3+ immediately. Read more: ow.ly/toL950YbSJH

@cyb3rops Could you share the prompt / meyhodology to create ?

In the past I used grep / awk and later elastic / splunk to make sense of some log files. Today I just tell the agent to write me a web UI to browse the failed logins and fail2ban banning activity and it takes 30 minutes and a a single re-prompt to get to this point:

I found the cheat code for mastering AI 🤯 This GitHub repo contains Google Colab notebooks to implement every Machine Learning algorithm from scratch. 100% Open Source.

Here’s how I currently see software development. Imagine a farmer who grows cabbage. He has one large field and several smaller ones. For years, a group of farm workers harvested the cabbage by hand. It took them a full week to clear the big field. They worked carefully. Sometimes a cabbage was damaged, but overall the quality was good. Then the farmer discovers a machine. The machine harvests the entire field in one hour and delivers all the cabbage to the barn. It’s not perfect. Out of 1,000 cabbage heads, maybe 30 or 40 are damaged. The workers point this out immediately: “When we do it by hand, only 10 get damaged. Our work is higher quality.” They’re right. But the farmer replies: “You need a week for one field. The machine needs one hour.” Now the machine can harvest: the big field in the morning the next field an hour later then another and another Eight, ten, maybe twenty fields per day. The farmer doesn’t ask the workers to compete with the machine anymore. He gives them a new job: Stand in the barn. Pick up each cabbage. Check it quickly. Throw out the damaged ones. That’s the new bottleneck. And maybe, soon, the farmer buys another machine that does even that inspection automatically. The workers are still correct: hand-harvested cabbage is often better. But it no longer matters economically. The speed difference overwhelms the quality difference. This is where software development is heading. Engineers are right when they say manual coding can be higher quality in many situations. But it is orders of magnitude slower. That gap is so large that even imperfect AI-generated code wins. And the quality improves every month. If it doesn’t improve, it gets cheaper. If it doesn’t get cheaper, it gets smaller. And once it’s small enough, it runs on your own hardware. There is no visible ceiling yet. So the role changes. From writing code to reviewing code to supervising systems that write and review code. Like the farm workers in the barn. Not because their work was bad. But because the machine changed the economics.

For convenience: I wrote a small collector that pulls all SHA-256, SHA-1 and MD5 hashes from Notepad++ releases and compiles them into big CSV + JSON files Use it to check if any Notepad++ installs in your org match known-good release hashes - and spot weird/malicious outliers github.com/Neo23x0/notepa…