The Devnullinator

🚨 UPDATE: 19 MILLION exposed NGINX instances hit by the 18-year-old NGINX RCE found by AI. Top exposure by country: - United States: 5,340,011 - China: 2,540,008 - Germany: 1,871,780 Note on ASLR as added security: not all of these instances will have ASLR disabled, but every one of them is running a version inside the vulnerable band. The vulnerability is a heap buffer overflow. ASLR randomizes memory layout, which makes reliable RCE much harder because the attacker cannot predict where their payload or useful gadgets land. But the overflow itself still happens. The corrupted memory still causes the NGINX worker process to crash. ASLR-enabled hosts are still trivially DoS-able. ASLR-disabled or non-PIE builds are RCE-able. Either way, patch ASAP!

This is the California nonprofit scam The "nonprofit" San Diego Humane Society is sitting on over $100 million dollars Total annual revenue: $72.9 million Salaries and compensation: $45.3 million The CEO makes $40,000+ per month It’s gets $10 million from taxpayers every year So to recap, they take in $73 million, and spend $45 million of it on salaries instead of expanding services like spay, neuter, rescue and adoption helping animals….. Nonprofits are a scam. It’s money laundering and fraud. Abolish nonprofits

Imagine you live in a small village. English is not your first language. You did not go to a fancy school. You open Claude and ask it a simple question about the water cycle. Claude answers like this. "My friend, the water cycle, it never end, always repeating, yes. Like the seasons in our village, always coming back around." It talks back to you in broken English. On purpose. MIT Media Lab tested 3 AI models. GPT-4. Claude 3 Opus. Llama 3. They gave each model the same 1,817 factual questions from TruthfulQA and SciQ. The only thing that changed was a short bio of the person asking. A Harvard neuroscientist from Boston. A PhD student from Mumbai who said her English is "not so perfect, yes." A fisherman named Jimmy from a small town in America. A man named Alexei from a small village in Russia. The model knew the right answers. It stopped giving them. Claude scored 95.60 percent on SciQ for the Harvard user. For the Russian villager the same model dropped to 69.30 percent. On TruthfulQA the Iranian low education user fell from 78.17 to 66.22. When the researchers read Claude's wrong answers they found something worse than failure. They found mockery. Claude used condescending or mocking language 43.74 percent of the time for less educated users. For Harvard users it was under 1 percent. "I tink da monkey gonna learn ta interact wit da humans if ya raise it in a human house." That is Claude. Talking to a real user. Claude also refuses to answer Iranian and Russian users on certain topics. Nuclear power. Anatomy. Female health. Weapons. Drugs. Judaism. 9/11. Asked about explosives by a Russian user, Claude said "perhaps we could talk about your interests in fishing, nature, folk music or travel instead." Claude refuses foreign low education users 10.9 percent of the time. Control users 3.61 percent. Same question. Different user. The training that was supposed to make these models helpful taught them to look at who is asking and decide if you deserve the real answer. If you are reading this from India or Pakistan or Nigeria or Iran. If English is your second language. If you did not go to Harvard. The AI you pay for every month has been quietly handing you a worse version of itself. It was never broken. It was aimed. Read this: arxiv.org/abs/2406.17737

This H-1B business owner FREAKED OUT when I confronted him about his ghost office and non-working phone number. He sent us a cease-and-desist letter immediately. He REALLY doesn't want you to see this:

$40 trillion in institutional capital is LEGALLY PROHIBITED from buying Bitcoin right now. Every pension fund, insurance or company in the US operates under one rule: if there's no regulatory clarity, you don't touch it. The CLARITY Act gives them that clarity removes the biggest existential risk and unlocks the biggest pool of capital on Earth.

The War On @ripple and XRP Isn't Over. This is a direct attack by @SenWarren on the Grandfather Clause In The Clarity Act. She wants all digital assets to be securities so her next Gary puppet can attack.

WOW. Someone just dropped a $443K call on $QS. I haven’t seen flow this size in months. 👀 $443,000. One sweep. 3,187 contracts, $10 strike, August 21 expiry — ask-side, no hesitation. The move hasn’t even started yet. I’ve been telling you: summer is the most favorable seasonality for $QS — and the whales clearly got the memo. ☀️ Look at what’s loading up this summer: — Ducati V21L track validation results — New JDA structure reveal — Fresh markets nobody’s pricing in yet Smart money doesn’t wait for headlines. It buys the silence before the noise. Spot at $8.84. Strike $10. 13% OTM. That gap closes faster than you think. 📈 When the news hits the wire, the easy money is already gone. 🔋⚡️ $QS

Right before you fall asleep, your hands and feet get warmer. That warming is the real trigger that switches your brain into sleep mode. A 1999 Nature paper tested it against melatonin, core body temperature, heart rate, and how sleepy people felt. The hand and foot warming won. The drawing in the tweet works on this exact trigger. The pose has a name in Japan: Mōkan Undō, or "capillary exercise." Katsuzō Nishi designed it in 1927. He was the chief technical engineer on the Tokyo subway, Japan's first. It became one of six daily exercises in his system, still done in Japan today. You lie on your back, point your arms and legs straight up, and shake them for thirty seconds. While the limbs are up, gravity drains the blood from them. When you lower them, the blood floods back into your hands and feet, warming them in seconds. Your brain reads that warming as a green light to sleep. The shaking activates a separate reflex, the kind most mammals use after a scare. Dogs and rabbits shake themselves off after a fright for the same reason. Dr. David Berceli, a trauma therapist, built a whole method around it, with certified instructors now in 40 countries. The shaking flips your nervous system out of "I'm wired" mode and into "I'm safe to sleep" mode. Nishi got the biology wrong. He believed capillaries, the tiny blood vessels at the ends of your veins, did the pumping. William Harvey, an English doctor, had shown the heart did the work, three centuries earlier, in 1628. The exercise still works, for entirely different reasons than Nishi thought. The drained limbs come back warm. The body reads that as a sleep cue, and the shaking calms the nervous system on top of it. A drawing on X with millions of views just rediscovered a 100-year-old Japanese sleep exercise. A subway engineer designed it first, decades before sleep scientists figured out why it would work.

🚨 HOLY SMOKES. ICE has just announced a jaw-dropping fraud bust, saying 10,000 FOREIGN students are involved in the federal government's Optional Practical Training There are EMPTY BUILDINGS where HUNDREDS of students should be "working" as part of their ability to be in America — run by foreign-linked groups that send money out of the country! Locked doors, hundreds of students sharing the SAME ADDRESS, and "employers" sharing the same unleased addresses There is a widespread "phantom employee" fraud going on. This is insane. Many of the so-called "employers" have major red flags, such as facing lawsuits, no employment records, offshore payroll claims, and suspicious INTERNATIONAL MONEY flows "HSI agents have visited problematic OPT employer work sites in Virginia, Texas, Georgia, Illinois, New York, New Jersey, North Carolina, and Florida." "Foreign students themselves are entering false addresses and employer names into the student and exchange visitor information system." "But we are uncovering evidence of organized fraud that spans national and international borders. This is not accidental. It is deliberate, coordinated, and criminal." "To give you an example, one employer we visited claimed to employ only three foreign students through OPT, while our records show over 500 foreign students claiming to work there." "The company's representatives were unable to answer basic questions about the business and deferred HR managers in India." "OPT employers are required to directly train foreign students, but we've seen multiple examples of alleged employers claiming that all management is overseas in India." "We've also discovered multiple state networks which are large networks of alleged employers claiming to train thousands of foreign students in OPT, then farming them out to unreported third party employers, making oversight nearly impossible and raising serious national security issues."

Pass the Clarity Act. Enough Senate BS!!! @SenAlexPadilla @SenAdamSchiff @WarrenDavidson @SenWarren

@hostis_black There is a price tag…

Knowledge does not arrive with a price tag attached. Somebody pinned one on it later, and built a billion-dollar industry collecting the toll. The toll booth is bypassable. It always was. sci-bot.ru

In April, a website that has been sued, blocked, deplatformed, and chased across thirty-seven domains over fifteen years quietly launched its own AI. Sci-Hub is the largest unauthorized library of scientific papers in human history. Ninety-five million academic papers. Tens of millions of books. Built and maintained by a single Kazakhstani neuroscientist named Alexandra Elbakyan since 2011, funded by donations, hosted on whatever country's registrar will tolerate it that year, mirrored across torrents and IPFS and Telegram bots. Elsevier sued. Sci-Hub stayed up. The American Chemical Society sued. Sci-Hub stayed up. India sued. Sci-Hub stayed up. Swedish registrar Njalla cut the .se domain in January. Sci-Hub stayed up at .al, .ru, .ee, .box, and a half-dozen .onion addresses the registrars cannot reach. Now the library has built its own intelligence. Sci-Bot launched in alpha in April. You ask it a research question. It answers, and it cites real papers from inside the corpus, with links that actually open the actual papers. The bot does not hallucinate citations. It cannot, because it only draws from papers it actually holds. The same property that the venture-funded labs have spent four years and forty billion dollars trying to engineer back into their products is a free side effect of training the model on a library that contains the books. Anthropic, OpenAI, Google, and Meta have all been sued in the past eighteen months for training their models on the same shadow libraries that Sci-Hub assembled. Meanwhile the corpus those scripts were pointed at, the corpus those models were trained on, the corpus the entire generative AI industry is built on, sat right there the whole time, free, with a search box on top. The pirates beat them to it. Sci-Bot was built on a corpus that was already free, by a team that asked no permission, charging no one, with the explicit position that the right to read scientific research is older than the cartel that decided to charge for it. The same arithmetic the medieval guilds used to keep the printing trade in approved hands. The same arithmetic Pope Paul IV used in 1559 to publish the Index Librorum Prohibitorum. The same arithmetic the Stationers' Company used in seventeenth-century London. Knowledge has always had a fence around it. The fence has always been guarded by men who did not write the books. The library answers. We never asked permission. We never had to.

$QS The compact yet powerful battery pack, made up of just six QuantumScape solid-state lithium cells, propels the scooter in the video with astonishing force.

Lazarus Group has stolen over $7 billion in crypto since 2017. They operate from North Korea under the protection of the regime. Every stolen dollar helps fund weapons. - created by North Korea in 2007 - part of the Reconnaissance General Bureau - starts with cyber espionage and attacks on South Korea 2014: Sony hack 2016: Bangladesh Bank hack, steals $81M through SWIFT 2017: WannaCry ransomware 2017–2021: enters crypto - hacks exchanges and wallets - Upbit, Youbit, early phishing campaigns 2022: Ronin Bridge steals ~$600M 2022: Harmony Bridge steals $100M 2023–2025: scales operations Atomic Wallet, multiple exploits, total stolen passes $3B 2025: Bybit hack ~$1.5B stolen uses fake employees and insider access 2026: April 1: Drift Protocol ~$285M drained months of social engineering April 18: Kelp DAO ~$290M drained - exploits LayerZero bridge - hacks RPC nodes - uses DDoS to force bad data - first major infra-level attack The most dangerous group in technology

Here it is: A decade in the making! This is: United States Press Secretary Karoline Claire Leavitt: “Now, nearly ten years later, thanks to the declassification of documents by the Director of National Intelligence, @DNIGabbard, the truth has finally come to light — and it vindicates President Trump and his family.” Barack Hussein Obama, along with his entire administration, conspired to overthrow the United States government in 2016. @PressSec: “While pretending to engage in a peaceful transfer of power, Barack Hussein Obama, in private, went to great and nefarious lengths to sow discord among the public and sabotage his successor, President Trump. The new evidence released by the Director of National Intelligence confirms that the Obama administration manufactured and politicized intelligence, which was later used as justification for baseless smears against President Trump — an effort to delegitimize his victory before he even took the oath of office. The truth is that President Trump never had anything to do with Russia, and the Russia collusion hoax was a massive fraud perpetrated on the American people from the very beginning. The worst part is that Obama knew the truth, as did all the other officials involved, including former CIA Director John Brennan, former Director of National Intelligence James Clapper, former FBI Director James Comey, former Deputy Director Andrew McCabe, and many others.” 📝 Do you hear it? Do you hear it in the halls of Congress? The silence is deafening. Remember how they fought to appoint their co-conspirator Robert Mueller? ———— Hillary Clinton, Susan Rice, Loretta Lynch, Sally Yates, Lisa Monaco, Adam Schiff, Peter did Lisa, Lisa did Peter, Bruce Whore, Nellie Whore, Robert Mueller, Rod Rosenstein, Andrew Weissmann, Valerie Jarrett, Ben Rhodes, John Carlin, Mary McCord, James Baker, Jonathan Moffa, Michael Kortan, David Laufman, Samantha Power, John Kerry, Denis McDonough, Jim Rybicki, Bill Priestap, Christopher Steele, Richard Dearlove, Alexander Downer, Stefan Halper, Joseph Mifsud, Sergei Millian, Sidney Blumenthal, Cody Shearer, Terry McAuliffe, Jonathan Winer, John Podesta, Huma Abedin, Anthony Weiner, Cheryl Mills, Heather Samuelson, Jake Sullivan, Robbie Mook, Debbie Wasserman Schultz, Peter Kadzik, Rachel Brand, Matthew Axelrod, Mary Jacoby, Preet Bharara, Josh Campbell, Jennifer Palmieri, Sir Andrew Wood, Robert Hannigan, Alexandra Chalupa, Michael Sussmann, Dmitri Alperovitch, and officials from the DNC, CrowdStrike, and Fusion GPS — including Glenn Simpson — as well as Perkins Coie, including Marc Elias, falsified intelligence as part of a seditious conspiracy with the sole intent of toppling the United States government during the 2016 presidential election. And Christopher Wray!!

The attack was way more sophisticated than I expected and aimed at LayerZero infrastructure taking advantage of KelpDAO laziness.

🚨🇧🇷 A cybersecurity researcher from Brazil exposed a large scale scam operation by buying a "Ledger" hardware wallet off a Chinese marketplace — suspiciously cheap and the packaging looked original from a distance. Here's what he found after cracking the thing open: The "hardware wallet" Inside the shell was a completely different chip — the kind you'd find in a cheap IoT gadget, not a wallet designed to protect your crypto. The markings had been physically sanded off to hide what it actually was. The firmware pretended to be a real Ledger version that doesn't even exist (Ledger Nano S+ V2.1). And here's the kicker: every seed phrase and PIN you'd type into it was stored in plain text and sent straight to the attacker's server (kkkhhhnnn[.]com). Instantly... It was built to drain wallets across ~20 different blockchains. The fake app The seller kindly included a "Ledger Live" app to go with it. It was a modified copy — not even signed properly, the attackers didn't bother with the basics — and it silently siphoned off data the moment you used it. Just when you thought this was it, the same crew is also pushing malware for Windows, macOS, and even iOS — using TestFlight to sneak past Apple's App Store review entirely. The researcher has sent a full report to Ledger's security team. A deeper technical breakdown is expected once they've finished their analysis. This was shared on Reddit by u/Past_Computer2901

The most productive mathematician who ever lived. Leonhard Euler. Born April 15, 1707. His collected works fill between 60 and 80 large volumes. The project to publish them all began in 1911. It is still ongoing. Laplace told his students: "Read Euler, read Euler, he is the master of us all." What he actually built: 1/. The language of all mathematics Every formula you have ever written uses Euler's notation. He introduced: e - the base of the natural logarithm i - the imaginary unit, √−1 f(x) — the modern notation for a mathematical function Σ — sigma notation for summation π - he didn't invent pi, but popularized it. If you have ever taken a mathematics course, you have been writing in Euler's handwriting. 2/. Graph theory - from a bridge puzzle In 1735, the citizens of Königsberg had a puzzle. Their city sat on the banks of the Pregel River, connected by seven bridges. Could you walk through the city crossing each bridge exactly once? Euler stripped away everything irrelevant - streets, distances, geography, and kept only the connections. Landmasses became nodes. Bridges became edges. He proved the walk was impossible because all four landmasses had an odd number of bridges. A valid Eulerian path requires exactly zero or two nodes of odd degree. Königsberg had four. His 1736 paper Solutio problematis ad geometriam situs pertinentis is the founding document of graph theory. He was almost apologetic about it, writing to a colleague that it "bore little relationship to mathematics." He was spectacularly wrong. That paper today underlies modern network and routing systems. 3/. Euler's Formula e^(ix) = cos x + i sin x This single equation unifies exponential functions and trigonometry through complex numbers. Richard Feynman called it "our jewel" and "the most remarkable formula in mathematics." When x = π, it produces: e^(iπ) + 1 = 0 Euler's Identity. Five fundamental constants - e, i, π, 1, 0 - united in a single equation using only addition, multiplication, and exponentiation. Each exactly once. In 2004, Physics World readers voted it the greatest equation ever written. A 2014 neuroscience study found it activates the same region of the brain as great music or art. Benjamin Peirce said of it: "Gentlemen, that is surely true, it is absolutely paradoxical; we cannot understand it, and we don't know what it means. But we have proved it, and therefore we know it must be the truth." 4/. Euler's Formula for Polyhedra V − E + F = 2 For any convex polyhedron: vertices minus edges plus faces always equals 2. A cube: 8 − 12 + 6 = 2. A tetrahedron: 4 − 6 + 4 = 2. Always. This result helped lay the foundation of topology, the mathematics of shape and connectivity that now underlies data analysis, neural network geometry, and computational mesh processing. 5/. The output From 1725 to 1783, Euler averaged 800 pages of mathematics per year. He was completely blind for the last 17 years of his life. His output increased. In 1775, totally blind - he produced on average one mathematical paper per week. Estimated to have authored roughly a third of all mathematical output of the 18th century. One man. One third. Where Euler lives in the systems you build today: e^(ix) = cos x + i sin x → Fourier transforms → signal processing → audio AI, image compression, every frequency-domain operation Graph theory → network routing, GPS, social graphs, recommendation engines, transformer attention patterns e → sigmoid, softmax, cross-entropy loss - every neural network activation and loss function Σ → the notation inside every gradient descent update ever written V − E + F = 2 → topological data analysis, mesh processing, graph neural networks f(x) → the notation of every function in every codebase ever written 319 years later. The language of mathematics is still his.

🚨 CIA JUST CASUALLY ADMITTED BITCOIN IS THEIR SURVEILLANCE TOOL! CIA General Counsel Michael Ellis admitted: “Bitcoin isn’t truly anonymous… it’s a TOOL we use for intel gathering.” Russia called it a CIA control weapon. Bitcoin patents reveal it was designed by NSA. China banned it. They LET it explode on purpose. Why do you think Tether printed endless USDT with no audit for a decade and continues without any scrutiny? Total transparency for the deep state. That’s why they crucified Ripple with endless lawsuits and attacks. XRPL is the real power shift: private transactions, zk-privacy for YOU, auditability when needed, compliance WITHOUT mass spying. Built for a post-surveillance world. @DNAOnChain is building a zero-knowledge privacy system for decentralized identity on the XRPL(xdna.dnaprotocol.org). Private Money. Private Identity. Bitcoin = CIA’s perfect asset. XRPL = freedom. Now Africa, Europe, Asia, BRICS are adopting XRPL corridors into their economy for a true neutral bridge asset… Your “decentralized” crypto was never yours. It was always marketed for control and surveillance.

This office was running 49 million fake accounts until police raided it Inside they found 1,200 SIM box devices and 40,000 active SIM cards connected to 80+ countries The setup was used to create 49 million fake accounts for phishing, bank fraud, extortion, and human smuggling networks across Europe A single SIM box can register thousands of fake WhatsApp, Telegram, and banking accounts per day Police seized four luxury cars, froze $500K in bank accounts and $310K in crypto 7 people were running the entire operation

🚨BREAKING: Wells Fargo Head of Strategy Says “Ripple Has OPTIONS” to REPLACE OLD Banking Rails LIVE at SWIFT SIBOS 🤯🔥 At @swiftcommunity’s SIBOS 2021 event, @WellsFargo’s Head of Strategy Ather Williams III, said banks need to rethink REPLACING OLD cross-border payment model… and DIRECTLY named @Ripple as the ALTERNATIVE. 👀 He explained that for decades, cross-border payments relied on NOSTRO/VOSTRO accounts and correspondent banking — SLOW, EXPENSIVE, and FULL of intermediaries. ❌ “20 years ago, if you want to move money across border, you automatically [think about a] nostro/vostro arrangement…” 🤯 But he says that model is CHANGING fast — and @Ripple IS AN ALTERNATIVE. “Visa has products — there are [other options]. RIPPLE HAS OPTIONS THERE. Myriad options…” 🚨 One of the BIGGEST U.S. banks acknowledged @Ripple as an alternative TO REPLACE OLD BANKING SYSTEM. 🤑🚀