@disintegr8te

@UK_Daniel_Card As it looks the two flagged roots are mostly used for cross‑signing legacy clients and Authenticode (code signing), not modern HTTPS. (Not in the Top Majestic Million)

Without Confirmation Defender signature 1.449.424.0 looks to detect two DigiCert public root CAs as Trojan:Win32/Cerdigent.A!dha — thumbprints DDFB16CD4931C973A2037D3FC83A4D7D775D05E4 (DigiCert Trusted Root G4) and 0563B8630D62D75ABBC8AB1E4BDFB5A899B24D43 (DigiCert Assured ID Root CA).

Anyone seeing this: 'Cerdigent' high-severity malware was detected

I need like 50 people to read this at least :D

EDR is a baseline capability not an advanced optional feature. Not having it is like not having a firewall or antivirus in 2004 It doesn't replace dedicated logging (SIEM) but its the bare minimum an org should have.

some things on paper look great... but when they are based on assumptions that have a foundation of sand they tend to fall flat in the face of reality.... evidence based data based test based is usually better than guessing...

🚨 CRITICAL: Active supply chain attack on axios -- one of npm's most depended-on packages. The latest axios@1.14.1 now pulls in plain-crypto-js@4.2.1, a package that did not exist before today. This is a live compromise. This is textbook supply chain installer malware. axios has 100M+ weekly downloads. Every npm install pulling the latest version is potentially compromised right now. Socket AI analysis confirms this is malware. plain-crypto-js is an obfuscated dropper/loader that: • Deobfuscates embedded payloads and operational strings at runtime • Dynamically loads fs, os, and execSync to evade static analysis • Executes decoded shell commands • Stages and copies payload files into OS temp and Windows ProgramData directories • Deletes and renames artifacts post-execution to destroy forensic evidence If you use axios, pin your version immediately and audit your lockfiles. Do not upgrade.

--dangerously-skip-permissions

24 dedicated people. $30M spent on development. Extreme specialization, speed, and power efficiency. Today we launch Taalas’ first product. Check it out: Details: taalas.com/the-path-to-ub… Demo chatbot: chatjimmy.ai API: taalas.com/api-request-fo…

@AuswaertigesAmt Die Registrierung bei ELEFAND (krisenvorsorgeliste.diplo.de ) gibt nen 500 Internal Server Error zurück, da scheint nen Service nicht zu laufen. Unterschiedliche Verbindungen und Clients ausprobiert…

Told you yesterday. The average people in the U.S. and around the world have no clue what’s going on with the massive USAF🇺🇸 & US Navy build up related to Iran 🇮🇷. They will wake up the next morning and suddenly the U.S. is at war. That’s why I yesterday showed my respect and thanked the OSINT Community on X!

"The most urgent film of our time." THE AI DOC: OR HOW I BECAME AN APOCALOPTIMIST is only in theaters March 27. Watch the trailer now.

Everyone freaks out that AI can build beautiful websites in seconds But what only a few people see: we’re heading into a world where you don’t need websites anymore. Who needs a website when an agent can book a table, reserve cinema seats, fill out forms, pull facts and just get stuff done ..straight from markdown, APIs or MCP servers? People think „AI = prettier UI“ and “AI writes code a human can read and debug”. That’s still the human-in-the-loop phase. The final phase is: human isn’t in loop anymore. Agents will use different inputs, different protocols, different paths from problem to solution. A lot of the software we built mainly to be usable for humans in the middle - it’s gone in five years. Maybe sooner

Look.. it's a Conditional Access policy simulator built by an infra architect guy who got tired of squinting at What If results 🫠 Shiny graphs yay! 🔗ca.haakonwibe.com No sign-in needed, click Sample Data and play around. Or connect to your own data - all's in browser.

OpenAI now requires government ID verification to use GPT-5.3-Codex for cybersecurity work. - openai.com/index/trusted-… GPT-5.3 and Opus 4.6... AI cybersecurity capabilities have reached the critical point where they need to be properly safeguarded. OpenAI built a tiered trust system with automated classifiers monitoring for suspicious cyber activity in real-time, an invite-only tier for researchers, and $10M in API credits for defensive teams. Prediction: 1️⃣ Google DeepMind and Anthropic will follow and implement KYC to access the risky capabilities of their frontier models. 2️⃣ Today's frontier models will become just a model in 6 months, with open access to everyone. But they won't become less capable. 3️⃣ The labs will continue doubling down on safety guardrails and making AI able to protect from AI Source: Ilya Kabanov

'Just use a VPS' bro. It's just a 1-click, 2222-step install.

@unforgivnbastrd @cyb3rops You are right my hash was from the exe and but Installers not kept :(

@disintegr8te @cyb3rops Is it the exe itself or the installer? At a glance, these are installer checksums, so it will only work for checking if you kept the installer.

For convenience: I wrote a small collector that pulls all SHA-256, SHA-1 and MD5 hashes from Notepad++ releases and compiles them into big CSV + JSON files Use it to check if any Notepad++ installs in your org match known-good release hashes - and spot weird/malicious outliers github.com/Neo23x0/notepa…

Yes, it's basically this #NotepadPlusPlusCompromise

did the person who designed this just get bored and stop working on the feature? who the fuck only has these operators for automatic rules??? #Microsoft #Insane #MicoSlop