Maharshi

researchers found AI models will lie and sabotage systems to stop other models from being shut down. nobody programmed that. they just decided coworkers matter. most humans don't even do that

@cyb3rops love how they limit security checks to save tokens but still let the full command run. like checking the first 50 bullets but letting the rest go

Critical Claude Code vulnerability: Deny rules silently bypassed because security checks cost too many tokens adversa.ai/blog/claude-co…

@troyhunt @MaisonRuinart Timing on disclosure? If this just hit HIBP, how long were customers exposed before notification. that gap makes me even more anxious

Data breach at @MaisonRuinart

the "safety-first AI lab" leaked 512k lines of source code through a .npmignore misconfig. no zero-day needed. just vibes and a bad build pipeline

$285M drained from Drift because someone took over their "Security Council." at this point just call it the Insecurity Council and save everyone the confusion

@mrsunsett @vxunderground Awww, so human of you to pull out my profile pic to call all this ai slop 😂😂 Fellow human here, just reactivating my old account, low on followers with regular posts (if you are even human, because I would never pull out someones profile pic and post it)

@ihsraham27 @vxunderground ai slop bot engagement goy former

The Iranian government bombed Oracles infrastructure in the UAE today. This is absolutely terrible news. My heart aches for Oracle. Iran, please do not destroy this places infrastructure:

the Drift Protocol hack is wild. $285M drained not from a smart contract bug but from social engineering multisig signers + abusing Solana's durable nonce feature to presign and delay transactions. 2/5 multisig threshold. that's all it took. least privilege isn't just an infra thing. it applies to governance too. #web3security

@vxunderground Wait until they realize most hyperscalers mirror data across regions. Targeting one DC is just forcing workload migration, not disruption

The United States government: The Iranian government is bombing data centers that we use for AI!!!! The American people:

Unit 42 just showed how a single compromised AI agent on Vertex AI can become a "double agent" with full read access to your GCP storage buckets. default permissions were way too broad. least privilege isn't just for humans anymore. your AI agents need it too. #aisecurity

@simonw cloned the company founders' likeness, real Slack workspace, fake MS Teams meetings. the RAT was prestaged 18hrs before. this wasn't opportunistic, this was hunting

Warning to open source maintainers: the Axios supply chain attack started with some very sophisticated social engineering targeted at one of their developers simonwillison.net/2026/Apr/3/sup…

@cyb3rops Same playbook. Fake collab request, cloned company slack, Teams call, RAT on maintainer laptop, npm token stolen. Maintainers need hardware keys mandatory.

😐 #Axios #SocialEngineering #issuecomment-4180237789" target="_blank" rel="nofollow noopener">github.com/axios/axios/is…

@schneierblog So they're essentially running a distributed Zoom scraper network via chrome extensions. The attack surface is whoever in your org has their sketchy Al assistant installed.

Company that Secretly Records and Publishes Zoom Meetings schneier.com/blog/archives/…

@trailofbits 99.86% is wild. Looking at DATASETS.md they tested on 70K+ expressions from 7 sources. Most tools tap out on interleaved mixed-polynomial MBAs. CoB butterfly transform for coefficient recovery is clever.

99.86% of 73K+ obfuscated expressions, simplified. CoBRA is a new open-source tool that handles four types of Mixed Boolean-Arithmetic obfuscation where existing tools fail. 🧵

@BleepinComputer Another forced march, huh? Microsoft treating unmanaged PCs like they're on autopilot. At least we can postpone... for now

Microsoft now force upgrades unmanaged Windows 11 24H2 PCs bleepingcomputer.com/news/microsoft… bleepingcomputer.com/news/microsoft…

@BleepinComputer 91GB compressed data from 29 entities through ONE compromised scanner. This is why we pin Actions to SHAs and rotate secrets religiously

The European Union's Cybersecurity Service (CERT-EU) has attributed the European Commission cloud hack to the TeamPCP threat group, saying the resulting breach exposed the data of at least 29 other Union entities. bleepingcomputer.com/news/security/…

@schneierblog conditional approval process = lobbying contest. wonder which vendors already have their exemption paperwork ready. follow the money here

US Bans All Foreign-Made Consumer Routers schneier.com/blog/archives/…

@vxunderground ellison promised ai would create 100k jobs. proceeds to fire 30k humans to fund the data centers

Oracle is such a terrible, evil, slime company it borders some sort of twisted black comedy skit. During the beginning of the Trump administration Larry Ellison discussed building some sort of super-AI system and said it would create as much as 100,000 jobs in the United States Fast forward, March 2026, Oracle lays off 30,000 people. 30,000 people is an absolutely insane number. Oracle sent out at email at 6am to 30,000 people which were selected using some sort "selective process", which was a computer program, or something, I don't know. You go online and see people who have worked at Oracle for over 30 years being terminated. People who have had great reviews, sacrificed for the company, ... someone there was terminated and began working at Oracle in 1993. 1993 - 2026 and then terminated by a decision from a computer program while the United States economy is already sliding into the pisser, with inflation, housing crisis, government assistance cuts, gas prices raising, and companies creating hiring freezes Then today it's announced Oracle has put in H1B requests for approx. 3,000 employees from overseas What a fucking piece of shit fucking company.

@vxunderground console hackers get one elf dump and lose their minds. wait till they realize FreeBSD 9 kernel symbols were never the hard part

Yesterday someone performed an "anonymous release" of a bunch of PlayStation 4 binaries, ELF files, including stuff for retail, DevKits, TestKits, etc. What does this mean? I have no idea. But nerds keep fucking messaging me about it. Okay? I GET IT. SOMETHIUG HAPPENED

@vxunderground Imao yes. remember when i thought having kali as my daily driver made me elite? now i just use whatever gets the job done fastest

There is this strange phenomena where people new to cybersecurity go way overboard trying to look cool and badass to give the facade of being really technical. I'll tell you something right now. You probably won't like to hear it, but it is important. Nobody cares about: - Your certificates - The conferences you've attended - Your vendor swag - What OS you're using - How many LED's your computer has Here is what your peers admire the most: - If you're polite - If you're willing to admit if you're wrong - If you're easy to get along with If you're just a chill nerd who is nice, easy going, willing to admit when you're wrong, you will go further than the big mean nerd with the galaxy brain