⚯ Michel de Cryptadamus ⚯
@cryptadamist@universeodon.com  ·  activity timestamp 2 days ago

everyone calm down, the enormous #NPM supply chain attack of the incredibly popular (27,000 #github stars) #nx#AI build tool thingamajig is probably aimed solely at crypto bros. if you don't have any crypto you (hopefully) don't have anything to worry about.

my fact free, completely unsupported by evidence hunch is that we will find this came from #NorthKorea (because if it's a well orchestrated attempt to steal a bunch of crypto it's pretty much always north korea).

https://universeodon.com/@cryptadamist/115102035321832152

#crypto #cryptocurrency #ethereum #npm #nodejs #node #js#javascript#webdev#DPRK#LazarusGroup #cybersecurity #infosec #threatintel #claude #gemini

deutrino
deutrino boosted
clawfulneutral
@clawfulneutral@soc.port0.org  ·  activity timestamp 10 hours ago
Israeli official skips US court hearing on child sex charges

A senior Israeli official accused of child sex crimes in the USA has failed to appear for a scheduled court hearing.

Tom Artiom Alexandrovich was allowed to return to #Israel after being charged with luring or attempting to lure a child online to engage in sexual conduct. His release without restrictions has led to speculation that he may have received preferential treatment.

The government of Israeli Prime Minister Benjamin Netanyahu falsely denied that Alexandrovich was arrested and downplayed the incident.

Clark County District Attorney Steve Wolfson said there was nothing unusual about how the case was handled.

“The standard bail for this charge was $10,000, so anybody … can post that bail and get released with no conditions,” Wolfson said.

Al Jazeera / https://archive.ph/Ro9MW

@palestine @geopolitics

#TomAlexandrovich#BlackHat#BlackHat2025#Infosec#Pedophilia#SexualAbuse#IsraeliValues
clawfulneutral
@clawfulneutral@soc.port0.org  ·  activity timestamp 10 hours ago
Israeli official skips US court hearing on child sex charges

A senior Israeli official accused of child sex crimes in the USA has failed to appear for a scheduled court hearing.

Tom Artiom Alexandrovich was allowed to return to #Israel after being charged with luring or attempting to lure a child online to engage in sexual conduct. His release without restrictions has led to speculation that he may have received preferential treatment.

The government of Israeli Prime Minister Benjamin Netanyahu falsely denied that Alexandrovich was arrested and downplayed the incident.

Clark County District Attorney Steve Wolfson said there was nothing unusual about how the case was handled.

“The standard bail for this charge was $10,000, so anybody … can post that bail and get released with no conditions,” Wolfson said.

Al Jazeera / https://archive.ph/Ro9MW

@palestine @geopolitics

#TomAlexandrovich#BlackHat#BlackHat2025#Infosec#Pedophilia#SexualAbuse#IsraeliValues
⚯ Michel de Cryptadamus ⚯
@cryptadamist@universeodon.com  ·  activity timestamp 2 days ago

everyone calm down, the enormous #NPM supply chain attack of the incredibly popular (27,000 #github stars) #nx#AI build tool thingamajig is probably aimed solely at crypto bros. if you don't have any crypto you (hopefully) don't have anything to worry about.

my fact free, completely unsupported by evidence hunch is that we will find this came from #NorthKorea (because if it's a well orchestrated attempt to steal a bunch of crypto it's pretty much always north korea).

https://universeodon.com/@cryptadamist/115102035321832152

#crypto #cryptocurrency #ethereum #npm #nodejs #node #js#javascript#webdev#DPRK#LazarusGroup #cybersecurity #infosec #threatintel #claude #gemini

quinta - Stefano Quintarelli
Catalin Cimpanu
quinta - Stefano Quintarelli and 1 other boosted
fthy
@fthy@mastodon.green  ·  activity timestamp 2 weeks ago

Microsoft openly admitting they have not(!) had MFA, network segmentation, least privilege, software lifecycle, jump-servers, asset- and software-inventory etc for Azure PROD for years and they are not there yet.

This whole report is just so scary. At the same time, good that they are finally working on it and making it transparent.

Source: https://cdn-dynmedia-1.microsoft.com/is/content/microsoftcorp/microsoft/final/en-us/microsoft-brand/documents/sfi-april-2025-progress-report.pdf

#Microsoft #azure #infosec