#bsides Gold Coast tickets go on sale in 45 minutes!!! events.humanitix.com/bsides-goldie/…

🤩 I've received my signed copy of Evasive Malware from Kyle Cucci! Huge thanks! I’m so glad to have been part of your journey man! It’s my favorite book of this year. Since I now have two copies, I will be giving away the unsigned one! To enter 👇 ✅ Follow Thomas Roccia 🤘 and

Earlier this year, I identified a new type of attack I call "repo swatting." It is a powerful weapon that deletes code repos & gets the target account banned. Even worse, it's really easy to deliver. I'm excited to finally discuss how it works at BSides Melbourne November 17!

Venue is set and ready to go! Can't wait to see you all in the morning!

Confirmed! Solana npm package versions 1.95.6 and 1.95.7 are confirmed malicious! Other versions might be as well.

Heya ya'll, I'm outta here. See me over at Jason Walker.bsky.social. Ciao!

Hey Teachable, I'm trying to use your holiday coupon code, and it's not working. When I try to create a support ticket, you won't let me because I'm a free user. You are making it impossible to gain a new paid user. What a terrible experience! Seeya!

Someone just published 7 packages to the npm registry that deliver a new MacOS malware. #softwaresupplychain #malware sourcecodered.com/npm-packages-d…

Heya Kogan.com, my Kogan brand monitor died last week while under warranty. I made a support ticket and emailed you, but I haven't heard from you in days. Is this how you support your customers?! Ouch.

You can't make this shit up! National Institute of Standards and Technology NVD database is down, so you can't look up CVE's. One of the ec2 instances serving up nvd.nist.gov is showing a "402 Payment Required" error, according to Shodan. Good work govt cost cutters you've broken our national vuln DB!🤦

Heya Air Canada can you please fix your wifi issue with MacBooks? It's been an ongoing thing at multiple airports so it's obviously a WAP technology problem.

Adversary Village at DEF CON Hacking Conference 33, eastside mccarty , Founder of SecureStack , will be speaking on “Malware in the gist: How malicious packages on npm bypass existing security tools”. Talk schedule: 11:00-11:30 PDT, Aug 9th at DEF CON Creator Stage 4, LVCC.

See me at 11 am today on the #DEFCON Creator State 4 (room 228). I'm super excited for this, and a big "thank you!" to the Adversary Village team #hackersummercamp GitHub

Impressed with the Tenable One CSPM demo at the #Tenable #BlackHat booth. Blends vulnerability scanning with cloud security + #ASPM features via #IaC scanning and Git integrations. Worth checking if you're comparing cloud security solutions: bit.ly/4mbhg3e #BlackHat2025

Hey, AISA National did you really sell my data to CompTIA ? And even worse, I'm not even registered or signed up for Melbourne CyberCon. Like, seriously, when are you gonna start giving a shit about my data?!🤦‍♀️

Don't let AI write your payloads for you if you don't know what you're doing. Otherwise, you might end up publishing your API keys, environment variables, and identity to npm