Big news dropping today for those tracking the Scattered Spider threat actor group. A newly unsealed DOJ complaint in New Jersey charges UK national Thalha Jubair (19 years young) with computer fraud, wire fraud, and money laundering tied to 120+ intrusions and extortion against

The biggest travesty in cybersecurity is completely competent teenagers throwing their lives away in pursuit of status and fame for 2 years of their life

Remember this before thinking that any of this is not discord’s fault

@uduz 3. Not scamming clients

Ok they’re trolling

There is this symbiotic relationship between the FBI and cybercriminals where instead of actually hunting the latter, the FBI just does domain takedowns to pretend they’re doing something

Consider not scamming for millions and you guys might look a little less like a cabal of evil lizard people

Opsec guru

If you switch to a mysterious e2ee service which “backs up your keys” (not end to end when there is 3 ends) because the trusted FOSS one is “controlled by the woke mob” then you’re a fucking retard

Biggest takeaway from any of the Epstein files is that the elites don’t know about opsec yet

Disabling PPL Protection on Windows Processes New Medium post. Today, we’ll explore the classic method for disabling a process’s Protected Process Light (PPL) using a basic kernel driver. medium.com/@s12deff/disab…

ϻг_ϻε "command injection in Notepad App"

Weaponizing PPL for Process Immortality New Medium post. Today, we’ll explore the classic method of leveraging Windows Protected Process Light (PPL) to elevate a standard userland process into a state of "functional invincibility". medium.com/@s12deff/weapo…

> be nerds > look into persona (used by discord) > kyc (know your customer) service > used for age verification > search on internet (shodan) > find weird server > image 1 > openai-watchlistdb.withpersona > openai-watchlistdb-testing.withpersona > lolwtf > look inside > supposed

I like how a bunch of people in infosec are just pretending that the coruna exploit kit didn’t clearly come from Trenchant lmao

“Sophisticated phishing campaign” > give me ur pin pls, I am uhhhh, I uhhh, I work for signal

I Saved Injective's $500M. They Pay Me $50K. I like hunting bugs on Immunefi . I'm decent at it. - #1 — Attackathon | Stacks - #2 — Attackathon | Stacks II - #1 — Attackathon | XRPL Lending Protocol - 1 Critical and 1 High from bug bounties (not counting this one) Life was

I wrote a blog post about the recent copy(dot)fail bug, trying to explain some general concepts that I think were glossed over in the official article by Theori. retr0.zip/blog/cve-2026-…