Mike
@theomegabit.xyz
AWS Pro | Cloud | Security @trek10.com | Tech enthusiast Musically trapped between a metallic headbang and a bass wobble | Photographer (bsky): @betapixels.photography
Reposted by Mike
Yep, I've been pwned. 2FA reset email, looked very legitimate.
Only NPM affected. I've sent an email off to @npmjs.bsky.social to see if I can get access again.
Sorry everyone, I should have paid more attention. Not like me; have had a stressful week. Will work to get this cleaned up.
Only NPM affected. I've sent an email off to @npmjs.bsky.social to see if I can get access again.
Sorry everyone, I should have paid more attention. Not like me; have had a stressful week. Will work to get this cleaned up.
@bad-at-computer.bsky.social Hey. Your npm account seems to have been compromised. 1 hour ago it started posting packages with backdoors to all your popular packages.
September 8, 2025 at 3:15 PM
Yep, I've been pwned. 2FA reset email, looked very legitimate.
Only NPM affected. I've sent an email off to @npmjs.bsky.social to see if I can get access again.
Sorry everyone, I should have paid more attention. Not like me; have had a stressful week. Will work to get this cleaned up.
Only NPM affected. I've sent an email off to @npmjs.bsky.social to see if I can get access again.
Sorry everyone, I should have paid more attention. Not like me; have had a stressful week. Will work to get this cleaned up.
You’re at a cybersecurity conference in 2025 and see a presenter still using Lastpass. First thought? Second?
September 7, 2025 at 2:55 PM
You’re at a cybersecurity conference in 2025 and see a presenter still using Lastpass. First thought? Second?
We’ve definitely noticed a significant increase in .svg attachments in email lately. #cybersecurity
www.bleepingcomputer.com/news/securit...
www.bleepingcomputer.com/news/securit...
VirusTotal finds hidden malware phishing campaign in SVG files
VirusTotal has discovered a phishing campaign hidden in SVG files that create convincing portals impersonating Colombia's judicial system that deliver malware.
www.bleepingcomputer.com
September 6, 2025 at 8:23 PM
We’ve definitely noticed a significant increase in .svg attachments in email lately. #cybersecurity
www.bleepingcomputer.com/news/securit...
www.bleepingcomputer.com/news/securit...
Hello @BlueTeamCon 😀👋🏻 #blueteamcon
September 6, 2025 at 12:56 PM
Hello @BlueTeamCon 😀👋🏻 #blueteamcon
Sooo…..this password manager extension saga that is currently unfolding…. It still seems like 1Password should do /something/ if others are starting to. Or is it truly performative?
www.reddit.com/r/1Password/...
www.reddit.com/r/1Password/...
Reddit - The heart of the internet
www.reddit.com
August 21, 2025 at 10:43 AM
Sooo…..this password manager extension saga that is currently unfolding…. It still seems like 1Password should do /something/ if others are starting to. Or is it truly performative?
www.reddit.com/r/1Password/...
www.reddit.com/r/1Password/...
Anyone used Santa (either the old Google maintained variant or the new one) here? github.com/northpolesec...
#cybersecurity
#cybersecurity
GitHub - northpolesec/santa: A binary and file access authorization system for macOS.
A binary and file access authorization system for macOS. - northpolesec/santa
github.com
August 20, 2025 at 4:17 PM
Anyone used Santa (either the old Google maintained variant or the new one) here? github.com/northpolesec...
#cybersecurity
#cybersecurity
Seems like a generally good thing here. I understand where he’s coming from with unnecessary panic. But is that enough of a reason to not put more pressure on companies who are generally not focused on transparency as a whole?
#cybersecurity
www.schneier.com/blog/archive...
#cybersecurity
www.schneier.com/blog/archive...
Google Project Zero Changes Its Disclosure Policy - Schneier on Security
Google’s vulnerability finding team is again pushing the envelope of responsible disclosure: Google’s Project Zero team will retain its existing 90+30 policy regarding vulnerability disclosures, in which it provides vendors with 90 days before full disclosure takes place, with a 30-day period allowed for patch adoption if the bug is fixed before the deadline. However, as of July 29, Project Zero will also release limited details about any discovery they make within one week of vendor disclosure. This information will encompass: The vendor or open-source project that received the report ...
www.schneier.com
August 8, 2025 at 12:02 PM
Seems like a generally good thing here. I understand where he’s coming from with unnecessary panic. But is that enough of a reason to not put more pressure on companies who are generally not focused on transparency as a whole?
#cybersecurity
www.schneier.com/blog/archive...
#cybersecurity
www.schneier.com/blog/archive...
Reposted by Mike
Amazon Q shipped a feature where a rando hacker told it to run aws iam delete-user, and AWS said “Sure thing, pal!”
They caught it only because a journalist asked.
This isn’t “move fast and break things," it's “move fast and let strangers write your roadmap.”
www.lastweekinaws.com/blog/amazon-...
They caught it only because a journalist asked.
This isn’t “move fast and break things," it's “move fast and let strangers write your roadmap.”
www.lastweekinaws.com/blog/amazon-...
Amazon Q: Now with Helpful AI-Powered Self-Destruct Capabilities - Last Week in AWS Blog
Today 404Media released a truly stunning report that almost beggars belief. To break it down into its simplest form: A hacker submitted a PR. It got merged. It told Amazon Q to nuke your computer and ...
www.lastweekinaws.com
July 23, 2025 at 6:14 PM
Amazon Q shipped a feature where a rando hacker told it to run aws iam delete-user, and AWS said “Sure thing, pal!”
They caught it only because a journalist asked.
This isn’t “move fast and break things," it's “move fast and let strangers write your roadmap.”
www.lastweekinaws.com/blog/amazon-...
They caught it only because a journalist asked.
This isn’t “move fast and break things," it's “move fast and let strangers write your roadmap.”
www.lastweekinaws.com/blog/amazon-...
Why is Inspector Code Security not integrated in Security Hub on day 1?
#awssecurity
docs.aws.amazon.com/inspector/la...
#awssecurity
docs.aws.amazon.com/inspector/la...
July 15, 2025 at 11:59 PM
Why is Inspector Code Security not integrated in Security Hub on day 1?
#awssecurity
docs.aws.amazon.com/inspector/la...
#awssecurity
docs.aws.amazon.com/inspector/la...
Favorite talk so far at #fwdcloudsec?
June 30, 2025 at 7:22 PM
Favorite talk so far at #fwdcloudsec?
The every repeating cycle of “ship now” biting us (people in general) in the ass.
Sometimes it’s worth slowing down if even for a moment.
www.bleepingcomputer.com/news/securit...
Sometimes it’s worth slowing down if even for a moment.
www.bleepingcomputer.com/news/securit...
Asana warns MCP AI feature exposed customer data to other orgs
Work management platform Asana is warning users of its new Model Context Protocol (MCP) feature that a flaw in its implementation potentially led to data exposure from their instances to other users and vice versa.
www.bleepingcomputer.com
June 28, 2025 at 3:03 PM
The every repeating cycle of “ship now” biting us (people in general) in the ass.
Sometimes it’s worth slowing down if even for a moment.
www.bleepingcomputer.com/news/securit...
Sometimes it’s worth slowing down if even for a moment.
www.bleepingcomputer.com/news/securit...
There’s a decent amount of talk and research on specific AWS api calls that aren’t logged to cloudtrail but is there an all encompassing list (GitHub hopefully) that covers everything currently known?
#awssecurity
#awssecurity
June 28, 2025 at 1:21 PM
There’s a decent amount of talk and research on specific AWS api calls that aren’t logged to cloudtrail but is there an all encompassing list (GitHub hopefully) that covers everything currently known?
#awssecurity
#awssecurity
Anyone going to @fwdcloudsec.org #cloudsecurity
June 26, 2025 at 11:33 PM
Anyone going to @fwdcloudsec.org #cloudsecurity
Minor annoyance - it looks like AWS renamed “Security Hub” of years past to “Security Hub CSPM” and then re-used “Security Hub” for this new functionality.
#awssecurity
aws.amazon.com/blogs/aws/un...
#awssecurity
aws.amazon.com/blogs/aws/un...
Unify your security with the new AWS Security Hub for risk prioritization and response at scale (Preview) | AWS News Blog
AWS Security Hub has been enhanced with new capabilities that integrate multiple AWS security services to automatically discover resources, evaluate risks, analyze attack paths, and provide AI-assisted recommendations, helping security teams prioritize critical issues and respond to threats at scale with improved visualization and remediation guidance.
aws.amazon.com
June 17, 2025 at 4:26 PM
Minor annoyance - it looks like AWS renamed “Security Hub” of years past to “Security Hub CSPM” and then re-used “Security Hub” for this new functionality.
#awssecurity
aws.amazon.com/blogs/aws/un...
#awssecurity
aws.amazon.com/blogs/aws/un...
The internet says the internet is down
June 12, 2025 at 6:37 PM
The internet says the internet is down