Apacalpa
@apacalpa.bsky.social
Turning bad ideas into worse inventions. I overcomplicate the simplest problems for your entertainment.
https://youtube.com/@apacalpa
https://youtube.com/@apacalpa
10/10
The lesson? Even billion-dollar companies can overlook BASIC security hygiene:
Protect your dev environments
Secure critical infrastructure
Vet your third-party providers
Otherwise, congrats—you've just funded North Korea.
The lesson? Even billion-dollar companies can overlook BASIC security hygiene:
Protect your dev environments
Secure critical infrastructure
Vet your third-party providers
Otherwise, congrats—you've just funded North Korea.
March 9, 2025 at 4:41 PM
10/10
The lesson? Even billion-dollar companies can overlook BASIC security hygiene:
Protect your dev environments
Secure critical infrastructure
Vet your third-party providers
Otherwise, congrats—you've just funded North Korea.
The lesson? Even billion-dollar companies can overlook BASIC security hygiene:
Protect your dev environments
Secure critical infrastructure
Vet your third-party providers
Otherwise, congrats—you've just funded North Korea.
9/10
Experts point to North Korea’s Lazarus Group as the likely culprits. Yep, Bybit’s crypto stash might now fund a little a small country...
Experts point to North Korea’s Lazarus Group as the likely culprits. Yep, Bybit’s crypto stash might now fund a little a small country...
March 9, 2025 at 4:41 PM
9/10
Experts point to North Korea’s Lazarus Group as the likely culprits. Yep, Bybit’s crypto stash might now fund a little a small country...
Experts point to North Korea’s Lazarus Group as the likely culprits. Yep, Bybit’s crypto stash might now fund a little a small country...
8/10
Bybit has been scrambling, promising tighter security. Safe{Wallet} is investigating how a single compromised developer environment brought down their entire security.
Bybit has been scrambling, promising tighter security. Safe{Wallet} is investigating how a single compromised developer environment brought down their entire security.
March 9, 2025 at 4:41 PM
8/10
Bybit has been scrambling, promising tighter security. Safe{Wallet} is investigating how a single compromised developer environment brought down their entire security.
Bybit has been scrambling, promising tighter security. Safe{Wallet} is investigating how a single compromised developer environment brought down their entire security.
7/10
Forensic analysts discovered the truth hidden in the Chrome cache—because even hackers forget browser cache exists... sometimes.
Forensic analysts discovered the truth hidden in the Chrome cache—because even hackers forget browser cache exists... sometimes.
March 9, 2025 at 4:41 PM
7/10
Forensic analysts discovered the truth hidden in the Chrome cache—because even hackers forget browser cache exists... sometimes.
Forensic analysts discovered the truth hidden in the Chrome cache—because even hackers forget browser cache exists... sometimes.
6/10
And just TWO MINUTES after pulling off the heist, the attackers wiped all evidence, updating Safe{Wallet}’s AWS bucket with clean code. Talk about efficiency.
And just TWO MINUTES after pulling off the heist, the attackers wiped all evidence, updating Safe{Wallet}’s AWS bucket with clean code. Talk about efficiency.
March 9, 2025 at 4:41 PM
6/10
And just TWO MINUTES after pulling off the heist, the attackers wiped all evidence, updating Safe{Wallet}’s AWS bucket with clean code. Talk about efficiency.
And just TWO MINUTES after pulling off the heist, the attackers wiped all evidence, updating Safe{Wallet}’s AWS bucket with clean code. Talk about efficiency.
5/10
When Bybit security signed off on the transaction, it appeared perfectly legitimate, until the altered script silently redirected all the ETH straight into the hacker’s wallet.
When Bybit security signed off on the transaction, it appeared perfectly legitimate, until the altered script silently redirected all the ETH straight into the hacker’s wallet.
March 9, 2025 at 4:41 PM
5/10
When Bybit security signed off on the transaction, it appeared perfectly legitimate, until the altered script silently redirected all the ETH straight into the hacker’s wallet.
When Bybit security signed off on the transaction, it appeared perfectly legitimate, until the altered script silently redirected all the ETH straight into the hacker’s wallet.
4/10
This code didn’t just blindly steal funds, it specifically activated ONLY when Bybit moved funds from their cold wallet. Sneaky, targeted, and patient.
This code didn’t just blindly steal funds, it specifically activated ONLY when Bybit moved funds from their cold wallet. Sneaky, targeted, and patient.
March 9, 2025 at 4:41 PM
4/10
This code didn’t just blindly steal funds, it specifically activated ONLY when Bybit moved funds from their cold wallet. Sneaky, targeted, and patient.
This code didn’t just blindly steal funds, it specifically activated ONLY when Bybit moved funds from their cold wallet. Sneaky, targeted, and patient.
3/10
Hackers compromised a Safe{Wallet} developer's computer via social engineering, stole AWS tokens, and quietly injected malicious JavaScript into Safe{Wallet}'s AWS bucket.
Hackers compromised a Safe{Wallet} developer's computer via social engineering, stole AWS tokens, and quietly injected malicious JavaScript into Safe{Wallet}'s AWS bucket.
March 9, 2025 at 4:41 PM
3/10
Hackers compromised a Safe{Wallet} developer's computer via social engineering, stole AWS tokens, and quietly injected malicious JavaScript into Safe{Wallet}'s AWS bucket.
Hackers compromised a Safe{Wallet} developer's computer via social engineering, stole AWS tokens, and quietly injected malicious JavaScript into Safe{Wallet}'s AWS bucket.
2/10
Bybit relied on Safe{Wallet}, a secure, third-party multisig wallet.
Sounds safe, right?
Well, someone thought it'd be a good idea to store critical signing JavaScript in an AWS bucket.
Bybit relied on Safe{Wallet}, a secure, third-party multisig wallet.
Sounds safe, right?
Well, someone thought it'd be a good idea to store critical signing JavaScript in an AWS bucket.
March 9, 2025 at 4:41 PM
2/10
Bybit relied on Safe{Wallet}, a secure, third-party multisig wallet.
Sounds safe, right?
Well, someone thought it'd be a good idea to store critical signing JavaScript in an AWS bucket.
Bybit relied on Safe{Wallet}, a secure, third-party multisig wallet.
Sounds safe, right?
Well, someone thought it'd be a good idea to store critical signing JavaScript in an AWS bucket.
1/10
Bybit, a major crypto exchange, lost $1.5 BILLION in Ethereum. But this wasn't some high-tech, futuristic cyberattack.... it's worse.
Bybit, a major crypto exchange, lost $1.5 BILLION in Ethereum. But this wasn't some high-tech, futuristic cyberattack.... it's worse.
March 9, 2025 at 4:41 PM
1/10
Bybit, a major crypto exchange, lost $1.5 BILLION in Ethereum. But this wasn't some high-tech, futuristic cyberattack.... it's worse.
Bybit, a major crypto exchange, lost $1.5 BILLION in Ethereum. But this wasn't some high-tech, futuristic cyberattack.... it's worse.
I don't think stock.
You could theoretically vary the magnetron’s output power to encode binary data. This would involve dynamically adjusting the power supply to create different output levels.
high voltage that is necessary for multiple components would be needed to switch on/off rapidly...
You could theoretically vary the magnetron’s output power to encode binary data. This would involve dynamically adjusting the power supply to create different output levels.
high voltage that is necessary for multiple components would be needed to switch on/off rapidly...
December 10, 2024 at 4:16 PM
I don't think stock.
You could theoretically vary the magnetron’s output power to encode binary data. This would involve dynamically adjusting the power supply to create different output levels.
high voltage that is necessary for multiple components would be needed to switch on/off rapidly...
You could theoretically vary the magnetron’s output power to encode binary data. This would involve dynamically adjusting the power supply to create different output levels.
high voltage that is necessary for multiple components would be needed to switch on/off rapidly...
if you replace the magnetron with a wifi transmitter, yes!
December 10, 2024 at 11:03 AM
if you replace the magnetron with a wifi transmitter, yes!
I got a whole jar of 1 and 2 cent coins that we don't use here anymore, we can work out a deal
December 6, 2024 at 5:47 PM
I got a whole jar of 1 and 2 cent coins that we don't use here anymore, we can work out a deal