HackerTrans
TopNewTrendsCommentsPastAskShowJobs

nettlin

no profile record

Submissions

North Korea-Nexus Threat Actor Compromises Widely Used Axios NPM Package

cloud.google.com
7 points·by nettlin·قبل 3 أشهر·2 comments

We found that the fix to address the DoS vulnerability in React was incomplete

bsky.app
14 points·by nettlin·قبل 7 أشهر·1 comments

comments

nettlin
·قبل 3 أشهر·discuss
They just added more details:

> Indicators of compromise (IOCs)

> Our investigation has revealed that the incident originated from a third-party AI tool whose Google Workspace OAuth app was the subject of a broader compromise, potentially affecting hundreds of its users across many organizations.

> We are publishing the following IOC to support the wider community in the investigation and vetting of potential malicious activity in their environments. We recommend that Google Workspace Administrators and Google Account owners check for usage of this app immediately.

> OAuth App: 110671459871-30f1spbu0hptbs60cb4vsmv79i7bbvqj.apps.googleusercontent.com

https://vercel.com/kb/bulletin/vercel-april-2026-security-in...
nettlin
·قبل 3 أشهر·discuss
They just added more details:

> Indicators of compromise (IOCs)

> Our investigation has revealed that the incident originated from a third-party AI tool whose Google Workspace OAuth app was the subject of a broader compromise, potentially affecting hundreds of its users across many organizations.

> We are publishing the following IOC to support the wider community in the investigation and vetting of potential malicious activity in their environments. We recommend that Google Workspace Administrators and Google Account owners check for usage of this app immediately.

> OAuth App: 110671459871-30f1spbu0hptbs60cb4vsmv79i7bbvqj.apps.googleusercontent.com

https://vercel.com/kb/bulletin/vercel-april-2026-security-in...
nettlin
·قبل 3 أشهر·discuss
> [Google Threat Intelligence Group] attributes this activity to UNC1069, a financially motivated North Korea-nexus threat actor active since at least 2018, based on the use of WAVESHAPER.V2, an updated version of WAVESHAPER previously used by this threat actor. Further, analysis of infrastructure artifacts used in this attack shows overlaps with infrastructure used by UNC1069 in past activities.
nettlin
·قبل 5 أشهر·discuss
Just now, with GPT 5.2 Thinking:

> The car wash is only 50 meters from my house. I want to get my car washed. The car is at my house currently. Should I walk there or drive?

> Walk. > > At 50 meters, walking is faster than the full “start car → pull out → reposition → park” cycle, avoids cold-start wear, and you won’t risk arriving with dusty brakes/tires or water streaks from immediately driving afterward. Drive only if you can’t comfortably walk (mobility, heavy weather, you need to bring bulky items), or if the car wash explicitly requires you to drive it into a queue/track.
nettlin
·قبل 7 أشهر·discuss
> The patches published earlier are vulnerable.

> If you already updated for the Critical Security Vulnerability last week, you will need to update again.

> If you updated to 19.0.2, 19.1.3, and 19.2.2, these are incomplete and you will need to update again.

https://react.dev/blog/2025/12/11/denial-of-service-and-sour...
nettlin
·قبل 9 أشهر·discuss
> The Amazon retail site seems available, but I’m curious if it’s even using native AWS or is still on the old internal compute platform.

Some parts of amazon.com seem to be affected by the outage (e.g. product search: https://x.com/wongmjane/status/1980318933925392719)
nettlin
·قبل 10 أشهر·discuss
This file does not contain the terms of service of Slack. Rather, it contains the software licenses of third-party code that is embedded in Chromium, which in turn is embedded in the Slack app. Every dependency has its own license, which is why the file is so big (800× Apache-2.0, 237× MIT, 59× LGPL, and so on).