HackerTrans
TopNewTrendsCommentsPastAskShowJobs

sneakerblack

no profile record

Submissions

A Primer on Datacenters

generativevalue.com
2 points·by sneakerblack·il y a 3 mois·0 comments

Architecture Patterns: Caching (2022)

kislayverma.com
3 points·by sneakerblack·il y a 7 mois·0 comments

State of Devs 2025

2025.stateofdevs.com
2 points·by sneakerblack·il y a 10 mois·0 comments

AI Datacenters Eat the World (By High Yield) [video]

youtube.com
1 points·by sneakerblack·il y a 10 mois·0 comments

comments

sneakerblack
·il y a 16 jours·discuss
This all stinks of Lazarus:

https://en.wikipedia.org/wiki/Lazarus_Group

I've done incident responses for this exact type of attack multiple times. They've gotten much better organized lately and will often contact developers directly (over LinkedIn or WhatsApp) to run this type of attack. (Although, usually pretending to run a test for a job interview -- which is maybe why the author was confused about the code)
sneakerblack
·il y a 10 mois·discuss
I think this was posted because the of the recent Npm malware fiasco. The malware monkey-patched native JS functions to replace strings that matched crypto addresses in certain the fetch, and XMLHttpRequest functions:

https://www.aikido.dev/blog/npm-debug-and-chalk-packages-com...

Considering there's no way to check whether a function is monkey-patched, this just tells me the JavaScript ecosystem was not designed with malicious actors in mind
sneakerblack
·il y a 12 mois·discuss
I think the issue with this is that you'll never be able to have the deep integration current FMD implementations have (where you have Bluetooth beacons to track the phone even when it's "off") and also be able to use anything that requires a signed bootloader and OS (such as banking apps)