HackerTrans
TopNewTrendsCommentsPastAskShowJobs

sneakerblack

no profile record

Submissions

A Primer on Datacenters

generativevalue.com
2 points·by sneakerblack·3 maanden geleden·0 comments

Architecture Patterns: Caching (2022)

kislayverma.com
3 points·by sneakerblack·7 maanden geleden·0 comments

State of Devs 2025

2025.stateofdevs.com
2 points·by sneakerblack·10 maanden geleden·0 comments

AI Datacenters Eat the World (By High Yield) [video]

youtube.com
1 points·by sneakerblack·10 maanden geleden·0 comments

comments

sneakerblack
·16 dagen geleden·discuss
This all stinks of Lazarus:

https://en.wikipedia.org/wiki/Lazarus_Group

I've done incident responses for this exact type of attack multiple times. They've gotten much better organized lately and will often contact developers directly (over LinkedIn or WhatsApp) to run this type of attack. (Although, usually pretending to run a test for a job interview -- which is maybe why the author was confused about the code)
sneakerblack
·10 maanden geleden·discuss
I think this was posted because the of the recent Npm malware fiasco. The malware monkey-patched native JS functions to replace strings that matched crypto addresses in certain the fetch, and XMLHttpRequest functions:

https://www.aikido.dev/blog/npm-debug-and-chalk-packages-com...

Considering there's no way to check whether a function is monkey-patched, this just tells me the JavaScript ecosystem was not designed with malicious actors in mind
sneakerblack
·vorig jaar·discuss
I think the issue with this is that you'll never be able to have the deep integration current FMD implementations have (where you have Bluetooth beacons to track the phone even when it's "off") and also be able to use anything that requires a signed bootloader and OS (such as banking apps)