HackerTrans
TopNewTrendsCommentsPastAskShowJobs

chillax

no profile record

Submissions

Squidbleed (CVE-2026-47729) Heartbleeds ancient cousin, hiding in Squid since 97

blog.calif.io
3 points·by chillax·22 дня назад·0 comments

Mellum2 Goes Open Source: A Fast Model for AI Workflows

blog.jetbrains.com
7 points·by chillax·в прошлом месяце·0 comments

Disrupting Glassworm: Inside CrowdStrike's Takedown of a Dev-Targeting Botnet

crowdstrike.com
4 points·by chillax·2 месяца назад·0 comments

Catch hallucinated, typosquatted, non-canonical dependencies before production

github.com
2 points·by chillax·2 месяца назад·0 comments

Vulnpocalypse: AI, Open Source, and the Race to Remediate

resilientcyber.io
1 points·by chillax·3 месяца назад·0 comments

The Team PCP Snowball Effect: A Quantitative Analysis

blog.gitguardian.com
4 points·by chillax·3 месяца назад·0 comments

The Comforting Lie of SHA Pinning

vaines.org
15 points·by chillax·4 месяца назад·5 comments

[untitled]

1 points·by chillax·4 месяца назад·0 comments

Invisible Prompt Injection Through Markdown and HTML-Comments

github.com
2 points·by chillax·5 месяцев назад·0 comments

[untitled]

1 points·by chillax·5 месяцев назад·0 comments

Turning Cloudflare into an SSRF Engine,Reaching What You Were Never Meant to See

riversecurity.eu
1 points·by chillax·5 месяцев назад·0 comments

Ubiquiti: The U.S. Tech Enabling Russia's Drone War

hntrbrk.com
25 points·by chillax·6 месяцев назад·3 comments

AI's Bottleneck Isn't Models or Tools, It's Security

zkorman.com
1 points·by chillax·6 месяцев назад·1 comments

React2shell

react2shell.com
2 points·by chillax·7 месяцев назад·0 comments

CyberSlop – meet the new threat actor, MIT and Safe Security

doublepulsar.com
3 points·by chillax·8 месяцев назад·0 comments

AuditKit – Multi-framework compliance scanner

auditkit.io
1 points·by chillax·9 месяцев назад·0 comments

AMD signs AI chip-supply deal with OpenAI, gives it option to take a 10% stake

reuters.com
442 points·by chillax·9 месяцев назад·370 comments

Security Degradation in Iterative AI Code Generation

arxiv.org
1 points·by chillax·9 месяцев назад·0 comments

JEP 500: Prepare to Make Final Mean Final

openjdk.org
3 points·by chillax·10 месяцев назад·0 comments

comments

chillax
·в прошлом месяце·discuss
Companies such as socket and safedep will still scan new packages and alert on malware (if they are able to detect it) so the packages are taken down before they pass your cool down
chillax
·3 месяца назад·discuss
You could se if it helps with https://betterexplained.com/calculus/lesson-1/ or https://youtu.be/WUvTyaaNkzM
chillax
·5 месяцев назад·discuss
Related: Someone Knows Bash Far Too Well, And We Love It (Ivanti EPMM Pre-Auth RCEs CVE-2026-1281 & CVE-2026-1340) https://labs.watchtowr.com/someone-knows-bash-far-too-well-a...
chillax
·8 месяцев назад·discuss
Some are testing viability

https://www.luftfartstilsynet.no/en/about-us/news/news-2025/...
chillax
·10 месяцев назад·discuss
According to Aikido Security the attack has now targeted 180+ packages: https://www.aikido.dev/blog/s1ngularity-nx-attackers-strike-...