HackerTrans
TopNewTrendsCommentsPastAskShowJobs

sneakerblack

no profile record

Submissions

A Primer on Datacenters

generativevalue.com
2 points·by sneakerblack·3 месяца назад·0 comments

Architecture Patterns: Caching (2022)

kislayverma.com
3 points·by sneakerblack·7 месяцев назад·0 comments

State of Devs 2025

2025.stateofdevs.com
2 points·by sneakerblack·10 месяцев назад·0 comments

AI Datacenters Eat the World (By High Yield) [video]

youtube.com
1 points·by sneakerblack·10 месяцев назад·0 comments

comments

sneakerblack
·16 дней назад·discuss
This all stinks of Lazarus:

https://en.wikipedia.org/wiki/Lazarus_Group

I've done incident responses for this exact type of attack multiple times. They've gotten much better organized lately and will often contact developers directly (over LinkedIn or WhatsApp) to run this type of attack. (Although, usually pretending to run a test for a job interview -- which is maybe why the author was confused about the code)
sneakerblack
·10 месяцев назад·discuss
I think this was posted because the of the recent Npm malware fiasco. The malware monkey-patched native JS functions to replace strings that matched crypto addresses in certain the fetch, and XMLHttpRequest functions:

https://www.aikido.dev/blog/npm-debug-and-chalk-packages-com...

Considering there's no way to check whether a function is monkey-patched, this just tells me the JavaScript ecosystem was not designed with malicious actors in mind
sneakerblack
·12 месяцев назад·discuss
I think the issue with this is that you'll never be able to have the deep integration current FMD implementations have (where you have Bluetooth beacons to track the phone even when it's "off") and also be able to use anything that requires a signed bootloader and OS (such as banking apps)