4 052
Подписчики
-124 часа
-167 дней
-1530 день
Загрузка данных...
Похожие каналы
Облако тегов
Входящие и исходящие упоминания
---
---
---
---
---
---
Привлечение подписчиков
июль '26
июль '26
+2
в 0 каналах
июнь '26
+45
в 0 каналах
Get PRO
май '26
+40
в 0 каналах
Get PRO
апрель '26
+43
в 0 каналах
Get PRO
март '26
+45
в 0 каналах
Get PRO
февраль '26
+45
в 0 каналах
Get PRO
январь '26
+31
в 0 каналах
Get PRO
декабрь '25
+46
в 0 каналах
Get PRO
ноябрь '25
+59
в 0 каналах
Get PRO
октябрь '25
+70
в 0 каналах
Get PRO
сентябрь '25
+93
в 0 каналах
Get PRO
август '25
+41
в 2 каналах
Get PRO
июль '25
+89
в 3 каналах
Get PRO
июнь '25
+93
в 1 каналах
Get PRO
май '25
+37
в 1 каналах
Get PRO
апрель '25
+108
в 2 каналах
Get PRO
март '25
+91
в 2 каналах
Get PRO
февраль '25
+98
в 4 каналах
Get PRO
январь '25
+84
в 1 каналах
Get PRO
декабрь '24
+177
в 3 каналах
Get PRO
ноябрь '24
+195
в 1 каналах
Get PRO
октябрь '24
+141
в 0 каналах
Get PRO
сентябрь '24
+194
в 3 каналах
Get PRO
август '24
+77
в 0 каналах
Get PRO
июль '24
+105
в 0 каналах
Get PRO
июнь '24
+61
в 1 каналах
Get PRO
май '24
+112
в 0 каналах
Get PRO
апрель '24
+106
в 0 каналах
Get PRO
март '24
+198
в 0 каналах
Get PRO
февраль '24
+131
в 1 каналах
Get PRO
январь '24
+172
в 0 каналах
Get PRO
декабрь '23
+210
в 3 каналах
Get PRO
ноябрь '23
+514
в 1 каналах
Get PRO
октябрь '23
+218
в 2 каналах
Get PRO
сентябрь '23
+309
в 0 каналах
Get PRO
август '23
+231
в 0 каналах
Get PRO
июль '23
+2 319
в 0 каналах
| Дата | Привлечение подписчиков | Упоминания | Каналы | |
| 02 июля | +1 | |||
| 01 июля | +1 |
Посты канала
Claude Fable is out. As you can see, the new model claims to have been significantly improved. Looking forward to giving it a shot
https://www.anthropic.com/news/claude-fable-5-mythos-5
| 2 | PASSWORD MANAGER 'BITWARDEN' CLI WAS COMPROMISED IN A SUPPLY CHAIN ATTACK ⚠️
BITWARDEN CLI 2026.4.0 WAS COMPROMISED AS PART OF THE ONGOING CHECKMARX SUPPLY CHAIN CAMPAIGN AFTER ATTACKERS ABUSED A GITHUB ACTION IN BITWARDEN’S CI/CD PIPELINE: SOCKET - INFINITYHEDGE
SOCKET: IF YOU USE BITWARDEN CLI, WE RECOMMEND REVIEWING YOUR CI LOGS AND ROTATING ANY SECRETS THAT MAY HAVE BEEN EXPOSED TO THE COMPROMISED WORKFLOW
SECURITY RESEARCHER ADNAN: I BELIEVE THIS IS THE FIRST TIME A PACKAGE USING NPM TRUSTED PUBLISHING HAS BEEN COMPROMISED | 406 |
| 3 | Drone Security Cheat Sheet — and the attack surface is bigger than you’d expect.
Drones aren’t just flying cameras anymore. They’re networked IoT devices with GPS modules, companion computers, Wi-Fi links, and open ports. That means: GPS spoofing, deauth attacks, firmware tampering, and sensor manipulation are all real threats.
The key vulnerable endpoints:
• Communication links — unencrypted MAVLink or Wi-Fi traffic can be intercepted or replayed
• Companion computers — open SSH/FTP ports are low-hanging fruit for attackers
• Sensors — GPS, cameras, and altimeters can all be fed false data (think Stuxnet, but airborne)
• Physical access — if a drone is captured, unencrypted storage = game over
The mitigations read like an IoT security playbook: secure boot chains, firmware signing, encrypted storage (LUKS, gocryptfs), MAVLink 2.0 message signing, WPA3, and 802.11w to block deauth attacks.
One interesting note: researchers are exploring watermarked sensor signals — using entropy analysis to detect if sensor values have been tampered with.
Full cheat sheet: cheatsheetseries.owasp.org/cheatsheets/Drone_Security_Cheat_Sheet | 583 |
| 4 | Interesting story behind Drift Protocol Hack
-> On April 1, 2026, the Drift protocol (a DeFi platform on Solana) was exploited in a sophisticated attack that had been planned over six months.
-> Starting in Fall 2025, attackers posed as a legitimate quantitative trading firm, meeting Drift contributors in person at multiple crypto conferences across several countries. They built trust through months of genuine-looking engagement — discussing trading strategies, onboarding a vault, depositing over $1M of their own capital, and holding working sessions with team members.
-> The actual compromise likely happened through malicious software: one contributor cloned a code repository shared by the group, and another downloaded a TestFlight app they presented as a wallet product. A known VSCode/Cursor vulnerability from late 2025 may have been exploited, which allowed silent code execution just by opening a file.
-> Once the exploit occurred on April 1, the attackers scrubbed all their Telegram chats and malicious tools. Drift has since frozen protocol functions, removed compromised wallets from the multisig, and flagged attacker wallets across exchanges.
-> The attack is attributed with medium-high confidence to the same North Korean state-affiliated group (tracked as UNC4736/AppleJeus/Citrine Sleet) behind the October 2024 Radiant Capital hack, based on onchain fund flows and operational overlaps. Notably, the people who appeared in person were not North Korean nationals — DPRK groups are known to use third-party intermediaries for face-to-face interactions. Mandiant has been engaged but has not yet formally attributed the attack. The investigation is ongoing.
Source: https://x.com/DriftProtocol/status/2040611161121370409 | 568 |
Уже доступно! Исследование Telegram 2025 — ключевые инсайты года 
