Mattei

firewalls can't stop this. A developer just open sourced a tunnel that smuggles your entire internet through port 53 the port every router on earth is forced to leave open. It's called MasterDnsVPN. It hides your traffic inside DNS queries, the one type of packet no network can block without breaking itself. Every firewall on earth has to allow DNS. Schools, airports, hotels, hotel WiFi, entire countries running ISP-level censorship all of them keep port 53 open or nothing on the network resolves. This repo turns that loophole into a full encrypted tunnel. Here's what makes it different from every other DNS tunnel that came before: → Custom ARQ layer gives you TCP-level reliability over UDP DNS, so nothing drops even on garbage networks → Sends every packet through up to 12 different resolver paths at the same time, if 11 fail the packet still arrives → Auto probes the maximum DNS payload your path can handle, then locks in the fastest MTU possible → AES-256-GCM, ChaCha20, AES-128, AES-192 all built in, pick your encryption → SOCKS5 proxy on 127.0.0.1:1080 point any browser or app at it and you're through Killed: $12/mo Mullvad, $10/mo NordVPN, $15/mo Astrill, every commercial DNS tunnel charging monthly fees for the exact same idea. Pre-built binaries for Windows, Linux AMD64, Linux ARM64, macOS ARM64. No Python install needed. Configure two DNS records, drop in the encryption key, run the executable. Works in environments where every other VPN protocol is dead on arrival. MIT License. 100% Opensource.

CLAUDE OPUS 4.8 JUST BROKE A $9 BILLION PRIVACY COIN. 🚨 A security researcher used Anthropic's new model to find a 4-year-old soundness bug in Zcash's Orchard pool. The flaw could create unlimited, undetectable counterfeit $ZEC. Discovered May 29. Patched June 3. Could have been exploited for over 4 years. The team has no answer.

Do you know that using GitHub CLI (gh) may expose you to supply-chain attacks? It stores a long-lived GitHub token on your machine, which can be stolen by any malicious scripts. This is what happened in the recent Nx Console supply-chain compromise, which led to GitHub’s internal source code being leaked.

CVE-2026-44789, CVE-2026-44790 & CVE-2026-44791: 3 new vulnerabilities in n8n, 9.4 rating 🔥 Recently disclosed vulnerabilities in n8n allow an attacker to read arbitrary files from the server, achieve global prototype pollution and bypass the patch for previous vulnerability (CVE-2026-42232). 👉 https://t.co/msIU7eVNWK

Mini Shai Hulud strikes again... again! We've identified three malicious versions of Microsoft's durabletask on PyPI, 1.4.1, 1.4.2, and 1.4.3, that contain a dropper injected directly into the package's Python source files. This does smell of more TeamPCP shenanigans, but we can’t be sure for now. If you have these versions of durabletask installed, read our blog for remediation steps and more details about how the worm and infostealer work -> https://t.co/stOYm7wYO9

🛡️ Hackers Abuse Microsoft Entra ID Accounts to Exfiltrate Microsoft 365 and Azure Data Source: https://t.co/QmCHJQioP9 A threat actor known as Storm-2949 has launched a sophisticated, multi-layered cloud attack campaign targeting Microsoft Entra ID accounts to steal sensitive data from Microsoft 365 and Azure environments. What makes this attack stand out is that it did not rely on traditional malware or device-level exploits. Instead, the attackers used legitimate Microsoft cloud management tools and administrative features to silently move through an organization’s entire cloud infrastructure. #cybersecuritynews

Microsoft is investigating a new, emerging Mini Shai-Hulud npm supply chain attack targeting antv packages. Attackers compromised an antv maintainer account and published malicious versions of multiple widely used packages (for example, antv/g2). As these packages are widely used as dependencies, the compromise propagated into downstream libraries like echarts-for-react, impacting a much broader set of applications and continuous integration (CI) environments. All compromised packages contain a byte-identical, obfuscated credential-stealing payload delivered via a preinstall hook (Bun). The malware targets high-value secrets including: - GitHub personal access tokens (PATs) and OpenID Connect (OIDC) tokens - npm / Amazon Web Service (AWS) credentials and Security Token Service (STS) sessions - Secure Shell (SSH) keys, kubeconfigs, and .env / .npmrc files - Software-as-a-service (SaaS) tokens (Slack, Stripe, Vault) Exfiltration occurs over HTTPS with Transport Layer Security (TLS) validation disabled. The payload also abuses stolen OIDC tokens to forge Supply-chain Levels for Software Artifacts (SLSA) provenance and propagate malicious releases, exhibiting worm-like behavior across repositories. Malicious files distributed through npm packages are detected by Microsoft Defender as Trojan:AIGen/NPMStealer , "Suspicious Node.js process behavior", or “Credential access attempt”, preventing credential theft and malicious post-install execution. Mitigation: - Audit dependencies for affected antv and related packages; pin or downgrade to known-good versions (pre-2025-05-18). - Revoke and rotate exposed credentials (GitHub, npm, cloud tokens, SSH keys). - Validate integrity of CI pipelines and recent build artifacts. - Network IOC: Stolen credentials are exfiltrated over HTTPS to t.m-kosche[.]com:443. Block at egress and review network logs for outbound connections.

Anthropic's Head of Product just dropped a 28-minute masterclass on agent production. Prompt caching. Tool search. Programmatic tool calling. Compaction. Advisor strategy. 28 minutes. Free. Worth more than 100 YouTube videos combined. Watch it first. Then read this. The masterclass teaches you how agents work. This teaches you what to build with them — a 5-agent content pipeline that does the work of a $300K creative team. Full pipeline below ↓ Bookmark this. Start this weekend.

THIS AMERICAN DEVELOPER SPENT WEEKS DEBUGGING TIMEOUT ERRORS IN OLLAMA. THEN HE LOOKED UNDER THE HOOD LM Studio is just llama.cpp Ollama is just llama.cpp so he cloned llama.cpp from source, pulled Qwen 3.6 35B off Hugging Face, set up asymmetric KV quantization and got a local server running on 127.0.0.1:8080 plugged it into VS Code, connected it to OpenClaw, 53 tok/s on an M1 Max with 262K context zero wrappers, zero timeout errors, zero API fees bookmark & like this before your next timeout error hits​​​​​​​​​​​​​​​​ full breakdown of my raw llama.cpp setup ↓

🚨BREAKING: Brown University student Alex Shieh previously EVISCERATED the school's administrators for having a $46 million deficit, despite surging costs for students. They pay $90K+ PER YEAR. Alex Shieh: "What about the kids who weren't born on third base?! [...] Brown is on track to run a $46 million DEFICIT this year. WHERE is all the money going?" "I'll tell you where it's going. It's going into an empire of administrative bloat and bureaucracy! Brown employs 3,805 full time non-instructional staff for just 7,229 undergrads. That's one administrator for every two students." "This isn't education. This is bloat paid for on the backs of students and families who are mortgaging their futures for a shot at a better life!" Do you firmly support Alex Shieh on this? A. Huge Yes B. No IF Yes, Give me a THUMBS-UP👍!! MAKE THIS GO VIRAL ON 𝕏. LET’S GO 👏