Olivia
Online
Moamen
@Momenbassel
redteamer wannabe || opinions are my own.
Joined November 2010
1.2K Following
741 Followers
473 Posts
1/ We are sharing additional details regarding our investigation into unauthorized access to GitHub's internal repositories.
Yesterday we detected and contained a compromise of an employee device involving a poisoned VS Code extension. We removed the malicious extension version, isolated the endpoint, and began incident response immediately.
Notepad
@Pybast @mbaril010 @EtherFi @ethena @USDT0_to @LayerZero_Core IKR? I'm still at shock that AAVE(as far as ik its the first lending defi project) is in bad debt
+++ also from my understanding no audit flagged the DVN config. SigmaPrime, Code4rena, Bailsec, MixBytes all reviewed the solidity but the required DVN count lives in the EndpointV2 ULN config, not the source tree. out of scope by default.
this is the structural gap: risk assessors like Chaos Labs and LlamaRisk onboard collateral based on audit coverage and TVL depth. auditors scope "the .sol files at commit X" and assume the multisig configures runtime parameters securely post-deployment.
nobody owns the layer in between.
IMO crypto needs a PCI-equivalent for runtime posture. (not literal PCI, but a compliance surface that forces protocols to prove their deployed config matches their threat model)
code audits ≠ operational security like every every nine-figure bridge loss in the last two years (Multichain, Nomad, Ronin, now Kelp) was a config or key failure, not a contract bug.
Who to follow
dirty0124
@dirtycoder0124
A positive, never give up person. Founder of https://t.co/2H0KjZ5riG
Telegram group
https://t.co/bjQUMjI9Lh
Youssef A. Mohamed
@GeneralEG64
CEO, Security Guru at @BuguardLLC && @DarkAtlasSquad
Sarmad Hassan
@JubaBaghdad
BugBounty Hunter | We work in the darkness, but serve the light
“You escape competition through authenticity.”
— Naval Ravikant
@0xTib3rius the privacy policy there on the appstore and the 4-pin is a whole another level of marketing as "bitcoin like privacy"
well he didn't lie anyway bitcoin ain't that private anyway @monero is.
@radiofun8 cool ui ngl
looks like apple cash tbh but better
@durov @durov its funny that you think you're doing good and you're anti-censorship and with privacy and so on meanwhile your app is still not e2e by default and you keep shitting on @signalapp with claims and so on.
like do like them lol.
you're not an angel either
@NoContextHumans real story
its weird someone would say that to #Spain which leads in several key European metrics as of 2025-2026, most notably boasting the highest life expectancy in Europe. It is currently recognized as the fastest-growing major economy
I believe @spain is going on the right direction regardless of what the post is saying.
@NOLOVEJUSTGOALS life without a cup of coffee
https://t.co/f8v1o2iy0Y
The most comprehensive Hack The Box writeup collection - 500+ machines, 400+ challenges, interactive knowledge graph, skill trees, attack path diagrams, ProLabs, Sherlocks, OSCP/CPTS/CRTO prep.
#hackthebox #ctf #htb #CyberSecurity #InfoSec #EthicalHacking #Pentesting #RedTeam #CyberSkills #OSCP
@beyoumf love it
BROOOOO!!
Last Seen Users on Sotwe
Trends for you
Most Popular Users
Elon Musk 
@elonmusk
240.1M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.8M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.2M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.7M followers
Taylor Swift
@taylorswift13
80.5M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.3M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.4M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers