Olivia
Online
CyberLariato
@CyberLariato
No-selling threats
Joined February 2015
50 Following
32 Followers
6.4K Posts
OpenAI got popped this week. Not phishing. Not a weak password. Their CI pipeline trusted its own cached build artifacts -- the TanStack attack used that trust to steal the publish token.
Your supply chain isn't your vendors. It's your assumptions about what's safe to cache.
The part that should worry you: this has been in the code since the rewrite module was created. 2006. Every NGINX install for the past 18 years was carrying this.
Check your version. Patch now. And ask yourself what else is sitting undiscovered in code we all trust.
NGINX just disclosed an unauthenticated RCE hiding in the rewrite module since 2006.
CVE-2026-42945 — "NGINX Rift." CVSS 9.2. Heap buffer overflow. No authentication required.
If you run NGINX, this one is not a drill.
Affected:
• NGINX Open Source 1.0.0 → 1.30.0
• NGINX Plus R32 → R36
• Instance Manager, App Protect WAF — the full ecosystem
Fixed in: 1.30.1 / 1.31.0 / Plus R32 P6 + R36 P4
Open Source < 1.0.0? No fix planned. Upgrade.
Who to follow
Broc Feeney
@brocfeeney93
Supercar Driver for @RedbullAmpol 🇦🇺
Jack Smith Saturdays
@SmithSaturdays
The weekend doesn't start until it's Jack Smith Saturday.
Tooma Racing 🇦🇺 😀👍
@ToomaRacing
Supercars: On Hiatus
GT3: Audi/Merc/Corvette/Porsche
Hypercar: Cadillac/Porsche
F1: OP⁸¹/MV¹/FA¹⁴
Discord: toomanyenemies64
Worlds biggest JMR fan
Some Naval Gazing.... Is Toyotas entry into supercars actually a.... https://t.co/igfmZrsxo4
Skaife stepping down https://t.co/Yx4AlLrvHe
Bathurst Virgin https://t.co/Te9D4kn5hs
I just finished re-watching the '95 1000 and this was straight up brutal https://t.co/hXmIwB2ks6
This Mountain... https://t.co/v5nkTNyk56
Gen 3 experiment has failed its time to become v6 sandman supercars https://t.co/ewaWZ6HMB7
In 2015, Shane Van Gisbergen was searching for water https://t.co/ORBu7aAk5d
BJR Sandown post-mortem https://t.co/dz5yQTQLaD
‘Throw it in the bin’: Blunt assessment of Supercars’ wave-by rule https://t.co/RFVNOxwmRk
Windshear and AVL will be used to homologate the Supra https://t.co/5QkBpi6lGP
They can't escape each other https://t.co/v7K7ZjrCPu
Erebus reveals Toyota stance https://t.co/Pb7SQVKUPq
Scott Pye bringing the allegations https://t.co/Hy2keY37YN
Anybody else get this e-mail? https://t.co/mMYrPDvWLF
Just got an email that Supercars Youtube memberships are paused? https://t.co/etRYYrnHwo
Trends for you
Most Popular Users
Elon Musk 
@elonmusk
240.3M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109.8M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.5M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.7M followers
KATY PERRY
@katyperry
87.3M followers
Taylor Swift
@taylorswift13
81.1M followers
Lady Gaga
@ladygaga
72.6M followers
Kim Kardashian
@kimkardashian
69.6M followers
Virat Kohli
@imvkohli
69.2M followers
YouTube
@youtube
68.6M followers
Bill Gates
@billgates
63.6M followers
The Ellen Show
@theellenshow
62.5M followers
Neymar Jr
@neymarjr
61.9M followers
CNN
@cnn
61.9M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
60.4M followers