enderst @enderst - Twitter Profile

enderst retweeted

1 day ago

INTEL DROP We've been tracking suspicious open directories in our detection pipeline. 14 total IPs in the 149.50.98.0/24 (MEVSPACE) range are showing a likely single operator deploying shared tools. Possibly targeting SonicWall devices based on some of the names of directory files: brute[.]py hidden_payload.zip server_obonz.jar SonicDropper.exe Sonic/ sonic_logs/ sonic_panel.py sonic_panel_v3.py sonic_panel_v5.py IP List: 149.50.98.24 149.50.98.36 149.50.98.28 149.50.98.34 149.50.98.26 149.50.98.29 149.50.98.25 149.50.98.30 149.50.98.35 149.50.98.23 149.50.98.33 149.50.98.32 149.50.98.27 149.50.98.31 #threatintel #totalinsights

teamcymru_S2's tweet photo. INTEL DROP

We've been tracking suspicious open directories in our detection pipeline.

14 total IPs in the 149.50.98.0/24 (MEVSPACE) range are showing a likely single operator deploying shared tools.
Possibly targeting SonicWall devices based on some of the names of directory files:
brute[.]py
hidden_payload.zip
server_obonz.jar
SonicDropper.exe
Sonic/
sonic_logs/
sonic_panel.py
sonic_panel_v3.py
sonic_panel_v5.py

IP List:
149.50.98.24
149.50.98.36
149.50.98.28
149.50.98.34
149.50.98.26
149.50.98.29
149.50.98.25
149.50.98.30
149.50.98.35
149.50.98.23
149.50.98.33
149.50.98.32
149.50.98.27
149.50.98.31

#threatintel #totalinsights

5

78

18

39

6K

enderst @enderst

2 days ago

@Milajoy 0% you got weeks

0

5

enderst @enderst

3 days ago

@robertpatrickT2 ~Barstow

0

28

enderst @enderst

5 days ago

@AmericaPapaBear zig instead of zag

0

3

Who to follow

just a short person trying to do infosec

mabrafoo

@mabraFoo

Ex Amazon, Microsoft boomerang!

enderst @enderst

5 days ago

@MbarkCherguia hmm would he have enjoyed the same exit if he didn't try to steal it? 🤔

0

6

enderst @enderst

5 days ago

@sarahadams @BullTheoryio @RonDeSantis Don't be fooled, they googled it

0

193

enderst @enderst

5 days ago

@ClownWorld heh the truck is at fault, the car could have avoided it.

0

10

enderst @enderst

6 days ago

@ClownWorld I thought Paddy dyed his hair.

0

80

enderst retweeted

Joe Rogan

@joerogan

6 days ago

356

10K

395

2K

1M

enderst @enderst

8 days ago

VA launches MDMA-assisted mental health therapy trial https://t.co/elWTJc9KMq

0

1

0

32

enderst retweeted

Sergeant Major Carlos A. Ruiz @USMCSgtMaj

11 days ago

#MemorialDay. It’s one of the few holidays about absence. For many of us, the empty seats are real. So call your buddies today, but don’t let today be the only day. The empty seats around us deserve more than just one day of remembrance. #NeverForgotten #HonorTheFallen

37

810

161

21

20K

enderst @enderst

11 days ago

@Pallavi_345 Sadly, that was all there was to see.

0

4

enderst @enderst

11 days ago

@ThrillaRilla369 Aquanet

0

73

enderst @enderst

11 days ago

@Soapyshayna Well he dodged a bullet

0

130

enderst retweeted

Sarah Adams

@sarahadams

12 days ago

@timburchett @SCLadyPatriot Actually I’d have to check but it actually was like $87 million

25

808

67

9

9K

enderst @enderst

12 days ago

Cybersecurity Certificate Company Tier List 2026 https://t.co/CLW2sjaJWQ via @YouTube

0

1

0

18

enderst @enderst

14 days ago

Outdoor Boys Told Law Grads What No Professor Would https://t.co/keSdgfRZi7 via @YouTube

0

60

enderst @enderst

14 days ago

@Arkypatriot F2

0

5

enderst @enderst

14 days ago

@SGTWipper1Each Conform or find another club

0

9

enderst retweeted

Linux Handbook

@LinuxHandbook

16 days ago

One of the biggest cybersecurity embarrassments of 2026 just happened. Sensitive credentials linked to the US Cybersecurity agency (CISA) were reportedly found sitting inside a PUBLIC GitHub repository. The exposed data allegedly included: • SSH keys • Plaintext passwords • Internal system credentials • Access linked to CISA and DHS environments And the worst part? Some of it may have been publicly accessible since November 2025. According to reports, the leak came from a contractor-managed GitHub repo that was improperly secured. In simple words: someone accidentally left the digital keys to critical systems lying around on the internet. What does this mean for users? There’s currently no evidence that citizen data was stolen. But incidents like this increase risks of phishing, impersonation attacks, and future breaches. It also shows how even top cybersecurity organizations can fail basic security hygiene. The agency responsible for protecting US infrastructure got caught exposing its own credentials online. Cybersecurity isn’t just about advanced AI threats anymore. Sometimes it’s still just… human stupidity.

LinuxHandbook's tweet photo. One of the biggest cybersecurity embarrassments of 2026 just happened.

Sensitive credentials linked to the US Cybersecurity agency (CISA) were reportedly found sitting inside a PUBLIC GitHub repository.

The exposed data allegedly included:
• SSH keys
• Plaintext passwords
• Internal system credentials
• Access linked to CISA and DHS environments

And the worst part?
Some of it may have been publicly accessible since November 2025.

According to reports, the leak came from a contractor-managed GitHub repo that was improperly secured. In simple words: someone accidentally left the digital keys to critical systems lying around on the internet.

What does this mean for users?

There’s currently no evidence that citizen data was stolen.

But incidents like this increase risks of phishing, impersonation attacks, and future breaches.

It also shows how even top cybersecurity organizations can fail basic security hygiene.

The agency responsible for protecting US infrastructure got caught exposing its own credentials online.

Cybersecurity isn’t just about advanced AI threats anymore. Sometimes it’s still just… human stupidity.

35

643

206

241

55K

enderst

@enderst

Who to follow

Last Seen Users on Sotwe

Trends for you

Most Popular Users