Olivia
Online
Jacob Krell
@hackerfren
Cybersec/AI expert | Hacker | Pilot | Lifter | OSCE3, CISSP, CCNP, CSIE | Top 20 Hack the Box | CTF Reviews and Writeups | meme magic 🐸
NC, United States
Joined September 2023
731 Following
2.4K Followers
3K Posts
Pinned Tweet
I am currently building out a Virtual Chief Privacy Officer service line for my company.
To that end, I recently passed the IAPP Certified Information Privacy Manager (CIPM) certification.
Just finished the review for it which you can view on my personal website: https://t.co/IXCuC5c39e
@vxunderground literally more effort into persecuting the guy then thy spent in Q&A security testing.
@rootsecdev Its okay they only made $281.72 billion last year in revenue.
what do you want from them? they need to pay all their sales and marketing people somehow!
@Teach2Breach Those m4 mac minis have been calling my name.......
Lets just say....
in about 4 hrs a couple days ago I used Opus 4.6 on Cursor, plain, to make a Sliver MCP through which the agent created Evasive payloads and was executing commands across multiple hosts at once, doing persistence etc.....
Defender is basically worthless nowadays....
First thing I have done I'm actually debating whether i can publish or not....
And it took a couple hours and extremely little thinking. Straight up just had it do web research into the latest evasive techniques...
@Teach2Breach Oh and defender is trivial to bypass. With opus 4.6…..
That’s an entire separate issue though…..
@Teach2Breach Meanwhile windows 11 barely works.
Every single day I have os level issues with heavy agentic ai loads and async issues with one drive crashing explorer.
@vxunderground The future of marketing
Supply chain and dev tool compromises continue to be in the news week after week. Its becoming a question of when, not if. Vendor risk management is more important then ever as threat actors continue to move up the chain.
GitHub just confirmed that 3,800 internal repositories were stolen… through a single VS Code extension.
Not a zero-day.
Not ransomware.
A developer plugin.
This is TeamPCP’s FIFTH supply chain compromise in ~3 months, and it highlights a massive blind spot most organizations still ignore: IDE security.
Most companies heavily govern:
✅ SaaS apps
✅ Cloud infrastructure
✅ Production environments
…but allow developers to install extensions with virtually unrestricted access to:
⚠️ source code
⚠️ credentials
⚠️ cloud tokens
⚠️ local systems
The attack surface has officially moved upstream, into the tools used to WRITE the code.
If your organization hasn’t started governing developer tooling, extension usage, and workstation trust boundaries, now is the time.
The GitHub breach wasn’t the anomaly.
It was the warning shot.
Read @jacob krells latest research here: https://t.co/1pRIAqmMc9
#CyberSecurity #SupplyChainSecurity #DevSecOps #VSCode #GitHub #SoftwareSecurity #ThreatIntelligence #Infosec
@rekdt The average exploit timeline is negative 7 days.
On average patching isn’t even helping based on real world IR data…..
The issue is the dwell times. We need ai threat hunting……
@vxunderground @GrahamHelton3 And most companies still can’t even tell you all their 3rd party vendors or give a BoM for their products/ software…..
@yacineMTB The hard part is selling.
With ai dev, bro, you can make an entire enterprise product in like a week if you know what your making.
@HackingLZ Who needs to evade detection when you are just hijacking the supply chain
@UK_Daniel_Card Nice! St. Peter’s is unreal.
Awesome in the truest sense of the word in my experience.
@L0rd5ud0 It made my day I’m famous hahaha
I was quoted in Forbes, that's pretty cool!
Microsoft does not seem to be having a good 2026 so far security wise, with Exchange being the most recent issue in the crosshairs:
...“attackers study mitigation guidance the same way defenders do,” meaning that such vulnerabilities can be turned into working exploits “much faster than most organizations can validate exposure.”'...
https://t.co/nJpDAbH2D4
Last Seen Users on Sotwe
石
Seen from United States
Ass Lover 😈🍑
Seen from Thailand
NguyễnH.A.Thư
Seen from Vietnam
Asher Bieber
Seen from United States
Adana Gaziantep Kahramanmaraş Tek Erkek
Seen from Sweden
mutfak
Seen from Turkey
Adil
Seen from Netherlands
오데뜨(odette)♡
Seen from Korea
boy w luv
Seen from United States
serbestçift
Seen from Turkey
Trends for you
Most Popular Users
Elon Musk
@elonmusk
240.1M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.8M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.2M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.7M followers
Taylor Swift
@taylorswift13
80.5M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.3M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.4M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
60.9M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers