Olivia
Online
Karim El-Melhaoui
@karimscloud
Principal Security Architect & Partner at CloudSec Researcher. Find me at bsky
Oslo, Norway
Joined August 2012
721 Following
825 Followers
1.3K Posts
Every supply-chain attack affecting the npm ecosystem, the most common apps I find vulnerable are the vibe-coded ones due to lack of version pinning..
If @Cursor and other coding platforms make pinning the default, we'll see less runtime environments affected.
First P1 achieved, unfortunately a duplicate.
Shai-Hulud 2.0, a tale of 4 graphs: many numbers have made the news in regards to this story - such as 800 compromised packages - but visualizing the data clearly shows the potential impact of hijacking even a small set of key packages (in terms of prevalence or dependents):
Who to follow
Marco Lancini
@lancinimarco
💼 Director of Security
📬 @CloudSecList
📚 https://t.co/TrQKzxfnYg
💬 I write about security strategy, technical leadership, and cloud security.
Melvin langvik 
@Flangvik
Red Team @TrustedSec , terrible creator of InfoSec content 📹Opinions are my own and not the views of my employer.
Matt Fuller
@matthewdfuller
💭 Building https://t.co/qF4lN20a4l (better AWS console), https://t.co/dRqqZlMIFL ("open in AI" links)
🛡️ Cloud Security EM @Stripe
🤝 Ex-Founder @CloudSploit_ (sold)
🚨 New Shai-Hulud-style npm attack hitting 25k+ repos and growing fast.
Devs & CI/CD exposed via malicious preinstall. Wiz Research has detection + mitigation.
Details: https://t.co/vmAdV6kwtI
First talk at @OsloBSides
@gauravphoenix Nordnet’s social forum is usually good for nordic stocks: https://t.co/EIw39IjK38
@gauravphoenix Not an investment analysis but since you mention a Norwegian company: There’s declining interest rates affecting mortgage yield of Norwegian banks, they’ve had a historically good yield. There’s also the competitive landscape with Sparebank 1 SMN which is strong in the region
The schedule for fwd:cloudsec Europe is out, with a single track of high-quality talks over 2 days, along with “Birds of a Feather” interactive sessions!
https://t.co/pZXdCbbxWP
Some sponsorship opportunities are still available
Great work by the @SpecterOps team adding Entra ID to GitHub attack paths! Will officially archive once I can validate it supports OIDC https://t.co/0SuTDNQgp2
Another year in the books as a Microsoft MVP🎉
I’m left wondering how many unpaid AWS bills are related to this.
Credit Card Update!
After 14 weeks, the program to audit unused/unneeded credit cards has expanded to 55 agencies resulting in ~610k de-activated cards.
As a reminder, at the start of the audit, there were ~4.6M active cards/accounts; more work to do!
@0xdabbad00 That’s a solid one!
Reminder that the fwd:cloudsec Europe 2025 Call for Papers is open!
First time speakers who requested feedback by May 30th and meet the submission criteria will receive feedback on how to improve during the second round.
For more: https://t.co/l3H54Q0miJ
What happens if a lambda that puts an event to an S3 triggers on the same S3… I can’t afford to find out
🏃♂️Meet ImageRunner: A privilege escalation vulnerability I discovered in GCP Cloud Run.
Thank you for the @GoogleVRP team for working closely with us on this one.
*Stay tuned for more blogs to come!
https://t.co/Kzf9RlPR2u
@CraigHRowland Interested in reading your research, where may I find it?
Last Seen Users on Sotwe
عثمان سوداني
arjun here
Seen from India
Amar 😋🍑
Seen from Saudi Arabia
kardjo
Seen from Singapore
Trans Hub
Seen from Turkey
DunyayiGeziyorum
Seen from Turkey
Huỳnh
Seen from Vietnam
Sushi
Seen from Thailand
Mochatheyeen-Fwa26
Seen from United States
MY PARENTS WON’T DIVORCE🫵🏾
Seen from United Kingdom
Most Popular Users
Elon Musk
@elonmusk
240.2M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.3M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.6M followers
KATY PERRY
@katyperry
86.9M followers
Taylor Swift
@taylorswift13
80.7M followers
Lady Gaga
@ladygaga
72.2M followers
Kim Kardashian
@kimkardashian
69.4M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.6M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.2M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
60M followers