Casanova

Amazon just got caught running a secret price manipulation operation with Levi's, Home Depot, Walmart, and many more. Every time you "comparison shopped" online, you were looking at prices that were already rigged. Here's what happened: Amazon would monitor prices on Walmart, Target, Best Buy, Home Depot, and Chewy in real time. The second a competitor listed a product cheaper than Amazon, they'd contact the brand directly and tell them to "fix it." And the exact emails are now PUBLIC. Amazon sent Levi's links to two Walmart listings with the subject line "styles of concern." They basically said the prices on Walmart are too low and we have a problem. The next day, Levi's responded: "I talked to Walmart and they have partnered with us to take Easy Khaki Classic fit back up to ladder SPP price, $29.99 immediately." Levi's literally called Walmart and told them to raise the price. Because Amazon told Levi's to make the call. Walmart complied. Then Amazon matched the HIGHER price. Both retailers ended up charging more. The customer paid extra. Nobody competed. Same playbook with Hanes: Amazon sent them links showing Target and Walmart prices were lower. Hanes confirmed they "reached out to Target and Walmart to have the prices increased." Target increased the prices. Walmart increased the prices. Amazon kept their margins. But it gets even worse... Amazon told Allergan (the company that makes eye drops) that their product was "suppressed" on Amazon because it was cheaper on another site. Allergan responded: "Walmart got their price back up to $16.99." Amazon then unsuppressed the listing. They did this with pet treats on Chewy. Furniture on Home Depot. Products across dozens of categories spanning YEARS. The mechanism is simple but terrifying: If you're a brand and you sell cheaper on Walmart than on Amazon, Amazon suppresses your product, removes you from the Buy Box, buries you in search results, and effectively makes you invisible to 300 million customers. Brands can't afford that. So they call Walmart and Target and say "raise your prices or we'll lose our Amazon listings." Walmart and Target comply because they need the brand's products. Amazon captures 40 cents of every dollar spent online in America. That gives them the leverage to set prices across THE ENTIRE internet. Not just their own platform. So turns out, you were never comparison shopping. You were looking at a coordinated price floor set by Amazon through backroom phone calls between brands and their competitors. "Amazon is working to make your life more unaffordable." 3 separate antitrust trials are now scheduled for 2027. The FTC has its own case. 18 states plus the DOJ are piling on. This is literally happening during the WORST affordability crisis in a generation. Groceries up 25% since 2020. Housing unaffordable. Wages flat. And the largest ecommerce company on Earth has been secretly coordinating with brands to make sure you can't find a cheaper price ANYWHERE. "Competition" in retail is just a fantasy.

A guy I used to work with hit me up last night. Dude was making $260k in tech. Nice house, $4,700/month mortgage, two cars, vacations every few months. Got laid off 7 months ago. Still nothing. Said he’s down to $22k and burning $5,500 a month. Wife at home, one kid. He told me he checks his bank app before he even gets out of bed now. This is someone I saw winning in real life. Save your money. Because when it flips, it flips fast.

Someone just poisoned the Python package that manages AI API keys for NASA, Netflix, Stripe, and NVIDIA.. 97 million downloads a month.. and a simple pip install was enough to steal everything on your machine. The attacker picked the one package whose entire job is holding every AI credential in the organization in one place. OpenAI keys, Anthropic keys, Google keys, Amazon keys… all routed through one proxy. All compromised at once. The poisoned version was published straight to PyPI.. no code on GitHub.. no release tag.. no review. Just a file that Python runs automatically on startup. You didn’t need to import it. You didn’t need to call it. The malware fired the second the package existed on your machine. The attacker vibe coded it… the malware was so sloppy it crashed computers.. used so much RAM a developer noticed their machine dying and investigated. They found LiteLLM had been pulled in through a Cursor MCP plugin they didn’t even know they had. That crash is the only reason thousands of companies aren’t fully exfiltrated right now. If the code had been cleaner nobody notices for weeks. Maybe months. The attack chain is the part that gets worse every sentence. TeamPCP compromised Trivy first. A security scanning tool. On March 19. LiteLLM used Trivy in its own CI pipeline… so the credentials stolen from the SECURITY product were used to hijack the AI product that holds all your other credentials. Then they hit GitHub Actions. Then Docker Hub. Then npm. Then Open VSX. Five package ecosystems in two weeks. Each breach giving them the credentials to unlock the next one. The payload was three stages.. harvest every SSH key, cloud token, Kubernetes secret, crypto wallet, and .env file on the machine.. deploy privileged containers across every node in the cluster.. install a persistent backdoor waiting for new instructions. TeamPCP posted on Telegram after: “Many of your favourite security tools and open-source projects will be targeted in the months to come.. stay tuned.” Every AI agent, copilot, and internal tool your company shipped this year runs on hundreds of packages exactly like this one… nobody chose to install LiteLLM on that developer’s machine. It came in as a dependency of a dependency of a plugin. One compromised maintainer account turned the entire trust chain into a credential harvesting operation across thousands of production environments in hours. The companies deploying AI the fastest right now have the least visibility into what’s underneath it.

Hello Grays! I’m excited to share something I’ve worked really hard on for the community. In my business life, one thing I’ve always relied on is a simple daily dashboard report. My rule for any back-office team is: show me all the important information, and make it fit on one page. I wanted that same experience for PTGC / UFO… so I built it. And today I’m giving it to the community. There’s no paywall and no donation link, just a web address to a PTGC/UFO dashboard. It’s pretty self-explanatory and easy to use. As you know, I’m in Telegram a lot, and I’m happy to answer questions and hear suggestions. At first it might look like a lot of info on one screen, but I think the organization and layout make it easy to navigate. Play around with it... there are a few Easter eggs in there too. The page has four core sections: Header 7 KPI highlights 4 detailed KPI panels LP pairs section at the bottom #ptgc #pulsechain #UFO #thegrays https://t.co/IcLhWUzsy2 Enjoy!