Olivia
Online
finx
@thisisfinx
Cybersec lifelong student | Blue Teamer | Dumbass (still am)
Malaysia
Joined May 2021
969 Following
167 Followers
638 Posts
Pinned Tweet
‼️CYBERSECURITY INCIDENT
GitHub Pull Request (PR) #3139 was made regarding the removal of NX Console from the VS Code Marketplace on 18/5/2026.
The VS Code extension was compromised, and it contains an infostealer.
Microsoft has since removed it from the VS Code marketplace.
Who to follow
‼️🚨 CYBERSECURITY INCIDENT — A threat actor on a hacker forum, "TeamPCP" is allegedly selling GitHub source code.
Mylon Intelligence has identified that there was no user data involved which aligns with GitHub investigative reports.
Note: it seems like people ran with the Alor Gajah Qilin thing. Nobody really seems to see this very particular verification from @r4shsec. So, boosted for visibility. This account also manages @MylonIntel so go follow that also (covers darkweb stuff).
#malaysia #threatintel
For anyone wondering, the threat actors behind it, “Qilin” haven’t published any samples to verify the authenticity of the breach.
There’s currently no cause for alarm.
There appears to have been some big changes on the Google Advanced Search Page, but it does seem, that for now at least, that the other search filters, such as intitle: & inurl: etc are still working #OSINT
MASSA app by @mycert is seeing rapid updates! It now features app recognition via certificate signatures and deep scanning for suspicious APK/XAPK/ZIP files. Detecting apps removed from the Play Store, enhanced app list sorting, and major stability fixes https://t.co/RYELzsR3cG
For anyone wondering, the threat actors behind it, “Qilin” haven’t published any samples to verify the authenticity of the breach.
There’s currently no cause for alarm.
‼️🇲🇾 MALAYSIA RANSOMWARE ALERT
Ransomware group, "Qilin" has allegedly leaked data to a company in Malaysia, PNSB Insurance Brokers Sdn Bhd.
Leaked data may contain sensitive PII & confidential documents.
- ⏰Date: 17/5/2026
- 📦80GB (245,578 files)
📢 Ransomware Alert: 🇲🇾
Malaysia Smelting Corporation Berhad (https://t.co/YtsDshn5oy), a Malaysia-based mining company, has reportedly fallen victim to LAMASHTU Ransomware.
NB: The group intends to publish the data within 7-8 days.
🔍Key Details:
🛡️Threat actor: LAMASHTU
📅 Reported on: 18/05/26
⚠️ Data Compromised: 30 GB
“You cannot govern technology you have only been briefed of”
*Taps on the sign aggressively*
Go-Gov-MY is the Malaysian government’s official tool for building secure forms with https://t.co/atQJObnqEb links and QR codes. Clean, secure, and open source 🇲🇾
Government agencies, this one’s for you https://t.co/dltUzDG8Dl
Wake up guys, our 🇲🇾 government just got hacked by a vibe coder
Hey, just a quick question: if you're sharing your fav cafe, how would you do that? List with google map links?
What if I tell you, you can create sharable custom map?
I got tutorial on how to do so:
https://t.co/SjLZDkfDWn
No worries, lots of pictures in the guide~
#osint
Fake Malaysia LHDN (tax authority) themed site hosting a “Mandatory Tax Compliance Review” notice.
njifjuhgh[.]top
The “DOWNLOAD & SEND DOCUMENTS - LHDN SAFE PORTAL” file downloads a #Tedy trojan payload.
Interesting part, the same domain previously hosted Indian tax themed phishing/malware
https://t.co/RbmGFcSQVM
file hash: 7263622822694fc8c2720974c31b5c12b2fdc864ce496ab4f6da57e8c361b59b
#phishing #malware @malwrhunterteam @500mk500 @skocherhan
![Malwarehunterr's tweet photo. Fake Malaysia LHDN (tax authority) themed site hosting a “Mandatory Tax Compliance Review” notice.
njifjuhgh[.]top
The “DOWNLOAD & SEND DOCUMENTS - LHDN SAFE PORTAL” file downloads a #Tedy trojan payload.
Interesting part, the same domain previously hosted Indian tax themed phishing/malware
https://t.co/RbmGFcSQVM
file hash: 7263622822694fc8c2720974c31b5c12b2fdc864ce496ab4f6da57e8c361b59b
#phishing #malware @malwrhunterteam @500mk500 @skocherhan](https://pbs.twimg.com/media/HIHTQlGasAA6POu.jpg)
Now, you're asking, why don't you scrape it or use AI like a normal human do? To that I give you 3 issues:
1) Domain and subdomain do not match, no consistent pattern between all states
2) No internal record
3) Dead links
So, no choice gotta do manual 😵💫
And don't you worry, every single link is working. Why I am confident? I manually check them, my head hurts 😵💫
@dinobitoo Finally I found someone to tag for CyberRaya on X🤣.
Last Seen Users on Sotwe
Sebahat Gur
Seen from Pakistan
Nellorxo
Seen from Spain
🔥 18HotLive™ | Official 💋 
Seen from United Kingdom
เจ้ายู🌷 (พักทำคลิปซักพักใหญ่ๆ)
Seen from Thailand
ゴまなかつおム
Seen from Japan
bob
Seen from Malaysia
AYKUT
Seen from Turkey
Area 96
Seen from Netherlands
Chen Long
Seen from Indonesia
Umyfen
Seen from Thailand
Trends for you
Most Popular Users
Elon Musk
@elonmusk
240.1M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.8M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.2M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.7M followers
Taylor Swift
@taylorswift13
80.5M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.3M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.4M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers