Elegance that feels almost untouchable 🌙
Artistic freedom fullbody sketch for @\niprae_ (X)

#art #artwork #comm #commission #fantasyart #elf #nightelf #pinup

TanStack npm Packages Compromised in Ongoing Supply-Chain Attack

Socket detected 84 compromised TanStack npm package artifacts modified with credential-stealing malware targeting CI systems, including GitHub Actions. Affected packages like @tanstack/react-router have over 12 million weekly downloads. The malicious versions contain router_init.js, a heavily obfuscated file with daemonization capabilities and environment variable access for GitHub Actions secrets. The compromise exploited GitHub Actions cache poisoning and pull_request_target patterns to extract OIDC tokens and authenticate malicious npm publishes through trusted-publisher bindings. The malware harvests credentials from GitHub Actions, AWS (IMDS, Secrets Manager, SSM), HashiCorp Vault, and Kubernetes, while establishing persistence in Claude Code and VS Code directories. Exfiltration occurs through Session's decentralized P2P network. The campaign includes self-propagation mechanisms that steal npm OIDC tokens and autonomously republish compromised packages. Updates indicate expansion to OpenSearch, Mistr...

Pulse ID: 6a033148e786c959261ff66f
Pulse Link: https://otx.alienvault.com/pulse/6a033148e786c959261ff66f
Pulse Author: AlienVault
Created: 2026-05-12 13:55:20

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#AWS #CyberSecurity #ELF #GitHub #InfoSec #Malware #NPM #OTX #OpenThreatExchange #RAT #Rust #SMS #bot #AlienVault

Elf and Necromancer 2 – Light and Darkness in the Sun

On the other side of the path is brickwork. Red brick. Old. And overgrown. Where the brick wall is low, you can see that everything is overgrown. Wild terrain. Grass. Bushes. Everything grows as it pleases. And rare flowers.

https://dimalinkeng.blogspot.com/2026/05/elf-and-necromancer-2-light-and.html

#elf #necromancer #fantasy #tale #fairytale #magic #garden #lightanddarkness #conversation #abandonedpath #overgrown

A hidden domain deep in the forest where elves reside. Concealed by ancient magic, only those granted permission may ever find this place. To any other, they only ever see a lush, dark forest.

https://youtu.be/SPoybd4Yytw

#composer #fantasy #musician #music #vgm #fantasymusic #classicalmusic #originalmusic #originalcomposition #instrumental #gamedev #elven #elf #elves #dndmusic #dnd #harp #recorder #mystical #magical

In the ever-growing tourist industry, English proficiency is essential for workers. It enhances communication with international visitors.

A solid command of English can significantly improve job opportunities, allowing employees to stand out in a competitive market.

Last, English serves as a bridge for cultural exchange, enabling workers to share their local knowledge with tourists.

English is not just a language; it’s a vital tool for success in tourism.

#ingles #esl #tourism #elf

Flower Gallery XIV – Orange Flame

These are also my favorite flowers. They're small. Sprite Zinnias. They have such angular leaves. And they're not tall. They grow on the side of my garden. Separated from the main part. For a long time, I couldn't figure out what was growing there. Or what they would look like. Sprite Zinnias. They come in such a variety of colors.

#zinnia #sprite #garden #flowers #bloom #summer #countryside #fairy #elf #leaves #orange #flame #likefire #september

TCLBANKER: Brazilian Banking Trojan Spreading via WhatsApp and Outlook

A sophisticated Brazilian banking trojan named TCLBANKER has been identified, representing a significant evolution of the MAVERICK/SORVEPOTEL malware family. The campaign employs a trojanized Logitech installer that deploys two .NET Reactor-protected modules through DLL side-loading. The banking trojan monitors 59 Brazilian financial institutions using UI Automation and features a WPF-based full-screen overlay framework for operator-driven social engineering attacks, including credential harvesting and fake system screens. A secondary worm module enables self-propagation through WhatsApp session hijacking and Outlook COM automation, sending phishing messages from victims' own accounts. The malware implements robust anti-analysis capabilities including environment-gated payload decryption, comprehensive watchdog systems, and ETW patching. Infrastructure is hosted on Cloudflare Workers, with evidence suggesting the campaign was detected in early operational stages.

Pulse ID: 69fb97e531a95b262c4925aa
Pulse Link: https://otx.alienvault.com/pulse/69fb97e531a95b262c4925aa
Pulse Author: AlienVault
Created: 2026-05-06 19:35:01

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#Bank #BankingTrojan #Brazil #Cloud #CredentialHarvesting #CyberSecurity #ELF #InfoSec #Malware #NET #OTX #OpenThreatExchange #Outlook #Phishing #RAT #SocialEngineering #Trojan #WatchDog #WhatsApp #Worm #bot #AlienVault

Anime Character Art Pack: 2425 #Anime #Character #Sprites #Facialexpressions #2D #Png #Transparent #Fullbody #Halfbody #Face #Woman #Elf #Princess #Fairy #AssetStore

https://u3dn.com/packages/anime-character-art-pack-2425-306515

Heard an amazing talk talk by [@]litemars at @BSidesLuxembourg about #packers for #ELF on #ARM64.
#hARMless can run it's payload without R&X memory by writing into a new piece of memeory and them calling execcve() on it.
It also uses #io_uring to avoid write() syscalls.

https://github.com/litemars/hARMless