Have a look at how I write my diaries and secure them:

https://biocpu.ahmedsiam.com/posts/0001-writing-diaries-and-securing-it/

#diaries #security #encryption

From PostCSS Masquerading to Windows RAT

A sophisticated supply chain attack leverages typosquatting of the legitimate postcss-selector-parser npm package, which receives over 150 million weekly downloads. Three malicious packages published by user 'abdrizak' masquerade as PostCSS utilities while delivering a multi-stage Windows RAT. The infection chain begins with encoded JavaScript that drops PowerShell scripts, which then download a bundled Python runtime containing Nuitka-compiled modules. The final payload implements comprehensive RAT capabilities including HTTP C2 communication with RC4 encryption, registry persistence, VM detection, remote shell execution, file transfer, and Chrome credential theft using DPAPI and app-bound decryption. The attack demonstrates how build tooling dependencies can serve as delivery mechanisms for sophisticated Windows malware targeting developer environments.

Pulse ID: 6a3ac05e2137f66d3a690558
Pulse Link: https://otx.alienvault.com/pulse/6a3ac05e2137f66d3a690558
Pulse Author: AlienVault
Created: 2026-06-23 17:20:30

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#Chrome #CyberSecurity #Encryption #HTTP #InfoSec #Java #JavaScript #Malware #NPM #OTX #OpenThreatExchange #PowerShell #Python #RAT #SMS #SupplyChain #TypoSquatting #Windows #bot #AlienVault

Zerion 2.0.5 is live on Google Play.

A serverless messenger has a hard problem: no server holds your account, so how do you move to a new phone?

Zerion's answer: back up your whole account to an encrypted file (Argon2id + AES-256-GCM), or pass it straight to your new phone over Tor with a safety-number check. Only you ever hold the key.

No phone number. No metadata. Post-quantum encryption on every message, all over Tor.

▶ https://play.google.com/store/apps/details?id=com.professor.zerion

#privacy #Tor #encryption #infosec #Android

#corruption #tyranny #encryption #linux #cybersecurity #pgp

"If privacy is outlawed, only outlaws will have privacy."

Phil Zimmermann, Creator of PGP

#encryption #cryptowars #linux #privacy

"Cryptographic truth is a superior way for the entire world to operate. Once you experience the transparency, personal control, and lower risks of a world powered by truth, rather than a world backed only by 'just trust us' ideas, you simply cannot go back."

Sergey Nazarov

Following user outcry, #AMD reinstates memory #encryption in consumer CPUs

https://arstechnica.com/security/2026/06/following-user-outcry-amd-reinstates-memory-encryption-in-consumer-cpus/

#cybersecurity #CPU

I heard someone say in a SimpleX messaging group chat: SimpleX is intended to be used in places with high censorship and is not recommended for regular use. So, this means I need to tell my government to increase censorship so that I can continue using SimpleX.

#simplex #privacy #messaging #security #tech #encryption #decentralized #digitalfreedom #communication #opensource #cybersecurity #techlife #tools #privacytools #innovation #network #future #data #connection #software