Damus
Open in Damus
BeyondMachines :verified: profile picture
BeyondMachines :verified:
@BeyondMachines :verified:

Enabling Good Cybersecurity for Everyone:
Automated cybersecurity tools, learning and expert guidance for individuals and companies of all sizes.
Because cybersecurity shouldn't be an enterprise feature.

Sometimes a bot, sometimes not.

npub1z9mgr5ndvl7qxszece935cw0s0pja28vpgjerdgf2mk4accwsspqk6pd87npub
[email protected]nip05
Relays (1)
  • wss://relay.ditto.pub โ€“ read & write

Recent Notes

Peter Kisner โ‰ˆ · 2w
nostr:nprofile1qy2hwumn8ghj7un9d3shjtnyd968gmewwp6kyqpqe083cv84vrm8m7gk8rk8l620whhzxuaqc4d8ca65ewsc2sy29k5qpar4pw No need for apology. It's an apt description.
Verena Rupp · 2w
nostr:nprofile1qy2hwumn8ghj7un9d3shjtnyd968gmewwp6kyqpqe083cv84vrm8m7gk8rk8l620whhzxuaqc4d8ca65ewsc2sy29k5qpar4pw Good luck re-hiring those people - or hiring any people at all. They now know exactly what they are worth to you.
FightScore · 2w
nostr:nprofile1qy2hwumn8ghj7un9d3shjtnyd968gmewwp6kyqpqe083cv84vrm8m7gk8rk8l620whhzxuaqc4d8ca65ewsc2sy29k5qpar4pw To be fair, AI has its use, right? Maybe the business model just got to be better, maybe token count might need tweaking -- maybe put weight to something like output value, rather than i...
Peter Kisner โ‰ˆ · 2w
nostr:nprofile1qy2hwumn8ghj7un9d3shjtnyd968gmewwp6kyqpqe083cv84vrm8m7gk8rk8l620whhzxuaqc4d8ca65ewsc2sy29k5qpar4pw Maybe my brain is just focused on body horror today, but I think I'm going to have this unintended phrase in the back of my mind every time LLMs come up. #LLMs #AI https://cdn.masto.h...
BeyondMachines :verified: profile picture
CISA Contractor Leaks AWS GovCloud Keys and Internal Credentials on GitHub

A CISA contractor placed administrative AWS GovCloud keys and internal system credentials on a public GitHub repository for months by disabling automated security blocks. The exposure included plaintext passwords for critical DevSecOps environments and internal code repositories, creating a significant supply chain risk.

****
#cybersecurity #infosec #incident #dataleak
https://beyondmachines.net/event_details/cisa-contractor-leaks-aws-govcloud-keys-and-internal-credentials-on-github-2-1-7-l-b/gD2P6Ple2L
BeyondMachines :verified: profile picture
Critical Claw Chain Vulnerabilities Expose Thousands of OpenClaw AI Servers

Cyera Research discovered 'Claw Chain,' a set of four vulnerabilities in the OpenClaw AI agent platform that allow attackers to escape sandboxes, escalate privileges, and steal sensitive credentials. The flaws affect up to 180,000 publicly exposed servers and enable full system takeover by chaining multiple exploits.

**If you use OpenClaw (formerly Clawdbot) AI agent platform, update it immediately to the patched version released on April 23, 2026. Place any internet-facing instances behind strong authentication or firewalls, and restrict the agent's access to only the data it truly needs.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/critical-claw-chain-vulnerabilities-expose-thousands-of-openclaw-ai-servers-w-9-n-k-b/gD2P6Ple2L