Jarno Niemelä
@jarnon.bsky.social
Grumpy infosec guy who has been on the blue team since late 90s. Dabbles on the red side on occasion. Been working with various detection AI and threat detection and management automation since late 2000s
New nuisance, companies that don’t have vulnerability reporting emails set up and are using badly made LLM chatbots for customers support.
They are quite difficult to get past if the vendor hasn’t taken vulnerability reporting into account.
They are quite difficult to get past if the vendor hasn’t taken vulnerability reporting into account.
November 29, 2025 at 4:29 PM
New nuisance, companies that don’t have vulnerability reporting emails set up and are using badly made LLM chatbots for customers support.
They are quite difficult to get past if the vendor hasn’t taken vulnerability reporting into account.
They are quite difficult to get past if the vendor hasn’t taken vulnerability reporting into account.
Reposted by Jarno Niemelä
an underestimated threat AI poses is not convincing you that fake things are real, it’s convincing you that real things are fake
November 27, 2025 at 7:38 PM
an underestimated threat AI poses is not convincing you that fake things are real, it’s convincing you that real things are fake
Reposted by Jarno Niemelä
Posting the aftermath of russian attacks with burned homes and ruins and seeing someone ask “is this AI?”
November 27, 2025 at 7:34 PM
Posting the aftermath of russian attacks with burned homes and ruins and seeing someone ask “is this AI?”
Reposted by Jarno Niemelä
More on that French smear campaign I was telling you about 👇
A false narrative is being pushed about GrapheneOS claiming we're ending operations in France due to the actions of 2 newspapers. That's completely wrong. If both newspapers and the overall French media had taken our side instead of extreme bias against us, we'd still be leaving.
November 26, 2025 at 1:02 AM
More on that French smear campaign I was telling you about 👇
Reposted by Jarno Niemelä
![[Scene is JESUS sat behind a boss’s desk in his office on a cloud in HEAVEN]
1
JESUS [speaking into intercom]
Hi can you send in Saint Nicholas please
2
SANTA [entering in full Santa garb]:
Hi boss
JESUS:
Hi Nick
3
JESUS:
Listen - about this ‘my birthday’ thing...
SANTA:
Ohh not this again boss
4
JESUS:
Nick, it’s out of hand. *You’ve* got out of hand.
5
JESUS:
I mean when I hired you, you was all humble, hiding under windows, lobbing in dowries…
And now you’re like…
6
JESUS [gesturing disdainfully at Santa’s clothing]:
I mean - what’s this.
7
SANTA:
This is my get up! I’ve had this since the Coca Cola deal in the 30s
JESUS:
*That’s what I mean.*
8
JESUS:
You’ve just gone too -
SANTA:
Oh no, oh no -
9
SANTA:
Sorry boss but waaay back in the Reformation, right, Martin Luther said: “why don’t we have Jesus delivering the presents?”. And when he prayed to ask you, do you remember what you said? Eh?
10
SANTA:
You said: “I ain’t going back there”
11
SANTA:
If you wanna take over -
JESUS:
Oh yeah! Kids coming downstairs to find me resurrected in their living room going "I got you an Xbox"...
12
SANTA:
You’re just feeling threatened cos I’m doing a bloody good -
JESUS:
*WATCH IT NICK*.
[ends]](https://cdn.bsky.app/img/feed_thumbnail/plain/did:plc:4m3we4apbjayclzcnhwe3pfp/bafkreiayhglimve4fbwilzyfjedpa56xwmjq4oriqqs62atkospprs6x5y@jpeg)
Reposted by Jarno Niemelä
🔥 On October 31, as a result of GUR special operation, an extremely important military facility of Russia was disabled - Koltsevoy oil pipeline!
The place is located in the Ramenskoye district of the Moscow region.
The place is located in the Ramenskoye district of the Moscow region.
November 1, 2025 at 7:26 AM
🔥 On October 31, as a result of GUR special operation, an extremely important military facility of Russia was disabled - Koltsevoy oil pipeline!
The place is located in the Ramenskoye district of the Moscow region.
The place is located in the Ramenskoye district of the Moscow region.
Reposted by Jarno Niemelä
Dispatch from the Post Office: Urgent Reprints! The Post Office is under new management, and only essential missives get through. Three vital dispatches (on AI, Warriors, and Psychology) rescued from the bureaucratic grit. Necessary reading to survive Tuesday.
A Thread 👇
#Cybersecurity
A Thread 👇
#Cybersecurity
October 29, 2025 at 8:04 PM
Dispatch from the Post Office: Urgent Reprints! The Post Office is under new management, and only essential missives get through. Three vital dispatches (on AI, Warriors, and Psychology) rescued from the bureaucratic grit. Necessary reading to survive Tuesday.
A Thread 👇
#Cybersecurity
A Thread 👇
#Cybersecurity
Reposted by Jarno Niemelä
5/5 DOGE was never about fixing America’s finances. It was about Musk.
The richest man alive sold you a dream and walked away with more death, a weaker public sector, data, and more power for himself.
The heist of the century? Looks like it. And some people still cheer
The richest man alive sold you a dream and walked away with more death, a weaker public sector, data, and more power for himself.
The heist of the century? Looks like it. And some people still cheer
October 29, 2025 at 1:52 PM
5/5 DOGE was never about fixing America’s finances. It was about Musk.
The richest man alive sold you a dream and walked away with more death, a weaker public sector, data, and more power for himself.
The heist of the century? Looks like it. And some people still cheer
The richest man alive sold you a dream and walked away with more death, a weaker public sector, data, and more power for himself.
The heist of the century? Looks like it. And some people still cheer
Reposted by Jarno Niemelä
🇬🇪A year ago, I stood in Tbilisi and saw it with my own eyes – the opposition won the 2024 election.
Edison exit polls showed Georgian Dream losing badly. Yet GD fabricated a 54% “victory,” has since arrested the very politicians who defeated them, and now prepares to ban their parties altogether.
Edison exit polls showed Georgian Dream losing badly. Yet GD fabricated a 54% “victory,” has since arrested the very politicians who defeated them, and now prepares to ban their parties altogether.
October 26, 2025 at 4:17 PM
🇬🇪A year ago, I stood in Tbilisi and saw it with my own eyes – the opposition won the 2024 election.
Edison exit polls showed Georgian Dream losing badly. Yet GD fabricated a 54% “victory,” has since arrested the very politicians who defeated them, and now prepares to ban their parties altogether.
Edison exit polls showed Georgian Dream losing badly. Yet GD fabricated a 54% “victory,” has since arrested the very politicians who defeated them, and now prepares to ban their parties altogether.
PSA: do not allow any developer or production host to fetch any code module directly from public repository.
Use repo cache and software package scanner from Sonatype, JFrog or other vendor.
They will not catch totally new tricks, but will stop copycats that will follow.
Use repo cache and software package scanner from Sonatype, JFrog or other vendor.
They will not catch totally new tricks, but will stop copycats that will follow.
Yow.
“…invisible Unicode chars that make malicious code disappear from code editors. ..w/ blockchain-based C2 infra that can't be taken down, Google Calendar as a backup command server, and a remote access trojan that turns every infected dev into a criminal proxy node.”
www.koi.ai/blog/glasswo...
“…invisible Unicode chars that make malicious code disappear from code editors. ..w/ blockchain-based C2 infra that can't be taken down, Google Calendar as a backup command server, and a remote access trojan that turns every infected dev into a criminal proxy node.”
www.koi.ai/blog/glasswo...
GlassWorm: First Self-Propagating Worm Using Invisible Code Hits OpenVSX Marketplace | Koi Blog
www.koi.ai
October 22, 2025 at 5:16 AM
PSA: do not allow any developer or production host to fetch any code module directly from public repository.
Use repo cache and software package scanner from Sonatype, JFrog or other vendor.
They will not catch totally new tricks, but will stop copycats that will follow.
Use repo cache and software package scanner from Sonatype, JFrog or other vendor.
They will not catch totally new tricks, but will stop copycats that will follow.
Reposted by Jarno Niemelä
(screaming at my computer) IT'S POOP! SAY POOP! www.404media.co/trump-no-kin...
News Outlets Won't Describe Trump's AI Video For What It Is: The President Pooping on America
Major outlets said the President dumped "brown liquid" that "appeared to be feces" in an AI-generated video. They refused to call a spade a spade, or poop, poop.
www.404media.co
October 20, 2025 at 4:45 PM
(screaming at my computer) IT'S POOP! SAY POOP! www.404media.co/trump-no-kin...
Reposted by Jarno Niemelä
It's always DNS. Except when it's AWS. (In this case, it was both.)
Amazon DNS outage breaks much of the internet | TechCrunch
The outage affected websites like Coinbase and Fortnite, and disrupted services like Signal, Zoom and Amazon's own products, including Ring.
techcrunch.com
October 20, 2025 at 11:28 AM
It's always DNS. Except when it's AWS. (In this case, it was both.)
Reposted by Jarno Niemelä
I think some of the people on social media sneering at the No Kings protesters are just mad that those normies with signs are way better shitposters than they are
October 19, 2025 at 6:10 PM
I think some of the people on social media sneering at the No Kings protesters are just mad that those normies with signs are way better shitposters than they are
Reposted by Jarno Niemelä
y’all keep making fun of trump’s shitting video but it takes a strong man to admit that he’s reached the stage of life where he has no control of his bowels
October 19, 2025 at 4:09 PM
y’all keep making fun of trump’s shitting video but it takes a strong man to admit that he’s reached the stage of life where he has no control of his bowels
Reposted by Jarno Niemelä
This morning my ChatGPT quota was inexplicably exhausted.
It took a while but I pieced it together. Voice mode somehow got activated when I went to bed.
The bot then engaged in a 10 hour conversation with my snoring dog, answering questions the pup wasn’t asking and praising him for his insight.
It took a while but I pieced it together. Voice mode somehow got activated when I went to bed.
The bot then engaged in a 10 hour conversation with my snoring dog, answering questions the pup wasn’t asking and praising him for his insight.
October 18, 2025 at 9:04 AM
This morning my ChatGPT quota was inexplicably exhausted.
It took a while but I pieced it together. Voice mode somehow got activated when I went to bed.
The bot then engaged in a 10 hour conversation with my snoring dog, answering questions the pup wasn’t asking and praising him for his insight.
It took a while but I pieced it together. Voice mode somehow got activated when I went to bed.
The bot then engaged in a 10 hour conversation with my snoring dog, answering questions the pup wasn’t asking and praising him for his insight.
Jerry is instinctively keeping watch while I slay xenos.
Dogs ❤️
Dogs ❤️
October 17, 2025 at 7:38 PM
Jerry is instinctively keeping watch while I slay xenos.
Dogs ❤️
Dogs ❤️
Reposted by Jarno Niemelä
Näyttää kyllä mielestäni aika paljon Teemu Selänteeltä. 😁
October 16, 2025 at 6:32 AM
Näyttää kyllä mielestäni aika paljon Teemu Selänteeltä. 😁
Reposted by Jarno Niemelä
1/6 Russia and Ukraine are in a race against time.
Ground movements now matter less than long-range strikes.
The side that scales up missile and drone production faster will win this phase of the war, and it will be Ukraine.
Russia is in deep trouble
Ground movements now matter less than long-range strikes.
The side that scales up missile and drone production faster will win this phase of the war, and it will be Ukraine.
Russia is in deep trouble
October 15, 2025 at 3:38 PM
1/6 Russia and Ukraine are in a race against time.
Ground movements now matter less than long-range strikes.
The side that scales up missile and drone production faster will win this phase of the war, and it will be Ukraine.
Russia is in deep trouble
Ground movements now matter less than long-range strikes.
The side that scales up missile and drone production faster will win this phase of the war, and it will be Ukraine.
Russia is in deep trouble
Reposted by Jarno Niemelä
🚨 Critical Redis vulnerability alert! CVE-2025-49844 allows remote code execution on thousands of instances. Patch immediately if you're running Redis - this 13-year-old flaw is being actively exploited. Update now: Read More
October 6, 2025 at 4:20 PM
🚨 Critical Redis vulnerability alert! CVE-2025-49844 allows remote code execution on thousands of instances. Patch immediately if you're running Redis - this 13-year-old flaw is being actively exploited. Update now: Read More
Reposted by Jarno Niemelä
Literally did more than Just Stop Oil
October 5, 2025 at 4:27 PM
Literally did more than Just Stop Oil
Reposted by Jarno Niemelä
Google maps has an "unplowed road" report option, just saying
One first step people should do to respond to this is start using the “report a speed trap” function in Apple Maps to report where ICE is operating. Make Apple party to the attempt to protect people.
ICEBlock Owner After Apple Removes App: ‘We Are Determined to Fight This’
🔗 www.404media.co/iceblock-own...
🔗 www.404media.co/iceblock-own...
October 4, 2025 at 3:54 PM
Google maps has an "unplowed road" report option, just saying
Reposted by Jarno Niemelä
Reposted by Jarno Niemelä
Reposted by Jarno Niemelä
MAGA: "There is a war against Christianity!"
Ukraine: "Yeah. We noticed"
Ukraine: "Yeah. We noticed"
September 30, 2025 at 8:48 AM
MAGA: "There is a war against Christianity!"
Ukraine: "Yeah. We noticed"
Ukraine: "Yeah. We noticed"
Reposted by Jarno Niemelä
New PS1 game just dropped from @bellingcat.com
September 26, 2025 at 12:39 PM
New PS1 game just dropped from @bellingcat.com