Tony/Humpty (CJ)'s Avatar

Tony/Humpty (CJ)

@c-b.io.bsky.social

Lead SOC analyst | Malware enjoyer | Horrible dev

161 Followers  |  543 Following  |  54 Posts  |  Joined: 18.10.2024  |  1.808

Latest posts by c-b.io on Bluesky

Scavenger Malware Distributed via num2words PyPI Supply Chain Compromise Technical blog detailing the num2words v0.5.15 PyPI supply chain compromise used to distribute Scavenger malware

IT HAPPENED AGAIN

invokere.com/posts/2025/0...

@invokereversing.bsky.social is on FIRE

28.07.2025 19:26 β€” πŸ‘ 1    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0
Scavenger Malware Distributed via eslint-config-prettier NPM Package Supply Chain Compromise Technical blog detailing the eslint-config-prettier supply chain compromise used to distribute Scavenger malware

We did a full technical blog on the NPM eslint-config-prettier supply chain compromise that was used to distribute the Scavenger malware with @c-b.io check it out! invokere.com/posts/2025/0...

21.07.2025 17:17 β€” πŸ‘ 1    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0
Preview
2025-06-29 - Supper is served - Tony/Humpty's RE blog Recommend song to listen to while reading: If you find something off with what I say, please let me know. I'll gladly amend my content and credit you for the fix. Some thanks in alphabetical order

Hey folks! Here's my first technical deep-dive into a PE malware sample that touches on why including more information/proofs in threat intelligence reports is important.
c-b.io/2025-06-29+-...

29.06.2025 23:18 β€” πŸ‘ 2    πŸ” 2    πŸ’¬ 0    πŸ“Œ 0
Rethinking Deception: Why We're Moving from Product to Enablement After years of building deception technology and watching SOC teams struggle with yet another dashboard, we've made a fundamental shift in how we deliver cyber deception.

Yo nerds, if you're thinking about deploying canaries please read this

deceptiq.com/blog/rethink...

07.06.2025 19:07 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
The so-called Department of Government Efficiency: We saved $1M per year by converting 14,000 magnetic tapes (70 year old technology for information storage) to permanent modern digital records

The so-called Department of Government Efficiency: We saved $1M per year by converting 14,000 magnetic tapes (70 year old technology for information storage) to permanent modern digital records

YOU DID WHAT?

07.04.2025 03:05 β€” πŸ‘ 5230    πŸ” 1026    πŸ’¬ 315    πŸ“Œ 637

In sum: an economically illiterate "conservative" institutes the biggest tax hike in history in an effort to revive the policies that led to the Great Depression.

Cool.

02.04.2025 23:00 β€” πŸ‘ 975    πŸ” 142    πŸ’¬ 19    πŸ“Œ 3
Post image 27.03.2025 16:03 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
RedTiger Stealer (Malware Family) Details for the RedTiger Stealer malware family including references, samples and yara signatures.

Got a new family added to malpedia nerds

malpedia.caad.fkie.fraunhofer.de/details/py.r...

23.03.2025 21:15 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

Just turn off bluetooth to avoid BLE spam from skids lol

17.03.2025 16:04 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Analyzing the RedTiger Malware Stealer Analyzing the RedTiger Malware Stealer Today we’ll dive into a fresh malware stealer dubbed RedTiger, a sample targeting personal user data, particularly Discord tokens, browser-stored credentials, an...

Another day, another stealer
c-b.io/blog/redtige...

16.03.2025 21:22 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
SOC Analyst | Province of Quebec (Canada) | Coveo Here you'll find jobs in corporate cybersecurity, business law, corporate law, labor law, compliance and others!

CALLING ALL INCIDENT RESPONSE NERDS, MY TEAM IS LOOKING FOR A FRIEND

www.coveo.com/en/company/c...

16.03.2025 14:43 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

It think people with humility just dont post often at this point. Theres just no point. Assholes are often the loudest

04.03.2025 01:15 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Dissecting a fresh BlankGrabber sample Dissecting a fresh BlankGrabber sample BlankGrabber is nothing new. It’s been documented by multiple companies such as ThreatMon, K7Security and has even had it’s source code disclosed on GitHub. So w...

Hello fellow nerds, here's my latest blogpost on how BlankGrabber targets Discord by injecting malicious JS to steal credit card info

c-b.io/blog/dissect...

16.02.2025 06:14 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Post image Post image

Does anyone know what's up with these brand spanking new youtube accounts posting bogus seed phrases here?
Whats the scheme?
πŸ€”

14.01.2025 04:31 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

Yeah last summer was pretty fucked. We could easily see the fires from NOAA sats

10.01.2025 05:18 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

FWIW Quebec also has multiple deals in place with a few US states where we send HydroQuebec guys (linemans) to help when disaster strikes and power needs to be restored ASAP. We're fairly big on mutual aid.

10.01.2025 05:08 β€” πŸ‘ 6    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

I'm always amazed at the confidence some people have. Even _I'm_ smart enough to know when I don't know something and lord knows I'm far from being smart

03.01.2025 20:56 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

Phooooomp

25.12.2024 17:59 β€” πŸ‘ 11    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0

Wishing everyday some resting and incident free holidays ❀️

25.12.2024 17:35 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

I will keep on living in denial and only believe there's two.

25.12.2024 01:11 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

I didn't believe it but holy shit, who's idea was it to make 6?!

25.12.2024 01:06 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

I like VPNs for privacy purposes. @mullvad.bsky.social makes some fucking cool shit

20.12.2024 03:36 β€” πŸ‘ 9    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

Of course I won't, got too many blogposts to publish 😁

17.12.2024 14:54 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

I made it to a cool starter pack, I may now die in peace 🫑

17.12.2024 14:40 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

Wiz fucking slaps. Used to work with Lacework (although not a full IDS/IPS) but it's quickly turning to shit post-fortinet aquisition

11.12.2024 19:52 β€” πŸ‘ 2    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

The US is one of the countries with the most expensive administration costs in the world because of this (among othet things) and sadly that cost isn't paid by thr insurers but rather by all patients as a group. Take this with a grain of salt tho, I don't have the link at hand so I may be wrong

07.12.2024 21:21 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

I remember seeing a Harvard article stating essentially the weight american health insurance companies put on hospital from an admin perspective is so insane that they're convering for it in part by hiking prices all around to adjust. Ill try yo find it 1/2

07.12.2024 21:19 β€” πŸ‘ 3    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

Nevermind, forgot ESC/POS supported raster images. Fuck nv bit images

07.12.2024 08:54 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

Do I have a ESC/POS nerd here? In desperate need of help to print f*cking nv bit images on a shitty rongta printer that's supposed to emulate the EPSOM ESC/POS spec. I'll pay a beer in exchange (the price of a beer in your country)

07.12.2024 07:47 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

@c-b.io is following 20 prominent accounts