's Avatar

@nickistephens.bsky.social

18 Followers  |  17 Following  |  7 Posts  |  Joined: 19.11.2024  |  2.1657

Latest posts by nickistephens.bsky.social on Bluesky

Ukr military badge

Ukr military badge

Files

Files

Leak

Leak

In defense of Ukraine Anonymous has released 10TB of leaked data on all businesses operating in Russia, all Kremlin assets in the West, pro-Russian officials, Donald Trump, and more. πŸ‡ΊπŸ‡¦ #OpRussia

15.04.2025 23:56 β€” πŸ‘ 6774    πŸ” 2362    πŸ’¬ 318    πŸ“Œ 188
Video thumbnail

Jennifer Vasquez Sura who's husband Kilmar Abrego Garcia was abducted by the Trump regime and human trafficked to a concentration camp in El Salvador: β€œI will not stop fighting until I see my husband alive.”

16.04.2025 02:31 β€” πŸ‘ 2301    πŸ” 449    πŸ’¬ 36    πŸ“Œ 17
A whistleblower's disclosure details how DOGE may have taken sensitive labor data

A whistleblower's disclosure details how DOGE may have taken sensitive labor data

The IT team met to discuss insider threats - namely, the DOGE engineers, whose activities it had little insight into or control over. "We had no idea what they did," he explained. Those conversations are reflected in his official disclosure. They eventually launched a formal breach investigation, according to the disclosure, and prepared a request for assistance from the Cybersecurity and Infrastructure Security Agency (CISA). However, those efforts were disrupted without an explanation, Berulis said. That was deeply troubling to Berulis, who felt he needed help to try to get to the bottom of what happened and determine what new vulnerabilities might be exploited as a result. In the days after Berulis and his colleagues prepared a request for CISAs help investigating the breach, Berulis found a printed letter in an envelope taped to his door, which included threatening language, sensitive personal information and overhead pictures of him walking his dog, according to the cover letter attached to his official disclosure. It's unclear who sent it, but the letter made specific reference to his decision to report the breach. Law enforcement is investigating the letter.

The IT team met to discuss insider threats - namely, the DOGE engineers, whose activities it had little insight into or control over. "We had no idea what they did," he explained. Those conversations are reflected in his official disclosure. They eventually launched a formal breach investigation, according to the disclosure, and prepared a request for assistance from the Cybersecurity and Infrastructure Security Agency (CISA). However, those efforts were disrupted without an explanation, Berulis said. That was deeply troubling to Berulis, who felt he needed help to try to get to the bottom of what happened and determine what new vulnerabilities might be exploited as a result. In the days after Berulis and his colleagues prepared a request for CISAs help investigating the breach, Berulis found a printed letter in an envelope taped to his door, which included threatening language, sensitive personal information and overhead pictures of him walking his dog, according to the cover letter attached to his official disclosure. It's unclear who sent it, but the letter made specific reference to his decision to report the breach. Law enforcement is investigating the letter.

While investigating the data taken from the agency, Berulis tried to determine its ultimate destination. But whoever had exfiltrated it had disguised its destination too, according to the disclosure. DOGE staffers had permission to access the system, but removing data is another matter. Berulis says someone appeared to be doing something called DNS tunneling to prevent the data exfiltration from being detected. He came to that conclusion, outlined in his disclosure, after he saw a traffic spike in DNS requests parallel to the data being exfiltrated, a spike 1,000 times the normal number of requests. When someone uses this kind of technique, they set up a domain name that pings the target system with questions or queries. But they configure the compromised server so that it answers those DNS queries by sending out packets of data, allowing the attacker to steal information that has been broken down into smaller chunks. "We've seen Russian threat actors do things like this on U.S. government systems," said one threat intelligence researcher who requested anonymity because they weren't authorized to speak publicly by their employer. That analyst, who has extensive experience hunting nation-state-sponsored hackers, reviewed the whistleblower's technical claims.

While investigating the data taken from the agency, Berulis tried to determine its ultimate destination. But whoever had exfiltrated it had disguised its destination too, according to the disclosure. DOGE staffers had permission to access the system, but removing data is another matter. Berulis says someone appeared to be doing something called DNS tunneling to prevent the data exfiltration from being detected. He came to that conclusion, outlined in his disclosure, after he saw a traffic spike in DNS requests parallel to the data being exfiltrated, a spike 1,000 times the normal number of requests. When someone uses this kind of technique, they set up a domain name that pings the target system with questions or queries. But they configure the compromised server so that it answers those DNS queries by sending out packets of data, allowing the attacker to steal information that has been broken down into smaller chunks. "We've seen Russian threat actors do things like this on U.S. government systems," said one threat intelligence researcher who requested anonymity because they weren't authorized to speak publicly by their employer. That analyst, who has extensive experience hunting nation-state-sponsored hackers, reviewed the whistleblower's technical claims.

Within minutes after DOGE accessed the NLRB's systems, someone with an IP address in Russia started trying to log in, according to Berulis' disclosure. The attempts were "near real-time," according to the disclosure. Those attempts were blocked, but they were especially alarming. Whoever was attempting to log in was using one of the newly created DOGE accounts - and the person had the correct username and password, according to Berulis. While it's possible the user was disguising their location, it's highly unlikely they'd appear to be coming from Russia if they wanted to avoid suspicion, cybersecurity experts interviewed by NPR explained. On their own, a few failed login attempts from a Russian IP address aren't a smoking gun, those cybersecurity experts interviewed by NPR said. But given the overall picture of activity, it's a concerning sign that foreign adversaries may already be searching for ways into government systems that DOGE engineers may have left exposed. "When you move fast and break stuff, the opportunity to ride the coattails of authorized access is ridiculously easy to achieve," said Handorf. What he means is that if DOGE engineers left access points to the network open, it would be very easy for spies or criminals to break in and steal data behind DOGE. He said he could also see foreign adversaries trying to recruit or pay DOGE team members for access to sensitive data. "It would not surprise me if DOGE is accidentally compromised."

Within minutes after DOGE accessed the NLRB's systems, someone with an IP address in Russia started trying to log in, according to Berulis' disclosure. The attempts were "near real-time," according to the disclosure. Those attempts were blocked, but they were especially alarming. Whoever was attempting to log in was using one of the newly created DOGE accounts - and the person had the correct username and password, according to Berulis. While it's possible the user was disguising their location, it's highly unlikely they'd appear to be coming from Russia if they wanted to avoid suspicion, cybersecurity experts interviewed by NPR explained. On their own, a few failed login attempts from a Russian IP address aren't a smoking gun, those cybersecurity experts interviewed by NPR said. But given the overall picture of activity, it's a concerning sign that foreign adversaries may already be searching for ways into government systems that DOGE engineers may have left exposed. "When you move fast and break stuff, the opportunity to ride the coattails of authorized access is ridiculously easy to achieve," said Handorf. What he means is that if DOGE engineers left access points to the network open, it would be very easy for spies or criminals to break in and steal data behind DOGE. He said he could also see foreign adversaries trying to recruit or pay DOGE team members for access to sensitive data. "It would not surprise me if DOGE is accidentally compromised."

Musk’s DOGE involved in what appears to be a foreign espionage operation and data theft. They also have death threatened US federal whistleblowers and disabled security systems, deliberately allowing Russian IPs to access sensitive US federal government systems.

www.npr.org/2025/04/15/n...

16.04.2025 10:29 β€” πŸ‘ 4821    πŸ” 2624    πŸ’¬ 226    πŸ“Œ 251

The incompetence of this Administration never ceases to amaze. Waltz and other NSC members used Gmail to conduct official government business, with Waltz’s staff even sharing information about sensitive military positions and advanced weapon systems tied to an ongoing conflict.

02.04.2025 19:44 β€” πŸ‘ 12568    πŸ” 2615    πŸ’¬ 286    πŸ“Œ 119
Preview
I traded my U.S. medical career for life in Canada. Here’s how the… The differences hit me immediately, and are profound.

This is the difference between practising medicine in the US and practising it in Canada or anywhere the government isn’t pushing autogenocide on its citizens. #3E #EndAutogenocide canadahealthwatch.ca/2025/03/25/i...

02.04.2025 15:20 β€” πŸ‘ 1148    πŸ” 350    πŸ’¬ 34    πŸ“Œ 29
Video thumbnail

US MAGA Republicans are quoting Hitler's chief propagandist for the Nazi Party, and Reich Minister of Propaganda Joseph Goebbels. #3E

02.04.2025 20:53 β€” πŸ‘ 2612    πŸ” 1223    πŸ’¬ 251    πŸ“Œ 249

Can’t help but feel that if President Bernie Sanders pulled this move the entirety of American business would try to get him pushed out of office immediately.

02.04.2025 20:41 β€” πŸ‘ 37028    πŸ” 4442    πŸ’¬ 1086    πŸ“Œ 268
Preview
Waltz and staff used Gmail for government communications, officials say Trump’s national security adviser is trying to manage his way out of a crisis. But new revelations about his team’s operational security are piling up in the inbox.

So embarrassing.

www.washingtonpost.com/national-sec...

01.04.2025 20:56 β€” πŸ‘ 831    πŸ” 222    πŸ’¬ 67    πŸ“Œ 20
Video thumbnail

🚨 We are mobilizing for a NEW national day of protestβ€” March 4th Against Monarchy!

Find organizing resources and more at linktr.ee/fiftyfiftyon....

@polrev.bsky.social @altnps.bsky.social #NoKings #50501movement #FiftyFiftyOne

20.02.2025 01:00 β€” πŸ‘ 3365    πŸ” 1490    πŸ’¬ 228    πŸ“Œ 306

Whatever else emerges in time about the Delta crash in Canada, one thing is certain: the importance & amazing professionalism of flight attendants who safely evacuated the plane in a matter of seconds.

18.02.2025 15:05 β€” πŸ‘ 92644    πŸ” 10868    πŸ’¬ 1358    πŸ“Œ 407
Preview
This Is the Way to Stop Elon Musk Senate Democrats have the power to block federal contracts to Tesla and SpaceX. It’s the path to pushing Musk out of politics.

theintercept.com/2025/02/17/e...

18.02.2025 03:07 β€” πŸ‘ 42454    πŸ” 11786    πŸ’¬ 1974    πŸ“Œ 920

@schwarzenegger.bsky.social I could really use one of your inspirational speeches right now.

14.02.2025 23:25 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

The CFPB is one of the American people’s best defenses against waste, fraud, and abuse.

Demolishing it will, of course, lead to more waste, fraud, and abuse.

11.02.2025 19:03 β€” πŸ‘ 54835    πŸ” 11833    πŸ’¬ 1337    πŸ“Œ 421
Post image

Democratic senators will hold the Senate floor all night long in opposition to the nomination of Russ Vought, an organizer of Project 2025, to head the OMB.

05.02.2025 19:49 β€” πŸ‘ 56073    πŸ” 11400    πŸ’¬ 2011    πŸ“Œ 1208

Wait until they realize that science and history are what you learn because you learned to read, write and do arithmetic.

05.02.2025 22:04 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Post image 05.02.2025 21:18 β€” πŸ‘ 124    πŸ” 21    πŸ’¬ 4    πŸ“Œ 1

We're living George Orwell's 1984: IGNORANCE IS STRENGTH.

04.02.2025 23:12 β€” πŸ‘ 37826    πŸ” 5178    πŸ’¬ 1224    πŸ“Œ 196
Post image 04.02.2025 20:12 β€” πŸ‘ 60    πŸ” 19    πŸ’¬ 0    πŸ“Œ 0
Post image Post image Post image

Anyone out there ever work in Treasury Payments? I'm curious if this is actually the case:

The Secure Payment System (SPS) employs a strict separation of duties as a core security measure.

The point of the ? Is to know how many people are required to approve a payment and where are they located

05.02.2025 03:00 β€” πŸ‘ 21557    πŸ” 4557    πŸ’¬ 1403    πŸ“Œ 141
Post image 02.02.2025 18:48 β€” πŸ‘ 118    πŸ” 17    πŸ’¬ 2    πŸ“Œ 1
Post image

We also need to do this:

03.02.2025 01:25 β€” πŸ‘ 544    πŸ” 119    πŸ’¬ 24    πŸ“Œ 8

@legaleagle.bsky.social can you help with a class action

03.02.2025 01:55 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Video thumbnail

this hurts worse than the tariffs 😭

02.02.2025 03:45 β€” πŸ‘ 9715    πŸ” 1371    πŸ’¬ 281    πŸ“Œ 98
Post image 02.02.2025 01:28 β€” πŸ‘ 38299    πŸ” 5861    πŸ’¬ 1431    πŸ“Œ 519
Preview
Egg prices are soaring again. Here’s why and what to expect Bird flu has killed millions of hens in recent weeks, shrinking the supply of eggs and hiking up prices at grocery stores.

The price of eggs in the US is spiking, mostly due to #H5N1 bird flu. Solving the problem requires urgent, important communications from the CDC & FDA* and rapid development of research by the NIH**

* Currently paused by Executive Order
** Grant reviews now all canceled
www.kcur.org/news/2025-01...

23.01.2025 17:18 β€” πŸ‘ 52868    πŸ” 17587    πŸ’¬ 2444    πŸ“Œ 1591

Are you talking to me? I am not laughing at his dumb shit. I am horrified.

29.01.2025 16:21 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

Joe Rogan s also the number one podcast for POC.

29.01.2025 16:21 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

They still do. I’m married to one.

29.01.2025 16:19 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

This podcast gets the white men watching. Including my husband. He considers it a neutral podcaster. To some degree I see his point. If they want to reach the young male audience they need to go on these types of podcasts.

23.01.2025 16:40 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 2    πŸ“Œ 0
Post image Post image Post image

They are trying to whitewash Jan 6. Do not let them.

22.01.2025 20:45 β€” πŸ‘ 67    πŸ” 11    πŸ’¬ 3    πŸ“Œ 0

@nickistephens is following 17 prominent accounts