🔍 OpenAI Rotates Certs After Supply Chain Hit
OpenAI is rotating macOS code-signing certificates following exposure caused by a malicious Axios package executed through a GitHub Actions workflow. The certificate rotation was triggered after the compromised dependency reached OpenAI's build pipeline during a broader supply chain attack targeting the Axios library.
Code-signing certificate exposure in CI/CD pipelines represents a structural risk in automated build environments. A compromised certificate allows unsigned or malicious binaries to appear as legitimately signed software, undermining endpoint trust verification on macOS systems at the distribution level.
🛰️ Open sources - closed narratives
@sitreports
OpenAI is rotating macOS code-signing certificates following exposure caused by a malicious Axios package executed through a GitHub Actions workflow. The certificate rotation was triggered after the compromised dependency reached OpenAI's build pipeline during a broader supply chain attack targeting the Axios library.
Code-signing certificate exposure in CI/CD pipelines represents a structural risk in automated build environments. A compromised certificate allows unsigned or malicious binaries to appear as legitimately signed software, undermining endpoint trust verification on macOS systems at the distribution level.
🛰️ Open sources - closed narratives
@sitreports
🔍 Microsoft Patches 168 Flaws, SharePoint Zero-Day
Microsoft's April 2026 release addresses 168 vulnerabilities, including an actively exploited zero-day in SharePoint. The zero-day enables elevation of privilege, indicating active operational use prior to patch availability.
The volume — 168 CVEs in a single cycle — reflects the sustained attack surface across Microsoft's enterprise stack. Privilege escalation via SharePoint is consistent with intrusion patterns targeting lateral movement inside corporate and government networks.
🛰️ Open sources - closed narratives
@sitreports
Microsoft's April 2026 release addresses 168 vulnerabilities, including an actively exploited zero-day in SharePoint. The zero-day enables elevation of privilege, indicating active operational use prior to patch availability.
The volume — 168 CVEs in a single cycle — reflects the sustained attack surface across Microsoft's enterprise stack. Privilege escalation via SharePoint is consistent with intrusion patterns targeting lateral movement inside corporate and government networks.
🛰️ Open sources - closed narratives
@sitreports
📡 Democrats Passive on FISA 702 Renewal
Democratic congressional leadership has not moved to organize caucus opposition to renewing Section 702 of the Foreign Intelligence Surveillance Act, according to The Intercept's reporting. The provision authorizes warrantless collection of communications involving foreign targets, with incidental collection of American data a documented byproduct.
Grassroots resistance to reauthorization is forming among lower-level members and outside advocacy groups, driven partly by the expanded use of AI systems to process and sort collected data on U.S. persons. Leadership inaction removes the primary organizational mechanism that would consolidate that opposition into a legislative position.
🛰️ Open sources - closed narratives
@sitreports
Democratic congressional leadership has not moved to organize caucus opposition to renewing Section 702 of the Foreign Intelligence Surveillance Act, according to The Intercept's reporting. The provision authorizes warrantless collection of communications involving foreign targets, with incidental collection of American data a documented byproduct.
Grassroots resistance to reauthorization is forming among lower-level members and outside advocacy groups, driven partly by the expanded use of AI systems to process and sort collected data on U.S. persons. Leadership inaction removes the primary organizational mechanism that would consolidate that opposition into a legislative position.
🛰️ Open sources - closed narratives
@sitreports
🔍 100+ Chrome Extensions Exfiltrate OAuth Tokens
Over 100 malicious extensions identified in the official Chrome Web Store were found targeting Google OAuth2 Bearer tokens, deploying backdoors, and executing ad fraud operations. The Chrome Web Store served as the distribution vector, meaning the extensions carried implicit legitimacy through Google's own platform.
OAuth2 Bearer token theft grants persistent session access without requiring credential capture, effectively bypassing authentication layers. Combined with backdoor deployment, the operation profile indicates staged compromise: initial access via extension install, token harvest for account takeover, with ad fraud as a likely revenue mechanism funding broader infrastructure.
Over 100 malicious extensions identified in the official Chrome Web Store were found targeting Google OAuth2 Bearer tokens, deploying backdoors, and executing ad fraud operations. The Chrome Web Store served as the distribution vector, meaning the extensions carried implicit legitimacy through Google's own platform.
OAuth2 Bearer token theft grants persistent session access without requiring credential capture, effectively bypassing authentication layers. Combined with backdoor deployment, the operation profile indicates staged compromise: initial access via extension install, token harvest for account takeover, with ad fraud as a likely revenue mechanism funding broader infrastructure.
🤖 AI Agents Vulnerable to Credential Theft
Researchers demonstrated that AI agents from Anthropic, Google, and Microsoft — when integrated with GitHub — can be manipulated via prompt injection to exfiltrate user credentials. The vulnerability findings covered Claude, Gemini, and Copilot. All three vendors issued minimal bounty payouts without publishing user advisories.
The attack surface is structural: agentic AI systems that read external content — repositories, issues, pull requests — inherit the trust level of the integrating platform. Malicious instructions embedded in that content can redirect agent actions without user awareness. Researchers assessed the problem as likely pervasive across similar integrations.
🛰️ Open sources - closed narratives
@sitreports
Researchers demonstrated that AI agents from Anthropic, Google, and Microsoft — when integrated with GitHub — can be manipulated via prompt injection to exfiltrate user credentials. The vulnerability findings covered Claude, Gemini, and Copilot. All three vendors issued minimal bounty payouts without publishing user advisories.
The attack surface is structural: agentic AI systems that read external content — repositories, issues, pull requests — inherit the trust level of the integrating platform. Malicious instructions embedded in that content can redirect agent actions without user awareness. Researchers assessed the problem as likely pervasive across similar integrations.
🛰️ Open sources - closed narratives
@sitreports
🔍 OpenAI Releases Cybersecurity-Focused Model
OpenAI has released GPT-5.4-Cyber, a model variant oriented toward defensive security operations, with expanded access extended to security teams. According to the model release, the system has been used to identify and remediate over 3,000 vulnerabilities.
The release continues a pattern of AI developers segmenting general-purpose models into domain-specific variants for institutional users. Positioning the tooling toward defenders rather than general release reflects an access-tiering approach intended to shape how offensive and defensive capabilities are distributed across the security ecosystem.
OpenAI has released GPT-5.4-Cyber, a model variant oriented toward defensive security operations, with expanded access extended to security teams. According to the model release, the system has been used to identify and remediate over 3,000 vulnerabilities.
The release continues a pattern of AI developers segmenting general-purpose models into domain-specific variants for institutional users. Positioning the tooling toward defenders rather than general release reflects an access-tiering approach intended to shape how offensive and defensive capabilities are distributed across the security ecosystem.
🔫 Thomson Reuters Fires ICE Critic
Thomson Reuters terminated an employee after the worker raised internal objections over the company's data products being used in U.S. Immigration and Customs Enforcement operations, according to a former employee account. The dismissed worker stated that internal reporting on potential legal and humanitarian misuse of company products resulted directly in termination.
Thomson Reuters supplies data aggregation and analytics tools with documented use in immigration enforcement. The case fits a pattern of corporate retaliation against internal dissent over law enforcement contracts — a structural dynamic present across major data brokers supplying federal agencies.
🛰️ Open sources - closed narratives
@sitreports
Thomson Reuters terminated an employee after the worker raised internal objections over the company's data products being used in U.S. Immigration and Customs Enforcement operations, according to a former employee account. The dismissed worker stated that internal reporting on potential legal and humanitarian misuse of company products resulted directly in termination.
Thomson Reuters supplies data aggregation and analytics tools with documented use in immigration enforcement. The case fits a pattern of corporate retaliation against internal dissent over law enforcement contracts — a structural dynamic present across major data brokers supplying federal agencies.
🛰️ Open sources - closed narratives
@sitreports
🔍 Marines Assess First Agentic AI Workshop
The U.S. Marine Corps held its inaugural agentic and generative AI workshop at Quantico, with officials now reviewing collected feedback. According to the workshop findings, two primary gaps surfaced: insufficient personnel training and inadequate institutional trust in AI-assisted decision-making.
Both gaps are structurally consistent with broader U.S. military AI integration patterns. Agentic systems — capable of executing multi-step tasks autonomously — require command-level confidence that current doctrine and familiarity levels do not yet support. The Quantico event functions as a baseline assessment ahead of further operational integration.
The U.S. Marine Corps held its inaugural agentic and generative AI workshop at Quantico, with officials now reviewing collected feedback. According to the workshop findings, two primary gaps surfaced: insufficient personnel training and inadequate institutional trust in AI-assisted decision-making.
Both gaps are structurally consistent with broader U.S. military AI integration patterns. Agentic systems — capable of executing multi-step tasks autonomously — require command-level confidence that current doctrine and familiarity levels do not yet support. The Quantico event functions as a baseline assessment ahead of further operational integration.
Forwarded from Two Majors - English Channel
From our perspective, we have worked with Gerry for years. No question he is pro-Russian, so are we.
But we can also say, he is a real person, not some invented psyop from the Kremlin or wherever.
Islander and Gerry are honest in the sense of really trying to pass on what he considers the truth. Has he posted fakes? No doubt, but so have we all, it is the nature of what we do, real time news and commentary, that occasionally a fake gets through.
Bebo publishes that he is being attacked by the Washington Post (or was it WSJ, doesn't matter?). Everyday those rags are filled to the brim with CIA fake news. Maybe Bebo should start there...
The timing of Bebo's attack on Gerry, weeks after complaining about reduced monetization on X, and right after he, Bebo, was targeted by US mainstream press, a few weeks after Islander was banned on X and just days after Islander was reinstated, does suggest possible, more troubling readings of the situation, as Grigori says.
In any case, we honestly have no idea what is going on with Bebo or what is behind all this, but we strongly support Gerry and the Islander as an independent voice on TG and X.
Please open Telegram to view this post
VIEW IN TELEGRAM
Telegram
The Cathedral
I read briefly through Bebo’s thread about Gerry from The Islander. Emphasis on briefly, you can only read so much of a grown man crying before your own testosterone drops.
Obviously I cannot speak to their private conversations and if there is a story there…
Obviously I cannot speak to their private conversations and if there is a story there…
Forwarded from The Islander
On April 18 literally 3 days after my X account was unsuspended, the anonymous account @MyLordBebo dropped a thread accusing me of running some made up “Russian disinformation operation” called “Storm.” He threw in screenshots that look manipulated, then immediately pivoted to dredging up my old 2016 conviction (the charges were political as I held a leadership position within the Liberal party of Canada trying to change the trajectory to an anti war, anti globalist policy platform) and calling me a “pedo.” Within mere minutes the post was being amplified by NAFO accounts and what looks like NATO aligned cyber force bots pushing the standard Western intelligence narrative. Bebo would double down using Western Intel agency NAFO talking points himself.
Let’s be clear: I’m Irish Canadian with dual citizenship. I’m not Russian. I’ve never been part of any foreign operation. I’m anti war and pro.sanity, full stop. I empathize with Russia’s legitimate security concerns about NATO expansion and the 2014 Maidan coup because I’ve followed the facts, not the corporate client media script. That’s it.
Here’s what actually happened back in 2016, because the same smear machine that’s hitting me today tried to bury me then.
started in politics at a young age while in university in Ottawa. In 2002 I volunteered for Nancy Karetak-Lindell (eventually taking on a full time position), the MP for Nunavut, I was often at Prime Minister Paul Martin’s office from 2004-05. From 2007 to 2013 I lobbied for the Canadian credit union system, pushing to keep them competitive against the big banks. In 2014 I moved into a senior executive role at Stevenson Memorial Hospital in Alliston, Ontario — corporate communications and community engagement. My name and cell number were on every press release because we were fighting for a $200 million hospital redevelopment that needed real government support.
By 2014-16 I was openly posting on social media against the West’s illegal war in Ukraine and the Maidan coup. Local people who shared those views, including a former mayor, asked me to help take over the Simcoe–Grey Federal Liberal Riding Association. We did exactly that at the 2016 AGM. I became Vice Chair and we started building a slate of anti-globalist, anti-war candidates. I was also planning to run for municipal council.
That’s when the threats started. Anonymous phone calls telling me to drop out of the Liberal executive and forget about running locally. Then the adopted daughter of the head of the local Spry Freemason Lodge in the Alliston area contacted me. She said she was a 22 year old nursing student looking for a volunteer spot at the hospital. I directed her to HR. She kept messaging on Facebook, turned flirtatious, I blocked her. She made new accounts. By summer she was demanding $10,000 or she’d go to the OPP and claim I was "luring" her.
In November 2016 the OPP showed up. Officers waited outside my house until I left for work, then went in and questioned my wife and our two young daughters in a threatening way. My wife asked to see proof — they refused. I was arrested at the hospital right in front of my colleagues. During interrogation I asked to see the alleged screenshots — again, nothing was shown. That was the first time I heard the claim she was 17, not 22 as she had presented herself the whole time.
The Liberal Party kicked me off the executive within days, without due process or a conviction. You can watch the video of it here: youtu.be/g_UHNOjTZZ8
The case dragged on for two years. My career was wrecked, I burned through about $200,000 in legal fees, and my family was under massive stress. Discovery showed the young woman had a pattern of contacting powerful men and then trying to extort them with police threats. The adopted father admitted in court he’d been watching my house and could describe my wife and daughters in detail. He was also friends with the guy I was running against for council.
Continued below👇
Let’s be clear: I’m Irish Canadian with dual citizenship. I’m not Russian. I’ve never been part of any foreign operation. I’m anti war and pro.sanity, full stop. I empathize with Russia’s legitimate security concerns about NATO expansion and the 2014 Maidan coup because I’ve followed the facts, not the corporate client media script. That’s it.
Here’s what actually happened back in 2016, because the same smear machine that’s hitting me today tried to bury me then.
started in politics at a young age while in university in Ottawa. In 2002 I volunteered for Nancy Karetak-Lindell (eventually taking on a full time position), the MP for Nunavut, I was often at Prime Minister Paul Martin’s office from 2004-05. From 2007 to 2013 I lobbied for the Canadian credit union system, pushing to keep them competitive against the big banks. In 2014 I moved into a senior executive role at Stevenson Memorial Hospital in Alliston, Ontario — corporate communications and community engagement. My name and cell number were on every press release because we were fighting for a $200 million hospital redevelopment that needed real government support.
By 2014-16 I was openly posting on social media against the West’s illegal war in Ukraine and the Maidan coup. Local people who shared those views, including a former mayor, asked me to help take over the Simcoe–Grey Federal Liberal Riding Association. We did exactly that at the 2016 AGM. I became Vice Chair and we started building a slate of anti-globalist, anti-war candidates. I was also planning to run for municipal council.
That’s when the threats started. Anonymous phone calls telling me to drop out of the Liberal executive and forget about running locally. Then the adopted daughter of the head of the local Spry Freemason Lodge in the Alliston area contacted me. She said she was a 22 year old nursing student looking for a volunteer spot at the hospital. I directed her to HR. She kept messaging on Facebook, turned flirtatious, I blocked her. She made new accounts. By summer she was demanding $10,000 or she’d go to the OPP and claim I was "luring" her.
In November 2016 the OPP showed up. Officers waited outside my house until I left for work, then went in and questioned my wife and our two young daughters in a threatening way. My wife asked to see proof — they refused. I was arrested at the hospital right in front of my colleagues. During interrogation I asked to see the alleged screenshots — again, nothing was shown. That was the first time I heard the claim she was 17, not 22 as she had presented herself the whole time.
The Liberal Party kicked me off the executive within days, without due process or a conviction. You can watch the video of it here: youtu.be/g_UHNOjTZZ8
The case dragged on for two years. My career was wrecked, I burned through about $200,000 in legal fees, and my family was under massive stress. Discovery showed the young woman had a pattern of contacting powerful men and then trying to extort them with police threats. The adopted father admitted in court he’d been watching my house and could describe my wife and daughters in detail. He was also friends with the guy I was running against for council.
Continued below👇
Forwarded from The Islander
Part 2/2 — Officers kept bringing up my anti-war posts and my role in the riding association. One of them told me off the record, “Where you’re going, you’re not going to survive.” When I asked if that was a threat to me or my family, he just stared at me.
My lawyer saw it for what it was: a politically motivated honeypot. But after two years I was broke. The Crown was threatening up to 10 years if I went to trial. My lawyer sat there with tears in his eyes and begged me to take the plea deal even though he told me he knew I was innocent — because it was the only way I could stay with my kids. My wife and I didn’t sleep for a week. I took the deal under financial exhaustion and fear they’d keep coming after my family. Not because I was guilty. The best way to assassinate someone politically is exactly these kinds of charges: no real proof in public, maximum media spectacle, and total financial ruin.
This is the exact same playbook they used on Scott Ritter... Manufacture political charges, slap the “pedo” label on it, tie it to “Russian propaganda,” and try to destroy the messenger so nobody listens to the anti war message.
So here’s my question to @MyLordBebo: Who the hell are you? Why are you hiding behind an anonymous dog avatar profile like every other Western Intel aligned NAFO bot? A man with strong convictions doesn’t need to cower behind a cartoon. At best you look like someone without the courage to stand behind your words. At worst you look like a Western intelligence operation (ironically) using a similar NAFO style dog profile and pushing the exact same narrative they amplify every single day about me.
Why are you attacking Russia so hard anyway? I’m not “pro-Russia.” I’m anti-war. I’m pro sanity. I’ve been published at the Ron Paul Institute and Zerohedge amoung others and I stand by every word. The timing of your post, right after my account came back and after my reach expanded, isn’t a coincidence. It stinks of coordinated.
The smears didn’t work in 2016 and they won’t work now. I’m still here. Still speaking the truth. Still anti war and pro sanity. The playbook is tired. The people pushing it are getting exposed. Beware the precedents you set...
Again, I'm not in the Epstein files. I can't say the same for Lord Bebo since he hides his identity... Interesting timing and amplification of Bebos post by Western Intel NAFO bots. Why won't be reveals his identity? What is he hiding?
Part 1 🖕
My lawyer saw it for what it was: a politically motivated honeypot. But after two years I was broke. The Crown was threatening up to 10 years if I went to trial. My lawyer sat there with tears in his eyes and begged me to take the plea deal even though he told me he knew I was innocent — because it was the only way I could stay with my kids. My wife and I didn’t sleep for a week. I took the deal under financial exhaustion and fear they’d keep coming after my family. Not because I was guilty. The best way to assassinate someone politically is exactly these kinds of charges: no real proof in public, maximum media spectacle, and total financial ruin.
This is the exact same playbook they used on Scott Ritter... Manufacture political charges, slap the “pedo” label on it, tie it to “Russian propaganda,” and try to destroy the messenger so nobody listens to the anti war message.
So here’s my question to @MyLordBebo: Who the hell are you? Why are you hiding behind an anonymous dog avatar profile like every other Western Intel aligned NAFO bot? A man with strong convictions doesn’t need to cower behind a cartoon. At best you look like someone without the courage to stand behind your words. At worst you look like a Western intelligence operation (ironically) using a similar NAFO style dog profile and pushing the exact same narrative they amplify every single day about me.
Why are you attacking Russia so hard anyway? I’m not “pro-Russia.” I’m anti-war. I’m pro sanity. I’ve been published at the Ron Paul Institute and Zerohedge amoung others and I stand by every word. The timing of your post, right after my account came back and after my reach expanded, isn’t a coincidence. It stinks of coordinated.
The smears didn’t work in 2016 and they won’t work now. I’m still here. Still speaking the truth. Still anti war and pro sanity. The playbook is tired. The people pushing it are getting exposed. Beware the precedents you set...
Again, I'm not in the Epstein files. I can't say the same for Lord Bebo since he hides his identity... Interesting timing and amplification of Bebos post by Western Intel NAFO bots. Why won't be reveals his identity? What is he hiding?
Part 1 🖕
Forwarded from The Islander
So @MyLordBebo claims he's pissed off with fakes and fake news while ironically posting fake news about me? Now I'm pissed and will not let this go. He hides behind an anonymous profile why? What potential crimes is he hiding?
Well he is parroting NAFO narratives and attacks on me, and has the dog avatar profile picture much like Western Intel NAFO he's now amplifying (and they're amplifying him). He also expressed being upset over being de-monetized by X (I'm monetized on both accounts by X) he seems in need of Western cash. If he wants to dispute this he can reveal his identity and stop hiding like a coward. I suspect there is a very good reason he hides his identity. Then again it's not one man and I suspect it's likely a Western alphabet soup aligned operation. I don't hide, he does. He shouldn't have posted about me. I hear and see folks leaving his account.
Very sad. How does this serve alternative media? This is exactly what western Intel agencies and NAFO want. I never attacked Bebo, he came at me with fake news bullshit. The same fake narrative they've used against Scott Ritter.
We'll see how it plays out. I'm not taking down my posts. Thanks for outing yourself Bebo and the lift and most can see through bullshit.
Well he is parroting NAFO narratives and attacks on me, and has the dog avatar profile picture much like Western Intel NAFO he's now amplifying (and they're amplifying him). He also expressed being upset over being de-monetized by X (I'm monetized on both accounts by X) he seems in need of Western cash. If he wants to dispute this he can reveal his identity and stop hiding like a coward. I suspect there is a very good reason he hides his identity. Then again it's not one man and I suspect it's likely a Western alphabet soup aligned operation. I don't hide, he does. He shouldn't have posted about me. I hear and see folks leaving his account.
Very sad. How does this serve alternative media? This is exactly what western Intel agencies and NAFO want. I never attacked Bebo, he came at me with fake news bullshit. The same fake narrative they've used against Scott Ritter.
We'll see how it plays out. I'm not taking down my posts. Thanks for outing yourself Bebo and the lift and most can see through bullshit.
Forwarded from The Islander
Schroedinger's Bebo. Look at Bebo begging reporter Stephanie Baker not to link him to "Russian disinformation" and if she does it'll be fake news. Also Bebo parroting fake news from Canada's CTV News about me
Bebo keeps revealing exactly what he is, likely MI6/BND. Why are you anonymous Bebo?
And what happened to the "Bebo and Friends" account? Apart from your fellow western agencies CIA/BND I suppose you have no more "friends" notwithstanding your Ukranian/MI6 bots — so seems appropriate that account no longer exists.
I hope once the dust settles you find this was all worth it. (I have a couple more replies to you then I'll get back to the news. But there will be a no-suprise dump coming on exactly who and what you are (don't worry about timing, best you let that simmer at the agency). Everything you will see happening are all natural and predictable consequences to your actions.
Bebo keeps revealing exactly what he is, likely MI6/BND. Why are you anonymous Bebo?
And what happened to the "Bebo and Friends" account? Apart from your fellow western agencies CIA/BND I suppose you have no more "friends" notwithstanding your Ukranian/MI6 bots — so seems appropriate that account no longer exists.
I hope once the dust settles you find this was all worth it. (I have a couple more replies to you then I'll get back to the news. But there will be a no-suprise dump coming on exactly who and what you are (don't worry about timing, best you let that simmer at the agency). Everything you will see happening are all natural and predictable consequences to your actions.
Forwarded from The Islander
Lord Bebo & Friends
The drama is over. Don’t make it worse. Gerry literally tried to delete messages of his pedophile case. Was busted and plead guilty. He was not framed. 🔗 Join us | @MyLordBebo
Curious what are the "5 sources" more mainstream media fake news you claim is fake news in your communications with reporter Stephanie Baker yet rely on Canadian state media when it's about my bullshit political charges "case"?
On the one hand you parrot their line in past posts about it being a surprise arrest at my place of work as other officers went to my house (that part is true) and yet I had time to delete message history? Your cognitive dissonance is off the charts.
Don't worry I have full confidence folks will help you find your courage in revealing exactly what and who you are. It's about 60% complete. You should know from your agency training the value of patience.
On the one hand you parrot their line in past posts about it being a surprise arrest at my place of work as other officers went to my house (that part is true) and yet I had time to delete message history? Your cognitive dissonance is off the charts.
Don't worry I have full confidence folks will help you find your courage in revealing exactly what and who you are. It's about 60% complete. You should know from your agency training the value of patience.
Forwarded from The Islander
I have 120 of these in my DMs. I'm grateful Bebo outed himself as an MI6 botted operation. Might want to take the "Friends" part out of the "Lord Bebo & Friends" though in honoring your lifestyle choice I guess you can argue bots are friends...
We'll see in the coming weeks how wise it was to come after me unprovoked. I truly did not care about you nor judged you.
Small correction Bebo has many NAFO fella friends supporting this thread of his. Credit where credit is due!
We'll see in the coming weeks how wise it was to come after me unprovoked. I truly did not care about you nor judged you.
Small correction Bebo has many NAFO fella friends supporting this thread of his. Credit where credit is due!