Brkdncr

A comparison of Lenovo Thinkpad t14 over the years and how the new lunar lake cpu stacks up.

other sysadmin communities and downdetector are reporting outages worldwide to the admin portals such as admin.microsoft.com and portal.azure.com.

No impact to user-facing services, yet.

This morning, we were alerted to a large-scale attack against npm. This appears to the be work of the same threat actors behind the Nx attack on August 27th 2025. This was originally published by Socket and StepSecurity who noted 40 packages had been comrpomised, since then an additional 147 packages have been infected with malware including packages from CrowdStrike.

The scale, scope and impact of this attack is significant. The attackers are using the same playbook in large parts as the original attack, but have stepped up their game. They have turned it into a full worm, which does these things automatically:

• Steal secrets and publish them to GitHub publicly
• Run trufflehog and query Cloud metadata endpoints to gather secrets
• Attempt to create a new GitHub action with a data exiltration mechanism through webhook[.]site
• Iterate the repositories on GitHub a user has access to, and make them public

Since our initial alert this morning we’ve confirmed the following additional behaviours and important details. For those that don't know, Shai Hulud is the name for the worm in the Dune franchise. A clear indication of the intent of the attackers.

Surely some good important things came from Alabama, what are they?

A while back i bought a rebuilt 390FE for my 1969 F250. Swapped it in and for the most part it's been fine. the old engine was leaking pretty bad, mis-firing, poor compression.

What should i do with it? sell as-is? rebuild it myself? turn it into lawn art? FE's aren't exactly cheap to rebuild, and my closest shop for any machine work is 2.5hrs away.

I still have an old Kindle and it still gets months of battery life. I occasionally read comics so this may get me to upgrade.

I work with a person that went presented with a problem, works through it and arrives at the wrong solution. When I have them show me the steps they took, it seems like they interpret things incorrectly. This isn't a language barrier, and it's not like they aren't reading what someone wrote.

For example, they are working on a product, and needed to wait until the intended recipients of the product were notified by an email that they were going to get it. the person that sent the email to the recipients then forwarded that notification email to this person and said "go ahead and send this to them."

Most people would understand that they are being asked to send the product out. It's a regular process for them.

So he resent the email. He also sent the product, but I'm having a hard time understanding why he thought he was supposed to re-send the email.

I've tried breaking tasks down into smaller steps, writing out the tasks, post-mortem discussion when something doesn't go as planned. What other training or management tasks can I take? Or have I arrived at the "herding kittens" meme?

Next year Windows 10 goes End of Life. Microsoft will undoubtedly push windows 11 hard, but a lot of machines won’t support it leading to a few economic points of interest:

The demand for new machines will be high, driving up cost.

The supply of unsupported machines will be high, driving down the used market.

Are you all ready?