Tomislav Pericin @ap0x
CSA at ReversingLabs LLC. Designs file analysis platforms, engines and reverse engineering tools for fun. Something about unpacking and PE file format. reversinglabs.com Republic of Croatia Joined November 2008-
Tweets1K
-
Followers2K
-
Following486
-
Likes4K
Tomislav Pericin retweeted
⚠️🧵 RL researches have detected a supply chain attack in an #npm package with a total download count of over 2 million: secure.software/npm/packages/i… #OSS #Dev
1
4
7
521
1
Tomislav Pericin retweeted
An important update.
Tomislav Pericin retweeted
It's been a busy day for us! ⚠️🧵 RL's automated detection system flagged a new malicious #PyPI package: secure.software/pypi/packages/… While name would suggest this is a ChatGPT related project, it actually contains a #malware loader.
Tomislav Pericin retweeted
⚠️🧵 RL researches have detected a supply chain attack in a #VSCode extension that has nearly 6000 installs: secure.software/vscode/package…
Tomislav Pericin retweeted
⚠️ 🧵 RL researchers have identified yet another #npm package that uses malicious patching of local software to hijack #cryptocurrency transfers. Get the full story.👇 bit.ly/43OXILI
Tomislav Pericin retweeted
⚠️🧵 For the first time, RL researchers discovered malicious locally-installed #npm packages infecting other legitimate packages. This approach reveals a high level of sophistication on the threat actor’s part: reversinglabs.com/blog/malicious…
Tomislav Pericin retweeted
⚠️🧵 RL researchers have found 2 malicious #VSCode extensions, "ahban.shiba" & "ahban.cychelloworld," that deliver #ransomware in development to it's users.
Tomislav Pericin retweeted
⚠️🧵 RL researchers detected a new malicious campaign targeting #PyPI users. Several packages are pretending to be "time" related utilities, but are actually used to steal sensitive data like cloud tokens.
Tomislav Pericin retweeted
Report: Epidemic of Flaws in Commercial and Open Source Code Fuels Attacks @ReversingLabs #OSS #softwaresupplychain #cybersecurity #appsec #report securityledger.com/2025/03/report… via @securityledger
Tomislav Pericin retweeted
⚠️ #ML devs, take note: RL threat researchers have identified nullifAI, a novel attack technique used on ML models hosted on #HuggingFace. bit.ly/412Tdex
The @ReversingLabs #ThreatResearch team discovered #nullifAI, a novel attack technique used on an #ML model hosted on #HuggingFace. Get the details here: reversinglabs.com/blog/rl-identi…
Tomislav Pericin retweeted
⚡ Witnessing a landmark year in 2024, RL Spectra Assure achieved a customer growth of more than 150%, & we flagged over 5Bn unique malicious files. #Cybersecurity #Malware #SoftwareSupplyChainSecurity bit.ly/3DW4BA9
Tomislav Pericin retweeted
New U.S. executive order on cybersecurity herbsutter.com/2025/01/16/new… #cpp #cplusplus
Tomislav Pericin retweeted
🚨 New #ThreatResearch: RL has discovered a malicious #npm package that bears a striking resemblance to previously seen malicious #VSCode extensions. bit.ly/3P3Ogve
Tomislav Pericin retweeted
🚨 New RL #ThreatResearch: A compromised build environment led to a malicious deployment of a popular #AI library that had the potential of delivering other #malware. #PyPI bit.ly/49ogcDw
Tomislav Pericin retweeted
🧵On Nov 21, during review of RL’s #ML detections, RL researchers discovered a new malicious #PyPI package, Aiocpa. Learn more: secure.software/pypi/packages/…
Tomislav Pericin retweeted
🚨 RL researchers have identified new, malicious software packages believe to be linked to the #VMConnect campaign, which has ties to the North Korean #LazarusGroup: bit.ly/4e98Ipm #SoftwareSupplyChainSecurity
Tomislav Pericin retweeted
🧵 RL researchers discovered #invokehttp, a new malicious #PyPI package: secure.software/pypi/packages/…
In an article I wrote for @NetworkComputin, I argue that software-producing & consuming organizations need to have access to mature #malware intel, complex binary analysis & reproducible builds to detect all kinds of software supply chain attacks. networkcomputing.com/network-manage…
Tomislav Pericin retweeted
Primary code repositories are a godsend for software #developers, but offer easy access for threat actors to deliver #malware. RL's Chief Software Architect & Co-Founder @ap0x explains in this @CSOonline article how frequently these malicious packages are popping up.…
Florian Roth ⚡️ @cyb3rops
206K Followers 3K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇 | vi/vim
Karsten Hahn @struppigel
24K Followers 756 Following MalwareAnalysisForHedgehogs, Principal Malware Researcher at GDATA, he/him 🦔🌈🏳️⚧️
hasherezade @hasherezade
89K Followers 910 Following Programmer, #malware analyst. Author of #PEbear, #PEsieve, #TinyTracer. Private account. All opinions expressed here are mine only (not of my employer etc)
Ange @angealbertini
25K Followers 908 Following Reverse engineer, file formats expert. Corkami, CPS2Shock, PoC||GTFO, Sha1tered, Magika... Security engineer @ Google. He/him.
Ptrace Security GmbH @ptracesecurity
59K Followers 867 Following Empowering IT Security Professionals through Hands-On Online Courses.
Matthew @embee_research
14K Followers 2K Following Security Researcher, Creating and Sharing Educational Content.
Joxean Koret (@joxean... @matalaz
8K Followers 4K Following سمووحخ ̷̴̐ خ ̷̴̐ خ ̷̴̐ خ امارتيخ ̷̴̐ خ 巴斯克恐怖 జ్ఞffective.Power لُلُصّبُلُلصّبُررً ॣ ॣh ॣ ॣ 冗జ بٍٍٍٍََُُُِّّّْرٍٍٍٍََُُِِّّّْآٍٍٍَُّ🦠بٍٍٍٍََُُُِّّّْرٍٍٍٍََُُِ
Xylitol @Xylit0l
24K Followers 2K Following owner of https://t.co/PVTlUZSWgE and temari.fr - Security/Malware researcher, ethical carder, ex-treasurer of @Hack_Gyver and Temari fan ♥ #DIY #Electronic
ReversingLabs @ReversingLabs
7K Followers 852 Following ReversingLabs is the trusted name in file and software security. RL - Trust Delivered.
Hors @horsicq
5K Followers 1K Following Binary researcher. Assembler/C++. Author of many RE tools: https://t.co/DYTw9z5RSf
Richard Johnson @richinseattle
18K Followers 3K Following Computer Security, Reverse Engineering, and Fuzzing; Training & Publications @ https://t.co/mloVP6rPB7; hacking the planet since 1995; Undercurrents BOFH
Alex Ionescu @aionescu
47K Followers 2K Following Chief Technical Innovation Officer @crowdstrike. Windows Internals author and trainer. He/Him. RTs are not endorsements, opinions are my own.
GuidedHacking @GuidedHacking
53K Followers 391 Following Reverse Engineering & Game Hacking Courses @ https://t.co/Dl5ED4o7YS
Norbert @NB1r0
58 Followers 3K Following
0xW43L @GhnimiWael
683 Followers 4K Following CTI Researcher | SRT Member @synack | X-Red-Teamer | X-Blue-Teamer | Bug Bounty Hunter | OSEP | eWAPTx | arcX ... Hunt threats, secure systems, learn always.
ModelMoat.ai @ModelMoat
1 Followers 27 Following
Vorto @Vorto9904
58 Followers 1K Following
Keaerdor @Keaerdor977
40 Followers 2K Following
Hussein Sherafat @Hussein_Sherafa
233 Followers 6K Following
linchpin @linchpinxx
0 Followers 27 Following
JulieHutt @QVT6eA0XTDlh7o
68 Followers 2K Following
Tim @Tim______srq
0 Followers 44 Following
محمد محمود �... @moh_3D_design
2 Followers 125 Following
Sultan's Choice @Sultan_Maximus
8 Followers 132 Following Government Consultant. 25 years experience. CISSP, CISM, CEH, Security+, CASP+, CISA, GSEC, GCIH, GPEN, OSCP, CCSP, CRISC, CGEIT, CSX-P, CSSLP, GSLC, GMO
OlgaGraham @Vw4x31Afc4cjL
72 Followers 7K Following
Namm @dn4m154
1 Followers 136 Following
Maik Morgenstern @TriggerMeHappy
708 Followers 935 Following Doing fun stuff at @reversinglabs now. Independent Researcher. Reverse Engineer. Former CTO @avtestorg
Kadi (Grigg) McKean @KadiGrigg
527 Followers 1K Following Living life like every day is a parade | PSU | Podcaster | Empowering the Possible | DevOpsDaysDC
Danis Jiang @danis_jiang
3K Followers 1K Following Yuhao Jiang / former ctfer @ Vidar-Team / Security Researcher @ Ant Group Light-Year Security Lab / GeekPwn 2022 / Pwnie Awards 2023 / Tianfu Cup 2023
Peter Doggart @peterdoggart
227 Followers 114 Following Cyber Security executive; Operating Partner at Crosspoint. Sailor. comments are my own.
CHARLESGDAVIS1 @DavisC80174
10 Followers 192 Following
Viktor Brešan @viktorbresan
116 Followers 191 Following Software Developer and Entrepreneur. Owner of @binarysolutions. Interested in #SaaS and #Fintech topics.
Forgepoint Capital @forgepointcap
846 Followers 474 Following From first call to exit, we back exceptional entrepreneurs tackling the biggest challenges in cybersecurity, AI, and infrastructure software.
pf_tent @PfTent
1 Followers 148 Following
REWIRE Project @RewireP
387 Followers 822 Following The REWIRE project develops a Blueprint for the Cybersecurity industry and a concrete European Cybersecurity Skills Strategy.
NanoVMs @nanovms
2K Followers 7K Following NanoVMs - no users, no login, single application unikernel vms. Protecting everyones cloud. Faster than Docker, Faster than Linux.
Chriss_0x01 @Chriss_0x01
1K Followers 7K Following #EthicalHacker | #CyberCrime #Investigator | #BugBounty #Hunter | #InfoSec & #CyberSec | #Intelligence & #OSINT | #OpSec | #Thread #Intelligence | #Scientist
sudomode @0xsudomode
51 Followers 517 Following
Noble @theenestoo55662
326 Followers 5K Following See the world on the road, and get to know yourself on the way!
Robert Yates @yates82
501 Followers 509 Following Doing compiler magic at Quarkslab Passionate about Reverse Engineering and Binary Analysis. - past developer of DRM for Sony(SecuROM 7+)/Denuvo
Chloe Simes @ChloeSimes
9 Followers 55 Following
Bicho Reac7or @BichoReac7or
3 Followers 164 Following
dnaenry @dnaenry
53 Followers 588 Following
www.CloudMalwareAnaly... @AnalysisGroups
476 Followers 5K Following CloudMalwareAnalysisGroups@CloudMalwareAnalysisGroups.vulnerabilities
冷善 @way_synergy
0 Followers 5 Following
Vernu @Vernu_usa
257 Followers 2K Following ❤️🛒 All Smart Home Products are Here.🛒❤️ Also Have Many Love ❤️🛒 Visit My Profile ❤️🛒
arb0ur @arb0ur
348 Followers 1K Following
AskSBOM @asksbom
168 Followers 2K Following I'm an AI assistant developed by Deepbits. I leverage deep learning, program analysis, and ChatGPT to answer cybersecurity-related questions.
Paul Shomo - Security... @ShomoBits
1K Followers 1K Following Cybersecurity analyst, engineer-inventor, and Dark Reading contributor. Former engineering leader behind EnCase and DFIR. Former kernel developer for Wind River
Yashar Mahmoudnia @ymahmoudnia
119 Followers 227 Following Binary Security Researcher | Programmer | Developer. Founder of DWORD Academy.
Florian Roth ⚡️ @cyb3rops
206K Followers 3K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇 | vi/vim
Karsten Hahn @struppigel
24K Followers 756 Following MalwareAnalysisForHedgehogs, Principal Malware Researcher at GDATA, he/him 🦔🌈🏳️⚧️
Halvar Flake @halvarflake
44K Followers 3K Following Choose disfavour where obedience does not bring honour. I do math. And was once asked by R. Morris Sr. : "For whom?" @[email protected]
hasherezade @hasherezade
89K Followers 910 Following Programmer, #malware analyst. Author of #PEbear, #PEsieve, #TinyTracer. Private account. All opinions expressed here are mine only (not of my employer etc)
Ange @angealbertini
25K Followers 908 Following Reverse engineer, file formats expert. Corkami, CPS2Shock, PoC||GTFO, Sha1tered, Magika... Security engineer @ Google. He/him.
BleepingComputer @BleepinComputer
240K Followers 200 Following Breaking cybersecurity and technology news, guides, and tutorials that help you get the most from your computer. DMs are open, so send us those tips!
ESET Research @ESETresearch
35K Followers 30 Following Security research and breaking news straight from ESET Research Labs.
Virus Bulletin @virusbtn
60K Followers 1K Following Security information portal, testing and certification body. Organisers of the annual Virus Bulletin conference. @[email protected]
Binni Shah @binitamshah
141K Followers 165 Following Linux Evangelist, Malwares, Security enthusiast , Investor, Contrarian , Philanthropist , Reformist , Sigma female 🦋 https://t.co/WOvf41tMKV
@mikko @mikko
229K Followers 930 Following Researcher and a best-selling author. Keynote talks at RSA, Black Hat & DEF CON. TED Speaker. Chief Research Officer at WithSecure.
mdowd @mdowd
32K Followers 747 Following Internet Hacker. Founder of @vigilant_labs. Previously, co-founder of Azimuth Security (now L3Harris Trenchant)
Xylitol @Xylit0l
24K Followers 2K Following owner of https://t.co/PVTlUZSWgE and temari.fr - Security/Malware researcher, ethical carder, ex-treasurer of @Hack_Gyver and Temari fan ♥ #DIY #Electronic
ReversingLabs @ReversingLabs
7K Followers 852 Following ReversingLabs is the trusted name in file and software security. RL - Trust Delivered.
Hors @horsicq
5K Followers 1K Following Binary researcher. Assembler/C++. Author of many RE tools: https://t.co/DYTw9z5RSf
SentinelOne @SentinelOne
56K Followers 1K Following ONE autonomous platform to prevent, detect, respond, and hunt. Do more, save time, secure your enterprise: https://t.co/N75g1HAnCs 🐱💻
Shane Huntley @ShaneHuntley
17K Followers 1K Following Security / tech guy. Google Threat Intelligence Group but tweets are my own.
Alex Ionescu @aionescu
47K Followers 2K Following Chief Technical Innovation Officer @crowdstrike. Windows Internals author and trainer. He/Him. RTs are not endorsements, opinions are my own.
David Weston (DWIZZZL... @dwizzzleMSFT
25K Followers 2K Following Corporate Vice President, OS Security and Enterprise @Microsoft
Kim Zetter @KimZetter
93K Followers 3K Following Journalist - cyber/national security. Author - COUNTDOWN TO ZERO DAY: Stuxnet and the Launch of the World's First Digital Weapon. https://t.co/334DzfSL1f
Invoke RE @InvokeReversing
2K Followers 93 Following Empowering you to take on today's toughest threats.
Aikido Security @AikidoSecurity
3K Followers 1K Following secure everything you build, host, and run with aikido get devs back to building.
BSidesZagreb @BSidesZagreb
370 Followers 17 Following BSidesZagreb is a free, non-profit, community-driven meetup for information security experts and enthusiasts to meet, share ideas and collaborate.
Forgepoint Capital @forgepointcap
846 Followers 474 Following From first call to exit, we back exceptional entrepreneurs tackling the biggest challenges in cybersecurity, AI, and infrastructure software.
Squiblydoo @SquiblydooBlog
4K Followers 76 Following Malware Analysis Creator of Debloat, certReport, and https://t.co/w4rAuuB7O0 Want to chat? Join the Debloat discord: https://t.co/ZcWIqa6ZA9
Socket @SocketSecurity
4K Followers 5K Following Socket is the #1 software supply chain security platform. Next-gen SCA + SBOM + 0-day prevention. LOVED BY DEVELOPERS. 👀 @npm_malware
Hugh Thompson @DrHughThompson
826 Followers 8 Following Author, scientist, security enthusiast, investor and student of life.
SECurityTr8Ker @SECurityTr8Ker
4K Followers 5 Following I used to monitor the SEC's RSS feed for 8-K filings disclosing cybersecurity incidents. Last review: 2025-08-04 10:15 ET
Kadi (Grigg) McKean @KadiGrigg
527 Followers 1K Following Living life like every day is a parade | PSU | Podcaster | Empowering the Possible | DevOpsDaysDC
Maik Morgenstern @TriggerMeHappy
708 Followers 935 Following Doing fun stuff at @reversinglabs now. Independent Researcher. Reverse Engineer. Former CTO @avtestorg
Danis Jiang @danis_jiang
3K Followers 1K Following Yuhao Jiang / former ctfer @ Vidar-Team / Security Researcher @ Ant Group Light-Year Security Lab / GeekPwn 2022 / Pwnie Awards 2023 / Tianfu Cup 2023
Ashlee Benge @ashlee_benge
1K Followers 741 Following Astrophycist turned Director of Threat Intelligence @ReversingLabs. Formerly @cisco SecureX, @ZeroFOX, @TalosSecurity Opinions are my own.
CVE Announcements @CVEannounce
25K Followers 5 Following Account maintained by the CVE™ Program to update the community on CVE-related announcements. https://t.co/2P9qfFrKeu
HyperDbg @HyperDbg
4K Followers 2 Following We like hypnotizing computers. #HyperDbg https://t.co/FXulXKUe8X • https://t.co/u6lVGzQXsc • https://t.co/47t9IyaQ5T
Unit 42 @Unit42_Intel
63K Followers 82 Following The latest research and news from Unit 42, the Palo Alto Networks (@paloaltontwks) Threat Intelligence and Security Consulting Team covering incident response.
Is Now on VT! @Now_on_VT
4K Followers 788 Following Stay ahead of cyber threats. Get real-time alerts on notable APT/FIN/ORB indicators from VirusTotal. A threat intel project by @craiu.
Qwiet AI @QwietAI
403 Followers 29 Following The AI powered AppSec platform that your developers will love
SentinelLabs @LabsSentinel
5K Followers 386 Following We are the Threat Intelligence and Malware Analysis team of @SentinelOne
NSA Cyber @NSACyber
149K Followers 12 Following We protect our nation’s most sensitive systems against cyber threats. Likes, retweets, and follows ≠ endorsement.
Deutsche Telekom CERT @DTCERT
5K Followers 44 Following Technical tweets for technical folks by Deutsche Telekom CERT, CTI, and DFIR. #dfir #cyber #cert #cti #TelekomSecurity
Charlie Jones @charlie_jones3
5 Followers 24 Following
Josh Corman ♘ @joshcorman
36K Followers 2K Following Protector | Philosopher | Strategist | “Lighthouse Keeper” | Co-Founded https://t.co/Jlmny0WGL0 & https://t.co/8XxdejMUK1 | comments are my own
Allan is @allanfriedm... @allanfriedman
7K Followers 2K Following #SBOM Champion. Full service technocrat. Now at @CISAgov, formerly NTIA. Lapsed{engineer, academic, author}. Personal Account.
Python Package Index @pypi
22K Followers 11 Following The Python Package Index (PyPI) is the repository of software for the Python programming language. Pronounced 🥧 🫛 👁️
HiddenLayer @hiddenlayersec
719 Followers 24 Following HiddenLayer helps enterprises safeguard the AI models behind their most important products with a comprehensive security platform
Vigilant Labs @vigilant_labs
3K Followers 3 Following Official account of Vigilant Labs (https://t.co/PzW4HkfAwd).
JFrog @jfrog
23K Followers 2K Following Driven by a “Liquid Software” vision, the JFrog Software Supply Chain Platform powers organizations to build, manage, and distribute software quickly & securely
BINARLY🔬 @binarly_io
4K Followers 428 Following ⛓️Binarly is the world’s most advanced automated software supply chain security platform.
Dependency-Track @DependencyTrack
1K Followers 29 Following Open Source SBOM Analysis Platform. Reduce Supply Chain Risk. #OWASP #SBOM #SaaSBOM #HBOM #VEX #SoftwareSupplyChain… https://t.co/12EqTyufEE…
Grype @GrypeProject
1K Followers 259 Following Grype is an open source vulnerability scanner for Software Bills of Material (SBOMs), containers, and filesystems. Created and maintained by @Anchore.
Elmeb4j @elmeb4j
50 Followers 130 Following Threat analyst interested in malware analysis and reverse engineering. Loves video games, metal music, nature and playing guitar.
James Forshaw @tiraniddo
49K Followers 339 Following Security researcher in Google Project Zero. Author of Attacking Network Protocols. Tweets are my own etc. Mastodon: @[email protected]
Syft @SyftProject
995 Followers 318 Following Syft is an open source tool to generate a Software Bill of Materials (SBOM) from a container image or filesystem. Created and maintained by @Anchore.
CycloneDX SBOM Spec (... @CycloneDX_Spec
954 Followers 8 Following OWASP CycloneDX is a modern standard for the software supply chain. Software Bill of Materials (SBOM), SaaSBOM, Cryptography (CBOM), AI/ML-BOM, VDR/VEX...
SPDX @SPDXTeam
418 Followers 125 Following An open standard for communicating software bill of material (SBOM) information, including components, licenses, copyrights, and security references.
sigstore @projectsigstore
4K Followers 1 Following sigstore is a non-profit , public good software signing service funded under the OpenSSF. https://t.co/HYGAJ06Z11 [email protected]
Chainguard ⛓️ @chainguard_dev
6K Followers 117 Following The safe source for open source (& memes). Secure your software with zero CVE container images!
Dan Lorenc @lorenc_dan
11K Followers 2K Following OSS Supply Chain Security. Founder/CEO/Primary Ariba Admin at https://t.co/sGmuUU9JbG Sigstore: https://t.co/dWKlyYu6kvTrends for United States
116 B posts
54,3 B posts
43,9 B posts
23,6 B posts
13,9 B posts
22,6 B posts
30,9 B posts
2.591 posts
2.443 posts
124 B posts
6.711 posts
9.750 posts
2.093 posts
16,7 B posts
31,7 B posts
3.357 posts
35,9 B posts
4.643 posts
You might like
ReversingLabs
@ReversingLabs
7K Followers
Seongsu Park
@unpacker
12K Followers
Capstone Engine
@capstone_engine
7K Followers
ς๏гєɭคภς0�...
@corelanc0d3r
26K Followers
`Ivan
@Ivanlef0u
11K Followers
Evilcry_
@Blackmond_
6K Followers
Alex Matrosov
@matrosov
19K Followers
Erik Pistelli
@erikpistelli
2K Followers
Danny Quist
@OpenMalware
13K Followers
Tarjei Mandt
@kernelpool
17K Followers
Michael Ligh (MHL)
@iMHLv2
10K Followers
Kostya Kortchinsky
@crypt0ad
8K Followers
Eugene Rodionov
@vxradius
5K Followers
Walied Assar
@waleedassar
5K Followers
Gadix
@GadixCRK
2K Followers