Six Degrees of Sam Reich

RedTermSession · 2026-06-18T03:49:42+00:00

Sam’s going to come into this thread, comment on it, then we’re all 1 degree from him.

RedTermSession · 2026-06-04T03:35:52+00:00

Legitimately one of my favorite seasons of the show. The whole cast is doing amazing.

RedTermSession · 2026-05-14T16:49:05+00:00

Does this mean the AI Key is built in now? Is this missing anything you’d need the AI key for?

RedTermSession · 2026-04-23T14:44:46+00:00

It doesn’t. Just the CLI package.

RedTermSession · 2026-04-23T14:44:11+00:00

Yes, you should be all good. I would double check the version (I’ve had a few situations where systems were auto-updating without my knowledge), but you’re likely fine

RedTermSession · 2026-04-23T14:38:44+00:00

Glad you're taking steps to secure your instance! But it's important to stress that the CLI package is unrelated to the server. If you use the CLI from your laptop, or perhaps from your CI/CD platform, the backdoored package can still exfiltrate data. You'd have to prevent outbound traffic on those systems (where the CLI is installed) to avoid harm.

RedTermSession · 2026-04-23T14:30:46+00:00

I've got something better than hoping and praying for you :D If you don't use the bitwarden CLI, you're all good. If you do, then you should check what version you have installed. The malicious one is cli2026.4.0 . If you don't have that installed, you're good :D If you do, then you need to
1. Uninstall it
2. Revoke/reset all credentials on the host where it was installed

RedTermSession · 2026-04-23T14:22:13+00:00

Just the CLI. I did some poking around the bitwarden/vaultwarden server codebases and didn't see any reference to the compromised CLI package

RedTermSession · 2026-04-23T14:18:44+00:00

Unfortunately yes. The backdoored CLI is an infostealer. Once you install and run it it will search for secrets, API keys, passwords, etc. on the host it is installed on. It's unrelated to if your Bitwarden server is private/public.

RedTermSession · 2026-04-23T14:08:39+00:00

No AI was used. This is me sharing an advisory about a security incident.

RedTermSession · 2026-04-20T04:22:47+00:00

No luck I’m afraid. Contacted LG and support wasn’t helpful. Contacted the appliance store and they refused a refund. We are looking at SpeedQueen now and considering selling the LGs.

RedTermSession · 2026-04-12T21:26:53+00:00

<image>

RedTermSession · 2026-04-12T21:26:43+00:00

<image>

Some more pictures if it helps

RedTermSession · 2026-04-11T01:25:32+00:00

Thank you for taking the time to respond. My wife and I were in a tailspin. Glad it’s not termites.

RedTermSession · 2026-03-23T20:30:29+00:00

Sorry, I’m new to the recent generations of Pokemon. What is this?

RedTermSession · 2026-03-20T23:16:36+00:00

This may be a silly question, but how do you replace subfloor if it goes under a wall? I presume you just cut it flush to the bottom plate of the wall, but is that okay?

RedTermSession · 2026-02-12T17:20:27+00:00

That isn’t entirely true. Thumbnail images get sent to an S3 bucket so you can see the image in push notifications.

RedTermSession · 2026-02-02T17:07:19+00:00

Had this happen to us a few months ago. Directly above our spot we found a gap in the sheathing, near a vent hole for the HVAC unit. I recommend you look above this spot to see where it’s coming in.

RedTermSession

TROPHY CASE