{"podcast":{"title":"Inside Darknet","slug":"inside-darknet-6682885","podcast_index_feed_id":6682885,"rss_url":"https://anchor.fm/s/ecad2d4c/podcast/rss","website_url":"https://guns.lol/insidedarknet","image_url":"https://d3t3ozftmdmh3i.cloudfront.net/staging/podcast_uploaded_nologo/39607723/39607723-1766328381049-d042725a745.jpg","author":"Rat","episode_count":118,"summary":"Der coolste deutsche Cybercrime Podcast über das Darknet, Hacker, Sicherheitslücken und all die Dinge die sich in den illegalen Seiten des Internets abspielen. Neue Folgen erscheinen jeden Samstag, überall, wo es Podcasts gibt. Discord und weitere Links: http://guns.lol/insidedarknet","last_synced_at":null,"page_url":"https://stenobird.com/podcast/inside-darknet-6682885"},"episode":{"title":"114; xploitrs","slug":"114-xploitrs","published_at":"2026-04-25T12:19:40+00:00","page_url":"https://stenobird.com/podcast/inside-darknet-6682885/114-xploitrs","show_page_url":"https://stenobird.com/podcast/inside-darknet-6682885","url":"https://podcasters.spotify.com/pod/show/insidedarknet/episodes/114-xploitrs-e3if0jo","audio_url":"https://traffic.megaphone.fm/APO4124858476.mp3","summary":"An interview with 'boxturtl' from the xploitrs hacking group reveals the massive scale of the CanisterWorm supply-chain attack. The operation compromised over 500,000 machines by targeting trusted open-source tools like LiteLLM and Trivy.","meta_description":"Inside the CanisterWorm supply-chain attack: An interview with a hacker behind the compromise of 500,000+ machines via LiteLLM and NPM packages.","key_points":["Main idea: The CanisterWorm operation utilized a coordinated effort between Team PCP, Vect, and xploitrs to compromise widespread software dependencies","Scale of impact: The attack affected over 500,000 machines and 1,000+ SaaS environments by exploiting trusted tools like Trivy and LiteLLM","Failure mode: Developers using AI-generated code without manual security audits are creating massive, unvetted attack surfaces","Practical takeaway: Organizations must rotate credentials immediately, as many targeted companies have yet to secure compromised access","Threat vector: Malicious NPM packages and compromised CLI tools (like Bitwarden CLI) allow attackers to inject secrets directly into automated pipelines"],"chapters":[{"start_ms":60000,"title":"The CanisterWorm Supply-Chain Attack","summary":"An overview of the compromise involving LiteLLM, Trivy, and Bitwarden CLI, affecting hundreds of thousands of machines."},{"start_ms":910000,"title":"Inside the Hacker Alliance","summary":"An interview with boxturtl regarding the collaboration between Team PCP, Vect, and xploitrs."},{"start_ms":1100000,"title":"Evasion and Law Enforcement","summary":"The hacker discusses the difficulty of tracking modern groups and the perceived incompetence of current digital forensics."},{"start_ms":1200000,"title":"The Risks of AI-Generated Code","summary":"A warning on how 'AI-driven coding' without human oversight is introducing critical vulnerabilities into enterprise repositories."},{"start_ms":1290000,"title":"A Final Warning","summary":"A closing statement on the destructive potential of modern exploitation techniques."}],"topics":["Supply Chain Attack","Cybercrime","Software Security","LiteLLM","Open Source Vulnerabilities","Hacking Groups","AI Security","NPM Packages"],"duration_seconds":1304,"processing_state":"processed","actions":[{"name":"request_transcript","method":"POST","url":"https://stenobird.com/v1/public/podcasts/inside-darknet-6682885/episodes/114-xploitrs/transcription-requests","description":"Idempotently request low-priority transcript generation for this episode."},{"name":"read_markdown","method":"GET","url":"https://stenobird.com/podcast/inside-darknet-6682885/114-xploitrs.md","description":"Read the agent-friendly Markdown representation of this episode resource."}]}}