Notices by Kevin Beaumont (gossithedog@cyberplace.social)

Thousands of Epstein documents taken down after victims identified https://www.bbc.co.uk/news/articles/cn0k65pnxjxo

Elon Musk Under Investigation for Trafficking Child Sexual Abuse Material https://emptywheel.net/elon-musk-under-investigation-for-trafficking-child-sexual-abuse-material/

A fun one about the Notepad++ incident is, although my toots about it auto deleted (I have my toots set to auto delete unless I bookmark them), it was first revealed on the Fediverse in followers only mode a few months ago - I had a thread running for it back then.

When in follower only mode, the C2 infrastructure was still up so I was still able to track it - they only burnt it down when I wrote the blog. So follow me to see nation state espionage get live tooted, I guess.

Kaspersky have more new IOCs for the Notepad++ activity. It’s actually different activity clusters they identitied.

They’ve got most of the IOCs I’d found now although more to come.

https://securelist.com/notepad-supply-chain-attack/118708/

Reuters reports Grok is still generating non-consensual sexualised images of people - even when told the subjects don’t consent. https://www.reuters.com/business/despite-new-curbs-elon-musks-grok-times-produces-sexualized-images-even-when-2026-02-03/

The UK’s Information Commissioners Office has opened another investigation into X, citing serious concerns about the company’s behaviour around AI. https://www.bloomberg.com/news/articles/2026-02-03/elon-musk-s-xai-faces-second-uk-probe-for-grok-sexualized-images?embedded-checkout=true

Correction, the BBC article has been updated to say Grok image generation investigation was wrapped into this investigation - and the raid was also about CSAM and non-con imagery, too.

The X raid is over claims that X “manipulated its algorithm for 'foreign interference' purposes". The child sexual abuse material and non-consensual undressing investigations are separate and very much still ongoing.

Offices belonging to Elon Musk's social media platform X in France are being raided, the Paris prosecutor's office says.

The prosecutor's office said both Musk and former X chief executive officer Linda Yaccarino had also been summoned to appear at hearings in April as part of its probe.

https://www.bbc.co.uk/news/articles/ce3ex92557jo

This has happened. xAI also acquired X/Twitter, so you basically have everything sat under SpaceX now - which the US government would bail out at a hint of trouble.

Well played by Musk, good he’s continuing to get into socialism.

Microsoft is reviewing its Copilot+ integrations, and is saying internally that Microsoft Recall has failed.

https://www.windowscentral.com/microsoft/windows-11/microsoft-is-reevaluating-its-ai-efforts-on-windows-11-plans-to-reduce-copilot-integrations-and-evolve-recall

@britt try @hosting https://toot.io/mastodon_hosting.html

Thank you to everybody who donated to this. My brother died last night. Enough was raised to save the house for his family, which means a thing.

Also, Fuck Cancer.

@mttaggart not necessarily. It would just download any .exe you set and run it, there was no signature checking etc.

IOCs for Notepad++ auto update compromise. I have some more I’ll publish later.

You may notice I’d tagged the IOCs on VirusTotal as malicious months ago. https://www.rapid7.com/blog/post/tr-chrysalis-backdoor-dive-into-lotus-blossoms-toolkit/

@mttaggart no, they delivered a Trojanized executable via the update process - not a new version.

@mttaggart it was a remote access Trojan with a C2, I did a write up in December, nation state espionage stuff

https://doublepulsar.com/small-numbers-of-notepad-users-reporting-security-woes-371d7a3fd2d9

@mttaggart it was any version impacted as it was the auto update process

“May be we pick one girl from all the girls i ve seen tostart with? I will make snaps and videos tmw. . . ” https://www.ft.com/content/6a760873-606b-46b9-8cdc-af23b8b8ce2e

@EmoIsDeadAndSoAmI nah, I don't think so. The problem was the update process, combined with millions of installs.