Steve Puluka
@spuluka.bsky.social
📤 252
📥 154
📝 1091
Network & Security Engineer / Cantor & Religious Education Instructor
http://puluka.com/home
That time again to check all the new security advisories released on Juniper gear and get patching.
supportportal.juniper.net/s/global-sea...
loading . . .
https://supportportal.juniper.net/s/global-search/%40uri#t=KnowledgeArticles&sort=relevancy&f:ctype=[Security%20Advisories]
about 11 hours ago
0
0
0
Interesting report that major developers from the open source software ecosystem are being targeted by North Korean state cyber actors in attempts are supply chain attacks.
socket.dev/blog/attacke...
loading . . .
Attackers Are Hunting High-Impact Node.js Maintainers in a C...
Multiple high-impact npm maintainers confirm they have been targeted in the same social engineering campaign that compromised Axios.
https://socket.dev/blog/attackers-hunting-high-impact-nodejs-maintainers
1 day ago
0
0
0
Good News that Cambodia is continuing the campaign to shut down internet scam centers by passing a new law focusing on those running the centers and their human trafficking operations to get the staff with serious jail time and fines.
mekongindependent.com/2026/04/camb...
loading . . .
Cambodia says new law tightens net on online scams
Cambodia’s Justice Ministry floats a new draft law that could punish scam company leaders with life imprisonment, with minister Keut Rith stating the country’s reputation damage and its willingness to...
https://mekongindependent.com/2026/04/cambodia-says-new-law-tightens-net-on-online-scams/
2 days ago
0
0
0
Interesting deep dive on how the new Apple no reboot security update process works.
blog.calif.io/p/reverse-en...
loading . . .
Reverse engineering Apple’s silent security fixes
I grabbed the latest iOS update, and diffed it with ipsw. The diff reveals at least two security-relevant changes that were shipped quietly.
https://blog.calif.io/p/reverse-engineering-apples-silent
3 days ago
0
0
2
The latest country to officially investigate the big five - Facebook Instagram Snapchat TikTok and YouTube is the Australian online safety commission for youth accounts.
www.esafety.gov.au/newsroom/med...
loading . . .
https://www.esafety.gov.au/newsroom/media-releases/five-social-media-platforms-flagged-for-compliance-issues
4 days ago
0
0
0
The new standard for C++26 has been approved and ready for rollout with the work starting on the next version C++29.
herbsutter.com/2026/03/29/c...
loading . . .
C++26 is done! — Trip report: March 2026 ISO C++ standards meeting (London Croydon, UK)
News flash: C++26 is done! 🎉 On Saturday, the ISO C++ committee completed technical work on C++26 in (partly) sunny London Croydon, UK. We resolved the remaining international comments on the C++26…
https://herbsutter.com/2026/03/29/c26-is-done-trip-report-march-2026-iso-c-standards-meeting-london-croydon-uk/
5 days ago
0
0
0
Good news that Google is rolling out a new feature for Workspace to prevent Ransomware attacks on the platform. Includes a detection and restoration service.
workspaceupdates.googleblog.com/2026/03/rans...
loading . . .
Google Workspace Updates: Ransomware detection and file restoration for Google Drive now generally available
https://workspaceupdates.googleblog.com/2026/03/ransomware-detection-and-file-restoration-for-Google-Drive-now-generally-available.html
6 days ago
0
0
0
Interesting report from Netskope on disguised GitHub repos that host malware.
www.netskope.com/blog/opencla...
loading . . .
OpenClaw Trap: AI-Assisted Lure Factory Targets Developers & Gamers
Netskope Threat Labs identified a link to a malware campaign operating across at multiple GitHub repositories, spanning over 300 delivery packages,
https://www.netskope.com/blog/openclaw-trap-ai-assisted-lure-factory-targets-developers-gamers
7 days ago
0
1
1
The EU parliament has passed a law banning
#AI
nudity apps that are able to create nudes of people without their consent.
www.europarl.europa.eu/news/en/pres...
loading . . .
Artificial Intelligence Act: delayed application, ban on nudifier apps | News | European Parliament
MEPs have agreed on proposals to simplify artificial intelligence rules and propose clear application dates for high-risk system requirements and a ban on AI “nudifier” systems.
https://www.europarl.europa.eu/news/en/press-room/20260323IPR38829/artificial-intelligence-act-delayed-application-ban-on-nudifier-apps
8 days ago
0
0
0
Good news the US Department of Justice in cooperation with Canada and Germany has disrupted four DDoS botnet networks.
www.justice.gov/usao-ak/pr/a...
loading . . .
https://www.justice.gov/usao-ak/pr/authorities-disrupt-worlds-largest-iot-ddos-botnets-responsible-record-breaking-attacks
9 days ago
0
0
0
The EU has announced a investigation into Snapchat failure to find and report grooming on their platform and properly implement child protection law requirements.
ec.europa.eu/commission/p...
loading . . .
Commission investigates Snapchat\'s compliance with child protection rules under the Digital Services Act
The European Commission has opened formal proceedings to investigate if Snapchat is ensuring a high level of safety, privacy and security for children online, in compliance with the Digital Services A...
https://ec.europa.eu/commission/presscorner/detail/en/ip_26_723
10 days ago
0
0
0
Looks like Google has advanced to 2029 the date they believe Quantum will be able to crack some cryptography routines and have adjusted their product rollout timeline to match.
blog.google/innovation-a...
loading . . .
Quantum frontiers may be closer than they appear
An overview of how Google is accelerating its timeline for post-quantum cryptography migration.
https://blog.google/innovation-and-ai/technology/safety-security/cryptography-migration-timeline/
11 days ago
0
0
0
Good news that the Nigerian authorities continue their crackdown on scammers. They have arrested and charged an individual with stealing $2.5M from Business owners thinking they were supporting a humanitarian charity.
www.occrp.org/en/news/alle...
loading . . .
Alleged ‘Fake Prince’ Arrested in Nigeria as Another Apparent Victim of the Romance Scam Comes Forward
A recent OCCRP investigation identified a Nigerian man who allegedly posed as a Dubai prince to scam a Romanian woman. Now, another apparent victim of the same online scam has emerged.
https://www.occrp.org/en/news/alleged-fake-prince-scammer-arrested-in-nigeria-as-new-apparent-victim-of-same-romance-scheme-comes-forward
12 days ago
0
0
0
Good news that the US Justice Department has located and charged a scammer behind targeted phishing of professional athletes.
www.justice.gov/usao-ndga/pr...
loading . . .
https://www.justice.gov/usao-ndga/pr/georgia-felon-indicted-targeting-professional-athletes-fraud-and-sex-trafficking
13 days ago
0
0
0
Looks like the upcoming UN Global Fraud Summit has spurred action with eleven companies agreeing to share threat data to prevent abuse and scams on their platforms.
blog.google/innovation-a...
loading . . .
Google has signed the Industry Accord Against Online Scams and Fraud.
A look at Google’s support for the Industry Accord Against Online Scams and Fraud and its ongoing work to fight scammers.
https://blog.google/innovation-and-ai/technology/safety-security/google-industry-accord-combat-scams-fraud/
14 days ago
0
0
0
Good news that the European Union has imposed sanctions on three groups and two individuals for cyber crime activities in the EU. These are also operating in the US and other jurisdictions.
www.consilium.europa.eu/en/press/pre...
loading . . .
Cyber-attacks against the EU and its member states: Council sanctions three entities and two individuals
The Council adopted restrictive measures against three entities and two individuals responsible for cyber-attacks against EU member states and EU partners.
https://www.consilium.europa.eu/en/press/press-releases/2026/03/16/cyber-attacks-against-the-eu-and-its-member-states-council-sanctions-three-entities-and-two-individuals/
15 days ago
0
0
0
The US National Cyber Director outlines how active hack back operations will be conducted. He rules out private companies operating on their own.
cyberscoop.com/national-cyb...
loading . . .
Trump administration isn’t pushing companies to conduct cyber offense, national cyber director says
National Cyber Director Sean Cairncross clarifies that the Trump administration seeks private sector partnership for threat intelligence, not offensive "hacking back" campaigns.
https://cyberscoop.com/national-cyber-strategy-private-sector-offensive-operations-sean-cairncross/
16 days ago
0
0
0
Admins should check out this new feature from AWS to help prevent the attacks known as S3 Bucket Namesquatting or Bucketsquating. This only applies to new buckets so migration would be needed on current S3 data.
aws.amazon.com/blogs/aws/in...
loading . . .
Introducing account regional namespaces for Amazon S3 general purpose buckets | Amazon Web Services
AWS launches a new feature of Amazon S3 that lets you create general purpose buckets in your own account regional namespace simplifying bucket creation and management as your data storage needs grow i...
https://aws.amazon.com/blogs/aws/introducing-account-regional-namespaces-for-amazon-s3-general-purpose-buckets/
17 days ago
0
0
0
The Google Threat Intelligence Report notes that ransomware actors are shifting from encryption to straight data exfiltration and extortion as the new business model.
cloud.google.com/blog/topics/...
loading . . .
Ransomware Tactics, Techniques, and Procedures in a Shifting Threat Landscape | Google Cloud Blog
An overview of the ransomware landscape and common TTPs directly observed in 2025 ransomware incidents.
https://cloud.google.com/blog/topics/threat-intelligence/ransomware-ttps-shifting-threat-landscape/
18 days ago
0
0
0
Good news that the Linux Foundation has collected $12.5M for open source software security projects from a solid range of sources. Looking forward to seeing where these grants will go.
alpha-omega.dev/blog/linux-f...
loading . . .
Linux Foundation: $12.5M Grant for Open Source Security
The Linux Foundation announces $12.5M in grants from OpenAI, Google, and AWS to secure open source software. Learn how Alpha-Omega is driving AI-powered security.
https://alpha-omega.dev/blog/linux-foundation-announces-12-5-million-in-grant-funding-from-leading-organizations-to-advance-open-source-security/
19 days ago
0
2
1
Looks like Google has paid over $17M in bug bounties across all their platforms last year to security researchers. This is a 40% increase over the previous year and a new record.
bughunters.google.com/blog/google-...
loading . . .
Blog: Google VRPs in Review – 2025
This blog post takes you through the 2025 highlights across the assorted VRPs at Google.
https://bughunters.google.com/blog/google-vrps-in-review-2025
20 days ago
0
0
0
Good overview from Dutch police on how hosting providers can recognize hostile resellers that service cybercrime gangs with legitimate services.
www.politie.nl/nieuws/2026/...
loading . . .
Politie waarschuwt hostingsector voor hosting resellers
Een schoner internet en een veiliger digitaal Nederland. Dat is het doel van een waarschuwing van de politie gericht aan internet- en hostingbedrijven die bepaalde hosting resellers mogelijk als klant...
https://www.politie.nl/nieuws/2026/maart/11/11-politie-waarschuwt-hostingsector-voor-hosting-resellers.html
21 days ago
0
0
0
Good news that US authorities have changed a former employee of a US security firm DigitalMint in at least 10 ransomware attacks. Using his position as a negotiator to deploy these attacks.
cyberscoop.com/digitalmint-...
loading . . .
Feds say another DigitalMint negotiator ran ransomware attacks and helped extort $75 million
Federal prosecutors have unsealed charges against Angelo John Martino III, a Florida ransomware negotiator accused of playing "both sides" by orchestrating attacks on his own clients.
https://cyberscoop.com/digitalmint-ransomware-negotiator-arrest-angelo-martino-extortion/
22 days ago
0
1
0
Good news that Cambodian authorities have taken down another set of cyber scam compounds hosting over 15k accounts based on data provided by Meta.
about.fb.com/news/2026/03...
loading . . .
Global Law Enforcement Agencies, With Support From Meta, Disrupt Major Criminal Scam Networks Based in Southeast Asia
In collaboration with international law enforcement, Meta investigators disabled over 150,000 accounts associated with scam centers.
https://about.fb.com/news/2026/03/meta-global-law-enforcement-disrupt-major-southeast-asia-criminal-scam-networks/
23 days ago
0
0
0
Good news that Europol in a joint operation with the Dutch police and FBI have taken down SocksEscort service that is a front for deploying malware.
www.europol.europa.eu/media-press/...
loading . . .
Europol and international partners disrupt ‘SocksEscort’ proxy service – Joint operation targeted malicious proxy service exploiting residential routers worldwide | Europol
On 11 March 2026, Europol in collaboration with law enforcement agencies from Austria, France, the Netherlands, and the United States, alongside Eurojust, executed Operation Lightning. This coordinate...
https://www.europol.europa.eu/media-press/newsroom/news/europol-and-international-partners-disrupt-socksescort-proxy-service
24 days ago
0
1
0
The roadmap for Microsoft Teams is going to automatically id bot accounts that join a team meeting and require the organizer to approve them into the meeting from the lobby.
www.microsoft.com/en-us/micros...
loading . . .
Microsoft 365 Roadmap | Microsoft 365
The Microsoft 365 Roadmap lists updates that are currently planned for applicable subscribers. Check here for more information on the status of new features and updates.
https://www.microsoft.com/en-us/microsoft-365/roadmap?id=558107
25 days ago
0
0
0
Good news that the UK is creating a new online fraud crime center with a budget of £31 million starting in April. They will focus on online fraud and high volume cyber crimes.
www.gov.uk/government/p...
loading . . .
Fraud Strategy 2026 to 2029
Sets out how the government will combat fraud against individuals and businesses over the period 2026 to 2029.
https://www.gov.uk/government/publications/fraud-strategy-2026-to-2029
26 days ago
0
0
0
That time again, to review the three new CVE posted by Palo Alto Networks and get patching the affected gear.
security.paloaltonetworks.com
loading . . .
Palo Alto Networks Security Advisories
Palo Alto Networks Security Advisories - Latest information and remediations available for vulnerabilities concerning Palo Alto Networks products and services.
https://security.paloaltonetworks.com/
27 days ago
1
0
1
No more reboots for at least some of the Microsoft patches as they roll out hot patch by default.
techcommunity.microsoft.com/blog/windows...
loading . . .
Securing devices faster with hotpatch updates on by default - Windows IT Pro Blog
Get Windows devices secure faster with hotpatch updates enabled by default in Microsoft Intune.
https://techcommunity.microsoft.com/blog/windows-itpro-blog/securing-devices-faster-with-hotpatch-updates-on-by-default/4500066
28 days ago
0
0
0
Interesting exercise by
@simonlermen.bsky.social
using LLM to identify anonymous posters across multiple public platforms. The LLM connects the users via content and connects to known ID.
simonlermen.substack.com/p/large-scal...
loading . . .
Large-Scale Online Deanonymization with LLMs
We measure the capabilities of LLMs to deanonymize users online.
https://simonlermen.substack.com/p/large-scale-online-deanonymization
29 days ago
0
2
1
Report from Trend Micro outlines how using
#AI
tools and public information from LinkedIn profiles threat actors are creating very targeted and effective spear phishing messages.
www.trendmicro.com/vinfo/us/sec...
loading . . .
From LinkedIn to Tailored Attack in 30 Minutes: How AI Accelerates Target Profiling for Cybercrime
The industrialization of AI-driven OSINT has transformed individual digital footprints into machine-readable intelligence at scale, enabling attackers to operationalize personalized reconnaissance at ...
https://www.trendmicro.com/vinfo/us/security/news/cybercrime-and-digital-threats/from-linkedin-to-tailored-attack-in-30-minutes-how-ai-accelerates-target-profiling-for-cybercrime
about 1 month ago
0
0
0
Good news for software developers, looks like Google is reducing developer fees on the App Store over time.
android-developers.googleblog.com/2026/03/a-ne...
loading . . .
A new era for choice and openness
News and insights on the Android platform, developer tools, and events.
https://android-developers.googleblog.com/2026/03/a-new-era-for-choice-and-openness.html
about 1 month ago
0
0
0
No more burner phones. Mexico is looking to remove any possible anonymous use of cell service. By June this year all SIM must be connected to a government ID.
www.mexperience.com/all-mexico-c...
loading . . .
All Mexico Cellphone Users Must Register by June 30, 2026
From 2026, Mexico's law requires that all Mexican cellphone numbers, whether on contract or prepay phone plans, are associated to a verified and registered user
https://www.mexperience.com/all-mexico-cellphone-users-must-register/
about 1 month ago
0
0
0
Interesting report from Checkpoint that Iran threat actors seem to be after internet connected cameras throughout the Middle East to support the war effort.
research.checkpoint.com/2026/interpl...
loading . . .
Interplay between Iranian Targeting of IP Cameras and Physical Warfare in the Middle East - Check Point Research
Key Findings Introduction As highlighted in the Cyber Security Report 2026, cyber operations have increasingly become an additional tool in interstate conflicts, used both to support military operatio...
https://research.checkpoint.com/2026/interplay-between-iranian-targeting-of-ip-cameras-and-physical-warfare-in-the-middle-east/
about 1 month ago
0
0
0
Interesting report from Google on how they disrupted the infrastructure of the threat group UNC2814 that was targeting telecom and government agencies.
cloud.google.com/blog/topics/...
loading . . .
Disrupting the GRIDTIDE Global Cyber Espionage Campaign | Google Cloud Blog
GTIG, Mandiant, and partners took action to disrupt a global espionage campaign from a suspected PRC-nexus cyber espionage group.
https://cloud.google.com/blog/topics/threat-intelligence/disrupting-gridtide-global-espionage-campaign
about 1 month ago
0
0
0
Good news in the latest Ransomware report from ChainAlysis finds that payments have stopped growing and hold steady at $820 last year. Hopefully this is the beginning of the end.
www.chainalysis.com/blog/crypto-...
loading . . .
Crypto Ransomware: 2026 Crypto Crime Report
In 2025, total on-chain ransomware payments fell by approximately 8% to $820 million in 2025, even as claimed attacks rose 50%.
https://www.chainalysis.com/blog/crypto-ransomware-2026/
about 1 month ago
0
0
0
Latest report from the UK NCSC shows that we are getting better at patching. The average time to patch is six times faster since last year.
www.gov.uk/government/n...
loading . . .
Government cuts cyber-attack fix times by 84% and launches new profession to protect public services
The government has launched a new vulnerability monitoring service (VMS) to reduce cyber risks and speed up fixes, and a new Cyber Profession to build long-term resilience across public services.
https://www.gov.uk/government/news/government-cuts-cyber-attack-fix-times-by-84-and-launches-new-profession-to-protect-public-services
about 1 month ago
0
0
0
Mountain View CA has canceled their Flock contract after learning the company is sharing data with out of state agencies.
www.mountainview.gov/Home/Compone...
loading . . .
https://www.mountainview.gov/Home/Components/News/News/1205/
about 1 month ago
0
0
0
Apparently the us FTC thinks that asking nicely will bet us social media companies to start applying age verification for youth protection since we cannot pass any laws.
www.ftc.gov/news-events/...
loading . . .
FTC Issues COPPA Policy Statement to Incentivize the Use of Age Verification Technologies to Protect Children Online
The Federal Trade Commission issued a policy statement today announcing that the Commission will not bring an enforcement action under the Children’s Online Privacy Protection Rule (COPPA Rule) aga
https://www.ftc.gov/news-events/news/press-releases/2026/02/ftc-issues-coppa-policy-statement-incentivize-use-age-verification-technologies-protect-children
about 1 month ago
0
0
0
More countries are implementing age verification requirements. Apple is outlining how they will apply these rules in various jurisdictions.
developer.apple.com/news/?id=f5z...
loading . . .
Age requirements for apps distributed in Brazil, Australia, Singapore, Utah, and Louisiana - Latest News - Apple Developer
Today we’re providing an update on the tools available for developers to meet their age assurance obligations under upcoming U.S. and regional laws, including in Brazil, Australia, Singapore, Utah, an...
https://developer.apple.com/news/?id=f5zj08ey
about 1 month ago
1
0
0
Good news that Spanish authorities have arrested four more members of the Fénix hacktivist group behind DDoS attacks.
web.guardiacivil.es/eu/destacado...
loading . . .
Detenidos los cuatro principales integrantes del grupo hacktivista ‘Anonymous Fénix’ por ciberataques contra organismos públicos
https://web.guardiacivil.es/eu/destacados/noticias/Detenidos-los-cuatro-principales-integrantes-del-grupo-hacktivista-Anonymous-Fenix-por-ciberataques-contra-organismos-publicos/
about 1 month ago
0
0
0
The UK is continuing to hold social media to their privacy regulations fining Reddit £14 million for collecting data on children under 13.
ico.org.uk/about-the-ic...
loading . . .
Reddit issued with £14.47m fine for children’s privacy failures
Our investigation found Reddit, Inc. (Reddit) used children’s personal information unlawfully.
https://ico.org.uk/about-the-ico/media-centre/news-and-blogs/2026/02/reddit-issued-with-1447m-fine-for-children-s-privacy-failures/
about 1 month ago
0
0
0
More fallout from our corporate surveillance systems. Fulu Foundation is offering a $10k bounty to hack Ring cameras and cut off AWS data sharing feature to insure privacy for owner users.
fulu-foundation.ghost.io/our-search-p...
loading . . .
Our Search Party: Finding a Ring Bounty Winner
People who own doorbell cameras bought them, in part, to keep people out of their homes. As long as their video footage is stored on corporate servers, consumers could inadvertently be letting others ...
https://fulu-foundation.ghost.io/our-search-party-finding-a-ring-bounty-winner/
about 1 month ago
0
1
0
Good news that the UK
@nca-uk.bsky.social
in cooperation with Nigerian authorities have arrested 7 suspects and taken down a crypto scam center.
www.nationalcrimeagency.gov.uk/news/fraudst...
loading . . .
Fraudsters arrested in Nigeria following NCA intelligence sharing
Seven men have been arrested in Nigeria after intelligence identified a scam compound targeting UK victims.
https://www.nationalcrimeagency.gov.uk/news/fraudsters-arrested-in-nigeria-following-nca-intelligence-sharing
about 1 month ago
1
0
0
Interesting report from AWS on how a Russian threat actor successfully used
#AI
tools to compromise over 600 Fortinet firewalls.
aws.amazon.com/blogs/securi...
loading . . .
AI-augmented threat actor accesses FortiGate devices at scale | Amazon Web Services
Commercial AI services are enabling even unsophisticated threat actors to conduct cyberattacks at scale—a trend Amazon Threat Intelligence has been tracking closely. A recent investigation illustrates...
https://aws.amazon.com/blogs/security/ai-augmented-threat-actor-accesses-fortigate-devices-at-scale/
about 1 month ago
0
0
0
Another supply chain attack detected on Github on the Cline AI coding agent where the attacker pushed malicious updates. Review by Adnan Khan
adnanthekhan.com/posts/clinej...
loading . . .
Clinejection — Compromising Cline's Production Releases just by Prompting an Issue Triager | Adnan Khan - Security Research
Clinejection — Compromising Cline's Production Releases just by Prompting an Issue Triager - Security research by adnanthekhan
https://adnanthekhan.com/posts/clinejection/
about 2 months ago
0
0
0
Interesting research on the vulnerabilities in the BGP RPKI system via communications with the publishing point servers to allow prefix highjacks.
www.ndss-symposium.org/ndss-paper/c...
loading . . .
Crack in the Armor: Underlying Infrastructure Threats to RPKI Publication Point Reachability - NDSS Symposium
https://www.ndss-symposium.org/ndss-paper/crack-in-the-armor-underlying-infrastructure-threats-to-rpki-publication-point-reachability/
about 2 months ago
0
0
0
The UK NCSC collects the playbook for cyber defense for small and medium business.
www.gov.uk/government/n...
loading . . .
Businesses urged to “lock the door” on cyber criminals as new government campaign launches
A new campaign to provide practical ways for organisations to protect themselves from common online threats.
https://www.gov.uk/government/news/businesses-urged-to-lock-the-door-on-cyber-criminals-as-new-government-campaign-launches
about 2 months ago
0
1
0
Good news that Polish authorities have arrested the person responsible for attacks using Phobos ransomware.
cbzc.policja.gov.pl/bzc/aktualno...
loading . . .
47-latek związany z grupą Phobos zatrzymany przez policjantów CBZC
Funkcjonariusze Centralnego Biura Zwalczania Cyberprzestępczości zatrzymali 47-letniego mężczyznę podejrzanego o wytwarzania, pozyskiwanie oraz udostępnianie programów komputerowych służących do bezpr...
https://cbzc.policja.gov.pl/bzc/aktualnosci/823,47-latek-zwiazany-z-grupa-Phobos-zatrzymany-przez-policjantow-CBZC.html
about 2 months ago
0
1
0
Latest supply chain attack outlined by Kaspersky is the Keenadu backdoor added to Android OS and cannot be removed without a full flash and reinstall.
securelist.com/keenadu-andr...
loading . . .
Keenadu the tablet conqueror and the links between major Android botnets
Kaspersky experts have uncovered Keenadu, a sophisticated new backdoor targeting tablet firmware as well as system-level and Google Play apps. They also revealed connections between the world's most p...
https://securelist.com/keenadu-android-backdoor/118913/
about 2 months ago
0
0
0
Load more
feeds!
log in
