Best Infosec-Related Long Reads for the Week of 11/2/24
Cops can't keep up with the rise of infostealers, How a third-party script exploited British Airways, Setting up a risk appetite statement, The security threats poised against Smart Grid 2.0
Read more
Digital Ad Data Firms Track the Movements of Military and Intel Workers Overseas
T-Mobile stopped a breach before customers were hit, Microsoft debuts effort to ward off CrowdStrike-like outages and unveils Zero Day Quest hacking event, Apple issues fixes for zero days exploited in the wild, CrowdStrike finds new Chinese spy operation, GitHub launches open source fund, much more
Russian Man Behind Phobos Ransomware Extradited to the US
Heather "Razzlekhan" Morgan sentenced to 18 months, Maxar Space Systems was hacked, Baltic Sea cable damage appears to be sabotage, EPA warns of high-risk flaws in water systems, Palo Alto reports another zero day, Hacker stole $250K in BEC compromise of AI training software outfit, much more
T-Mobile Hacked Yet Again, This Time by China's Salt Typhoon
Rand Paul guns for CISA, Trump wants relaxed cyber rules, Easterly to leave CISA on 1/20, Library of Congress emails hacked, Turkey fines Twitch for breach, Pro-Russian hackers breached German stats agency, Hacker returns $25M to Thala Labs, Hacker steals $12M from Polter Finance, much more
Best Infosec-Related Long Reads for the Week of 11/9/24
How Microsoft's generosity to the US government might be illegal, Italy is a surprising spyware hub, The EU wrestles with cyber-surveillance tech exports, How brilliant scientists botched password policies, How Danish welfare authorities have created a surveillance nightmare