Best Infosec-Related Long Reads for the Week of 1/27/24

Client-side scanning is not a solution, Explosion of satellite surveillance data is coming, Taylor Swift deepfakes will change the internet, Cyber should be integral to foreign policy, more

Vault 7 Hacker Sentenced to 40 Years in Prison For Leaking CIA Files

Blackbaud rapped for poor security practices in FTC settlement, Cloudflare breached by nation-state actor, CISA orders quick disconnects of Ivanti VPNs, Busted SIM swappers behind FTX hack, much more

US Disrupted Volt Typhoon by Hijacking, Wiping Botnet Routers

Hackers siphoned $112.5m from Ripple founder, Around three dozen targeted by Pegasus in Jordan, Another Ivanti zero-day exploited in the wild, Brazil police bust up banking malware op, much more

NY AG Sues Citibank For Insufficient Data Security Measures, Failure to Address Scams

Florida feds charge $400 million SIM swappers, SIM swapper connected to 0ktapus/ALPHV, Canada's Global Affairs hit by data breach, ALPHV claims hit on US gov't contractor, much more

DOJ and FBI Remotely Turned Off Parts of China's Volt Typhoon Campaign, Sources

Cyberattack hampered Fani Willis' offices, OAN CEO shared spreadsheet of Smartmatic passwords, ODNI hires expert to grapple with OSINT, DHS workers sentenced for stealing, much more

SolarWinds Seeks Dismissal of SEC Case, Denies Wrongdoing

Microsoft details security lapses in Midnight Blizzard breach, Jenkins flaw PoC exploits released, Intel community seeks safer AI, KC transport system hit, Alleged prolific swatter busted, much more

Best Infosec-Related Long Reads for the Week of 1/20/24

Predatory Sparrow's acts of cyberwar, Using facial recognition for matching DNA-created faces, How Keith Alexander's SPAC failed, Microsoft's subpar security, App collects massive data for India's BJP

NSA Buys Metadata on Americans' Internet Activities From Commercial Data Brokers

Russian man gets five years for Trickbot, Social media giants skirt Apple's privacy rules via push notifications, 23andme oblivious to attacks for five months, iOS sideloading coming to EU , much more

Russia's Midnight Blizzard Gained Access to HP's Email System

Financial technology leader EquiLend hit by LockBit, Ring will stop police access to doorbell camera footage, Ukraine claims hit on Russian science center, Apple wins a battle against NSO, much more

Draft Biden EO Seeks to Bar Adversaries From Accessing Americans' Sensitive Data

US and UK join Australia in Medibank hacker sanctions, Top aircraft leasing company hit by ransomware, NCSC says AI will boost cyberattacks, Water system company hit by ransomware, so much more

Australia Uses New Sanctions Powers Against Russian Hacker Behind Medibank Breach

CISA's Easterly was swatted, SEC confirms SIM swap was behind Twitter breach, 16.6m LoanDepot customers' data were stolen in ransomware attack, Mother of all data breaches uncovered, much more

Russian Hacking Group MidnightBlizzard Stole Emails From Microsoft Execs, Employees

CISA investigates possible Ivanti flaw government agency hacks, ScarCruft is testing targeting of infosec pros, Trezor breach affects 66,000, LockBit claims attack on Subway, much more