Best Infosec-Related Long Reads for the Week, 9/9/23
China feeds security flaws to state hacking org, Digital tech reliance makes US military vulnerable, Questions surround software liability policies, Metadata fuels surveillance capitalism, more
Latest
US, UK Sanction Trickbot Members, DOJ Charges Trickbot Tech Leader and Others
Apple patches zero-days used to deliver NSO's Pegasus, China's social media ops use AI and target right-wing niche apps, FBI pins Stack hack on Lazarus, Iran breached US aeronautical org, much more
Technical Blunders by Microsoft Gave Chinese Espionage Actors Access to Government Emails
UK gov't clarifies encrypted messaging access plans, W3LL threat actor can bypass Microsoft MFA, Tornado Cash co-founder pleads not guilty, Safer Tornado Cash alternative proposed, much more
Every Major Car Brand Failed Privacy and Security Tests, Mozilla
Chinese gov't widens iPhone ban, Fancy Bear targeted energy facility in Ukraine, Criminals have likely cracked stolen LastPass vaults, Criminals use fake Spotify accounts to launder money, much more
Stalker Website Kiwi Farms Still Survives Despite Efforts of Sleuths, Engineers, Activists
N. Ireland chief constable resigns following breach, Crypto betting platform hacked for $41.3m, Lockbit stole data from UK military fencing firm, Twitter boosts Russian propaganda, much more
Best Infosec-Related Long Reads for the Weeks of 8/21/23 and 8/28/23
Inside Coffee Co.'s computer intrusion, Unmasking Trickbot, Criminal use of credit headers, Brazil's Instagram stolen account retrieval boom, Chinese sextortionists exploit X's blue check policy, more Metacurity is pleased to offer our free and paid subscribers this weekly digest of the best long-form infosec-related
Best Infosec-Related Long Reads for the Weeks of 8/21/23 and 8/28/23
Inside Coffee Co.'s computer intrusion, Unmasking Trickbot, Criminal use of credit headers, Brazil's Instagram stolen account retrieval boom, Chinese sextortionists exploit X's blue check policy, more
Russia's Sandworm Hackers Have Been Targeting Ukrainian Military Android Devices
X plans to collect biometric data from premium users, Apple defends abandoning CSAM scanning, LogicMonitor hacked due to default passwords, Judge halts Texas age verification law, much more
Chinese Spy Operation Placed Fake Signal Apps on Google Play Store, Samsung Galaxy Store
NY MTA feature enables subway trip tracking, Anonymous Sudan claims X DDoS take-down, LockBit claims attack on Montreal electric org, Microsoft delivering malware-type pop-ups, much more
FBI, International Partners Infiltrated Qakbot and Uninstalled Infected Systems
Chinese hackers targeted government system in Barracuda ESG attacks, Meta took down Spamouflage Chinese influence op, University of Michigan taken offline in cyber incident, much more
ChatGPT Offers 'Enterprise-Grade' Privacy, Data Analysis
Schumer to kick off AI listening sessions, Polish police arrest two in railway incident, Japan's national cyber org infiltrated by hackers, Hackers can grab Skype IP addresses with link, much more
Radio Signal Interference Halted Train Stations in Poland
Met police probe data breach, Crypto fintech company Prime Trust locked out of $39 million wallet, Kroll hack exposes crypto customer data, French gov't agency exposed data on 10 mil., much much more