Risky Bulletin
Risky Bulletin: GitHub supply chain attack prints everyone's secrets in build logs
In other news: White House tells agencies to stop firing cyber staff; Germany exempts cybersecurity from debt brake; RCS adds E2EE support.
Latest
Risky Bulletin
Risky Bulletin: FBI warns of online file converters that distribute malware
In other news: China backdoors Juniper routers; ransomware wave hits Taiwan; North Korean spyware slips onto the Play Store.
Seriously Risky Business
Outside America, Musk's X is a Foreign Influence Threat
Your weekly dose of Seriously Risky Business news is written by Tom Uren and edited by Patrick Gray. It's supported by Lawfare with help from the William and Flora Hewlett Foundation. This week's edition is sponsored by GreyNoise. You can hear a podcast discussion of this
Risky Bulletin
Risky Bulletin: Large-scale study aims to assess Rowhammer's real world impact
In other news: Trump nominates new CISA Director; DOGE fires CISA red teams; crucial Firefox root certificate expires this week.
Risky Bulletin
Risky Bulletin: Passkeys are phishable (but quite difficult through)
In other news: Undocumented commands found in ESP32 chips; US cuts EI-ISAC funding; hacker steals and then returns 1inch funds.
Risky Bulletin
Risky Bulletin: US indicts i-Soon and APT27 hackers
In other news: BADBOX botnet disrupted after return; authorities seize Garantex crypto exchange; Taylor Swift concert ticket hackers arrested.
Seriously Risky Business
Starlink an Internet Lifeline for Scam Compounds
Your weekly dose of Seriously Risky Business news is written by Tom Uren and edited by Patrick Gray. It's supported by Lawfare with help from the William and Flora Hewlett Foundation. This week's edition is sponsored by Prowler. You can hear a podcast discussion of this
Risky Bulletin
Risky Bulletin: nRootTag turns any Bluetooth device into an AirTag
In other news: VMware patches three ESXi zero-days; France debates encryption backdoors; a fifth of Bybit stolen funds are now untraceable.
Risky Bulletin
Risky Bulletin: Trump administration stops treating Russian hackers as a threat
In other news: Meta seeks permanent NSO ban; new Cellebrite zero-days come to light; third-party breaches are now a headache for cyber insurers.
Risky Bulletin
Risky Bulletin: Cellebrite bans bad boy Serbia
In other news: Belgium investigates Chinese hack; the RNC hides a Chinese hack; malicious extensions found on the VSCode Marketplace.
Seriously Risky Business
Canada's Expulsion From Five Eyes Would Be a Disaster
Your weekly dose of Seriously Risky Business news is written by Tom Uren and edited by Patrick Gray. It's supported by Lawfare with help from the William and Flora Hewlett Foundation. This week's edition is sponsored by Nucleus Security. You can hear a podcast discussion of
Risky Bulletin
Risky Bulletin: Signal threatens to leave Sweden over backdoor request
In other news: EU sanctions North Korean APT head honcho; Australia bans Kaspersky on government systems; Google will use QR codes for Gmail authentication.