Risky Bulletin
Risky Bulletin: Shai-Hulud goes open-source
In other news: Dream Market admin charged after major OPSEC failure; France investigates Israeli disinfo firm; Composer rushes to fix GitHub token leak.
Risky Bulletin
Risky Bulletin
Risky Bulletin: RubyGems disables sign-ups after attack on staff
In other news: Instructure paid the ransom; The Gentlemen RaaS gets hacked; another major supply chain attack on npm (yawn).
Risky Bulletin
Risky Bulletin: FCC relaxes foreign router ban to allow for security updates
In other news: ShinyHunters disrupts schools across US; 21-year-old RCE found in FreeBSD; and another Linux zero-day LPE.
Risky Bulletin
Risky Bulletin: Google patches Android remote takeover bug
In other news: Palo Alto Networks discloses a firewall zero-day; Ivanti also patches one; leak exposes Russia's spy and hacker school.
Risky Bulletin
Risky Bulletin: Extremely targeted supply chain attack hits DAEMON Tools
In other news: Australia gets its own CSRB; VOIP server hacker arrested after 17 years; Oracle switches to monthly security updates.
Risky Bulletin
Risky Bulletin: DigiCert hacked with a malicious screensaver file
In other news: Ransomware negotiators get four years in prison; Trellix discloses security breach; another Russian hacker arrested while vacationing in the wrong place.
Risky Bulletin
Risky Bulletin: The mysterious hack of Moldova's healthcare database
In other news: Scam compounds raided in Dubai; Copy Fail vulnerability impacts Linux distros going back to 2017; major cPanel bug exploited in the wild.
Risky Bulletin
Risky Bulletin: UK NCSC blasts SOC metrics
In other news: Vimeo got hacked; Greece wants to ban anonymity on social media; Scatter Spider hacker arrested in Finland.
Risky Bulletin
Risky Bulletin: New fingerprinting technique can track Tor users
In other news: Intellexa had a secret American exploit provider; US accuses China of stealing its AI; US router ban also covers hotspots.
Risky Bulletin
Risky Bulletin: There are now SIM-Farm-as-a-Service providers
In other news: Russians hack the Bundestag President; some randoms accessed Anthropic's coveted Mythos model; Plankey withdraws CISA nomination.
Risky Bulletin
Risky Bulletin: Former FBI official calls for terrorism designations for ransomware groups that target hospitals and critical infrastructure
In other news: China threatens the EU over new cybersecurity regulations; EU puts up the funds for a sovereign cloud; mysterious data wiper found in Venezuela at the end of last year.
Risky Bulletin
Risky Bulletin: New malware tries to sabotage Israel's water system but fails because it's buggy
In other news: US government wants Mythos access; Supreme Court hacker gets no prison time; ransomware kingpin arrested in Kazakhstan.