Best Infosec Long-Reads of the Week, 7/30/22
POGO dropped a bombshell about missing DHS texts, An ecosystem of data brokers are sucking up smart cars' data, China's ambassador to the U.S. broke the Aspen Summit's decorum, more
Cynthia B Brumfield
Foreign Actors Attacked U.S. Courts' Document System in 2020 Causing Security Failure
German police identify alleged energy and water company hacker, US MSP suffers cyberattack, Questions surround Sky Mavis CEO's pre-hack transactions, 'Proxy service' exposes user database, more
Knotweed Group Is Linked to Spyware Vendor Targeting Law Firms, Banks and Consultancies
Lawmakers are alarmed by mercenary spyware, EU staff was compromised by Pegasus spyware, WordFly ransomware attacks hinders arts organizations worldwide, Reward for NK bad actors' info doubles, more
Average Data Breach Cost Reaches $4.35 Million, Up 13% Over the Past Two Years
Two college students ID'ed a sextortionist, Admins have only 15 minutes to patch after CVE is published, Greek leader says he was targeted with Predator spyware, Cryptojacking attacks climb, much more
LockBit Ransomware Group Claims Attack on Italy's Tax Agency, Small Canadian Town
Roblox prepared for Chinese partner's hack, mRNA-free dating site exposed members' personal data, China tried to build informant network inside Federal Reserve, New attack vector threatens VR, more
CORRECTED HEADLINE: FBI's Discovery of Huawei Gear's Military Eavesdropping Capabilities Led to FCC Ban
TSA releases expected pipeline security update, T-Mobile agrees to $500 million settlement related to data breach, Zoom expands E2EE, Engineer who believed AI is sentient fired, much more
FBI's Discovery of Huawei Gear's Military Eavesdropping Capabilities Led to FCC Ban
TSA releases expected pipeline security update, T-Mobile agrees to $500 million settlement related to data breach, Zoom expands E2EE, Engineer who believed AI is sentient fired, much more
Best Infosec Long-Reads of the Week, 7/23/22
Apps scam working-class Mexicans into a cycle of debt, Client-side scanning floated again as a solution to CSAM, Experts may have underestimated the cyber challenges Russia faced in Ukraine, more Metacurity is pleased to offer our free and paid subscribers this weekly digest of long-form infosec pieces and related articles
Best Infosec Long-Reads of the Week, 7/23/22
Apps scam working-class Mexicans into a cycle of debt, Client-side scanning floated again as a solution to CSAM, Experts may have underestimated the cyber challenges Russia faced in Ukraine, more
Candiru Spyware Targeted Journalists in the Middle East by Exploiting Chrome Zero Day
Alleged Russian attack spread misinformation across Ukrainian radio stations, Biden administration probes use of Huawei cell tower gear near military bases, Google backtracks on permission apps, more
Cyber Command Shares Technical Details of Malware Targeting Ukrainian Organizations
Bill would allow intel agencies to take business away from companies that buy spyware, House panel passes landmark privacy bill, Microsoft resumes blocking Office documents macros, much more
DOJ Seized $500,000 That North Korean Hackers Stole From U.S. Health Care Organizations
Russian hackers tried to trick Ukrainian hacktivists into using malicious Android app, APT 29 is still at work using Dropbox, Google Drive to drop malware, Feds warn of mid-terms election mayhem, more