Best Infosec Long-Reads of the Week, 8/27/22
Thieves bilked woman in elaborate romance scam, Peruvian "socialite" who infiltrated NATO society was a GRU operative, Teens rickrolled six schools, "OSINT" Twitter accounts in India target foes
Read more
Overwhelmed by vulnerability surge, NIST scales back NVD coverage
US nationals head to prison for aiding fake DPRK IT workers, Anthropic publishes Claude ID verification requirements, New ransomware attacks target S. Korean SMEs, New adware tool delivers system privileges that disable AV protections, Critical flaw in Nginx UI with MCP exploited, much more
US agencies court Anthropic AI for cyber defense despite Pentagon ban
OpenAI launches private test of its Mythos rival, Russian cyber group targeted a Swedish thermal power plant, Microsoft fixes 167 flaws on Patch Tuesday, Fake Ledger site linked to $9.5m crypto theft, McGraw-Hill hacked via Salesforce misconfiguration, much more
Allies warn of cyber divide as US firms gatekeep powerful Mythos AI
Goldman Sachs is working closing with Mythos to protect itself, UK's AISI tested Mythos which excelled over other models, Bain & Co. was easily exposed by pentesters, Kraken suffered two insider security incidents, EU to abandon Chinese inverters, much more
ShinyHunters hits Rockstar Games, threatens data dump after cloud breach
Basic-Fit data breach exposes data on 1m+ members, Operation Atlantic disrupted $45m pig butchering network, Hackers exploited Hyberbridge flaw for $237k gain, Booking [dot] com suffered breach exposing customer details, UK finance regulators are assessing Anthropic's Claude Mythos, much more