Best Infosec-Related Long Reads for the Week of 12/9/23
Viral Indian influence operation pushes Modi's agenda, Organized pig-butchering scams, Smart TVs track everything you watch, Meta's new privacy-violating smart glasses, Trump's troll army
Read more
Iran's Handela group claims control of the IT infrastructure in St. Joseph County, Indiana
Hasbro takes down systems after cyberattack, Italy’s ASIGINT accused of fake WhatsApp app, Attackers use WhatsApp to spread malicious MSI files, $250M stolen from DeFi project Drift, Anthropic knocks out GitHub repos in frantic bid to pull back exposed code, much more
N. Korean hackers were behind malicious versions of Axios
Actors compromised Cisco with stolen creds from Trivy attack, Anthropic leaked part of Claude's source code, Apple alters its upgrade-or-stay vulnerable method, Recruiting firm Mecor hit by incident linked to LiteLLM attack, Vim and GNU Emacs text editors' flaws surfaced by Claude prompts, much more
California uses AI contracts to impose safeguards, teeing up clash with Trump
Italy fines its biggest bank $36.4m over data breach, Oz launches probe into internet giants over social media ban failures, Match Group settles with FTC over unauthorized data access, JavaScript library axios became an attack vector after npm account hijacking, much more
Iran-linked hackers leak FBI director’s personal emails in targeted influence operation
Anthropic exposed cache of materials through a misconfigured CMS, Lockdown Mode locks out mercenary spyware, Crypto account protection products fall short, Stats SA hit by ransomware, ClickFix campaign targets crypto users on macOS through fake Cloudflare CAPTCHA pages, much more