Best Infosec-Related Long Reads for the Week of 1/13/24
A grad student discovered cryptocurrencies are not anonymous, Smartphone ambient light sensors can spy on you, Cyberscams suck China into Myanmar's conflict, more
Read more
Microsoft bets $10 billion on Japan’s AI buildout and cyber defenses
EU pins EC attack on TeamPCP, Iowa AG sues UnitedHealth over 2024 attack, Residential proxies pose problems for IP reputation systems, Him & Hers report Feb. data breach, TA416 refocuses efforts back to Europe, Former engineer admits to hacking employer in $750k extortion bid, much more
Iran's Handela group claims control of the IT infrastructure in St. Joseph County, Indiana
Hasbro takes down systems after cyberattack, Italy’s ASIGINT accused of fake WhatsApp app, Attackers use WhatsApp to spread malicious MSI files, $250M stolen from DeFi project Drift, Anthropic knocks out GitHub repos in frantic bid to pull back exposed code, much more
N. Korean hackers were behind malicious versions of Axios
Actors compromised Cisco with stolen creds from Trivy attack, Anthropic leaked part of Claude's source code, Apple alters its upgrade-or-stay vulnerable method, Recruiting firm Mecor hit by incident linked to LiteLLM attack, Vim and GNU Emacs text editors' flaws surfaced by Claude prompts, much more
California uses AI contracts to impose safeguards, teeing up clash with Trump
Italy fines its biggest bank $36.4m over data breach, Oz launches probe into internet giants over social media ban failures, Match Group settles with FTC over unauthorized data access, JavaScript library axios became an attack vector after npm account hijacking, much more