Search
Signalgate and ID management hiccups
China exposing Taiwan hacks
A half-dozen Microsoft zero-days
Revisiting the Lamberts
Lazarus ByBit $1.4B heist was supply chain attack on developer
North Korea's biggest ever crypto heist: $1.4B stolen from Bybit
An 'extremely sophisticated' iPhone hack; Google flags major AMD microcode bug
Unpacking the UK government's secret iCloud backdoor demand
Inside the DeepSeek AI existential crisis
Death of the CSRB
Inside the PlugX malware removal operation
Hijacking .gov backdoors
US Treasury hacked via BeyondTrust
Palo Alto network edge device backdoor
US government's VPN advice
Surveillance economics
Inside the Turla Playbook: Hijacking APTs and fourth-party espionage
Volexity’s Steven Adair on Russian Wi-Fi hacks
Sid Trivedi on the RSA Innovation Sandbox $5 million investment gambit
Russian APT weaponized nearby Wi-Fi networks in DC
What happens to CISA now? Is deterrence in cyber possible?
Mysterious rebooting iPhones
The Sophos kernel implant
Fortinet 0days
ESET Israel wiper malware
Typhoons and Blizzards: Cyberespionage and national security on front burner
Careto returns
Exploding beepers
Ep13: The Consolation of Threat Intel (JAG-S LABScon keynote)
Ep12: Security use-cases for AI chain-of-thought reasoning
Ep11: Cyberwarfare takes an ominous turn
Ep10: Volt Typhoon zero-day
Ep9: The blurring lines between nation-state APTs and the ransomware epidemic
Ep8: Microsoft's zero-days and a wormable Windows TCP/IP flaw known to China
Ep7: Crowd2K and the kernel
Ep6: After CrowdStrike chaos
Ep5: CrowdStrike's faulty update shuts down global networks
Ep4: The AT&T mega-breach
Ep3: Dave Aitel joins debate on nation-state hacking responsibilities
Ep2: A deep-dive on disrupting and exposing nation-state malware ops
Ep1: The Microsoft Recall debacle
Cris Neckar on the early days of securing Chrome
Costin Raiu joins the XZ Utils backdoor investigation
Katie Moussouris on building a different cybersecurity businesses
Costin Raiu: The GReAT exit interview
Danny Adamitis on an 'unkillable' router botnet used by Chinese .gov hackers
Allison Miller talks about CISO life
Rob Ragan on the excitement of AI solving security problems
Seth Spergel on venture capital bets in cybersecurity
Dan Lorenc on fixing the 'crappy' CVE ecosystem
Cisco Talos researcher Nick Biasini on chasing APTs
Allison Nixon on disturbing elements in cybercriminal ecosystem
Dakota Cary on China's weaponization of software vulnerabilities
Abhishek Arya on Google's AI cybersecurity experiments
Dr Sergey Bratus on the 'citizen science' of hacking
DARPA's Perri Adams on CTF hacking
Ryan Hurst on tech innovation and unsolved problems in security
Jason Chan on Microsoft's security problems
GitHub security chief Mike Hanley on secure coding
Jason Shockey
Federico Kirschbaum on a life in the Argentina hacking scene
Kymberlee Price reflects on life at the MSRC
OpenSSF GM Omkhar Arasaratnam on open-source software security
Serial entrepreneur Rishi Bhargava on building another cybersecurity company
Claude Mandy on CISO priorities
Sidra Ahmed Lefort dishes on VC investments and cyber uncertainties
Paul Roberts on wins and losses in the 'right to repair' battle
Katie Moussouris on where bug bounties went wrong
Robinhood CSO Caleb Sima on a career in the security trenches
Charlie Miller on hacking iPhones
JAG-S on big-game malware hunting and a very mysterious APT
Chainguard's Dan Lorenc gets real on software supply chain problems
Vinnie Liu discusses a life in the offensive security trenches
Down memory lane with Snort and Sourcefire creator Marty Roesch
Subbu Rama
Project Zero's Maddie Stone on the surge in zero-day discoveries
Prof. Mohit Tiwari on the future of securing data at scale
Google's Shane Huntley on zero-days and the nation-state threat landscape
Lamont Orange
Haroon Meer on the business of cybersecurity
Tony Pepper
Microsoft's Justin Campbell on offensive security research
Costin Raiu on the .gov mobile exploitation business
Amanda Gorton
Intel's Venky Venkateswaran on hardware-enabled security
Sounil Yu on SBOMs
Algirde Pipikaite
Josh Schwartz on red-teaming and proactive security engineering
Michael Laventure
Google's Heather Adkins on defenders playing the long game
Collin Greene
Alex Matrosov on the state of security at the firmware layer
Charles Nwatu
Doug Madory on the mysterious AS8003 global routing story
Crossbeam CISO Chris Castaldo on securing the start-up
Shubs Shah on finding riches (and lessons) from bug bounty hacking
Fahmida Rashid
Microsoft's David Weston on the surge in firmware attacks
Lena Smart
Patrick Howell O'Neill
Nico Waisman
Ron Brash on the water plant hacks and the state of ICS security
Throwback: Zero-day exploit broker Chaouki Bekrar
Selena Larson
Fredrick Lee
Zack Whittaker
Jason Chan
Andy Greenberg
Matt Honea
Brooke Pearson
Tim MalcomVetter
Matt Suiche
Jaime Blasco
Collin Mulliner
Michael Piacente
Dave Aitel
Sounil Yu
Andy Ellis
Costin Raiu
Josh Lefkowitz
Christine Gadsby
Chad Loder
Chris Castaldo
Wim Remes
Dan Hubbard
David Weston
Rich Seiersen
Andrew Morris
Yoav Leitersdorf
Juan Andrés Guerrero-Saade
Robert M. Lee
Brandon Dixon
Ryan Huber
Ivan Arce
Sinan Eren
Stephen Ridley
Mischel Kwon
Rick Holland
Thomas Ptacek
Zane Lackey
Haroon Meer
David (int eighty)
Dennis Fisher
Tim Maurer
Will Lin
Pete Chronis
Brad Arkin
Aanchal Gupta
Tom Conklin
John Terrill
Christopher Ahlberg
Masha Sedova
Paul Roberts
Dino Dai Zovi
Sharon Anolik
Kim Zetter
Kelly Jackson Higgins
Katie Moussouris
activists
advisory boards
africa
AI
AI Cyber Challenge
AI models
AIxCC
amd
Amnesty International
AMP
android
anonymity
anti-exploitation
anti-virus
antitrust
antivirus
Antiy
Appin
Apple
appliances
appsec
APT
APT 28
APT 41
APT attribution
APT groups
APT names
APT15
APT29
APT29 Cyber Attacks
APT29 tactics
APT45
APTs
argentina
Artifical Intelligence
artificial intelligence
as8003
AT&T
AT&T breach
AT&T data breach
Atlantic Council
attack surfaces
attribution
Aurora
automation
backdoor
balkanid
Balkanization
Barracuda
BeyondCorp
BeyondTrust
BGP
BGP hijacking
Binarly
bios
bitcoin
Bitcoin attacks
black hat
Black Lambert
Black Lotus Labs
blackberry
blue screens
blue team
bootkits
Bootkitty
breach detection
browser extensions
browsers
BSOD
bug bounties
bugbounty
business continuity
ByBit
Canada
canaries
candiru
Career
career guidance
Careto
Cellebrite
CET
Chainguard
ChatGPT
Chengdu
Chevron deference
China
Chinese APTs
Chinese cyber actors
Chinese surveillance
chip backdoor
chrome
Chrome Flex OS
CIA
CISA
Cisco Talos
CISO
CISO ethics
CISO liability
CISO movements
CISOs
Citizen Lab
client security
code quality
codecov
coinbase
community building
compliance
continuous testing
core security
corellium
corona virus
corporate relationships
corporate responsibility
covid
credential theft
crisis management
critical infrastructure
crowdstrike
crypto
cryptocurrency
cryptojacking
csam
CSRB
CVE
Cyber Command
cyber espionage
cyber norms
cyber operations
Cyber threat indicators
cyber threats
cyber warfare
cyber-insurance
CyberCommand
cybercrime
cyberespionage
Cyberhaven
cybersecurity
cybersecurity business
cybersecurity challenges
Cybersecurity Threats
cyberwar
Cyberwarcon
Dan Geer
dan kaminsky
Dark Reading
DARPA
Dartmouth
data guard
data privacy
data security
data sharing
Davos
deepfake
DeepSeek
DEF CON CTF
DEFCAMP
Defcon
detection
detection update
digital security
digital trust
diplomacy
disclosure
disinformation
disrupting nation-state operations
diversity
Doppelganger
drone technology
drones
dspm
Duqu
Dutch Intel
eclypsium
edge devices
EDR
EDR software
ekoparty
election interference
elections
email
email security
emulation
encryption
end-of-life devices
Engagement
entrepreneurship
ESET
espionage
Espionage and Cyber Warfare
Executive Order
exploit brokers
exploit reuse
exploit sales
exploitability
exploitation techniques
exploits
facebook
fake IT workers
FBI
FBI CISA report
firewall devices
firewall vulnerabilities
firmware
FOMO Typhoon
Fortinet
Foundation Capital
Fraud Prevention
funding
FWHunt
generative ai
gig economy
GitHub Actions
global conflicts
global routing
Goblin Rat
godaddy
google
Google breakup
google project zero
government regulations
GReAT
groups
GRU
h2c smuggling
hack-for-hire
hacking
Hamas
hardware
hardware security
HexRays
hiring
Hitcon
hot wallet
i-Soon
iCloud
ics
IDA Pro
Identity and Access
ids
iga
implants
incident response
India
influence operations
information sharing
infrastructure attacks
innovation
insider threats
insurance
intel
intelligence agencies
internet backbone
Internet Explorer
Intrusion Truth
investments
investments and exits
IOCs
iOS
iOS 14.5
iOS 18.2
iOS 18.3.2
iOS exploitation
iOS malware
ios self-driving cars
iOS vulnerabilities
IOT
IP theft
iphone
ips
ipv4
IPv6
Iran
Iran Israel
Iranian hacking
Israel
Ivanti
Japan
jeep
Jen Easterly
JetBrains TeamCity vulnerability
jiu-jitsu
jobs market
journalism
Jun OS
Juniper
Kaspersky
key management
Keywords cybersecurity
Kim Zetter
Lab Dooktegan
Lab Dooktegen
labscon
Lambert
Lapsu$
law enforcement
layoffs
Lazarus
leadership
legal considerations
Linux
LLMs
LNK
log4j
log4shell
Luta Security
macbook
machine learning
MacOS
malware
malware analysis
malware campaigns
Mandian
Mandiant
MAPP
market solutions
marketing
marty roesch
memory analysis
memory corruption
memory forensics
Memory Safety
mercenary hacking
Merlin Ventures
messaging
metador
MEV
microcode
microsoft
Microsoft 365 outage
Microsoft Access
Microsoft Teams exploitation
MISP
MIVD
mobile
mobile exploits
mobile stock trading
mobile tracking
monoculture
Monokle
msrc
MSTIC
nation-state
nation-state APTs
nation-state malware
nation-state threats
National security cyber risks
National Security Risks
Netherlands
netography
network appliances
network security
network telemetry
network-based attacks
news gathering
NIST
Nodex
North Korea
npm
NSA
NSO Group
NSO lawsuit
NSO Pegasus
NullBulge
OFAC
offense vs defense
offensive security
Olympics
open source software
open-source
OpenAI
Operation Forum Troll
Operation Zero
Palo Alto
pandemic
Pangu Labs
Pangu Team
Paragon
parsers
password-protected phone
patch tuesday
patching shenanigans
Pavel Durov
pay-for-play
PDF
pegasus
pen-testing
penetration testing
physical conflict
Pink Lambert
PKFail
PlugX
political interference
Polyfill supply chain
Predatory Sparrow
print spooler
printnightmare
prisoner exchange
privacy
privacy engineering
Private Cloud Computer
pro rata rights
product security
Project Zero
PSOAs
public cloud
Pulse Secure
PuzzleMaker
pwn2own
Q&A
Qihoo 360
QuaDream
quantum
quantum computing
ransomware
rapid7
recruiting
Red October
red team
regulations
regulatory failures
remediation
research
Reuters
risk management
robinhood
Romania
Romania elections
router
routers
RPISEC
rsa conference
RSA Innovation Sandbox
rsac
Russia
Russia cyber espionage
S1
saas
SAFE
SafeDocs
Salt Typhoon
Salt Typhoon Hacks
Salt Typhoon vulnerability
Samsung
Sandboxing
sandwich attacks
SBOM
SBOMs
scada
Scattered Spider
Section 702
secure boot bypass
Secure by Design Pledge
secure coding
secure messaging
security
security assessments
security awareness
security framework
security research
security solutions
security updates
securityawareness
securityresponse
Sekoia
self-driving cars
Sentinel One
sentinellabs
serverless
shift-left
Sid Trivedi
Signal
simulated hacking attacks
skills-shortage
Skripal
slack
snort
Snowflake
SOC
software liability
software quality
software update
Solana
solarwinds
SonicWall
Sophos
Sora
sourcefire
South Korea
spectre
spyware
startup
startups
stolen data
story-telling
Storytelling
Stuxnet
sunburst
supply chain
supply chain attacks
Supply chain cyber attack
surveillance
surveillance capitalism
surveillance industry
surveillance technology
SVR cyber threat
Switzerland
Synapse
Taiwan
teams
teamviewer breach
Telegram
telemetry
tesla hack
testing
the-com
thinkst
third-party risk
threat detection
threat intelligence
threat-hunting
threat-intel
threatintel
TikTok
TLP
TOR
Tornado Cash
tpm sniffing
TraderTraitor
transcript
transparency
Triangulation
Turla
typosquatting
uefi
uefi malware
ukraine
Ukraine Cyber Alliance
UltraAV
Unit 29155
United Kingdom
unpatched.ai
US Sanctions
US-China relations
validation
VC funding
vendor accountability
venture capital
VEP
Versa Director
Vietnam
virtualization
Virus Bulletin
VirusTotal
visibility
VMware
Volexity
Volt Typhoon
Volt Typoon
vpn
VPNs
vulnerabilities
vulnerability discovery
vupen
web app security
webapp security
WebKit
whatsapp
White House
Wi-Fi hacking
Wi-Fi security
windows
Windows Defender
Windows kernel
windows os
Windows Recall
wiper
wipers
writing
Xiaomi
XZ Utils
YARA
zero-click
zero-click exploits
zero-day
zero-day vulnerabilities
Zero-days
zero-trust
zerodium
Zoom
02.15.2022 | 5'' read
Finally, some refreshing security news…
According to new data from Google Project Zero, big-tech vendors are getting better -- and faster -- at fixing high-risk security vulnerabilities. In 2021, vendors took an average of 52 days to fix security vulnerabilities reported from Project Zero. This is a significant acceleration from an average of about 80 days three years ago.
Read12.07.2021 | 7'' read
On the passing of Dark Reading’s Tim Wilson
A few thoughts on the passing of Tim Wilson, the well-respected security journalism pioneer who co-founded and nurtured Dark Reading into a cybersecurity industry fixture it is today. Plus, news on the Israel/Iran cyberwar, Apple's NSO/Pegasus lawsuit and a slew of research discoveries.
Read09.21.2021 | 6'' read
Stop legitimizing parasite 0day companies
It's not too late to stop legitimizing these private sector offensive actors supplying zero-days to apex predators. These aren't cybersecurity companies helping to solve security problems. These are parasites cashing in on an unregulated space, making things worse for the rest of us.
Read08.24.2021 | 5'' read
Should I worry about iOS zero-click exploits?
Some thoughts on Apple's impossible challenge to stop apex threat actors from hacking iOS devices. Plus, people movements and a movie-style hack of Iran's prison systems network.
Read08.17.2021 | 6'' read
Corellium dunks on Apple
Less than a week after prevailing in a legal case filed by Apple, Corellium pounced on the controversy surrounding Cupertino's new CSAM child-safety system to kick sand in Apple's eyes. Plus, a new generation of cybersecurity students head to college.
Read06.16.2021 | 5'' read
WebKit and the soft underbelly of iOS security
A little known fact: When you use Chrome on iOS, you aren't really using Google Chrome. You're using a Chrome UI/shell around WebKit/Safari because Apple forbids any third party rendering engine. This is a major soft spot in the iOS security model and the surge in zero-day attacks is reason for major concern.
Read05.03.2021 | 6'' read
Security vendor ‘awards’ are meaningless
We complain a lot about FUD and snake-oil ruining this industry but so many reputable security vendors are getting sucked into this pay-for-an-award-logo that turns you in a bit of a laughing stock among educated buyers. Stop buying these fake awards. You're doing yourself and your company a disservice.
Read03.01.2021 | 5'' read
A peek inside Apple’s security garden
This week's newsletter looks at anti-malware scanning and zero-click attack roadblocks added to the latest Apple's platform security guide (updated Feb 2021), a wave of CISO movements, and some recommendations on reports you should already have read.
Read