nartv

Google Threat Intelligence Group took down a massive, longterm intrusion campaign into global telcos and government. This PRC-nexus actor built a vast surveillance tool across 42 confirmed countries and another 20 suspected countries. 1/x

Most of the Washington Post’s tech reporters were laid off today, including me. I have loved my time at the paper, which is where I wanted to work from age 15. I take some consolation in not being among the survivors who will have to work harder with less for fewer readers. On to better things.

Join me next week at the @SANSInstitute #CTISummit in Arlington, VA where I'll be presenting on an operation against the infostealer #Rhadamanthys from early in its development.

Register @ https://www.sans.org/u/1CtB

A graphic of a baseball card with a photo of Libby Davies and Avi Lewis. Card says: "We need a leader who inspires, isn't afraid to take on bold change, and can change the political landscape by being radical and pragmatic. I've worked with Avi and know he has the vision and depth of character to build a party of change. He is a leader who inspires a new generation of activists while respecting the wisdom of those who built our movement. He's what we need in this moment." - Libby Davies.

A graphic of a baseball card with a photo of Svend Robinson and Jack Layton. Card says: "The future of our party, our socialist movement, is on the line as never before. Avi is the candidate to meet this critical moment: leading the fight for economic, social, and environmental justice, taking on obscene inequality, fighting for a Green New Deal instead of a massive military budget, with a lifetime of solidarity with the Palestinian people." - Svend Robinson.

In 2003, they were the only two MPs to endorse Jack Layton for leader. They saw what our party could be. 

That’s the tradition I want to help renew in the NDP. I’m humbled by their support.

Read their full endorsements here:
https://lewisforleader.ca/endorsements

Liberals announce plans for national financial crime agency targeting online scams | CBC News The federal Liberals plan to create a new financial crimes agency to tackle online scams as part of a national anti-fraud strategy, Finance Minister François-Philippe Champagne announced on Monday.

www.cbc.ca/news/politic...

TikTok videos continue to push infostealers in ClickFix attacks Cybercriminals are using TikTok videos disguised as free activation guides for popular software like Windows, Spotify, and Netflix to spread information-stealing malware.

www.bleepingcomputer.com/news/securit... #clickfix via TikTok heh

Satellites Are Leaking the World’s Secrets: Calls, Texts, Military and Corporate Data With just $800 in basic equipment, researchers found a stunning variety of data—including thousands of T-Mobile users’ calls and texts and even US military communications—sent by satellites unencrypte...

Researchers pointed a satellite dish at the sky for 3 years and monitored what unencrypted data it picked up. The results were shocking: They obtained thousands of T-Mobile users' phone calls and texts, military and law enforcement secrets, much more: www.wired.com/story/satell... 🧵👇

NEW: Since October 2023, the IDF Spokesperson's Unit has released dozens of 3D animations illustrating alleged Hamas, Hezbollah, and Iranian sites

The style is now unmistakable: satellite zoom-ins, black & white wireframes, and red-textured houses - a new visual language of war

Now we're seeing confirmation of the NSO acquisition.

Mark my words, this is the path through which Pegasus gets put on Americans iPhones & Androids.

This dictatorship-in-a-box belongs nowhere near our constitutional rights.

Is fraud propping up the crypto ATM industry? Some former employees think so | CBC News Nearly a dozen former employees of crypto ATM companies operating in Canada told CBC News that fraudsters tricking scam victims into sending money through the machines is a known problem within the co...

www.cbc.ca/news/canada/...

#prague

Nearly 100 Ontarians fall victim to ‘bank investigator scam’ as police across the GTA issue warnings A scam involving alleged “bank investigators” continues to cause major problems for people within the Greater Toronto and Halton area, and more victims have come forward to say they’ve lost tens of th...

www.ctvnews.ca/toronto/cons...

How fraudsters are using crypto ATMs to launder millions from Canadian scam victims | CBC News A CBC News investigation revealed that cryptocurrency machines — which operate legally in Canada — have become the main vehicle fraudsters use to get money from scam victims across the country.

www.cbc.ca/news/canada/...

Just recorded the fiery afterword for the second edition Cult of the Dead Cow audiobook, out in December! Thanks to all the readers and listeners that made the update necessary.

Cyberattack disrupts European airports including Heathrow, Brussels

www.reuters.com/en/cyberatta...

FBI ‘Billion Dollar’ Hacker Warning—Do Not Install This App You have been warned — do not lose all your money to this hack.

www.forbes.com/sites/zakdof...

‘How could this happen to me?’ Fraud victims left reeling as scams cost Canadians $638M Canadians lost over $638 million to fraud in 2024, with cases nearly doubling over the past decade. One expert says this rising trend is creating a crisis in financial services that is likely to get w...

www.ctvnews.ca/montreal/art...

Prince Edward Island. #PEI

In The Wire they call this “juking the stats.”

Romance scam suspects extradited from Ghana, charged with more than $100 million in thefts Three Ghanaian men face charges in the U.S. related to a multimillion-dollar operation that defrauded individuals online and ran business email compromise scams.

This is great work! And every scammer caught is a good thing.

But, to show the enormity of the problem, that $100 Million spread over 7 years means they accounted for less than .08% of attacks in the US alone.

We have a long way to go.

via @jgreig.bsky.social & @therecordmedia.bsky.social

I am honoured and excited to be delivering a keynote @blackhatevents.bsky.social 🇺🇸 2025

Come hear about the history of @citizenlab.ca, our investigations into mercenary spyware and other abuses, and what keeps me up at night!

www.blackhat.com/us-25/briefi...

Got a weird text message? 'Smishing' scams likely rising because of AI, experts warn | CBC News Text message scams appear to be on the rise, according to the Canadian Anti-Fraud Centre. And as they get more sophisticated, experts say they're becoming harder to catch.

www.cbc.ca/news/busines...

🚨NEW REPORT: exposing clever new hacking tactic.

🇷🇺Russian state-backed hackers used an App-Specific Password attack against prominent Russia expert @keirgiles.bsky.social

It's like they knew what we all expect from 🇷🇺...and then did the opposite 1/

By us @citizenlab.ca & Google's GTIG

We @citizenlab.ca have a new report that dissects a Russian-linked 🇷🇺 phishing operation with some interesting novel techniques

@jsrailton.bsky.social with the details 👇

Singapore leads multinational operation to shutter scam centers tied to $225 million in thefts Nearly 2,000 people were arrested and millions of dollars in illicit funds were seized in an operation coordinated by Singapore police against Asian scam operations.

Singapore leads multinational operation to shutter scam centers tied to $225 million in thefts

via @jgreig.bsky.social & @therecordmedia.bsky.social

DanaBleed: DanaBot C2 Server Memory Leak Bug | ThreatLabz A flaw in DanaBot's C2 server code caused a memory leak that we named "DanaBleed", exposing sensitive data and offering researchers a look into DanaBot’s operations.

DanaBot had a HeartBleed-like bug for three years

Leaked all the juicy stuff, such as threat actor usernames, IP addresses, private keys, and loads more

www.zscaler.com/blogs/securi...

Beautiful in it’s own post-apocalyptic way, #LeslieSpit is great for a bike ride and it always reminds me of this song: youtu.be/68G3Yfb6PSE #Gojira #ToxicGarbageIsland

The Rise of Residential Proxies as a Cybercrime Enabler This research discusses how residential proxies help cybercriminals bypass antifraud and IT security systems, and how vulnerabilities in the IoT supply chain are exploited where Android-based devices ...

Residential proxies are a key enabler of cybercrime today. This creates a growing need for connection and session-based access control. We used Ja4T fingerprinting that successfully tagged incoming connections from residential proxies to 1,500 IDS systems. www.trendmicro.com/vinfo/us/sec...

Do you know what the date is today?

Today is the anniversary of the Tiananmen square massacre.

Dictators hope that if they make us afraid to speak the truth for long enough... we'll forget it.

This is how history is erased.

A Day to Remember, 2005, by Liu Wei
Full: vimeo.com/44078865