Agreed. Salt Typhoon - espionage/successful intrusions; Russian use of Acid Rain - attack.
21.02.2026 20:54
π 0
π 0
π¬ 0
π 0
Agreed. Salt Typhoon - espionage/successful intrusions; Russian use of Acid Rain - attack.
First repeatable attribution framework for threat intel teams since the Diamond Model as far as I knowβ¦
First VoidLink, now HONESTCUE. Fair to assume AI generated malware frameworks are only going to exponentially growβ¦
cloud.google.com/blog/topics/...
βThe uncomfortable lesson of Salt Typhoon is not that Beijing has futuristic capabilities. Itβs that Washington often treats major intrusions as proof of overwhelming adversary sophistication, when in reality, basic, preventable weaknesses still account for much of the vulnerability.β π―
Something not many are saying or those involved are considering, everyone involved will almost certainly be investigated by the next administration, whether it be for criminal or civil lawsuits against the officers involved, or the administration officials obstructing the investigation.
Germanyβs foreign intelligence agency (BND) intercepted phone conversations of former President Barack Obama while he was aboard Air Force One over several years. The interceptions exploited vulnerabilities in the aircraftβs encryption and known frequencies.
www.zeit.de/politik/ausl...
T-Mobile users like, βThereβs no way coverage is that good.β
Scoop: The lone employee behind CISA's Pre-Ransomware Notification Initiative resigned on Friday rather than take a forced reassignment to FEMA.
CISA says PRNI will continue, but sources said David Stern's loss will be a major setback for it.
My story: www.cybersecuritydive.com/news/cisa-ra...
The US is woefully behind China in both renewable and nuclear energy production, the former because its connection with climate change, which is seen as a βhoaxβ, and the latter because of the waste it produced, which is more than offset by the amount of power generated compared to fossil fuels.
Success in AI wonβt just be because of chips and algorithms, but just as, if not more, importantly, data centers and power generation.
www.nytimes.com/2025/12/22/c...
In order: data security and management, cloud security, identity management. Goes without saying, protections should follow data - but what does that mean in a world of AI? How are you ensuring only those authorized to see or know certain things, are? www.cybersecuritydive.com/news/ai-secu...
Where is the closest rooftop? There is something I would like to shout.
βAI is currently a force multiplier on existing attacker tradecraft, not a source of fundamentally new TTPs.β
www.recordedfuture.com/blog/ai-malw...
Straight up, I developed and taught β and @kikta.net now teaches β an entire course at the @alperovitch.institute that boils down to βyou can shape adversary cyber activity but you canβt deter it because thatβs how intelligence operations workβ. Being mad at China for playing the game is ridiculous.
I explained to my class week that despite all the panic about state actor capabilities:
-The biggest threat to electricity is squirrels
-Minecraft skids have the best DDoS capabilities
-No amount of disruption could ever beat misconfiguration, with DNS at the top of the list
EXCLUSIVE: President Donald Trump has decided not to nominate Army Lt. Gen. William Hartman to be the next leader of U.S. Cyber Command and the National Security Agency.
On @therecordmedia.bsky.social
therecord.media/william-hart...
Data center security being the Achilles heel of AI has been the topic of concern for the last year or two. I think the biggest takeaway from this piece is the need for a business continuity plan - being ready to go back to manual processes where AI has taken over.
www.scworld.com/perspective/...
Peter Kyle raised eyebrows last year when he said he was made, just hours into office, βvery very aware that there was a cybersecurity challenge that our country faced that I simply wasnβt aware of before.β
We report a secret briefing by intel chiefs was responsible: therecord.media/cyberattack-...
Microsoft: Multiple subsea fiber cuts in the Red Sea impacting global communications
azure.status.microsoft/en-us/status
Interesting attack vector. Essentially the AI equivalent of domain squatting, except with AI model names.
www.securityweek.com/ai-supply-ch...
π¨New research drop: Contagious Interview | North Korean Threat Actors Reveal Plans and Ops by Abusing Cyber Intel Platforms
It was a pleasure collaborating with Sreekar Madabushi and @kennethkinion.bsky.social from Validin!
Read our blog post: s1.ai/nk-ops
Legislation to renew two federal cybersecurity laws has finally begun moving through Congress, but itβs unclear if lawmakers will be able to pass both bills before an end-of-the-month deadline.
On @therecordmedia.bsky.social
therecord.media/house-homela...
New by me - Citrix have forgot to tell you a zero day was under exploitation earlier this year to successfully backdoor devices at "critical" organisations, and no vendor released technical details.
More to come, including on CVE-2025-7775 too.
doublepulsar.com/citrix-forgo...
The timing of this announcement on the same day that the US and its allies called out Chinese technology companies for hacking is nothing short of ironicβ¦
While its expiration isnβt ideal, it isnβt the end of the world. Not all of gov use it, nor do all private orgs want to share under them due to their requirements. It makes it easier on those that donβt want to do the legwork, but it is certainly not the only solution. cyberscoop.com/cisa-2015-ex...
Cyber Command has the talent. Now it needs the tools, speed, and innovation to match.
βAgentic AI is really AI that can take action on your behalf, right? That will become the next insider threat, because, as organizations have these agentic AI deployed, they donβt have built-in guardrails to stop somebody from abusing itβ
βTrue deterrence requires the capacity to continuously undermine an adversaryβs capabilities and prepare to impose unacceptable costs.β
Great op-ed presenting the state of play and how the US may be able to course correct its approach to cyber policy.
www.foreignaffairs.com/china/china-...
