Robin's Newsletter - Volume 4 Category

Volume 4 of Robin’s Newsletter covers the year 2021.

  •   Robin’s Newsletter #147 11/04/2021
    Facebook's *ahem* 'data scraping' incident sets the stage for debate on responsible design and engineering. AWS bomb threat. Censorship by QoS. TUI's algorithm gender bias led to 'serious incident' calculating takeoff loads.
  •   Robin’s Newsletter #146 04/04/2021
    The long-tail of ransomware recovery. PHP source code compromise. Exploiting 'safe' file formats. Risk margins and early risk management decisions.
  •   Robin’s Newsletter #145 28/03/2021
    FatFace IR comms 'confidential' while loosing 200GB data. Cyber insurer CNA may have been targeted for policy info. OSINT on the Ever Given.
  •   Robin’s Newsletter #144 21/03/2021
    Rerouting a victims SMS for $16. UK defence review: nuclear response for cyber attack. Who is buying all the data generated by your car?
  •   Robin’s Newsletter #143 14/03/2021
    Criminals jump on Hafnium/ProxyLogon. Hacktivists breach Verkada's 150K facial recognition cams. Apple's IP theft lawsuit. Google's Spectre exploit.
  •   Robin’s Newsletter #142 07/03/2021
    Hafnium mass-exploitation of Microsoft Exchange servers. Google, Alliaz and MunichRe team up on cloud cyber insurance. Bitflipping may be more common than you think.
  •   Robin’s Newsletter #141 28/02/2021
    IABs charge just $7,100 for access to victims networks. Accellion file transfer appliances popped left, right, centre. Former SolarWinds CEO says it is all the interns fault.
  •   Robin’s Newsletter #140 21/02/2021
    Microsoft source code stolen by Russia in Solorigate attack. France uncovers campaign targeting IT providers. SIEM & ATT&CK. And Citibank's $500M UI gaff.
  •   Robin’s Newsletter #139 14/02/2021
    Dependency confusion: all up in your package manager and automated build process. Florida water treatment plant compromised. Details of cyber-attacks on Isis. Bloomberg back again with The ~~Big~~ Long Hack.
  •   Robin’s Newsletter #138 07/02/2021
    SolarWinds caught up in second campaign against U.S. gov tied to China. Plus an interview with a ransomware operator and Canada declares Clearview AI is 'illegal'.
  •   Robin’s Newsletter #137 31/01/2021
    Law enforcement's Emotet takedown and NetWalker leak site seized. Got root? Sudo vuln will get you there. North Korea goes after security researchers for 0-day.
  •   Robin’s Newsletter #136 24/01/2021
    Malwarebytes compromised in Solorigate; German company fined for video surveillance of staff; Intel publish financial results early due to leaked info
  •   Robin’s Newsletter #135 17/01/2021
    WhatsApp bungles privacy policy update; U.K. police unintentionally delete 213,000 records; and 'imposing costs' the 'Brexit means Brexit' or cyber.
  •   Robin’s Newsletter #134 10/01/2021
    Cyber implications of the Capitol insurrection. Solorigate 'likely' the work of Russia. SolarWinds hires Krebs Stamos Group. Microsoft throws some shade.
  •   Robin’s Newsletter #133 03/01/2021
    Microsoft source code accessed in Solorigate attack. Plus advice on buying and selling second-hand devices from NCSC. And how much does cybercrime cost Russia?