Robin's Newsletter

I started writing my infosec newsletter in 2018. It covers the security and privacy topics that caught my attention each week, some interesting numbers or stats, and a summary of the news headlines. I’m current in the process of porting across the back catalogue from the previous two volumes. They’ll appear here over the coming weeks.

I love to hear from readers and welcome suggestions, feedback and tips ❤️

Hundreds of people are now subscribers and, every Sunday, get it direct to their inbox at 7:00pm. I recommend you join them! 👇

Subscribe to Robin's Newsletter

Previous Editions

28 June 2020 (Vol. 3, Iss. 26)
Robins Newsletter #106

Three years on from NotPetya. BlueLeaks and sector-specific aggregation of risk. Minimising harm in breach notification comms. Exfiltrating data using Google Analytics.

21 June 2020 (Vol. 3, Iss. 25)
Robins Newsletter #105

COVID-19 cyber threat update; IoT device vulnerabilities; how to spot like-farming!

14 June 2020 (Vol. 3, Iss. 24)
Robins Newsletter #104

Snowstorm in a Dark Basin: Citizen Lab, MDR Cyber shine light on hackers for hire. Babylon Health breach and lessons from Apple, Amazon, and Google. How far do you go to protect against cyber-harm on your platform?

7 June 2020 (Vol. 3, Iss. 23)
Robins Newsletter #103

REvil launch auction site, while Maze and LockBit team up to pool resources, know-how. Plus inside a BEC scam and DROP DATABASE tickets.

31 May 2020 (Vol. 3, Iss. 22)
Robins Newsletter #102

Cybercrime is boring; Capital One IR report isn't legally privileged; and easyJet target of £18Bn legal action.

24 May 2020 (Vol. 3, Iss. 21)
Robins Newsletter #101

The annual DBIR data-fest, looking in to EasyJet's breach, the importance of audit trails, and Trump's banking details

17 May 2020 (Vol. 3, Iss. 20)
Robins Newsletter #100

Pricing cyber risk from external data, attack on 'UK electricity system' and mining crypocurrency with supercomputers

10 May 2020 (Vol. 3, Iss. 19)
Robins Newsletter #99

Contact tracing apps, password reuse stats, law firm ransomware, and the integrity of systems

3 May 2020 (Vol. 3, Iss. 18)
Robins Newsletter #98

Mobile device management as a vector, turning antivirus against itself and ransomware's long game

26 April 2020 (Vol. 3, Iss. 17)
Robins Newsletter #97

Zero-click vulnerability in Apple's Mail app, surveillance and tracking COVID-19, UK MoD relaxes security requirements.

19 April 2020 (Vol. 3, Iss. 16)
Robins Newsletter #96

Compliance risk and the German state of North Rhine-Westphalia’s loss of €30M-€100M #COVID19 aid because of poor identity verification. Plus DoD and measuring meaningful things. And jumping air-gaps with computer fans.

12 April 2020 (Vol. 3, Iss. 15)
Robins Newsletter #95

Cyber-crime economics of Coronavirus; US Senate bans Zoom; China Telecom and BGP hijacks

5 April 2020 (Vol. 3, Iss. 14)
Robin's Newsletter #94

All the Zoom news distilled, plus Marriott data breach, Morrisons' supreme court win, cloud availability, bug bounty non-disclosures and COVID-19 CTI.

29 March 2020 (Vol. 3, Iss. 13)
Robin's Newsletter #93

FBI COVID-19 scam warning; FIN7 mailing malware USB keys; predicting attacks from Russian APTs.

22 March 2020 (Vol. 3, Iss. 12)
Robin's Newsletter #92

Government cyber advice, examples of phishing campaigns, and things you should patch in the times of COVID-19.

15 March 2020 (Vol. 3, Iss. 11)
Robin's Newsletter #91

Future U.S. cyber strategy; Whisper not-so-secret; wormable Microsoft vulnerability in SMB

8 March 2020 (Vol. 3, Iss. 10)
Robin's Newsletter #90

Cashing in on loyalty points; scam certificate pages and the CIAs password

1 March 2020 (Vol. 3, Iss. 9)
Robin's Newsletter #89

Security awareness without fear; Android malware stealing 2FA codes; click here to sue everybody.

23 February 2020 (Vol. 3, Iss. 8)
Robin's Newsletter #88

Georgia defacement attribution; misusing anti-abuse; Pipeline ransomware.

16 February 2020 (Vol. 3, Iss. 7)
Robin's Newsletter #87

Huawei, Crypto AG, and all the nations doin' all the cybers; plus Emotet.

9 February 2020 (Vol. 3, Iss. 6)
Robin's Newsletter #86

Simon Weckert's Google Maps art installation; IKEA's data promise; and valentine's security awareness.

2 February 2020 (Vol. 3, Iss. 5)
Robin's Newsletter #85

Jumpshot reminds us security isn't privacy; whopping REvil ransom demands; and keep calm/cary on for DPOs.

26 January 2020 (Vol. 3, Iss. 4)
Robin's Newsletter #84

Jeff Bezos' phone hacking; Microsoft's elastic search snafu; ClearView.AI and facial recognition tech.

19 January 2020 (Vol. 3, Iss. 3)
Robin's Newsletter #83

Changing the economics of cybercrime; Windows crypto vulnerability; and rival groups exploiting Citrix.

12 January 2020 (Vol. 3, Iss. 2)
Robin's Newsletter #82

Travelex's ongoing response; £500K penalty for DSG Retail; No patch for Citrix vulnerabilities until end of month.

5 January 2020 (Vol. 3, Iss. 1)
Robin's Newsletter #81

California's Consumer Privacy Act; Travelex systems still offline; the rise of 'data exposures'.