Robin's Newsletter
I started writing my infosec newsletter in 2018. It covers the security and privacy topics that caught my attention each week, some interesting numbers or stats, and a summary of the news headlines. I’m current in the process of porting across the back catalogue from the previous two volumes. They’ll appear here over the coming weeks at some point.
I love to hear from readers and you’re very welcome to submit suggestions, feedback and tips.
January 2025
January 2025
Vol. 8, Iss. 1
Robin’s Newsletter #342
UN approves cybercrime convention. Clop threatens Cleo breach names. Sanctions for Chinese firm links to Flax Typhoon. Doom as a CAPTCHA.
December 2024
December 2024
Vol. 7, Iss. 52
Robin’s Newsletter #341
2024 in Review: Standout events, key themes, lessons learned, a quiz, and more!
Vol. 7, Iss. 51
Robin’s Newsletter #340
US considering TP-Link ban. Nebraska sues Change Healthcare. False Claims Act whistleblowers.
Vol. 7, Iss. 50
Robin’s Newsletter #339
File transfer systems attacked. FCC funding to replace Chiense telco equipment. Romania nnuls election results over suspected interference.
Vol. 7, Iss. 49
Robin’s Newsletter #338
More Salt Typhoon victims, as FCC proposes new telco cyber regulations.
Vol. 7, Iss. 48
Robin’s Newsletter #337
Blue Yonder causes supply chain disruption. Incidents at two UK hospitals. $17M stolen from Urgana's central bank.
November 2024
November 2024
Vol. 7, Iss. 47
Robin’s Newsletter #336
Black Friday scam warning. Microsoft Windows changes announced following CrowdStrike outage. Facebook take down of 2 million pig butchering accounts.
Vol. 7, Iss. 46
Robin’s Newsletter #335
£100M air traffic incident caused by duplicate airport codes. CISA, FBI says China was after wiretap data.
Vol. 7, Iss. 45
Robin’s Newsletter #334
Okta auth bypass for long usernames. Copyright infringement notices used to drop infostealers. Schneider Electric attacker wants payment in baguettes.
Vol. 7, Iss. 44
Robin’s Newsletter #333
Delta sues CrowdStrike for outage. Strava leaks location of French President. JP Morgan ATMs allowed fraudulent withdrawals.
October 2024
October 2024
Vol. 7, Iss. 43
Robin’s Newsletter #332
SEC fines four companies over misleading breach filings. Change Healthcare breach affects over 100M people. Sophos acquires Secureworks for $859M.
Vol. 7, Iss. 42
Robin’s Newsletter #331
Chinese accusations of Intel backdoors. Microsoft loses customer security logs. Hong Kong arrests in multi-milloin deepfake video scams.
Vol. 7, Iss. 41
Robin’s Newsletter #330
Chinese actors compromised major US telcos. Marriott agrees to 20-year FTC settlement.
Vol. 7, Iss. 40
Robin’s Newsletter #329
LockBit arrests. Evil Corp linked to Russian intelligence. Meta Ray Bans used in creepy facial recognition concept.
September 2024
September 2024
Vol. 7, Iss. 39
Robin’s Newsletter #328
Linux CUPS vuln hype. UK railway wifi portal defaced. Kaspersky pulls switchero on US customers.
Vol. 7, Iss. 37
Robin’s Newsletter #327
US dismantles massive Chinese botnet. Confidence testing questions for CISOs. Bumper load of interesting reads.
Vol. 7, Iss. 37
Robin’s Newsletter #326
TfL admits customer data stolen, 17-year-old arrested. UK data centres classified as CNI. Cydea turns 5!
Vol. 7, Iss. 36
Robin’s Newsletter #325
Yubikey's can be cloned. Telegram chief admits 'not enough' done on content moderation. On-going TfL cyber incident.
Vol. 7, Iss. 35
Robin’s Newsletter #324
Telegram CEO charged in France for illegal activity on the platform. Ukraine launches cyber range. Chinese attackers compromise four ISPs.
August 2024
August 2024
Vol. 7, Iss. 34
Robin’s Newsletter #323
US intel says Iran behind Trump campaign hack. Man hacks death register to get out of child support payments. How not to run a phishing test.
Vol. 7, Iss. 33
Robin’s Newsletter #322
Large data set published from US Data broker. Trump campaign blames Iran for leaked emails. Critical zero-click TCP/IP vulnerability in Windows.
Vol. 7, Iss. 32
Robin’s Newsletter #321
CrowdStrike's underwhelming root cause analysis. Progress escapes SEC action. Dutch DPA rules data scraping has no legal basis.
Vol. 7, Iss. 31
Robin’s Newsletter #320
Electoral Commission slammed for 'basic errors'. CrowdStrike faces multiple legal challenges. $75 million record-breaking ransomware payment.
July 2024
July 2024
Vol. 7, Iss. 30
Robin’s Newsletter #319
Changes in the ransomware ecosystem. KnowBe4 hrired a North Korean IT worker. FrostyGoop used to cut heat to 600 homes.
Vol. 7, Iss. 29
Robin’s Newsletter #318
CrowdStrike. What happened. What is means. What can we learn?
Vol. 7, Iss. 28
Robin’s Newsletter #317
AT&T lost call and SMS records from 'nearly all' of its customers. German bans Chinese telco kit. Vulnerability in RADIUS protocol.
Vol. 7, Iss. 27
Robin’s Newsletter #316
Unauthenticated RCE in OpenSSH. ShinyHunters release phone numbers of 33 million Authy users. Japan wins the 'war' on floppy disks.
June 2024
June 2024
Vol. 7, Iss. 26
Robin’s Newsletter #315
TeamViewer says it was compromised by Cozy Bear. Thousands arrested in law enforcement crackdown on scammers. Two critical MOVEit vulnerabilities.
Vol. 7, Iss. 25
Robin’s Newsletter #314
Updates on significant healthcare incidents. US gov bans Kaspersky. Spoofing Microsoft.com emails.
Vol. 7, Iss. 24
Robin’s Newsletter #313
Six years! Wow. Thanks for subscribing 😊 (now go donate blood to help the NHS respond to a ransomware attack)
Vol. 7, Iss. 23
Robin’s Newsletter #312
Ransomware attack at NHS London supplier disrupts operations. Microsoft recalls Recall, promises improved security and privacy. Plus a puzzle for you.
Vol. 7, Iss. 22
Robin’s Newsletter #311
Ticket Master, Santander breached; Snowflake Possibly not? Plus Op Endgame takedown of 100 malware servers.
May 2024
May 2024
Vol. 7, Iss. 21
Robin’s Newsletter #310
Microsoft Recall is a 'privacy nightmare'. UK/China threat not being takn seriously. FBI says Scattered Spiter is ~1,000 people.
Vol. 7, Iss. 20
Robin’s Newsletter #309
NCSC software resilience call-to-arms. Ebury malware and the Linux kernel organisation. Arizona woman's role in North Korean IT worker scheme.
Vol. 7, Iss. 19
Robin’s Newsletter #308
RSA 2024 Recap. New US international cyber strategy. Three fascinating incidents.
Vol. 7, Iss. 18
Robin’s Newsletter #307
Microsoft ties exec pay to security. Change Healthcare paid $22M ransom. The UK bans default passwords for smart tech.
April 2024
April 2024
Vol. 7, Iss. 17
Robin’s Newsletter #306
US tries to force sell-off of TikTok. UnitedHealth says it paid a ransom, 'substantial portion' of America affected. Darktrace agrees deal to go private.
Vol. 7, Iss. 16
Robin’s Newsletter #305
Significant breach at data analytics firm Sisense. UK trade unions targeted. Perfect 10 vulnerability in Palo's GlobalProtect VPN product.
Vol. 7, Iss. 15
Robin’s Newsletter #304
Significant breach at data analytics firm Sisense. UK trade unions targeted. Perfect 10 vulnerability in Palo's GlobalProtect VPN product.
Vol. 7, Iss. 14
Robin’s Newsletter #303
CSRB slams Microsoft over 'preventable' Storm-558 breach that 'should never have occured'.
March 2024
March 2024
Vol. 7, Iss. 13
Robin’s Newsletter #302
Open-source project compromised to allow SSH backdoor. UK, US accuse China of targeting politicians. Facebook AiTM'd users to spy on Snapchat usage.
Vol. 7, Iss. 12
Robin’s Newsletter #301
3 million hotel door locks vulnerable. Esports tournament suspended after compromise. New variant of AcidRain satellite malware discovered.
Vol. 7, Iss. 11
Robin’s Newsletter #300
British Library lessons learned. Personal info of 43 million French citizens may have been leaked. McDonlad's outage caused by third-party configuration error.
Vol. 7, Iss. 10
Robin’s Newsletter #299
ALPHV pulls an exit scam after Change Healthcare seems to make ransom payment.
Vol. 7, Iss. 9
Robin’s Newsletter #298
Change Healthcare outage persists as ALPHV claims responsibility. Morris II GenAI worm. NIST CSF v2 launched.
February 2024
February 2024
Vol. 7, Iss. 8
Robin’s Newsletter #297
LockBit comprehensively pwned by UK, US and EU law enforcement. Leak at Chiense security copmany gives insight into outsourcing of government attacks.
Vol. 7, Iss. 7
Robin’s Newsletter #296
FBI disrupts GRU botnet. Dozens of Romanian hospitals impacted by ransomware. European court rules on encryption backdoors.
Vol. 7, Iss. 6
Robin’s Newsletter #295
No, 3 million toothbrushes didn't DDoS anything. But... Deepfake video used in CFO scam to steal £20 million. TfL has been trialling AI surveillance.
Vol. 7, Iss. 5
Robin’s Newsletter #294
FBI disrupted Volt Typhoon activity. Moody's downgrades UK water sector due to cyber threat. Stolen FTX millions linked to US SIM swapping ring.
January 2024
January 2024
Vol. 7, Iss. 4
Robin’s Newsletter #293
Australia names Medibank attacker. Microsoft comes under criticism for config blunder that let Russia snoop on mailboxes.
Vol. 7, Iss. 3
Robin’s Newsletter #292
Microsoft email accounts compromised by Russian espionage group. Bumper password dump added to HIBP? Gaza phone services out for a week.
Vol. 7, Iss. 2
Robin’s Newsletter #291
SEC Twitter account compromised; used to swing Bitcoin price. Pro-Ukraine group launches retaliatory attack on Russian ISP.
Vol. 7, Iss. 1
Robin’s Newsletter #290
Sandworm was in Kyivstar for at least seven months. British Library will spend 40% of reserves rebuilding after ransomware attack. Mandiant Twitter account compromised.
December 2023
December 2023
Vol. 6, Iss. 53
Robin’s Newsletter #289
Chinese group still targeting Barracuda ESGs. Kaspersky details on 'Trangulation' operation. A look back on 2023.
Vol. 6, Iss. 52
Robin’s Newsletter #288
Predatory Sparrow disrupts 70% of Iran's petrol pumps. New SEC breach rules come into force. Authories seize APLHV dark web site.
Vol. 6, Iss. 51
Robin’s Newsletter #287
Russian group claims responsibility for knocking out Ukraine's largest telco. National Grid removing Chinese tech from electricity network. PSNI breach expected to cost over £20M.
Vol. 6, Iss. 50
Robin’s Newsletter #286
23andMe data breach impacts grow. Pushing surveillance. Five Eyes detail Russian political meddling.
Vol. 6, Iss. 49
Robin’s Newsletter #285
Iranian attack on US water facility. Chinese espionage group in Netherlands chip maker for years. US
November 2023
November 2023
Vol. 6, Iss. 48
Robin’s Newsletter #284
Warning over Lazarus software supply-chain attacks. Australia cyber security strategy published.
Vol. 6, Iss. 47
Robin’s Newsletter #283
Australian port operations disrupted by cyber-attack. 16 Danish CNI orgs hit simultaneously earlier this year. Ransomware group files SEC complaint.
Vol. 6, Iss. 46
Robin’s Newsletter #282
LockBit behind attack on US arm of China's largest bank. Aonoymous Sudan DDOS disrupts ChatGPT. Sandworm's attack against Ukraine power grid.
Vol. 6, Iss. 45
Robin’s Newsletter #281
SEC charges SolarWinds CISO. Countries vow not to pay ransomware demands. Major updates to CVSS.
October 2023
October 2023
Vol. 6, Iss. 44
Robin’s Newsletter #280
1Password, Cloudflare amongst 170 caught up in Okta breach. UK Online Safety Bill becomes law. Lawful intercept against Russian chat service.
Vol. 6, Iss. 43
Robin’s Newsletter #279
Five Eyes security chiefs warn of espionage threat. Two ransomware gangs taken out. Thousands of Cisco devices compromised.
Vol. 6, Iss. 42
Robin’s Newsletter #278
Hacktivism increases surrounding Israel-Gaza war. Rapid Reset leads to largest ever DDOS attacks. SEC opens probe into MOVEit software developer.
Vol. 6, Iss. 41
Robin’s Newsletter #277
CISA publishes list of top 10 security misconfigurations. Red Cross sets out hacktivism rules of engagement. MGM Resorts says cyberattack will cost $100 million.
Vol. 6, Iss. 40
Robin’s Newsletter #276
Ukraine says Russia is going after war crimes data. US, Japan says China targeting routers for persistence. UK logistics firm goes under following ransomware attack.
September 2023
September 2023
Vol. 6, Iss. 39
Robin’s Newsletter #275
International Criminal Court breached by attackers. Cisco set to acquire Splunk in largest-ever acquisition. Agreement on UK-US data flows.
Vol. 6, Iss. 38
Robin’s Newsletter #274
Ransomware groups target Save the Children, and Las Vegas casinos, and the Sri Lankan government.
Vol. 6, Iss. 37
Robin’s Newsletter #273
Results of Microsoft investigation into US government email compromise. Online Safety Bill E2EE clause to remain unenforced until 'technically feasible'.
Vol. 6, Iss. 36
Robin’s Newsletter #272
FBI takes down Qakbot. Two arrested for Polish train disruption. Met Police supplier loses personal data of 47,000 officers.
August 2023
August 2023
Vol. 6, Iss. 35
Robin’s Newsletter #271
Lapsus$ group pair court verdict. Ransomware dwell times are down. Cloud providers looses all their customers data in ransomware incident.
Vol. 6, Iss. 34
Robin’s Newsletter #270
The importance of using representative test data. Another UK police breach. Critical vulnerabilities in Citrix, Ivanti and WinRAR products.
Vol. 6, Iss. 33
Robin’s Newsletter #269
UK Elections watchdog comopromsed two years ago. Detials of Northern Ireland police staff accidentally published. Zoom backtracks on AI training in terms of service.
Vol. 6, Iss. 32
Robin’s Newsletter #268
Capita breach costs rise. Microsoft under pressure for opaque security practices. Side channel attack identifies keystrokes from audio over Zoom calls
July 2023
July 2023
Vol. 6, Iss. 31
Robin’s Newsletter #267
SEC approves breach disclosure rules. Weak ciphers on export-versions of TETRA radios. Over 500 victims of Progress Software's MOVEit vulnerability.
Vol. 6, Iss. 30
Robin’s Newsletter #266
Microsoft responds to pressure over pay-for security logs. UK Online Safety Bill progresses through the Lords. PwC client data stolen in MOVEit breach.
Vol. 6, Iss. 29
Robin’s Newsletter #265
EU and US adopt new privacy framework for personal data transfers. Microsoft email systems breached by Chinese APT group. Poisoned AI models and disinformation.
Vol. 6, Iss. 28
Robin’s Newsletter #264
Japan's busiest port halted by ransomware. Academics write open letter over Online Safety Bill concerns. JumpCloud resets API keys.
Vol. 6, Iss. 27
Robin’s Newsletter #263
SEC issues noticed to SolarWinds CFO, CISO. Apple opposed Online Safety Bill. US Supreme Court rejects cyberstalking case.
June 2023
June 2023
Vol. 6, Iss. 26
Robin’s Newsletter #262
More organisations caught up in MOVEit. Alphv/BlackCat has been all up in a lot of business. PlugWalkJoe gets 5-year sentence for Twitter crypto scam.
Vol. 6, Iss. 25
Robin’s Newsletter #261
More MOVEit victims and a $10 million bounty on Clop. Fortinet VPN vulnerability. A couple of cool side-channel techniques.
Vol. 6, Iss. 24
Robin’s Newsletter #260
Clop ransomware beaches MOVEit file transfer systems. Barracuda urges rip-and-replace of their email security gateways. Snowden leaks, ten years on.
Vol. 6, Iss. 23
Robin’s Newsletter #259
Kaspersky says it was compromised using zero-click iMessage exploit. Russia blames the NSA. Amazon settles Ring2 'lax privacy' case.
May 2023
May 2023
Vol. 6, Iss. 22
Robin’s Newsletter #258
Meta fine €1.2 billion. US-China cyber tensions. Brute-forcing biometric authentication. Insider threat fail.
Vol. 6, Iss. 21
Robin’s Newsletter #257
Montana bans TikTok. Ransomware as activitsm. Fallout from Capita breaches escalate.
Vol. 6, Iss. 20
Robin’s Newsletter #256
Russian APT malware disabled. MSI compromise included important crypto keys. EU CSAM plans may be unlawful.
Vol. 6, Iss. 19
Robin’s Newsletter #255
The figurative and literal jury is in on SolarWinds, Merck's NotPetya claim, Uber's data breach cover-up.
April 2023
April 2023
Vol. 6, Iss. 18
Robin’s Newsletter #254
RSA Conference 2023 takeaways. Data-driven decision making. IoT and Digital Services legislation.
Vol. 6, Iss. 17
Robin’s Newsletter #253
Customer data stolen in Capita breach. 3CX was a 'cascading' supply-chain breach. UK faces 'Wagner-like' cyber threat.
Vol. 6, Iss. 16
Robin’s Newsletter #252
US classified documents leaked on Discord. UK Online Safety Bill may 'damage reputation'. The 2019 Oldsmar ICS incident was human error.
Vol. 6, Iss. 15
Robin’s Newsletter #251
Genesis Market seizure leads to 119 arrests. The UK on being a responsible cyber power. Security and privacy risks of AI chatbots.
Vol. 6, Iss. 14
Robin’s Newsletter #250
Security Copilot brings AI assistant to security investigations. North Korea compromise of VOIP provider 3CX.
March 2023
March 2023
Vol. 6, Iss. 13
Robin’s Newsletter #249
TikTok bans continue, Russia bans iPhones from Putin’s inner circle, China & Russia set sights on tech sovereignty
Vol. 6, Iss. 12
Robin’s Newsletter #248
Critical vulnerabilities in Microsoft Outlook, Samsung chips in Android phones. ALPHV claims ransomware attack against Ring.
Vol. 6, Iss. 11
Robin’s Newsletter #247
BlackLotus malware can circumvent Secure Boot, infect UEFI. The FBI has been buying US citizen's location data. People are better at identifying fake news if you pay them.
Vol. 6, Iss. 10
Robin’s Newsletter #246
LastPass breach was via engineer's home device. The White House wants to shift cyber liability.
February 2023
February 2023
Vol. 6, Iss. 9
Robin’s Newsletter #245
USSOCCOM Email server left exposed. Critical vulnerability in another file transfer app. Signal says it would exit UK market.
Vol. 6, Iss. 8
Robin’s Newsletter #244
Twitter to charge for SMS MFA. 'Anonymous' ideological attacks. GoDaddy discloses multi-year breach. The proliferation of 'risk dashboards'.
Vol. 6, Iss. 7
Robin’s Newsletter #243
Sanctions for TrickBot as ransomware declared tier 1 national security risk. Hacking ChatGPT with prompt injection attacks. ESXiArgs ransomare spree continues. Dutch police bring down Exclu encrypted phone service.
Vol. 6, Iss. 6
Robin’s Newsletter #242
JD Sports expose PII of 10 million. Redcar council told to 'keep quiet' over ransomware attack. Zero-tolerance policy wipes over 2,000 devices.
January 2023
January 2023
Vol. 6, Iss. 5
Robin’s Newsletter #241
Hive ransomware infrastructure seized by FBI. The concentration of the illicit crypto-currency market. GoTo confirms customer data stolen during November breach.
Vol. 6, Iss. 4
Robin’s Newsletter #240
Ransomware payments fell 40% in 2022. T-Mobile suffers *another* breach; 37 million accounts affected. Credential stuffing attacks against Norton Password Manager, PayPal.
Vol. 6, Iss. 3
Robin’s Newsletter #239
LastPass silent on breach. Royal Mail ransomware attack. FAA system outage grounds flights. Exfiltrating data from Google Sheets.
Vol. 6, Iss. 2
Robin’s Newsletter #238
Details of 200 million Twitter users posted online. Cracking 2048-bit RSA encryption. Turla co-opting old malware.
Vol. 6, Iss. 1
Robin’s Newsletter #237 — 2023 Forecast
My thoughts on the broad outlook and specific predictions for the world of cyber in 2023.
December 2022
December 2022
Vol. 5, Iss. 52
Robin’s Newsletter #236
LastPass customer vault data stolen in breach. EternalBlue-style vulnerability in Windows. Okta source code stolen.
Vol. 5, Iss. 51
Robin’s Newsletter #235
Microsoft certs used to sign malware. AWS API exposed ability to modify, delete container images. BEC scammers are targeting sugar and milk powder.
Vol. 5, Iss. 50
Robin’s Newsletter #234
Apple offers encrypted iCloud backups. Medibank takes ysstems offline for security improvements. Attack on NZ MSP affects Justice and health bodies.
Vol. 5, Iss. 49
Robin’s Newsletter #233
UK managed security businesses to be regulated. Medibank attackers release data. Anker's Eufy smart camera 'local only' claims disputed.
November 2022
November 2022
Vol. 5, Iss. 48
Robin’s Newsletter #232
Massive UK fraud crackdown. Russia designated state sponsor of terrorism by EU Parliament. Cyber Partisans claim compromise of Roskomnadzor agency.
Vol. 5, Iss. 47
Robin’s Newsletter #231
Crypto-exchange FTX's governance failures. Medibank attackers release stolen mental health data. Majority of UK COBRA meetings are about ransomware.
Vol. 5, Iss. 46
Robin’s Newsletter #230
How Qatar hacked the World Cup. Calls for a law on 'failing to prevent fraud'. Australia's new offensive cybercrime team. Mistrust at a root CA.
Vol. 5, Iss. 45
Robin’s Newsletter #229
Slovkia's parliamentary business suspended. Mondelez & Zurich settle NotPetya insurance claim. US Treasury says ransomware losses are over $1 billion.
October 2022
October 2022
Vol. 5, Iss. 44
Robin’s Newsletter #228
Zero Truss: Former-PMs phone allegedly compromised by Russian intelligence. UK ICO says 'complacency' is biggest cyber risk. FTC sanctions Drizly CEO for breach.
Vol. 5, Iss. 43
Robin’s Newsletter #227
Microsoft leaves 2.4TB of 'business transaction data' in public Azure bucket. Head of Germany's cyber agency suspended for links to Russian intelligence. Optus unilaterally blocks data breach victim's passports.
Vol. 5, Iss. 42
Robin’s Newsletter #226
Critical authentication bypass in Fortinet devices. NHS vendor Advanced says cyberattack was LockBit 3.0 ransomware. CSAM Scanning rebuttal.
Vol. 5, Iss. 41
Robin’s Newsletter #225
Ex-Uber CSO found guilty of obstructing justice. Microsoft is botching 'ProxyNotShell' Exchange vulnerabilities. Australian man arrested in connection with Optus breach.
Vol. 5, Iss. 40
Robin’s Newsletter #224
Optus breach attacker retracts demands as attention grows. Rise in fake LinkedIn CISO profiles. Microsoft Exchange Zero-Day.
September 2022
September 2022
Vol. 5, Iss. 39
Robin’s Newsletter #223
Uber points the finger at Lapsus$; GTA games copmany rockstar, Aussie telco Optus, and fintech Revolut all suffer breaches.
Vol. 5, Iss. 38
Robin’s Newsletter #222
Welcome to 2022: Uber comprehensively owned via hardcoded PAM credentials, IHG password vault alleged secured using 'Qwerty1234'.
Vol. 5, Iss. 37
Robin’s Newsletter #221
Ex-Uber CISO trial underway for bug bounty handling of data breach. UK, US, Albania condemn Iranian cyber-attacks. China accuses NSA of spying.
Vol. 5, Iss. 36
Robin’s Newsletter #220
The US gov simultaneously using, and suing a provider of, commercial geolocation data. Uncovering Russian agents in hacktivist data breaches.
August 2022
August 2022
Vol. 5, Iss. 35
Robin’s Newsletter #219
Lloyd's market bulletin tightens wording for cyber cover. Group behind Twilio attack has compromised 'over 130 organisations'. Mudge complaint alleges woeful security practices at Twitter.
Vol. 5, Iss. 34
Robin’s Newsletter #218
Cl0p ransomware gang mistakes attack on South Staffs Water for Thames Water. DigitalOcean caught up in latest Mailchimp breach. Apple security vulnerabilities.
Vol. 5, Iss. 33
Robin’s Newsletter #217
Twilio, Cloudflare & Cisco attacks also targeted employee's personal devices and accounts. NHS 111 outage may last weeks. Sanctions for Tornado Cash.
Vol. 5, Iss. 32
Robin’s Newsletter #216
Outage at NHS 111 service provider. Tory party balots delayed over security fears. Top malware strains. Peak inside a disinformation bot farm.
July 2022
July 2022
Vol. 5, Iss. 31
Robin’s Newsletter #215
Facial recognition use at Co-Op convenience stores and 'secret blacklists' challenged in the UK. The opportunity cost in action bias. And protestware, the 'insider threat' of hacktivism.
Vol. 5, Iss. 30
Robin’s Newsletter #214
Should climate change feature on cyber risk registers? FBI gets a warrant to force-unlock encrypted app. Alibaba execs hauled in by Shanghai police.
Vol. 5, Iss. 29
Robin’s Newsletter #213
False cyber security claims lands US defence contractor in $9 million settlement. Log4J features in the first Cyber Safety Review Board report.
Vol. 5, Iss. 28
Robin’s Newsletter #212
Apple's extreme 'Lockdown Mode' to protect against NSO Group. Apparent breach of 1 billion Chinese citizens data. Bad week for NPM ecosystem.
Vol. 5, Iss. 27
Robin’s Newsletter #211
'Hacktivists' execute cyber attack against Iranian steel works, 'mercenary hackers' swaying legal battles, and malicious insiders
June 2022
June 2022
Vol. 5, Iss. 26
Robin’s Newsletter #210
Infosec 2022 thoughts and trends. Privacy and reproductive rights. Cyber-warefare and lessons from the Ukraine conflict. Plus Cyber 911?
Vol. 5, Iss. 25
Robin’s Newsletter #209 — 4th Birthday Edition
Looking back over the last four years. US and UK proposed data protection changes. Interpol announces arrests of 2,000 scammers.
Vol. 5, Iss. 24
Robin’s Newsletter #208
LockBit distances themselves from Conti. Round-up from RSA Conference 2022. And 'predicting thunderstorms not lightning strikes'.
Vol. 5, Iss. 23
Robin’s Newsletter #207
Zero-day vulnerabilities in Office/Windows and Confluence. New ransowmare tactics. US federal privacy law moves a step closer.
May 2022
May 2022
Vol. 5, Iss. 22
Robin’s Newsletter #206
Verizon DBIR 2022. ICO fines Clearview AI. Suspected leader of 'SilverTerrier' arrested. Fake IDs for everyone!
Vol. 5, Iss. 21
Robin’s Newsletter #205
Conti increases its demands against Costa Rica while also restructuring. REvil potentially back on the scene. DoJ won't prosecute 'good faith' security research under CFAA.
Vol. 5, Iss. 20
Robin’s Newsletter #204
Costa Rica declares state of emergency over ransomware incidents. Civil penalties proposed for Colonial Pipeline over safety breaches.
Vol. 5, Iss. 19
Robin’s Newsletter #203
Mandiant identified stealthy APT actor targeting M&A teams in large corporates. Heroku mishandles breach of customer paswords, environment secrets. $1.6 billion of cryptocurrency has been stolen so far this year.
Vol. 5, Iss. 18
Robin’s Newsletter #202
Conti ransomware gang targets Costa Rica following election. Timeline of Russian cyberatacks against Ukraine. Facebook doesn't know where your data flows.
April 2022
April 2022
Vol. 5, Iss. 17
Robin’s Newsletter #201
Okta breach affected two customers. Russian invasion leaves it 'fair game' for cyberattacks. Java’s ‘psychic signatures’ and conceptualising cybercrimes.
Vol. 5, Iss. 16
Robin’s Newsletter #200
Industroyer2: Cyberattack on Ukraine power grid averted. $600 million crypto-heist linked to North Korea's Lazarus group. RaidForums seized by UA authorities.
Vol. 5, Iss. 15
Robin’s Newsletter #199
Russian 'Cyclops Blink' botnet disrupted by the US. The value of Mailchimp distribution lists. Fundemental security metrics.
Vol. 5, Iss. 14
Robin’s Newsletter #198
Okta says it made a mistake. Wiper malware used against Viasat modems during Russian invasion of Ukraine. DCMS' cyber survey stats.
March 2022
March 2022
Vol. 5, Iss. 13
Robin’s Newsletter #197
The rise, and fall?, of Lapsus$ as Okta confirm breach. US CNI cyberattack warning. Build capabilities, not plans for resilience.
Vol. 5, Iss. 12
Robin’s Newsletter #196
Russia/Ukraine roundup. Mysterious incident affecting satcom terminals. Ransomware group adds wiper capability. Law firm gets GDPR fine for not patching.
Vol. 5, Iss. 11
Robin’s Newsletter #195
Conti's involvement in crypto 'rug pulls'. Unintended consequences of isolating Russia from the Internet.
Vol. 5, Iss. 10
February 2022
February 2022
Vol. 5, Iss. 9
Vol. 5, Iss. 8
Robin’s Newsletter #192
DDoS attacks on Ukraine MoD and banks. French signal jamming. New version of 27002 security control framework.
Vol. 5, Iss. 7
Robin’s Newsletter #191
Slovenian TV disruption. 500 ecommerce sites compromised by MageCart. 2021 was a bumper year for cyber M&A.
Vol. 5, Iss. 6
Robin’s Newsletter #190
News Corp targeted in 'advanced persistent' attack. US launches Cyber Safety Review Board. One guy knocks North Korea off the 'net.
January 2022
January 2022
Vol. 5, Iss. 5
Robin’s Newsletter #189
Activists ransomware Belarus' state-woned railway company. New UK cyber strategy for government. Let's Encrypt re-issuing 2M certs.
Vol. 5, Iss. 4
Robin’s Newsletter #188
UK government advertising campaign against E2EE. Merck win 'act of war' cyber insurance lawsuit. More Russian action against cyber crims.
Vol. 5, Iss. 3
Robin’s Newsletter #187
Russian authorities scoop up members of REvil. Google Analytics and GDPR. Using a cyberattack to accelerate dgitial transformation.
Vol. 5, Iss. 2
Robin’s Newsletter #186
Potential FTC legal action over Log4shell. Phishing using Google Docs. New UK Information Commissioner. Reframing cybersecurity.
Vol. 5, Iss. 1
December 2021
December 2021
Vol. 4, Iss. 52
Robin’s Newsletter #184 — 2021 Retrospective
Join me on a look back through some of the biggest and most interesting infosec stories and 12 cyber stats that made 2021.
Vol. 4, Iss. 51
Robin’s Newsletter #183
Over 100 VMware apps are affected by Log4j, as a second patch is released to address 'Log4Shell' vuln. £2.6B UK cyber strategy unveiled. Plus interesting results in long-term phishing study.
Vol. 4, Iss. 50
Robin’s Newsletter #182
Huge AWS outage. Vulnerability in Log4j library affecting a lot of apps. Google Tag Manager being used in MageCart attacks.
Vol. 4, Iss. 49
Robin’s Newsletter #181
Cyber Essentials changes coming very soon. The future of the infosec profession. DfT domain hosting porn.
November 2021
November 2021
Vol. 4, Iss. 48
Robin’s Newsletter #180
Big penalties associated with UK's IoT security legislation. Tardigrade malware targeting biomanufacturing. Databreach of 1.2M GoDaddy customer details. Lloyd's insurance policy wording on cyber war.
Vol. 4, Iss. 47
Robin’s Newsletter #179
Rowhammer returns. Intel chips vulnerable to physical debug attack. Tesla owners locked out. How a bank runs their PKI.
Vol. 4, Iss. 46
Robin’s Newsletter #178
The balance of public/private responsibility for cyber security. FBI app sends spoof emails. Learning from how the aviation sector handles incidents.
Vol. 4, Iss. 45
Robin’s Newsletter #177
Trojan source vulnerbaility in the way compilers handle Unicode characters. Meta/Facebook to disable facial recnogition feature and delete faceprints.
October 2021
October 2021
Vol. 4, Iss. 44
Robin’s Newsletter #176
FCC revokes China Telecom license; Creating minimum viable secure products; ENISA threat landscape report.
Vol. 4, Iss. 43
Robin’s Newsletter #175
US bans sales of offensive cyber tools to authoritarian governments. REvil taken offline in multi-national operation. The MoD's economic warefare unit.
Vol. 4, Iss. 42
Robin’s Newsletter #174
White House ransomware summit attended by over 30 countries. Client-side scanning (such as for CSAM) may undermine democracy. Don't view-source on Missouri state websites
Vol. 4, Iss. 41
Robin’s Newsletter #173
Facebook's outage; compromise at major telco supplier; Twitch's massive breach; NSO Group spyware used to spy on Princess' divorce.
Vol. 4, Iss. 40
Robin’s Newsletter #172
Azure AD wasn't logging all failed SSO requests. Ransomware crew gets pissy. 'Monoculture' cyber risk.
September 2021
September 2021
Vol. 4, Iss. 39
Robin’s Newsletter #171
'Releasing the hounds' on ranomware actors, though FBI involvement in Kaseya shows offnseive operations may already be underway.
Vol. 4, Iss. 38
Robin’s Newsletter #170
Azure Linux VMs being compromised. OWASP Top 10 draft updates. Microsoft goes passwordless. Learning from other professions.
Vol. 4, Iss. 37
Robin’s Newsletter #169
Encryption backdoors, the NSA and Juniper. Proton Mail got served. Wireless charging side-channel attacks.
Vol. 4, Iss. 36
Robin’s Newsletter #168
Focus on proxyware, patch your confluence servers, the normalisation of surveillance, and interview with a ransomware negotiator.
August 2021
August 2021
Vol. 4, Iss. 35
Robin’s Newsletter #167
Microsoft's $20BN investment is on its own products, and they need the investment. Future of the UK's 'post-Brexit' data protection regime and new Information Commissioner. Samsung can remotely disable its smart TVs.
Vol. 4, Iss. 34
Robin’s Newsletter #166
T-Mobile suffers *another* data breach. Pearson settles over misleading investors. Outrage in cyber risk. Anyone can post a LinkedIn job as pretty much any company.
Vol. 4, Iss. 33
Robin’s Newsletter #165
Apple's damage-control on CSAM. Belarus' state security doxxing. Code poisoning ML models.
Vol. 4, Iss. 32
Robin’s Newsletter #164
Apple's plans to have iPhone continuously scan for child sexual abuse material are ripe for abuse.
Vol. 4, Iss. 31
Robin’s Newsletter #163
Biden's 'real shooting war' comments. Amazon's €746M GDPR fine. Iran's fake social media profiles. Phantom flotillas.
July 2021
July 2021
Vol. 4, Iss. 30
Robin’s Newsletter #162
China called out for state-sponsored cyber campaigns. NSO Group in the spotlight (again) for spyware. Questionable QA on Google Chrome OS update.
Vol. 4, Iss. 29
Robin’s Newsletter #161
ICO raids two properties in Hancock CCTV investigation. Another Windows printer vuln. REvil's sites offline. Identity verification isn't the answer to online abuse.
Vol. 4, Iss. 28
Robin’s Newsletter #160
More on Kaseya. The PrintNightmare continues. Farmers win 'right to repair' and Kaspersky's not-so-random number generator.
Vol. 4, Iss. 27
Robin’s Newsletter #159
Kaseya VSA used to launch 'over 1,000' ransomware attacks. Security researchers cause PrintNightmare. EU grants UK data protection adequacy decision.
June 2021
June 2021
Vol. 4, Iss. 26
Robin’s Newsletter #158
MITRE and NSA want to D3FEND your network. Aussie 'safety by design' toolkit. EU launches 'joint cyber unit' to coordinate 'nightmare' attacks.
Vol. 4, Iss. 25
Robin’s Newsletter #157 — 3rd Birthday Edition 🥳
Suspected Cl0p members arrested. Ransomware is an 'urgent' threat to U.K. Balancing cyber supply and demand. And, Dear Intern...
Vol. 4, Iss. 24
Robin’s Newsletter #156
EA games source code stolen. Apple's news privacy and security features. The FBI ran An0m encrypted comms app. Ransomware thinking.
Vol. 4, Iss. 23
Robin’s Newsletter #155
The U.S. continues beef with Russian ransomware gangs. Colonial Pipeline was result of compromised creds. FireEye to divest name, products business.
May 2021
May 2021
Vol. 4, Iss. 22
Robin’s Newsletter #154
Flashcards reveal the location of U.S. nuclear weapons. Email security tools are working? And fingerprints from photo leads to arrest.
Vol. 4, Iss. 21
Robin’s Newsletter #153
Lots of ransomware: Ireland's HSE will not pay. Colonial coughed up $4.4M'. But there are Technology Detection Dogs. And they're very good dogs!
Vol. 4, Iss. 20
Robin’s Newsletter #152
All the stats: it's DBIR time. Colonial Pipeline paid ransom, restored service and DarkSide disappeared. Being better at security engagement.
Vol. 4, Iss. 19
Robin’s Newsletter #151
Responsible cyber power. Colonial Pipline shut down due to ransomware. Injecting malware C2 into legitimate traffic. Authentication using a severed thumb.
Vol. 4, Iss. 18
Robin’s Newsletter #150
Babuk ransomware operators demand $50M from DC police. BoJo's phone number available online. Emotet deactivated. And, burrowing beavers.
April 2021
April 2021
Vol. 4, Iss. 17
Robin’s Newsletter #149
Ransomware in Apple's supply chain. Facebook seeks to 'normalise' scraping. The balkanisation of the Internet has intelligence agencies worried. Cellebrite's iPhone unlocking system is full of vulnerabilities.
Vol. 4, Iss. 16
Robin’s Newsletter #148
FBI gets a warrant to fix Hafnium web shells, becomes an MSSP. Sanctions for Russia over SolarWinds. Plus you cheddar believe there are some cheese puns.
Vol. 4, Iss. 15
Robin’s Newsletter #147
Facebook's *ahem* 'data scraping' incident sets the stage for debate on responsible design and engineering. AWS bomb threat. Censorship by QoS. TUI's algorithm gender bias led to 'serious incident' calculating takeoff loads.
Vol. 4, Iss. 14
Robin’s Newsletter #146
The long-tail of ransomware recovery. PHP source code compromise. Exploiting 'safe' file formats. Risk margins and early risk management decisions.
March 2021
March 2021
Vol. 4, Iss. 13
Robin’s Newsletter #145
FatFace IR comms 'confidential' while loosing 200GB data. Cyber insurer CNA may have been targeted for policy info. OSINT on the Ever Given.
Vol. 4, Iss. 12
Robin’s Newsletter #144
Rerouting a victims SMS for $16. UK defence review: nuclear response for cyber attack. Who is buying all the data generated by your car?
Vol. 4, Iss. 11
Robin’s Newsletter #143
Criminals jump on Hafnium/ProxyLogon. Hacktivists breach Verkada's 150K facial recognition cams. Apple's IP theft lawsuit. Google's Spectre exploit.
Vol. 4, Iss. 10
Robin’s Newsletter #142
Hafnium mass-exploitation of Microsoft Exchange servers. Google, Alliaz and MunichRe team up on cloud cyber insurance. Bitflipping may be more common than you think.
February 2021
February 2021
Vol. 4, Iss. 9
Robin’s Newsletter #141
IABs charge just $7,100 for access to victims networks. Accellion file transfer appliances popped left, right, centre. Former SolarWinds CEO says it is all the interns fault.
Vol. 4, Iss. 8
Robin’s Newsletter #140
Microsoft source code stolen by Russia in Solorigate attack. France uncovers campaign targeting IT providers. SIEM & ATT&CK. And Citibank's $500M UI gaff.
Vol. 4, Iss. 7
Robin’s Newsletter #139
Dependency confusion: all up in your package manager and automated build process. Florida water treatment plant compromised. Details of cyber-attacks on Isis. Bloomberg back again with The ~~Big~~ Long Hack.
Vol. 4, Iss. 6
Robin’s Newsletter #138
SolarWinds caught up in second campaign against U.S. gov tied to China. Plus an interview with a ransomware operator and Canada declares Clearview AI is 'illegal'.
January 2021
January 2021
Vol. 4, Iss. 5
Robin’s Newsletter #137
Law enforcement's Emotet takedown and NetWalker leak site seized. Got root? Sudo vuln will get you there. North Korea goes after security researchers for 0-day.
Vol. 4, Iss. 4
Robin’s Newsletter #136
Malwarebytes compromised in Solorigate; German company fined for video surveillance of staff; Intel publish financial results early due to leaked info
Vol. 4, Iss. 3
Robin’s Newsletter #135
WhatsApp bungles privacy policy update; U.K. police unintentionally delete 213,000 records; and 'imposing costs' the 'Brexit means Brexit' or cyber.
Vol. 4, Iss. 2
Robin’s Newsletter #134
Cyber implications of the Capitol insurrection. Solorigate 'likely' the work of Russia. SolarWinds hires Krebs Stamos Group. Microsoft throws some shade.
Vol. 4, Iss. 1
Robin’s Newsletter #133
Microsoft source code accessed in Solorigate attack. Plus advice on buying and selling second-hand devices from NCSC. And how much does cybercrime cost Russia?
December 2020
December 2020
Vol. 3, Iss. 52
Robin’s Newsletter #132 — 2020 Retrospective
Strap in and get ready for a recap of the things that I think have been most _interesting_ rather than _highest profile_, in 2020.
Vol. 3, Iss. 51
Robin’s Newsletter #131
SUNBURST attack on U.S. government is both huge, and nothing new. Google suffers multiple outages. Automated attacks on online banking.
Vol. 3, Iss. 50
Robin’s Newsletter #130
FireEye breached by sophisticated actor; $1TN reportedly lost to cybercrime in 2020; Zodiac killer cipher cracker after 51 years.
Vol. 3, Iss. 49
Robin’s Newsletter #129
TrickBot is recovering from CyberCom, Microsoft takedowns, gains UEFI/BIOS capabilities. 'Cold chain' of COVID-19 vaccine targeted. Zero-click exploit in Apple iPhone.
November 2020
November 2020
Vol. 3, Iss. 48
Robin’s Newsletter #128
RCEP, cyber cooperation and Asian data sovereignty; UK National Cyber Force; Microsoft's 'Pluton' and US Special Forces buying location tracking data
Vol. 3, Iss. 47
Robin’s Newsletter #127
RCEP, cyber cooperation and Asian data sovereignty; UK National Cyber Force; Microsoft's 'Pluton' and US Special Forces buying location tracking data
Vol. 3, Iss. 46
Robin’s Newsletter #126
No, Apple aren't logging every app you run, but they are brining privacy nutrition labels to AppStore. Tim Berners-Lee's Inrupt launches Solid server. Ticketmaster to appeal £1.25M data breach penalty.
Vol. 3, Iss. 45
Robin’s Newsletter #125
Nothing cyber happened in the US election. Corporate VOIP systems being targeted. Don't pay ransomware gangs to not leak your data.
Vol. 3, Iss. 44
Robin’s Newsletter #124
Marriott's data breach penalty, how the Clean Network Program is changing 5G economics, reverse-engineering redaction and new ransom threat to health data. Plus company naming fun.
October 2020
October 2020
Vol. 3, Iss. 43
Robin’s Newsletter #123
DOJ charges Fancy Bear, Doubts over Trump's Twitter password, and digital dilemmas for charity donations.
Vol. 3, Iss. 42
Robin’s Newsletter #122
British Airways fined £20M for data breach; Businesses exploiting contact tracing data; Microsoft's trademark takedown of TrickBot.
Vol. 3, Iss. 41
Robin’s Newsletter #121
Integrity in the UK Test & Trace scheme; ransomware attacks up 50%; a different type of lock-down.
Vol. 3, Iss. 40
Robin’s Newsletter #120
US Treasury issues advisory over ransomware payments; Huawei code quality still really bad; and Singapore's consumer security labels.
September 2020
September 2020
Vol. 3, Iss. 39
Robin’s Newsletter #119
YOLOsec, FOMOsec, business value and commodity controls. Plus a couple of examples of how hactivism is evolving.
Vol. 3, Iss. 38
Robin’s Newsletter #118
Domain admin for EVERYONE! APT41/Winnti charged for cyber-espionage and activities against computer games companies. First death leading directly from cyber-attack :-(
Vol. 3, Iss. 37
Robin’s Newsletter #117
China's Global Initiative on Data Security; Ireland's data regulator 'unlikes' Facebook; Who is top of the Cyber Power Index?
Vol. 3, Iss. 36
Robin’s Newsletter #116
Benchmark data from Hiscox's Cyber Readiness Report 2020, MIT's SCRAM, US federal vulnerability disclosure policies, CEO responsibilities and Tesla's fleet-wide hack.
August 2020
August 2020
Vol. 3, Iss. 35
Robin’s Newsletter #115
Attempted $1M bribe of Tesla employee in ransomware campaign. NZX trading suspended for four days due to DDOS. Supply and demand in security budgets.
Vol. 3, Iss. 34
Robin’s Newsletter #114
Personal liability for CISOs in data breach cover-ups, 'fraudulent data requests' at Experian and mailto: attachment vulnerability.
Vol. 3, Iss. 33
Robin’s Newsletter #113
Algorithms and accuracy in A-Level exame results. ReVoLTE over 4G misconfiguration. Vaccinating against Emotet.
Vol. 3, Iss. 32
Robin’s Newsletter #112
Bits from Black Hat (satellites, bug bounties and manipulating energy markets), plus Liam Fox's emails and the march of time on seized devices.
Vol. 3, Iss. 31
Robin’s Newsletter #111
Ransomware payments encourage more ransomware attacks. EU cyber sanctions. Three charged in Twitter crypto-scam.
July 2020
July 2020
Vol. 3, Iss. 30
Robin’s Newsletter #110
Garmin 'ran somewhere.' UK Test & Trace doesn't have a DPIA. Emotet serving up Hackerman memes.
Vol. 3, Iss. 29
Robin’s Newsletter #109
Schrems II, Huawei, and the battle for digital dominance. Plus the 'Great Twitter Hack,' and All. The. Vulnerabilities.
Vol. 3, Iss. 28
Robin’s Newsletter #108
Hong Kong's new national security law causes headaches for citizens, tech and finance companies. Steal the cash, not the painting. Cosmic Lynx and Russian cyber-criminals' 'synergistic value accelerative opportunity'
Vol. 3, Iss. 27
Robins Newsletter #107
Encrochat and evolving law enforcement tactics prove there is a different want to encryption backdoors. Explosion at Natanz doesn't mean 'Stuxnet 2.' And, don't host your website on Internet Archive.
June 2020
June 2020
Vol. 3, Iss. 26
Robins Newsletter #106
Three years on from NotPetya. BlueLeaks and sector-specific aggregation of risk. Minimising harm in breach notification comms. Exfiltrating data using Google Analytics.
Vol. 3, Iss. 25
Robins Newsletter #105
COVID-19 cyber threat update; IoT device vulnerabilities; how to spot like-farming!
Vol. 3, Iss. 24
Robins Newsletter #104
Snowstorm in a Dark Basin: Citizen Lab, MDR Cyber shine light on hackers for hire. Babylon Health breach and lessons from Apple, Amazon, and Google. How far do you go to protect against cyber-harm on your platform?
Vol. 3, Iss. 23
Robins Newsletter #103
REvil launch auction site, while Maze and LockBit team up to pool resources, know-how. Plus inside a BEC scam and DROP DATABASE tickets.
May 2020
May 2020
Vol. 3, Iss. 22
Robins Newsletter #102
Cybercrime is boring; Capital One IR report isn't legally privileged; and easyJet target of £18Bn legal action.
Vol. 3, Iss. 21
Robins Newsletter #101
The annual DBIR data-fest, looking in to EasyJet's breach, the importance of audit trails, and Trump's banking details
Vol. 3, Iss. 20
Robins Newsletter #100
Pricing cyber risk from external data, attack on 'UK electricity system' and mining crypocurrency with supercomputers
Vol. 3, Iss. 19
Robins Newsletter #99
Contact tracing apps, password reuse stats, law firm ransomware, and the integrity of systems
Vol. 3, Iss. 18
Robins Newsletter #98
Mobile device management as a vector, turning antivirus against itself and ransomware's long game
April 2020
April 2020
Vol. 3, Iss. 17
Robins Newsletter #97
Zero-click vulnerability in Apple's Mail app, surveillance and tracking COVID-19, UK MoD relaxes security requirements.
Vol. 3, Iss. 16
Robins Newsletter #96
Compliance risk and the German state of North Rhine-Westphalia’s loss of €30M-€100M #COVID19 aid because of poor identity verification. Plus DoD and measuring meaningful things. And jumping air-gaps with computer fans.
Vol. 3, Iss. 15
Robins Newsletter #95
Cyber-crime economics of Coronavirus; US Senate bans Zoom; China Telecom and BGP hijacks
Vol. 3, Iss. 1
Robin’s Newsletter #81
California's Consumer Privacy Act; Travelex systems still offline; the rise of 'data exposures'.
Vol. 3, Iss. 2
Robin’s Newsletter #82
Travelex's ongoing response; £500K penalty for DSG Retail; No patch for Citrix vulnerabilities until end of month.
Vol. 3, Iss. 3
Robin’s Newsletter #83
Changing the economics of cybercrime; Windows crypto vulnerability; and rival groups exploiting Citrix.
Vol. 3, Iss. 4
Robin’s Newsletter #84
Jeff Bezos' phone hacking; Microsoft's elastic search snafu; ClearView.AI and facial recognition tech.
Vol. 3, Iss. 5
Robin’s Newsletter #85
Jumpshot reminds us security isn't privacy; whopping REvil ransom demands; and keep calm/cary on for DPOs.
Vol. 3, Iss. 6
Robin’s Newsletter #86
Simon Weckert's Google Maps art installation; IKEA's data promise; and valentine's security awareness.
Vol. 3, Iss. 7
Robin’s Newsletter #87
Huawei, Crypto AG, and all the nations doin' all the cybers; plus Emotet.
Vol. 3, Iss. 8
Robin’s Newsletter #88
Georgia defacement attribution; misusing anti-abuse; Pipeline ransomware.
Vol. 3, Iss. 9
Robin’s Newsletter #89
Security awareness without fear; Android malware stealing 2FA codes; click here to sue everybody.
Vol. 3, Iss. 10
Robin’s Newsletter #90
Cashing in on loyalty points; scam certificate pages and the CIAs password
Vol. 3, Iss. 11
Robin’s Newsletter #91
Future U.S. cyber strategy; Whisper not-so-secret; wormable Microsoft vulnerability in SMB
Vol. 3, Iss. 12
Robin’s Newsletter #92
Government cyber advice, examples of phishing campaigns, and things you should patch in the times of COVID-19.
Vol. 3, Iss. 13
Robin’s Newsletter #93
FBI COVID-19 scam warning; FIN7 mailing malware USB keys; predicting attacks from Russian APTs.
Vol. 3, Iss. 14
Robin’s Newsletter #94
All the Zoom news distilled, plus Marriott data breach, Morrisons' supreme court win, cloud availability, bug bounty non-disclosures and COVID-19 CTI.