Robin's Newsletter

I started writing my infosec newsletter in 2018. It covers the security and privacy topics that caught my attention each week, some interesting numbers or stats, and a summary of the news headlines. I’m current in the process of porting across the back catalogue from the previous two volumes. They’ll appear here over the coming weeks at some point.

I love to hear from readers and you’re very welcome to submit suggestions, feedback and tips.

Join hundreds of subscribers who get this first, every Sunday. Subscribe

September 2022

September 2022


Vol. 5, Iss. 39
Robin’s Newsletter #223
Vol. 5, Iss. 39

Uber points the finger at Lapsus$; GTA games copmany rockstar, Aussie telco Optus, and fintech Revolut all suffer breaches.


Vol. 5, Iss. 38
Robin’s Newsletter #222
Vol. 5, Iss. 38

Welcome to 2022: Uber comprehensively owned via hardcoded PAM credentials, IHG password vault alleged secured using 'Qwerty1234'.


Vol. 5, Iss. 37
Robin’s Newsletter #221
Vol. 5, Iss. 37

Ex-Uber CISO trial underway for bug bounty handling of data breach. UK, US, Albania condemn Iranian cyber-attacks. China accuses NSA of spying.


Vol. 5, Iss. 36
Robin’s Newsletter #220
Vol. 5, Iss. 36

The US gov simultaneously using, and suing a provider of, commercial geolocation data. Uncovering Russian agents in hacktivist data breaches.

August 2022

August 2022


Vol. 5, Iss. 35
Robin’s Newsletter #219
Vol. 5, Iss. 35

Lloyd's market bulletin tightens wording for cyber cover. Group behind Twilio attack has compromised 'over 130 organisations'. Mudge complaint alleges woeful security practices at Twitter.


Vol. 5, Iss. 34
Robin’s Newsletter #218
Vol. 5, Iss. 34

Cl0p ransomware gang mistakes attack on South Staffs Water for Thames Water. DigitalOcean caught up in latest Mailchimp breach. Apple security vulnerabilities.


Vol. 5, Iss. 33
Robin’s Newsletter #217
Vol. 5, Iss. 33

Twilio, Cloudflare & Cisco attacks also targeted employee's personal devices and accounts. NHS 111 outage may last weeks. Sanctions for Tornado Cash.


Vol. 5, Iss. 32
Robin’s Newsletter #216
Vol. 5, Iss. 32

Outage at NHS 111 service provider. Tory party balots delayed over security fears. Top malware strains. Peak inside a disinformation bot farm.

July 2022

July 2022


Vol. 5, Iss. 31
Robin’s Newsletter #215
Vol. 5, Iss. 31

Facial recognition use at Co-Op convenience stores and 'secret blacklists' challenged in the UK. The opportunity cost in action bias. And protestware, the 'insider threat' of hacktivism.


Vol. 5, Iss. 30
Robin’s Newsletter #214
Vol. 5, Iss. 30

Should climate change feature on cyber risk registers? FBI gets a warrant to force-unlock encrypted app. Alibaba execs hauled in by Shanghai police.


Vol. 5, Iss. 29
Robin’s Newsletter #213
Vol. 5, Iss. 29

False cyber security claims lands US defence contractor in $9 million settlement. Log4J features in the first Cyber Safety Review Board report.


Vol. 5, Iss. 28
Robin’s Newsletter #212
Vol. 5, Iss. 28

Apple's extreme 'Lockdown Mode' to protect against NSO Group. Apparent breach of 1 billion Chinese citizens data. Bad week for NPM ecosystem.


Vol. 5, Iss. 27
Robin’s Newsletter #211
Vol. 5, Iss. 27

'Hacktivists' execute cyber attack against Iranian steel works, 'mercenary hackers' swaying legal battles, and malicious insiders

June 2022

June 2022


Vol. 5, Iss. 26
Robin’s Newsletter #210
Vol. 5, Iss. 26

Infosec 2022 thoughts and trends. Privacy and reproductive rights. Cyber-warefare and lessons from the Ukraine conflict. Plus Cyber 911?


Vol. 5, Iss. 25
Robin’s Newsletter #209 — 4th Birthday Edition
Vol. 5, Iss. 25

Looking back over the last four years. US and UK proposed data protection changes. Interpol announces arrests of 2,000 scammers.


Vol. 5, Iss. 24
Robin’s Newsletter #208
Vol. 5, Iss. 24

LockBit distances themselves from Conti. Round-up from RSA Conference 2022. And 'predicting thunderstorms not lightning strikes'.


Vol. 5, Iss. 23
Robin’s Newsletter #207
Vol. 5, Iss. 23

Zero-day vulnerabilities in Office/Windows and Confluence. New ransowmare tactics. US federal privacy law moves a step closer.

May 2022

May 2022


Vol. 5, Iss. 22
Robin’s Newsletter #206
Vol. 5, Iss. 22

Verizon DBIR 2022. ICO fines Clearview AI. Suspected leader of 'SilverTerrier' arrested. Fake IDs for everyone!


Vol. 5, Iss. 21
Robin’s Newsletter #205
Vol. 5, Iss. 21

Conti increases its demands against Costa Rica while also restructuring. REvil potentially back on the scene. DoJ won't prosecute 'good faith' security research under CFAA.


Vol. 5, Iss. 20
Robin’s Newsletter #204
Vol. 5, Iss. 20

Costa Rica declares state of emergency over ransomware incidents. Civil penalties proposed for Colonial Pipeline over safety breaches.


Vol. 5, Iss. 19
Robin’s Newsletter #203
Vol. 5, Iss. 19

Mandiant identified stealthy APT actor targeting M&A teams in large corporates. Heroku mishandles breach of customer paswords, environment secrets. $1.6 billion of cryptocurrency has been stolen so far this year.


Vol. 5, Iss. 18
Robin’s Newsletter #202
Vol. 5, Iss. 18

Conti ransomware gang targets Costa Rica following election. Timeline of Russian cyberatacks against Ukraine. Facebook doesn't know where your data flows.

April 2022

April 2022


Vol. 5, Iss. 17
Robin’s Newsletter #201
Vol. 5, Iss. 17

Okta breach affected two customers. Russian invasion leaves it 'fair game' for cyberattacks. Java’s ‘psychic signatures’ and conceptualising cybercrimes.


Vol. 5, Iss. 16
Robin’s Newsletter #200
Vol. 5, Iss. 16

Industroyer2: Cyberattack on Ukraine power grid averted. $600 million crypto-heist linked to North Korea's Lazarus group. RaidForums seized by UA authorities.


Vol. 5, Iss. 15
Robin’s Newsletter #199
Vol. 5, Iss. 15

Russian 'Cyclops Blink' botnet disrupted by the US. The value of Mailchimp distribution lists. Fundemental security metrics.


Vol. 5, Iss. 14
Robin’s Newsletter #198
Vol. 5, Iss. 14

Okta says it made a mistake. Wiper malware used against Viasat modems during Russian invasion of Ukraine. DCMS' cyber survey stats.

March 2022

March 2022


Vol. 5, Iss. 13
Robin’s Newsletter #197
Vol. 5, Iss. 13

The rise, and fall?, of Lapsus$ as Okta confirm breach. US CNI cyberattack warning. Build capabilities, not plans for resilience.


Vol. 5, Iss. 12
Robin’s Newsletter #196
Vol. 5, Iss. 12

Russia/Ukraine roundup. Mysterious incident affecting satcom terminals. Ransomware group adds wiper capability. Law firm gets GDPR fine for not patching.


Vol. 5, Iss. 11
Robin’s Newsletter #195
Vol. 5, Iss. 11

Conti's involvement in crypto 'rug pulls'. Unintended consequences of isolating Russia from the Internet.


Vol. 5, Iss. 10
Robin’s Newsletter #194
Vol. 5, Iss. 10

The 'pandemonium' of modern warfare.

February 2022

February 2022


Vol. 5, Iss. 9
Robin’s Newsletter #193
Vol. 5, Iss. 9

Russia invades Ukraine.


Vol. 5, Iss. 8
Robin’s Newsletter #192
Vol. 5, Iss. 8

DDoS attacks on Ukraine MoD and banks. French signal jamming. New version of 27002 security control framework.


Vol. 5, Iss. 7
Robin’s Newsletter #191
Vol. 5, Iss. 7

Slovenian TV disruption. 500 ecommerce sites compromised by MageCart. 2021 was a bumper year for cyber M&A.


Vol. 5, Iss. 6
Robin’s Newsletter #190
Vol. 5, Iss. 6

News Corp targeted in 'advanced persistent' attack. US launches Cyber Safety Review Board. One guy knocks North Korea off the 'net.

January 2022

January 2022


Vol. 5, Iss. 5
Robin’s Newsletter #189
Vol. 5, Iss. 5

Activists ransomware Belarus' state-woned railway company. New UK cyber strategy for government. Let's Encrypt re-issuing 2M certs.


Vol. 5, Iss. 4
Robin’s Newsletter #188
Vol. 5, Iss. 4

UK government advertising campaign against E2EE. Merck win 'act of war' cyber insurance lawsuit. More Russian action against cyber crims.


Vol. 5, Iss. 3
Robin’s Newsletter #187
Vol. 5, Iss. 3

Russian authorities scoop up members of REvil. Google Analytics and GDPR. Using a cyberattack to accelerate dgitial transformation.


Vol. 5, Iss. 2
Robin’s Newsletter #186
Vol. 5, Iss. 2

Potential FTC legal action over Log4shell. Phishing using Google Docs. New UK Information Commissioner. Reframing cybersecurity.


Vol. 5, Iss. 1
Robin’s Newsletter #185 — 2022 Forecast
Vol. 5, Iss. 1

What does 2022 hold for cyber and the world?

December 2021

December 2021


Vol. 4, Iss. 52
Robin’s Newsletter #184 — 2021 Retrospective
Vol. 4, Iss. 52

Join me on a look back through some of the biggest and most interesting infosec stories and 12 cyber stats that made 2021.


Vol. 4, Iss. 51
Robin’s Newsletter #183
Vol. 4, Iss. 51

Over 100 VMware apps are affected by Log4j, as a second patch is released to address 'Log4Shell' vuln. £2.6B UK cyber strategy unveiled. Plus interesting results in long-term phishing study.


Vol. 4, Iss. 50
Robin’s Newsletter #182
Vol. 4, Iss. 50

Huge AWS outage. Vulnerability in Log4j library affecting a lot of apps. Google Tag Manager being used in MageCart attacks.


Vol. 4, Iss. 49
Robin’s Newsletter #181
Vol. 4, Iss. 49

Cyber Essentials changes coming very soon. The future of the infosec profession. DfT domain hosting porn.

November 2021

November 2021


Vol. 4, Iss. 48
Robin’s Newsletter #180
Vol. 4, Iss. 48

Big penalties associated with UK's IoT security legislation. Tardigrade malware targeting biomanufacturing. Databreach of 1.2M GoDaddy customer details. Lloyd's insurance policy wording on cyber war.


Vol. 4, Iss. 47
Robin’s Newsletter #179
Vol. 4, Iss. 47

Rowhammer returns. Intel chips vulnerable to physical debug attack. Tesla owners locked out. How a bank runs their PKI.


Vol. 4, Iss. 46
Robin’s Newsletter #178
Vol. 4, Iss. 46

The balance of public/private responsibility for cyber security. FBI app sends spoof emails. Learning from how the aviation sector handles incidents.


Vol. 4, Iss. 45
Robin’s Newsletter #177
Vol. 4, Iss. 45

Trojan source vulnerbaility in the way compilers handle Unicode characters. Meta/Facebook to disable facial recnogition feature and delete faceprints.

October 2021

October 2021


Vol. 4, Iss. 44
Robin’s Newsletter #176
Vol. 4, Iss. 44

FCC revokes China Telecom license; Creating minimum viable secure products; ENISA threat landscape report.


Vol. 4, Iss. 43
Robin’s Newsletter #175
Vol. 4, Iss. 43

US bans sales of offensive cyber tools to authoritarian governments. REvil taken offline in multi-national operation. The MoD's economic warefare unit.


Vol. 4, Iss. 42
Robin’s Newsletter #174
Vol. 4, Iss. 42

White House ransomware summit attended by over 30 countries. Client-side scanning (such as for CSAM) may undermine democracy. Don't view-source on Missouri state websites


Vol. 4, Iss. 41
Robin’s Newsletter #173
Vol. 4, Iss. 41

Facebook's outage; compromise at major telco supplier; Twitch's massive breach; NSO Group spyware used to spy on Princess' divorce.


Vol. 4, Iss. 40
Robin’s Newsletter #172
Vol. 4, Iss. 40

Azure AD wasn't logging all failed SSO requests. Ransomware crew gets pissy. 'Monoculture' cyber risk.

September 2021

September 2021


Vol. 4, Iss. 39
Robin’s Newsletter #171
Vol. 4, Iss. 39

'Releasing the hounds' on ranomware actors, though FBI involvement in Kaseya shows offnseive operations may already be underway.


Vol. 4, Iss. 38
Robin’s Newsletter #170
Vol. 4, Iss. 38

Azure Linux VMs being compromised. OWASP Top 10 draft updates. Microsoft goes passwordless. Learning from other professions.


Vol. 4, Iss. 37
Robin’s Newsletter #169
Vol. 4, Iss. 37

Encryption backdoors, the NSA and Juniper. Proton Mail got served. Wireless charging side-channel attacks.


Vol. 4, Iss. 36
Robin’s Newsletter #168
Vol. 4, Iss. 36

Focus on proxyware, patch your confluence servers, the normalisation of surveillance, and interview with a ransomware negotiator.

August 2021

August 2021


Vol. 4, Iss. 35
Robin’s Newsletter #167
Vol. 4, Iss. 35

Microsoft's $20BN investment is on its own products, and they need the investment. Future of the UK's 'post-Brexit' data protection regime and new Information Commissioner. Samsung can remotely disable its smart TVs.


Vol. 4, Iss. 34
Robin’s Newsletter #166
Vol. 4, Iss. 34

T-Mobile suffers *another* data breach. Pearson settles over misleading investors. Outrage in cyber risk. Anyone can post a LinkedIn job as pretty much any company.


Vol. 4, Iss. 33
Robin’s Newsletter #165
Vol. 4, Iss. 33

Apple's damage-control on CSAM. Belarus' state security doxxing. Code poisoning ML models.


Vol. 4, Iss. 32
Robin’s Newsletter #164
Vol. 4, Iss. 32

Apple's plans to have iPhone continuously scan for child sexual abuse material are ripe for abuse.


Vol. 4, Iss. 31
Robin’s Newsletter #163
Vol. 4, Iss. 31

Biden's 'real shooting war' comments. Amazon's €746M GDPR fine. Iran's fake social media profiles. Phantom flotillas.

July 2021

July 2021


Vol. 4, Iss. 30
Robin’s Newsletter #162
Vol. 4, Iss. 30

China called out for state-sponsored cyber campaigns. NSO Group in the spotlight (again) for spyware. Questionable QA on Google Chrome OS update.


Vol. 4, Iss. 29
Robin’s Newsletter #161
Vol. 4, Iss. 29

ICO raids two properties in Hancock CCTV investigation. Another Windows printer vuln. REvil's sites offline. Identity verification isn't the answer to online abuse.


Vol. 4, Iss. 28
Robin’s Newsletter #160
Vol. 4, Iss. 28

More on Kaseya. The PrintNightmare continues. Farmers win 'right to repair' and Kaspersky's not-so-random number generator.


Vol. 4, Iss. 27
Robin’s Newsletter #159
Vol. 4, Iss. 27

Kaseya VSA used to launch 'over 1,000' ransomware attacks. Security researchers cause PrintNightmare. EU grants UK data protection adequacy decision.

June 2021

June 2021


Vol. 4, Iss. 26
Robin’s Newsletter #158
Vol. 4, Iss. 26

MITRE and NSA want to D3FEND your network. Aussie 'safety by design' toolkit. EU launches 'joint cyber unit' to coordinate 'nightmare' attacks.


Vol. 4, Iss. 25
Robin’s Newsletter #157 — 3rd Birthday Edition 🥳
Vol. 4, Iss. 25

Suspected Cl0p members arrested. Ransomware is an 'urgent' threat to U.K. Balancing cyber supply and demand. And, Dear Intern...


Vol. 4, Iss. 24
Robin’s Newsletter #156
Vol. 4, Iss. 24

EA games source code stolen. Apple's news privacy and security features. The FBI ran An0m encrypted comms app. Ransomware thinking.


Vol. 4, Iss. 23
Robin’s Newsletter #155
Vol. 4, Iss. 23

The U.S. continues beef with Russian ransomware gangs. Colonial Pipeline was result of compromised creds. FireEye to divest name, products business.

May 2021

May 2021


Vol. 4, Iss. 22
Robin’s Newsletter #154
Vol. 4, Iss. 22

Flashcards reveal the location of U.S. nuclear weapons. Email security tools are working? And fingerprints from photo leads to arrest.


Vol. 4, Iss. 21
Robin’s Newsletter #153
Vol. 4, Iss. 21

Lots of ransomware: Ireland's HSE will not pay. Colonial coughed up $4.4M'. But there are Technology Detection Dogs. And they're very good dogs!


Vol. 4, Iss. 20
Robin’s Newsletter #152
Vol. 4, Iss. 20

All the stats: it's DBIR time. Colonial Pipeline paid ransom, restored service and DarkSide disappeared. Being better at security engagement.


Vol. 4, Iss. 19
Robin’s Newsletter #151
Vol. 4, Iss. 19

Responsible cyber power. Colonial Pipline shut down due to ransomware. Injecting malware C2 into legitimate traffic. Authentication using a severed thumb.


Vol. 4, Iss. 18
Robin’s Newsletter #150
Vol. 4, Iss. 18

Babuk ransomware operators demand $50M from DC police. BoJo's phone number available online. Emotet deactivated. And, burrowing beavers.

April 2021

April 2021


Vol. 4, Iss. 17
Robin’s Newsletter #149
Vol. 4, Iss. 17

Ransomware in Apple's supply chain. Facebook seeks to 'normalise' scraping. The balkanisation of the Internet has intelligence agencies worried. Cellebrite's iPhone unlocking system is full of vulnerabilities.


Vol. 4, Iss. 16
Robin’s Newsletter #148
Vol. 4, Iss. 16

FBI gets a warrant to fix Hafnium web shells, becomes an MSSP. Sanctions for Russia over SolarWinds. Plus you cheddar believe there are some cheese puns.


Vol. 4, Iss. 15
Robin’s Newsletter #147
Vol. 4, Iss. 15

Facebook's *ahem* 'data scraping' incident sets the stage for debate on responsible design and engineering. AWS bomb threat. Censorship by QoS. TUI's algorithm gender bias led to 'serious incident' calculating takeoff loads.


Vol. 4, Iss. 14
Robin’s Newsletter #146
Vol. 4, Iss. 14

The long-tail of ransomware recovery. PHP source code compromise. Exploiting 'safe' file formats. Risk margins and early risk management decisions.

March 2021

March 2021


Vol. 4, Iss. 13
Robin’s Newsletter #145
Vol. 4, Iss. 13

FatFace IR comms 'confidential' while loosing 200GB data. Cyber insurer CNA may have been targeted for policy info. OSINT on the Ever Given.


Vol. 4, Iss. 12
Robin’s Newsletter #144
Vol. 4, Iss. 12

Rerouting a victims SMS for $16. UK defence review: nuclear response for cyber attack. Who is buying all the data generated by your car?


Vol. 4, Iss. 11
Robin’s Newsletter #143
Vol. 4, Iss. 11

Criminals jump on Hafnium/ProxyLogon. Hacktivists breach Verkada's 150K facial recognition cams. Apple's IP theft lawsuit. Google's Spectre exploit.


Vol. 4, Iss. 10
Robin’s Newsletter #142
Vol. 4, Iss. 10

Hafnium mass-exploitation of Microsoft Exchange servers. Google, Alliaz and MunichRe team up on cloud cyber insurance. Bitflipping may be more common than you think.

February 2021

February 2021


Vol. 4, Iss. 9
Robin’s Newsletter #141
Vol. 4, Iss. 9

IABs charge just $7,100 for access to victims networks. Accellion file transfer appliances popped left, right, centre. Former SolarWinds CEO says it is all the interns fault.


Vol. 4, Iss. 8
Robin’s Newsletter #140
Vol. 4, Iss. 8

Microsoft source code stolen by Russia in Solorigate attack. France uncovers campaign targeting IT providers. SIEM & ATT&CK. And Citibank's $500M UI gaff.


Vol. 4, Iss. 7
Robin’s Newsletter #139
Vol. 4, Iss. 7

Dependency confusion: all up in your package manager and automated build process. Florida water treatment plant compromised. Details of cyber-attacks on Isis. Bloomberg back again with The ~~Big~~ Long Hack.


Vol. 4, Iss. 6
Robin’s Newsletter #138
Vol. 4, Iss. 6

SolarWinds caught up in second campaign against U.S. gov tied to China. Plus an interview with a ransomware operator and Canada declares Clearview AI is 'illegal'.

January 2021

January 2021


Vol. 4, Iss. 5
Robin’s Newsletter #137
Vol. 4, Iss. 5

Law enforcement's Emotet takedown and NetWalker leak site seized. Got root? Sudo vuln will get you there. North Korea goes after security researchers for 0-day.


Vol. 4, Iss. 4
Robin’s Newsletter #136
Vol. 4, Iss. 4

Malwarebytes compromised in Solorigate; German company fined for video surveillance of staff; Intel publish financial results early due to leaked info


Vol. 4, Iss. 3
Robin’s Newsletter #135
Vol. 4, Iss. 3

WhatsApp bungles privacy policy update; U.K. police unintentionally delete 213,000 records; and 'imposing costs' the 'Brexit means Brexit' or cyber.


Vol. 4, Iss. 2
Robin’s Newsletter #134
Vol. 4, Iss. 2

Cyber implications of the Capitol insurrection. Solorigate 'likely' the work of Russia. SolarWinds hires Krebs Stamos Group. Microsoft throws some shade.


Vol. 4, Iss. 1
Robin’s Newsletter #133
Vol. 4, Iss. 1

Microsoft source code accessed in Solorigate attack. Plus advice on buying and selling second-hand devices from NCSC. And how much does cybercrime cost Russia?

December 2020

December 2020


Vol. 3, Iss. 52
Robin’s Newsletter #132 — 2020 Retrospective
Vol. 3, Iss. 52

Strap in and get ready for a recap of the things that I think have been most _interesting_ rather than _highest profile_, in 2020.


Vol. 3, Iss. 51
Robin’s Newsletter #131
Vol. 3, Iss. 51

SUNBURST attack on U.S. government is both huge, and nothing new. Google suffers multiple outages. Automated attacks on online banking.


Vol. 3, Iss. 50
Robin’s Newsletter #130
Vol. 3, Iss. 50

FireEye breached by sophisticated actor; $1TN reportedly lost to cybercrime in 2020; Zodiac killer cipher cracker after 51 years.


Vol. 3, Iss. 49
Robin’s Newsletter #129
Vol. 3, Iss. 49

TrickBot is recovering from CyberCom, Microsoft takedowns, gains UEFI/BIOS capabilities. 'Cold chain' of COVID-19 vaccine targeted. Zero-click exploit in Apple iPhone.

November 2020

November 2020


Vol. 3, Iss. 48
Robin’s Newsletter #128
Vol. 3, Iss. 48

RCEP, cyber cooperation and Asian data sovereignty; UK National Cyber Force; Microsoft's 'Pluton' and US Special Forces buying location tracking data


Vol. 3, Iss. 47
Robin’s Newsletter #127
Vol. 3, Iss. 47

RCEP, cyber cooperation and Asian data sovereignty; UK National Cyber Force; Microsoft's 'Pluton' and US Special Forces buying location tracking data


Vol. 3, Iss. 46
Robin’s Newsletter #126
Vol. 3, Iss. 46

No, Apple aren't logging every app you run, but they are brining privacy nutrition labels to AppStore. Tim Berners-Lee's Inrupt launches Solid server. Ticketmaster to appeal £1.25M data breach penalty.


Vol. 3, Iss. 45
Robin’s Newsletter #125
Vol. 3, Iss. 45

Nothing cyber happened in the US election. Corporate VOIP systems being targeted. Don't pay ransomware gangs to not leak your data.


Vol. 3, Iss. 44
Robin’s Newsletter #124
Vol. 3, Iss. 44

Marriott's data breach penalty, how the Clean Network Program is changing 5G economics, reverse-engineering redaction and new ransom threat to health data. Plus company naming fun.

October 2020

October 2020


Vol. 3, Iss. 43
Robin’s Newsletter #123
Vol. 3, Iss. 43

DOJ charges Fancy Bear, Doubts over Trump's Twitter password, and digital dilemmas for charity donations.


Vol. 3, Iss. 42
Robin’s Newsletter #122
Vol. 3, Iss. 42

British Airways fined £20M for data breach; Businesses exploiting contact tracing data; Microsoft's trademark takedown of TrickBot.


Vol. 3, Iss. 41
Robin’s Newsletter #121
Vol. 3, Iss. 41

Integrity in the UK Test & Trace scheme; ransomware attacks up 50%; a different type of lock-down.


Vol. 3, Iss. 40
Robin’s Newsletter #120
Vol. 3, Iss. 40

US Treasury issues advisory over ransomware payments; Huawei code quality still really bad; and Singapore's consumer security labels.

September 2020

September 2020


Vol. 3, Iss. 39
Robin’s Newsletter #119
Vol. 3, Iss. 39

YOLOsec, FOMOsec, business value and commodity controls. Plus a couple of examples of how hactivism is evolving.


Vol. 3, Iss. 38
Robin’s Newsletter #118
Vol. 3, Iss. 38

Domain admin for EVERYONE! APT41/Winnti charged for cyber-espionage and activities against computer games companies. First death leading directly from cyber-attack :-(


Vol. 3, Iss. 37
Robin’s Newsletter #117
Vol. 3, Iss. 37

China's Global Initiative on Data Security; Ireland's data regulator 'unlikes' Facebook; Who is top of the Cyber Power Index?


Vol. 3, Iss. 36
Robin’s Newsletter #116
Vol. 3, Iss. 36

Benchmark data from Hiscox's Cyber Readiness Report 2020, MIT's SCRAM, US federal vulnerability disclosure policies, CEO responsibilities and Tesla's fleet-wide hack.

August 2020

August 2020


Vol. 3, Iss. 35
Robin’s Newsletter #115
Vol. 3, Iss. 35

Attempted $1M bribe of Tesla employee in ransomware campaign. NZX trading suspended for four days due to DDOS. Supply and demand in security budgets.


Vol. 3, Iss. 34
Robin’s Newsletter #114
Vol. 3, Iss. 34

Personal liability for CISOs in data breach cover-ups, 'fraudulent data requests' at Experian and mailto: attachment vulnerability.


Vol. 3, Iss. 33
Robin’s Newsletter #113
Vol. 3, Iss. 33

Algorithms and accuracy in A-Level exame results. ReVoLTE over 4G misconfiguration. Vaccinating against Emotet.


Vol. 3, Iss. 32
Robin’s Newsletter #112
Vol. 3, Iss. 32

Bits from Black Hat (satellites, bug bounties and manipulating energy markets), plus Liam Fox's emails and the march of time on seized devices.


Vol. 3, Iss. 31
Robin’s Newsletter #111
Vol. 3, Iss. 31

Ransomware payments encourage more ransomware attacks. EU cyber sanctions. Three charged in Twitter crypto-scam.

July 2020

July 2020


Vol. 3, Iss. 30
Robin’s Newsletter #110
Vol. 3, Iss. 30

Garmin 'ran somewhere.' UK Test & Trace doesn't have a DPIA. Emotet serving up Hackerman memes.


Vol. 3, Iss. 29
Robin’s Newsletter #109
Vol. 3, Iss. 29

Schrems II, Huawei, and the battle for digital dominance. Plus the 'Great Twitter Hack,' and All. The. Vulnerabilities.


Vol. 3, Iss. 28
Robin’s Newsletter #108
Vol. 3, Iss. 28

Hong Kong's new national security law causes headaches for citizens, tech and finance companies. Steal the cash, not the painting. Cosmic Lynx and Russian cyber-criminals' 'synergistic value accelerative opportunity'


Vol. 3, Iss. 27
Robins Newsletter #107
Vol. 3, Iss. 27

Encrochat and evolving law enforcement tactics prove there is a different want to encryption backdoors. Explosion at Natanz doesn't mean 'Stuxnet 2.' And, don't host your website on Internet Archive.

June 2020

June 2020


Vol. 3, Iss. 26
Robins Newsletter #106
Vol. 3, Iss. 26

Three years on from NotPetya. BlueLeaks and sector-specific aggregation of risk. Minimising harm in breach notification comms. Exfiltrating data using Google Analytics.


Vol. 3, Iss. 25
Robins Newsletter #105
Vol. 3, Iss. 25

COVID-19 cyber threat update; IoT device vulnerabilities; how to spot like-farming!


Vol. 3, Iss. 24
Robins Newsletter #104
Vol. 3, Iss. 24

Snowstorm in a Dark Basin: Citizen Lab, MDR Cyber shine light on hackers for hire. Babylon Health breach and lessons from Apple, Amazon, and Google. How far do you go to protect against cyber-harm on your platform?


Vol. 3, Iss. 23
Robins Newsletter #103
Vol. 3, Iss. 23

REvil launch auction site, while Maze and LockBit team up to pool resources, know-how. Plus inside a BEC scam and DROP DATABASE tickets.

May 2020

May 2020


Vol. 3, Iss. 22
Robins Newsletter #102
Vol. 3, Iss. 22

Cybercrime is boring; Capital One IR report isn't legally privileged; and easyJet target of £18Bn legal action.


Vol. 3, Iss. 21
Robins Newsletter #101
Vol. 3, Iss. 21

The annual DBIR data-fest, looking in to EasyJet's breach, the importance of audit trails, and Trump's banking details


Vol. 3, Iss. 20
Robins Newsletter #100
Vol. 3, Iss. 20

Pricing cyber risk from external data, attack on 'UK electricity system' and mining crypocurrency with supercomputers


Vol. 3, Iss. 19
Robins Newsletter #99
Vol. 3, Iss. 19

Contact tracing apps, password reuse stats, law firm ransomware, and the integrity of systems


Vol. 3, Iss. 18
Robins Newsletter #98
Vol. 3, Iss. 18

Mobile device management as a vector, turning antivirus against itself and ransomware's long game

April 2020

April 2020


Vol. 3, Iss. 17
Robins Newsletter #97
Vol. 3, Iss. 17

Zero-click vulnerability in Apple's Mail app, surveillance and tracking COVID-19, UK MoD relaxes security requirements.


Vol. 3, Iss. 16
Robins Newsletter #96
Vol. 3, Iss. 16

Compliance risk and the German state of North Rhine-Westphalia’s loss of €30M-€100M #COVID19 aid because of poor identity verification. Plus DoD and measuring meaningful things. And jumping air-gaps with computer fans.


Vol. 3, Iss. 15
Robins Newsletter #95
Vol. 3, Iss. 15

Cyber-crime economics of Coronavirus; US Senate bans Zoom; China Telecom and BGP hijacks


Vol. 3, Iss. 1
Robin’s Newsletter #81
Vol. 3, Iss. 1

California's Consumer Privacy Act; Travelex systems still offline; the rise of 'data exposures'.


Vol. 3, Iss. 2
Robin’s Newsletter #82
Vol. 3, Iss. 2

Travelex's ongoing response; £500K penalty for DSG Retail; No patch for Citrix vulnerabilities until end of month.


Vol. 3, Iss. 3
Robin’s Newsletter #83
Vol. 3, Iss. 3

Changing the economics of cybercrime; Windows crypto vulnerability; and rival groups exploiting Citrix.


Vol. 3, Iss. 4
Robin’s Newsletter #84
Vol. 3, Iss. 4

Jeff Bezos' phone hacking; Microsoft's elastic search snafu; ClearView.AI and facial recognition tech.


Vol. 3, Iss. 5
Robin’s Newsletter #85
Vol. 3, Iss. 5

Jumpshot reminds us security isn't privacy; whopping REvil ransom demands; and keep calm/cary on for DPOs.


Vol. 3, Iss. 6
Robin’s Newsletter #86
Vol. 3, Iss. 6

Simon Weckert's Google Maps art installation; IKEA's data promise; and valentine's security awareness.


Vol. 3, Iss. 7
Robin’s Newsletter #87
Vol. 3, Iss. 7

Huawei, Crypto AG, and all the nations doin' all the cybers; plus Emotet.


Vol. 3, Iss. 8
Robin’s Newsletter #88
Vol. 3, Iss. 8

Georgia defacement attribution; misusing anti-abuse; Pipeline ransomware.


Vol. 3, Iss. 9
Robin’s Newsletter #89
Vol. 3, Iss. 9

Security awareness without fear; Android malware stealing 2FA codes; click here to sue everybody.


Vol. 3, Iss. 10
Robin’s Newsletter #90
Vol. 3, Iss. 10

Cashing in on loyalty points; scam certificate pages and the CIAs password


Vol. 3, Iss. 11
Robin’s Newsletter #91
Vol. 3, Iss. 11

Future U.S. cyber strategy; Whisper not-so-secret; wormable Microsoft vulnerability in SMB


Vol. 3, Iss. 12
Robin’s Newsletter #92
Vol. 3, Iss. 12

Government cyber advice, examples of phishing campaigns, and things you should patch in the times of COVID-19.


Vol. 3, Iss. 13
Robin’s Newsletter #93
Vol. 3, Iss. 13

FBI COVID-19 scam warning; FIN7 mailing malware USB keys; predicting attacks from Russian APTs.


Vol. 3, Iss. 14
Robin’s Newsletter #94
Vol. 3, Iss. 14

All the Zoom news distilled, plus Marriott data breach, Morrisons' supreme court win, cloud availability, bug bounty non-disclosures and COVID-19 CTI.