Russia

August 2025

August 2025


Vol. 8, Iss. 31
Robin’s Newsletter #372
Vol. 8, Iss. 31

Hacktivists ground dozens of Russian flights. Palo Alto acquires CyberArk for $25 billion. OpenAI rolls back conversation sharing feature.

June 2025

June 2025


Vol. 8, Iss. 24
Robin’s Newsletter #365
Vol. 8, Iss. 24

Whole Foods supplier disruption. Google outage caused by poor error handling. DarkGaboon ransoming Russian companies. US ATC runs on Win95.


Vol. 8, Iss. 23
Robin’s Newsletter #364
Vol. 8, Iss. 23

More retail cyber attack news. Meta, Yandex caught de-anonymising Android users. Vendors to collaborate on threat actor naming.

May 2025

May 2025


Vol. 8, Iss. 21
Robin’s Newsletter #362
Vol. 8, Iss. 21

Global infostealer, ransomware infrastrucutre takedown. TCS investigating role in M&S incident. Anthropic's AI blackmails developer in test.

March 2025

March 2025


Vol. 8, Iss. 10
Robin’s Newsletter #351
Vol. 8, Iss. 10

Silk Typhoon shift focus to tech supply chains. Apple launches legal challenge over UK backdoor request. Scammers sending fake, physical ransom notes.

February 2025

February 2025


Vol. 8, Iss. 6
Robin’s Newsletter #347
Vol. 8, Iss. 6

UK demands Apple break iCloud encryption. Hurricane-style categorisation of cyber incidents. Meta torrented pirated books to train AI models.

January 2025

January 2025


Vol. 8, Iss. 3
Robin’s Newsletter #344
Vol. 8, Iss. 3

UK launches ransomware consultation. FTC takes action against GoDaddy for poor security practices. Doom PDF.


Vol. 8, Iss. 2
Robin’s Newsletter #343
Vol. 8, Iss. 2

Ivanti zero-day exploits. US Treasury breach targeted foreign investment committee. Minor changes needed to manipulate AI models for misinformation.

December 2024

December 2024


Vol. 7, Iss. 51
Robin’s Newsletter #340
Vol. 7, Iss. 51

US considering TP-Link ban. Nebraska sues Change Healthcare. False Claims Act whistleblowers.


Vol. 7, Iss. 49
Robin’s Newsletter #338
Vol. 7, Iss. 49

More Salt Typhoon victims, as FCC proposes new telco cyber regulations.


Vol. 7, Iss. 48
Robin’s Newsletter #337
Vol. 7, Iss. 48

Blue Yonder causes supply chain disruption. Incidents at two UK hospitals. $17M stolen from Urgana's central bank.

November 2024

November 2024


Vol. 7, Iss. 47
Robin’s Newsletter #336
Vol. 7, Iss. 47

Black Friday scam warning. Microsoft Windows changes announced following CrowdStrike outage. Facebook take down of 2 million pig butchering accounts.


Vol. 7, Iss. 44
Robin’s Newsletter #333
Vol. 7, Iss. 44

Delta sues CrowdStrike for outage. Strava leaks location of French President. JP Morgan ATMs allowed fraudulent withdrawals.

October 2024

October 2024


Vol. 7, Iss. 42
Robin’s Newsletter #331
Vol. 7, Iss. 42

Chinese accusations of Intel backdoors. Microsoft loses customer security logs. Hong Kong arrests in multi-milloin deepfake video scams.


Vol. 7, Iss. 41
Robin’s Newsletter #330
Vol. 7, Iss. 41

Chinese actors compromised major US telcos. Marriott agrees to 20-year FTC settlement.


Vol. 7, Iss. 40
Robin’s Newsletter #329
Vol. 7, Iss. 40

LockBit arrests. Evil Corp linked to Russian intelligence. Meta Ray Bans used in creepy facial recognition concept.

June 2024

June 2024


Vol. 7, Iss. 26
Robin’s Newsletter #315
Vol. 7, Iss. 26

TeamViewer says it was compromised by Cozy Bear. Thousands arrested in law enforcement crackdown on scammers. Two critical MOVEit vulnerabilities.


Vol. 7, Iss. 25
Robin’s Newsletter #314
Vol. 7, Iss. 25

Updates on significant healthcare incidents. US gov bans Kaspersky. Spoofing Microsoft.com emails.

May 2024

May 2024


Vol. 7, Iss. 18
Robin’s Newsletter #307
Vol. 7, Iss. 18

Microsoft ties exec pay to security. Change Healthcare paid $22M ransom. The UK bans default passwords for smart tech.

March 2024

March 2024


Vol. 7, Iss. 12
Robin’s Newsletter #301
Vol. 7, Iss. 12

3 million hotel door locks vulnerable. Esports tournament suspended after compromise. New variant of AcidRain satellite malware discovered.


Vol. 7, Iss. 9
Robin’s Newsletter #298
Vol. 7, Iss. 9

Change Healthcare outage persists as ALPHV claims responsibility. Morris II GenAI worm. NIST CSF v2 launched.

February 2024

February 2024


Vol. 7, Iss. 7
Robin’s Newsletter #296
Vol. 7, Iss. 7

FBI disrupts GRU botnet. Dozens of Romanian hospitals impacted by ransomware. European court rules on encryption backdoors.

January 2024

January 2024


Vol. 7, Iss. 4
Robin’s Newsletter #293
Vol. 7, Iss. 4

Australia names Medibank attacker. Microsoft comes under criticism for config blunder that let Russia snoop on mailboxes.


Vol. 7, Iss. 3
Robin’s Newsletter #292
Vol. 7, Iss. 3

Microsoft email accounts compromised by Russian espionage group. Bumper password dump added to HIBP? Gaza phone services out for a week.


Vol. 7, Iss. 2
Robin’s Newsletter #291
Vol. 7, Iss. 2

SEC Twitter account compromised; used to swing Bitcoin price. Pro-Ukraine group launches retaliatory attack on Russian ISP.


Vol. 7, Iss. 1
Robin’s Newsletter #290
Vol. 7, Iss. 1

Sandworm was in Kyivstar for at least seven months. British Library will spend 40% of reserves rebuilding after ransomware attack. Mandiant Twitter account compromised.

December 2023

December 2023


Vol. 6, Iss. 51
Robin’s Newsletter #287
Vol. 6, Iss. 51

Russian group claims responsibility for knocking out Ukraine's largest telco. National Grid removing Chinese tech from electricity network. PSNI breach expected to cost over £20M.


Vol. 6, Iss. 50
Robin’s Newsletter #286
Vol. 6, Iss. 50

23andMe data breach impacts grow. Pushing surveillance. Five Eyes detail Russian political meddling.

November 2023

November 2023


Vol. 6, Iss. 46
Robin’s Newsletter #282
Vol. 6, Iss. 46

LockBit behind attack on US arm of China's largest bank. Aonoymous Sudan DDOS disrupts ChatGPT. Sandworm's attack against Ukraine power grid.

October 2023

October 2023


Vol. 6, Iss. 43
Robin’s Newsletter #279
Vol. 6, Iss. 43

Five Eyes security chiefs warn of espionage threat. Two ransomware gangs taken out. Thousands of Cisco devices compromised.


Vol. 6, Iss. 40
Robin’s Newsletter #276
Vol. 6, Iss. 40

Ukraine says Russia is going after war crimes data. US, Japan says China targeting routers for persistence. UK logistics firm goes under following ransomware attack.

September 2023

September 2023


Vol. 6, Iss. 36
Robin’s Newsletter #272
Vol. 6, Iss. 36

FBI takes down Qakbot. Two arrested for Polish train disruption. Met Police supplier loses personal data of 47,000 officers.

August 2023

August 2023


Vol. 6, Iss. 33
Robin’s Newsletter #269
Vol. 6, Iss. 33

UK Elections watchdog comopromsed two years ago. Detials of Northern Ireland police staff accidentally published. Zoom backtracks on AI training in terms of service.

June 2023

June 2023


Vol. 6, Iss. 23
Robin’s Newsletter #259
Vol. 6, Iss. 23

Kaspersky says it was compromised using zero-click iMessage exploit. Russia blames the NSA. Amazon settles Ring2 'lax privacy' case.

May 2023

May 2023


Vol. 6, Iss. 20
Robin’s Newsletter #256
Vol. 6, Iss. 20

Russian APT malware disabled. MSI compromise included important crypto keys. EU CSAM plans may be unlawful.

April 2023

April 2023


Vol. 6, Iss. 18
Robin’s Newsletter #254
Vol. 6, Iss. 18

RSA Conference 2023 takeaways. Data-driven decision making. IoT and Digital Services legislation.

March 2023

March 2023


Vol. 6, Iss. 13
Robin’s Newsletter #249
Vol. 6, Iss. 13

TikTok bans continue, Russia bans iPhones from Putin’s inner circle, China & Russia set sights on tech sovereignty

January 2023

January 2023


Vol. 6, Iss. 2
Robin’s Newsletter #238
Vol. 6, Iss. 2

Details of 200 million Twitter users posted online. Cracking 2048-bit RSA encryption. Turla co-opting old malware.

November 2022

November 2022


Vol. 5, Iss. 48
Robin’s Newsletter #232
Vol. 5, Iss. 48

Massive UK fraud crackdown. Russia designated state sponsor of terrorism by EU Parliament. Cyber Partisans claim compromise of Roskomnadzor agency.

October 2022

October 2022


Vol. 5, Iss. 40
Robin’s Newsletter #224
Vol. 5, Iss. 40

Optus breach attacker retracts demands as attention grows. Rise in fake LinkedIn CISO profiles. Microsoft Exchange Zero-Day.

May 2022

May 2022


Vol. 5, Iss. 18
Robin’s Newsletter #202
Vol. 5, Iss. 18

Conti ransomware gang targets Costa Rica following election. Timeline of Russian cyberatacks against Ukraine. Facebook doesn't know where your data flows.

April 2022

April 2022


Vol. 5, Iss. 17
Robin’s Newsletter #201
Vol. 5, Iss. 17

Okta breach affected two customers. Russian invasion leaves it 'fair game' for cyberattacks. Java’s ‘psychic signatures’ and conceptualising cybercrimes.


Vol. 5, Iss. 16
Robin’s Newsletter #200
Vol. 5, Iss. 16

Industroyer2: Cyberattack on Ukraine power grid averted. $600 million crypto-heist linked to North Korea's Lazarus group. RaidForums seized by UA authorities.


Vol. 5, Iss. 15
Robin’s Newsletter #199
Vol. 5, Iss. 15

Russian 'Cyclops Blink' botnet disrupted by the US. The value of Mailchimp distribution lists. Fundemental security metrics.


Vol. 5, Iss. 14
Robin’s Newsletter #198
Vol. 5, Iss. 14

Okta says it made a mistake. Wiper malware used against Viasat modems during Russian invasion of Ukraine. DCMS' cyber survey stats.

March 2022

March 2022


Vol. 5, Iss. 13
Robin’s Newsletter #197
Vol. 5, Iss. 13

The rise, and fall?, of Lapsus$ as Okta confirm breach. US CNI cyberattack warning. Build capabilities, not plans for resilience.


Vol. 5, Iss. 12
Robin’s Newsletter #196
Vol. 5, Iss. 12

Russia/Ukraine roundup. Mysterious incident affecting satcom terminals. Ransomware group adds wiper capability. Law firm gets GDPR fine for not patching.


Vol. 5, Iss. 11
Robin’s Newsletter #195
Vol. 5, Iss. 11

Conti's involvement in crypto 'rug pulls'. Unintended consequences of isolating Russia from the Internet.


Vol. 5, Iss. 10
Robin’s Newsletter #194
Vol. 5, Iss. 10

The 'pandemonium' of modern warfare.

February 2022

February 2022


Vol. 5, Iss. 9
Robin’s Newsletter #193
Vol. 5, Iss. 9

Russia invades Ukraine.


Vol. 5, Iss. 8
Robin’s Newsletter #192
Vol. 5, Iss. 8

DDoS attacks on Ukraine MoD and banks. French signal jamming. New version of 27002 security control framework.

January 2022

January 2022


Vol. 5, Iss. 3
Robin’s Newsletter #187
Vol. 5, Iss. 3

Russian authorities scoop up members of REvil. Google Analytics and GDPR. Using a cyberattack to accelerate dgitial transformation.

April 2021

April 2021


Vol. 4, Iss. 16
Robin’s Newsletter #148
Vol. 4, Iss. 16

FBI gets a warrant to fix Hafnium web shells, becomes an MSSP. Sanctions for Russia over SolarWinds. Plus you cheddar believe there are some cheese puns.

October 2020

October 2020


Vol. 3, Iss. 43
Robin’s Newsletter #123
Vol. 3, Iss. 43

DOJ charges Fancy Bear, Doubts over Trump's Twitter password, and digital dilemmas for charity donations.

July 2020

July 2020


Vol. 3, Iss. 28
Robin’s Newsletter #108
Vol. 3, Iss. 28

Hong Kong's new national security law causes headaches for citizens, tech and finance companies. Steal the cash, not the painting. Cosmic Lynx and Russian cyber-criminals' 'synergistic value accelerative opportunity'

April 2020

April 2020


Vol. 3, Iss. 1
Robin’s Newsletter #81
Vol. 3, Iss. 1

California's Consumer Privacy Act; Travelex systems still offline; the rise of 'data exposures'.


Vol. 3, Iss. 8
Robin’s Newsletter #88
Vol. 3, Iss. 8

Georgia defacement attribution; misusing anti-abuse; Pipeline ransomware.


Vol. 3, Iss. 13
Robin’s Newsletter #93
Vol. 3, Iss. 13

FBI COVID-19 scam warning; FIN7 mailing malware USB keys; predicting attacks from Russian APTs.