Spyware

April 2024

April 2024


Vol. 7, Iss. 15
Robin’s Newsletter #304
Vol. 7, Iss. 15

Significant breach at data analytics firm Sisense. UK trade unions targeted. Perfect 10 vulnerability in Palo's GlobalProtect VPN product.

February 2024

February 2024


Vol. 7, Iss. 6
Robin’s Newsletter #295
Vol. 7, Iss. 6

No, 3 million toothbrushes didn't DDoS anything. But... Deepfake video used in CFO scam to steal £20 million. TfL has been trialling AI surveillance.

September 2023

September 2023


Vol. 6, Iss. 38
Robin’s Newsletter #274
Vol. 6, Iss. 38

Ransomware groups target Save the Children, and Las Vegas casinos, and the Sri Lankan government.


Vol. 6, Iss. 37
Robin’s Newsletter #273
Vol. 6, Iss. 37

Results of Microsoft investigation into US government email compromise. Online Safety Bill E2EE clause to remain unenforced until 'technically feasible'.

August 2023

August 2023


Vol. 6, Iss. 35
Robin’s Newsletter #271
Vol. 6, Iss. 35

Lapsus$ group pair court verdict. Ransomware dwell times are down. Cloud providers looses all their customers data in ransomware incident.


Vol. 6, Iss. 32
Robin’s Newsletter #268
Vol. 6, Iss. 32

Capita breach costs rise. Microsoft under pressure for opaque security practices. Side channel attack identifies keystrokes from audio over Zoom calls

June 2023

June 2023


Vol. 6, Iss. 23
Robin’s Newsletter #259
Vol. 6, Iss. 23

Kaspersky says it was compromised using zero-click iMessage exploit. Russia blames the NSA. Amazon settles Ring2 'lax privacy' case.

April 2023

April 2023


Vol. 6, Iss. 17
Robin’s Newsletter #253
Vol. 6, Iss. 17

Customer data stolen in Capita breach. 3CX was a 'cascading' supply-chain breach. UK faces 'Wagner-like' cyber threat.

December 2022

December 2022


Vol. 5, Iss. 51
Robin’s Newsletter #235
Vol. 5, Iss. 51

Microsoft certs used to sign malware. AWS API exposed ability to modify, delete container images. BEC scammers are targeting sugar and milk powder.

July 2022

July 2022


Vol. 5, Iss. 28
Robin’s Newsletter #212
Vol. 5, Iss. 28

Apple's extreme 'Lockdown Mode' to protect against NSO Group. Apparent breach of 1 billion Chinese citizens data. Bad week for NPM ecosystem.

December 2021

December 2021


Vol. 4, Iss. 51
Robin’s Newsletter #183
Vol. 4, Iss. 51

Over 100 VMware apps are affected by Log4j, as a second patch is released to address 'Log4Shell' vuln. £2.6B UK cyber strategy unveiled. Plus interesting results in long-term phishing study.