Supply chain
September 2025
September 2025
Vol. 8, Iss. 37
Robin’s Newsletter #378
JLR says data taken as supply chain worries grow. US wraps up is disinformation cooperation centre. Switzerland considering ID requirements for VPNs.
April 2025
April 2025
Vol. 8, Iss. 17
Robin’s Newsletter #358
M&S Cyber incident. Lots of data from FBI, Verizon, IBM, Mandient. Calls for greater harmonisation of cyber rules.
July 2024
July 2024
Vol. 7, Iss. 27
Robin’s Newsletter #316
Unauthenticated RCE in OpenSSH. ShinyHunters release phone numbers of 33 million Authy users. Japan wins the 'war' on floppy disks.
June 2024
June 2024
Vol. 7, Iss. 22
Robin’s Newsletter #311
Ticket Master, Santander breached; Snowflake Possibly not? Plus Op Endgame takedown of 100 malware servers.
April 2024
April 2024
Vol. 7, Iss. 14
Robin’s Newsletter #303
CSRB slams Microsoft over 'preventable' Storm-558 breach that 'should never have occured'.
March 2024
March 2024
Vol. 7, Iss. 13
Robin’s Newsletter #302
Open-source project compromised to allow SSH backdoor. UK, US accuse China of targeting politicians. Facebook AiTM'd users to spy on Snapchat usage.
Vol. 7, Iss. 11
Robin’s Newsletter #300
British Library lessons learned. Personal info of 43 million French citizens may have been leaked. McDonlad's outage caused by third-party configuration error.
January 2024
January 2024
Vol. 7, Iss. 2
Robin’s Newsletter #291
SEC Twitter account compromised; used to swing Bitcoin price. Pro-Ukraine group launches retaliatory attack on Russian ISP.
November 2023
November 2023
Vol. 6, Iss. 48
Robin’s Newsletter #284
Warning over Lazarus software supply-chain attacks. Australia cyber security strategy published.
August 2023
August 2023
Vol. 6, Iss. 35
Robin’s Newsletter #271
Lapsus$ group pair court verdict. Ransomware dwell times are down. Cloud providers looses all their customers data in ransomware incident.
April 2023
April 2023
Vol. 6, Iss. 17
Robin’s Newsletter #253
Customer data stolen in Capita breach. 3CX was a 'cascading' supply-chain breach. UK faces 'Wagner-like' cyber threat.
February 2023
February 2023
Vol. 6, Iss. 8
Robin’s Newsletter #244
Twitter to charge for SMS MFA. 'Anonymous' ideological attacks. GoDaddy discloses multi-year breach. The proliferation of 'risk dashboards'.
July 2021
July 2021
Vol. 4, Iss. 28
Robin’s Newsletter #160
More on Kaseya. The PrintNightmare continues. Farmers win 'right to repair' and Kaspersky's not-so-random number generator.
Vol. 4, Iss. 27
Robin’s Newsletter #159
Kaseya VSA used to launch 'over 1,000' ransomware attacks. Security researchers cause PrintNightmare. EU grants UK data protection adequacy decision.
April 2021
April 2021
Vol. 4, Iss. 17
Robin’s Newsletter #149
Ransomware in Apple's supply chain. Facebook seeks to 'normalise' scraping. The balkanisation of the Internet has intelligence agencies worried. Cellebrite's iPhone unlocking system is full of vulnerabilities.
February 2021
February 2021
Vol. 4, Iss. 7
Robin’s Newsletter #139
Dependency confusion: all up in your package manager and automated build process. Florida water treatment plant compromised. Details of cyber-attacks on Isis. Bloomberg back again with The ~~Big~~ Long Hack.
December 2020
December 2020
Vol. 3, Iss. 51
Robin’s Newsletter #131
SUNBURST attack on U.S. government is both huge, and nothing new. Google suffers multiple outages. Automated attacks on online banking.
Vol. 3, Iss. 49
Robin’s Newsletter #129
TrickBot is recovering from CyberCom, Microsoft takedowns, gains UEFI/BIOS capabilities. 'Cold chain' of COVID-19 vaccine targeted. Zero-click exploit in Apple iPhone.