Supply chain

August 2023

August 2023


Vol. 6, Iss. 35
Robin’s Newsletter #271
Vol. 6, Iss. 35

Lapsus$ group pair court verdict. Ransomware dwell times are down. Cloud providers looses all their customers data in ransomware incident.

April 2023

April 2023


Vol. 6, Iss. 17
Robin’s Newsletter #253
Vol. 6, Iss. 17

Customer data stolen in Capita breach. 3CX was a 'cascading' supply-chain breach. UK faces 'Wagner-like' cyber threat.

February 2023

February 2023


Vol. 6, Iss. 8
Robin’s Newsletter #244
Vol. 6, Iss. 8

Twitter to charge for SMS MFA. 'Anonymous' ideological attacks. GoDaddy discloses multi-year breach. The proliferation of 'risk dashboards'.

July 2021

July 2021


Vol. 4, Iss. 28
Robin’s Newsletter #160
Vol. 4, Iss. 28

More on Kaseya. The PrintNightmare continues. Farmers win 'right to repair' and Kaspersky's not-so-random number generator.


Vol. 4, Iss. 27
Robin’s Newsletter #159
Vol. 4, Iss. 27

Kaseya VSA used to launch 'over 1,000' ransomware attacks. Security researchers cause PrintNightmare. EU grants UK data protection adequacy decision.

April 2021

April 2021


Vol. 4, Iss. 17
Robin’s Newsletter #149
Vol. 4, Iss. 17

Ransomware in Apple's supply chain. Facebook seeks to 'normalise' scraping. The balkanisation of the Internet has intelligence agencies worried. Cellebrite's iPhone unlocking system is full of vulnerabilities.

February 2021

February 2021


Vol. 4, Iss. 7
Robin’s Newsletter #139
Vol. 4, Iss. 7

Dependency confusion: all up in your package manager and automated build process. Florida water treatment plant compromised. Details of cyber-attacks on Isis. Bloomberg back again with The ~~Big~~ Long Hack.

December 2020

December 2020


Vol. 3, Iss. 51
Robin’s Newsletter #131
Vol. 3, Iss. 51

SUNBURST attack on U.S. government is both huge, and nothing new. Google suffers multiple outages. Automated attacks on online banking.


Vol. 3, Iss. 49
Robin’s Newsletter #129
Vol. 3, Iss. 49

TrickBot is recovering from CyberCom, Microsoft takedowns, gains UEFI/BIOS capabilities. 'Cold chain' of COVID-19 vaccine targeted. Zero-click exploit in Apple iPhone.