Notepad discloses breach indicating China-based threat actor compromised underlying hosting provider infrastructure to selectively hijack LEGITIMATE update mechanism to distribute malware. notepad-plus-plus.org/news/h…

‼️At the end of last year, there was a series of coordinated attacks in Polish cyberspace. 📌Today, our team is publishing a report describing the technical analysis of these events. We show the scheme of operation and the tools used by the attackers. ➡️cert.pl/uploads/docs/CERT_Po…

Germany will strike back against cyberattackers, including abroad, enabling countermeasures with a low threshold for activation. A new defense center against hybrid threats will consolidate intelligence along with defense strategies. It is being prepared by the domestic intelligence agency and expected to begin operations this year. The government will implement a "turning point for intelligence services," having been too dependent on foreign partners for information. Intelligence services will receive new powers to gather information independently and act operationally. Germany will also restrict public access to sensitive infrastructure data. A new framework law will reverse the current transparency principle, with full transparency applying only in special cases. This follows the Berlin power grid attack, which demonstrated how vulnerable critical infrastructure remains. sueddeutsche.de/projekte/art…

DISTRICTCON IS STILL A GO! We are excited to see you all on Saturday, January 24 as we are still going through our normal programming! While we are unable to process refunds, we are adding virtual components to Saturday AND Sunday including a livestream for public sessions for ticket holders. Plus, our badge challenge and Village of Villages CTF will be available online (we’re still tweaking with these - more info soon). We are adding a livestream for attendees (ticket holders) to join us virtually. We are also working on a way to send swag to attendees that cannot make it safely because of the weather. We appreciate your patience as we are a mighty team of volunteers pivoting based on Mother Nature. 🌨️ ☃️ Please reach out to outreach@districtcon.org if you have additional questions - ticket holders will be hearing from us very soon. - The DistrictCon Team

Tickets for @DistrictCon Year 1 are officially on sale! Though, it appears to get one, you have to join a waitlist... Possibly because the tickets have already sold out. Full Disclosure: I have a ticket. Don't low ball me - I know what I've got!

В Таиланде арестовали «всемирно известного» российского хакера по запросу США storage.googleapis.com/kldsc…

I had a discussion with @FrancisDearnley of Ukraine: The Latest with the @Telegraph on Monday on the current trajectory of Russia's invasion - podcasts.apple.com/us/podcas… @RUSI_org

SOS also features multiple tactical and operational updates on key actors from key regions. These updates highlight emerging tools, methods, and investigative approaches to prioritizing multiple forms of risk and understanding vulnerability across key information environments.

Fam, the only thing bigger than Taylor Swift's wedding in 2026 is going to be @DistrictCon in Washington, DC Get your piece of this amazing hacker conference, early bird tickets go on sale soon & CFP is OPEN. x.com/DistrictCon/status/196…

Had a great time on the @malspace podcast with Julien talking about my PIVOTcon presentation from tracking compartmentalized attacks to thoughts on attribution. Fun convo (and I loved the theme song at the end!). 🎶 Thanks for having me!

Russia's most ideal objective remains to achieve sweeping victory in Ukraine. Outcomes in-theatre depend on success on the periphery. It would be monumentally stupid to assume that RU cyber operations in Ukraine are fully contained. What is used there will be used elsewhere.

Did you know that there is a monument to NotPetya in Moscow? It was installed by INVITRO, a Russian medical firm & one of the victims of the 2017 global attack initially aimed at Ukraine. INVITRO's PR goal was to remind the world that it knows how to fight viruses

"National Science Foundation cancels research grants related to misinformation and disinformation". I mean, at least some of it had to be merit-based. Isn't cutting everything linked to "disinformation" a bit too harsh? niemanlab.org/2025/04/nation…

Well said @lutasec lutasecurity.com/post/in-sup…

Today, @Volexity released GoResolver, open-source tooling to assist reverse engineers with obfuscated Golang samples. @r00tbsd & Killian Raimbaud presented details at INCYBER Forum earlier today. Learn how GoResolver works where to download it: volexity.com/blog/2025/04/01… #dfir

All of the billions spent on AI innovation just so we can get these beautiful cat videos

Today, Google Threat Intelligence is alerting the community to increasing efforts from several Russia state-aligned threat actors (GRU, FSB, etc.) to compromise Signal Messenger accounts. cloud.google.com/blog/topics…

Currently doing an art project - looking for any recommendations of 2000s era tape video recorders.

Two guys have been skateboarding from California to New York. They are about to conclude Ohio and enter Pennsylvania. If you see these guys in your neighborhood , get them some hot cocoa for me.

OG Syrian war OSINT accounts who started in 2011-2013 coming out of retirement to geolocate the collapse of the Assad regime