A full iOS exploitation toolkit, "Coruna," has been found in the wild, hacking iPhones that visited infected websites, used by Russian spies targeting Ukrainians and thieves targeting Chinese crypto holders. And it may have been originally created for the US government. www.wired.com/story/coruna...

an update on current GPS jamming activity in the Strait of Hormuz, by @mattburgess1.bsky.social www.wired.com/story/gps-at...

really excellent/wild story bsky.app/profile/kimz...

It's hard enough to figure out your own threat model and how to approach your own digital privacy and security, but it's even more overwhelming to try to think it through for bigger groups. @agreenberg.bsky.social and I put together this guide as a starting point www.wired.com/story/how-to...

Reminder that the Washington Post lost 250,000 subscribers, more than most outlets will ever have, after its decision not to publish an endorsement in the last election. www.npr.org/2024/10/29/n... That kind of cowardice, not AI or whatever, is what's "drastically reshaping" readers' expectations.

New from 404 Media: the FBI has been unable to get into the iPhone of raided Washington Post journalist because the phone had Lockdown Mode enabled. Apple markets Lockdown Mode mostly to stop spyware like NSO. Here, a real world example of it stopping access too www.404media.co/fbi-couldnt-...

ICYMI: Yesterday we published the results of a survey of 100+ security researchers and journalists asking about the legal and criminal threats they face for doing their jobs. A very interesting takeaway: While legal & criminal threats are common, most of our respondents *did not* give in to them.

The AI-chat-enabled stuffed toy Bondu invites little kids to have intimate conversations with it, like an LLM imaginary friend. It also exposed virtually all their chats on a web interface with no security. Anyone with a Gmail account could log in and read transcripts. www.wired.com/story/an-ai-...

my magnum opus on woke 2 has arrived!!! (magnum wokus?) thank you to @olufemiotaiwo.bsky.social and @kattenbarge.bsky.social for providing your thoughts on the matter www.vanityfair.com/culture/stor...

Hackers behind cyberattack against Poland electric grid in Dec disabled communication devices for at least 30 sites across a number of energy facilities in country. They rendered the devices - known as remote terminal units or RTUs - not only inoperable but also unrecoverable

Last year, a human trafficking victim trapped in a crypto scam compound in the Golden Triangle region of Laos contacted me. He then proceeded to leak to me a huge collection of the compound's internal materials. Then he had to get out alive. This is his story. 🧵👇 www.wired.com/story/he-lea...

Human trafficking to scam compounds in SE Asia is a catastrophe for forced laborers and their scam victims worldwide. One individual, Red Bull, gave @agreenberg.bsky.social incredible insight into the situation over months from inside. Then he attempted an escape www.wired.com/story/he-lea...

for The New York Times, I wrote about the 1,000 Rejections Challenge and why getting comfortable with "no" is more useful than resolutions about becoming the perfect version of yourself www.nytimes.com/2026/01/26/a...

NEW: A database left accessible to anyone online contained tens of millions of login credentials from Gmail, Facebook, Apple, OnlyFans, crypto accounts, and more. @lhn.bsky.social has the scoop: www.wired.com/story/149-mi...

Officials in ONCD, NSC and CISA discussed potential plans to no longer attend after Jen Easterly, the former CISA director under Biden, was named as CEO of RSAC Conference on Thursday: www.nextgov.com/people/2026/...

a big load of earbuds, headphones and speakers need updating to patch vulnerabilities that could be exploited to hijack audio, take over mics for eavesdropping, or even in some cases for location tracking www.wired.com/story/google...

The Rubik's cubes and jam sessions are coming to RSA Conference www.wired.com/story/former...

WIRED Security has always had the very earnest, kind of dopey unofficial tagline “stay safe out there” and it’s more apt than ever right now www.wired.com/story/what-t...

Okay, remember in 2024 when RFK Jr. admitted he dumped a dead black bear cub in Central Park in 2014? An event that was a NY mystery for a decade? if this story has also haunted you...... I got new docs, emails, & pics about it from NYC's Dept of Parks & Rec via FOIA: www.wired.com/story/rfk-jr...

'“On a daily basis I’m worrying that federal cybersecurity and critical infrastructure protection may be backsliding,”' - @malwarejake.bsky.social tells @lhn.bsky.social in @wired.com. Me too, brother. Me too. www.wired.com/story/expire... @gate15.bsky.social @fergdawg.bsky.social #cybersecurity

NEW: Scammers are using a face-swapping app that experts say can create "nearly perfect" face swaps during video calls. It's largely marketed on Telegram, but its main channel disappeared after @wired.com inquired. @mattburgess1.bsky.social, @lhn.bsky.social, @zeyiyang.bsky.social w/ the scoop:

At the @wired.com Big Interview event last week, I spoke to SF mayor Daniel Lurie. Our entire conversation is now online as a podcast ep + text piece. Neither quite capture how unhinged and boisterous the entire thing was IRL, but needless to say, he *did* remove one shoe onstage.

ICYMI: This weekend, we published the @wired.com guide to digital opsec for teens (tho it applies to pretty much everyone!) We hope you and the kids in your life will read it and stay safe out there. No paywall! @lhn.bsky.social and JP Aumasson report: www.wired.com/story/digita...

I was really thrilled to get to work on The WIRED Guide to Digital Opsec for Teens with @aumasson.jp. I think we did a good job but also apologies in advance to the teens that we tried to make jokes and generally Be Chill. Also no paywall to make it easier to share! www.wired.com/story/digita...

NEW: Myanmar has made a big show of destroying the notorious KK Park scam compound—even publishing a video of a steamroller driving over thousands of phones But new images show buildings are only destroyed in one area. Hundreds are left untouched and experts say the crackdown is mostly propaganda

the people have spoken! bsky.app/profile/rans...

We've got a new @hothtakes.bsky.social episode for you today! @lhn.bsky.social joins Haley and me to talk about how Star Wars tells stories about Jedi and Sith, and what we want from those stories going forward. hothtakes.wordpress.com/2025/11/24/h...

NEW: The US Department of Justice issued a warrant demanding SpaceX seize and disable Starlink devices and accounts being used at a scam compound in Myanmar. At least 9 Starlink devices were linked to a crypto scam that stole $6 million people, an FBI affidavit says Story with @lhn.bsky.social

JOIN US WEDNESDAY: Come out and support those illegally fired and suspended by Conde Nast at a rally on Wednesday at 6PM EST outside the World Trade Center.....

2015: oh well they probably have my social security number already 2025: oh well they probably have root at the Pentagon already

NEW: Experts say that any lags in protections like security updates and network monitoring caused by the government shutdown could lay the groundwork for future breaches. @lhn.bsky.social reports: www.wired.com/story/the-go...

A statement from Wired's Conde Union Members

here is my story about how Zohran's focus on community amid the loneliness epidemic helped young people connect their politics to an organizing infrastructure, that interviewed ZM, and does not use the NYT's framing of "they don't know how to make friends" :-) and also ran 4 days before NYT's lol

New: The FBI is quietly urging ICE agents to properly ID themselves in the field. In a bulletin to law enforcement last month, it warned of criminals posing as ICE to rob, rape, kidnap—a problem it says now demands national coordination to confront. By me & @carolinehaskins.bsky.social:

Actual Tolkien nerd @johnsemley3000.bsky.social went deep on how poorly Elon Musk, MAGA, and other right-wing tech bros understand the Lord of the Rings. And can we all just admire this art by @anjalinair.bsky.social: www.wired.com/story/elon-m...

NEW: I had a very interesting talk with Guillermo del Toro about Frankenstein, AI, tech bros, and whether Mary Shelley really kept Percy Bysshe Shelley's charred heart after he died. Also, GDT says he hopes to start shooting 'The Buried Giant' next year. (!!!) www.wired.com/story/guille...

New with @lhn.bsky.social: Thousands of people who applied for jobs with the Democrats in the US House of Representatives have had their data exposed online—including hundreds with "top secret" clearance Officials say they have launched an investigation into the data exposure

I wrote some words for this.weekinsecurity.com about the security and privacy risks with AI browsers, like Perplexity's Comet and OpenAI's ChatGPT Atlas, and why they should really come with enormous warning labels: "⚠️ Use at your own risk! ⚠️"

NEW: DHS is asking companies to submit plans to turn standard 4x4 trucks into AI-powered watchtowers—combining radar, cameras, and autonomous tracking to extend surveillance on demand. by me @ wired:

Next week, five teens from Palestine will head to Panama to compete in one of the world’s largest youth robotics competitions. The goal? To win—and then teach STEM to their peers displaced by the Israel-Hamas war.

Incredibly, the Justice Department today charged a group of alleged Cosa Nostra mobsters with using a version of the exact card shuffler hacking technique we demonstrated in the video below to rig poker games with an NBA player and coach, stealing millions. storage.courtlistener.com/recap/gov.us...

NEW: The U.S. govt accused Peter Williams, ex general manager of hacking tool maker L3Harris Trenchant, of stealing trade secrets and selling them to buyer in Russia. As we reported earlier, Trenchant investigated a leak of internal tools this year. It's unclear if that investigation is related.

ZIPPERS GET ZIPPIER: for more than a century, the zipper has stayed more or less the same. Now, after a 100 years of stasis, the company that makes half the world’s zippers has completely rethought the mechanism that holds much of modern clothing together. @wired.com www.wired.com/story/the-zi...

An extremely important story about the ways that facial recognition tech is failing people with facial differences, by @mattburgess1.bsky.social www.wired.com/story/when-f...

NEW: In the most significant action against brutal scam compounds in Southeast Asia to date, US and UK officials have sanctioned the alleged operators of more than 10 scam centers in Cambodia. 146 entities linked to the Prince Group have been sanctioned—and $15 billion of crypto seized

New from @agreenberg.bsky.social and me: For three years, security researchers pointed a satellite at the sky and found highly sensitive data being sent unencrypted They found: calls and texts on T-Mobile’s network; military info from the US and Mexico; in-flight Wi-Fi browsing, and a lot more

As Apple expands its bug bounty, I spoke with VP Ivan Krstić about the significance + recent big swings like Memory Integrity Enforcement. These steps protect all users, but particularly those targeted by spyware: “We feel a great moral obligation to defend those users” www.wired.com/story/apple-...

Today's the day: DARK WIRE, my book on how the FBI secretly ran a tech company for criminals and wiretapped the world, coming to paperback. Updated with many more details. An Economist and FT book of the year. 404 Media subs: you just got 20% to your email www.hachettebookgroup.com/titles/josep...

Apple has removed at least three ICE-tracking apps from the App Store. WIRED spoke with the developers about where they go from here. from @thiccreese.bsky.social and @lhn.bsky.social www.wired.com/story/apple-...