Sophos says one of its employees got phished in March but the breach was limited and contained news.sophos.com/en-us/2025/0...

AttackIQ has published a report on the evolution of the RomCom malware, covering up to v5 of the tool, which others also call SnipBot and SingleCamper. The malware started out as an e-crime MaaS, but is now often used for APT ops against Ukraine and Europe. www.attackiq.com/2025/09/23/e...

All these reports on the Moldovan disinfo campaigns would have been extremely useful a month ago.... Dear infosec/disinfo research firms, stop publishing crucial info at the very last moment Signed, a bunch of LEO people annoying me in DMs

New DELMIA bugs disclosed after another was exploited in early Sep "Both findings chain together: the unauth account creation gives an attacker credentials, and those credentials are then used to authenticate and abuse the file upload to drop a web shell." projectdiscovery.io/blog/remote-...

The Python Software Foundation warns of a phishing campaign targeting PyPI users. The phishing domain is pypi-mirror[.]org, a variation of the main pypi[.]org domain. blog.pypi.org/posts/2025-0...

Poland has threatened to hack back any country that cripple its critical infrastructure. Minister of Digital Affairs Krzysztof Gawkowski says the country has the possibilities to respond. www.portalsamorzadowy.pl/polityka-i-s...

Romania's national bank governor warned against the transition to a digital euro without a cash alternative or proper cybersecurity defenses. Mugur Isărescu says that a Russian cyber-attack could block all payments in the country within three days. hotnews.ro/avertismentu...

GitHub will require a FIDO-based two-factor authentication method to publish updates to npm packages. The company will also deprecate legacy long-lived npm tokens and roll out new ones that last only seven days. github.blog/security/sup...

Larry Ellison is turning into a media magnate, potentially controlling CBS, CNN, TikTok, and more, amid a regulatory environment favorable to Trump allies (New York Times) Main Link | Techmeme Permalink

The press release is here: www.secretservice.gov/newsroom/rel... Some images are below:

Thanks to the ransomware attack, it took ~3 hours to get a checked bag at the Berlin airport. I can’t believe I was forced to gate check then wait for my bag 3x longer than the flight took. 😂

North Korean espionage group Kimsuky used "sex offender notices" to lure victims into running its malware logpresso.com/ko/blog/2025...

Check Point has a report on this same campaign and group, which they track as Nimbus Manticore research.checkpoint.com/2025/nimbus-...

This research is just a chef's kiss after the SAP CEO said they are preparing to fire thousands because of AI

I think it's more than one... They forgot this one: en.wikipedia.org/wiki/Azerbai... And prolly others too

Talks from the m0leCon 2025 security conference, which took place earlier this month, are available on YouTube www.youtube.com/playlist?lis...

man — even knowing DHH had questionable politics, some of the links here to his blog posts astonished me. i am not exaggerating at all when i say the dude is an unabashed segregationist.

New R̷u̷s̷s̷i̷a̷ US "foreign agents" law just dropped.... yolo!

plz don't take my paracetamol away, humerica!

hahahahahahaaha

Russia prepares to amp up the persecution of its own citizens The government wants to create a database of people who continue to visit and access the sites of "foreign agents"... aka foreign media who don't parrot the government's lies news.ru/vlast/v-gosd...

Must be a small website... some of the infosec "tent poles" charge $10k for that

MAX, Russia's newly anointed official national messenger, now has 32 million users, per Kommersant www.kommersant.ru/doc/8058240

There is light at the end of the tunnel... hang in there folks!

"I never thought my personal info would be exposed" say members of the exposing people's personal info app

EU cyber agency says airport software held to ransom by criminals www.bbc.com/news/article...

Trump trying to send a DM to Pam Bondi but actually posting it on TruthSocial instead raises new questions about Joe Biden's mental acuity.

🇷🇺 🇲🇩 Moldovans are facing a flood of disinformation driven by artificial intelligence ahead of a critical parliamentary election, which will determine whether the small country can stay on its path toward the European Union or is pulled back into Moscow’s orbit. apnews.com/article/mold... #Russia

Erupting volcano, a mayflower and a ring of turkey feathers are finalists for new state flag www.universalhub.com/2025/eruptin... #Massachusetts

For TechCrunch, I wrote about Unit 221B, a cybersecurity company that's recently made a name for itself by tracking today's top English-speaking hacking groups, including Scattered Spider, and helping to disrupt their operations. Now the company has raised $5 million to focus on the threat.

The Pentagon wants to shorten the hiring window for cybersecurity talent to only 25 days The department currently averages 70 days for a new hire cyberscoop.com/dod-cyber-wo...

CISA wants more international involvement in cyber vulnerability catalog, official says www.nextgov.com/cybersecurit...

Security researcher Mehmet Ergene has published the Microsoft Vulnerable Driver Block Lists after Microsoft stopped publishing the list in a browsable web page github.com/Cyb3r-Monk/M...

In-depth investigation from the BBC, which infiltrated a disinformation operation to interfere in the Moldovan elections. This operation is coordinated remotely by pro-Russian actors through Telegram. www.bbc.co.uk/news/article...

If you have two followers, you are ahead of half of all Bluesky accounts. If you have 400 followers, you are in the top 1%. bsky.jazco.dev/stats

Wise move, America should do the same. They have already seen the damage that Musk & DOGE have done hacking Tressury > EU to block Big Tech from new financial data sharing system. Germany argues groups such as Apple and Meta are excluded to protect Europe’s ‘digital sovereignty’

#Twitter/#X is just a 100% authentic place full of real lifelong Democrats who suddenly realized Charlie Kirk was right, registered as Republicans, and posted so in identical tweets. These are absolutely not foreign bots trying to influence US politics or increase partisan divides in the US.

An Iranian cyber-espionage group is using fake LinkedIn jobs to target employees of EU telcos and defense organizations. According to security firm Prodaft, one of the group's most recent campaigns has infected 34 devices across 11 organizations. catalyst.prodaft.com/public/repor...

Hackers have stolen $2 million worth of NGP tokens from the New Gold Protocol DeFi platform www.theblock.co/post/371191/...

LOL

LinkedIn will resume training generative AI models on data from EU users after a year-long halt news.bloomberglaw.com/business-and...

There's been a hostile takeover of the RubyGems package repository, with some rando dude having full control of everything now old.reddit.com/r/ruby/comme...

A teenage boy suspected of involvement in the 2023 cyberattacks that disrupted the two largest Las Vegas casino companies has surrendered to authorities, according to the Las Vegas Metropolitan Police Department (LVMPD). www.casino.org/news/teen-su...

Media execs have fallen prey to a propaganda and harassment campaign that has completely divorced them from what people actually want right now. Both their insular information environments (group chats, podcasts) and ambient noise (Twitter reactionaries) have put them in a very stupid bubble.

genuinely believe that a large number of political, economic and media elites do not realize that nearly half the voting public did not vote for trump

At the risk of staying the obvious ... If you sign this, you are in no way a journalist.

Someone once said to me that it's best to assume that you have immediately lost control of any photo that you post online. These companies are horrendous and we should all be very careful about what we give to them www.theguardian.com/technology/2...

Today, in mind-blowing hypocrisy & stupidity, @mmasnick.bsky.social: 'Loomer’s demand perfectly encapsulates the...MAGA approach to foreign influence ops.: destroy the systems that actually work, then demand magic solutions when the problem inevitably resurfaces.' 😑 www.techdirt.com/2025/09/19/h...

Cyberattack disrupts European airports including Heathrow, Brussels www.reuters.com/en/cyberatta...