Catalin Cimpanu
@campuscodi.risky.biz
📤 13625
📥 483
📝 5010
☆ Cybersecurity reporter ★ Newsletters at Risky Business
#infosec
#cybersecurity
https://risky.biz
Great.... more stutter-step shenanigans for 10s before anyone hits the ball
14 minutes ago
0
2
0
reposted by
Catalin Cimpanu
about 5 hours ago
Not saying that game was stolen from Egypt but it is now on display at museum in London.
110
10058
2351
The Walmart security team has published a report on SpectrePaste, a malware delivery campaign that appears to have been orchestrated with AI
medium.com/walmartgloba...
loading . . .
SpectrePaste
by Joshua Platt and Jason Reaves
https://medium.com/walmartglobaltech/spectrepaste-b20bc2f6ded8
about 4 hours ago
1
5
2
reposted by
Catalin Cimpanu
Steve
about 5 hours ago
World Cup soccer is pretty cool when it’s not your country sucking shit at it
0
27
6
reposted by
Catalin Cimpanu
WRMS Traffic & Weather Reporter on the 2’s
about 5 hours ago
The World Cup equivalent to the 28-3 game would happen in Atlanta.
2
22
9
Is this good, chat?
about 6 hours ago
4
14
0
Hoymiles inverters used with those super-popular solar panels installed on balconies across Europe can be switched on or off, or even permanently disabled via a newly discovered vulnerability PDF:
www.ccc.de/system/uploa...
about 11 hours ago
1
11
6
reposted by
Catalin Cimpanu
Alix Mortimer
about 18 hours ago
Well there goes NATO, totally worth it 🥰
add a skeleton here at some point
5
838
117
reposted by
Catalin Cimpanu
BUG-EYED CAT
about 20 hours ago
when i was young they had these people called “investigative journalists” who could find out stuff like if a senator was dead or not
292
12525
3030
The Godot open-source gaming engine has banned contributors from submitting AI-generated code contributions. The project says it "can't trust heavy users of AI to understand their code enough to fix it" when it breaks.
godotengine.org/article/cont...
about 14 hours ago
7
194
33
reposted by
Catalin Cimpanu
Zack Whittaker
1 day ago
New, by me: Canada's top spy agency said it conducted "active cyber operations" during 2025 against drug traffickers, a violent extremist group, and a ransomware gang, using hacks to disrupt or degrade their ability to function or cause harm. Bypass for ad-blockers:
web.archive.org/web/20260706...
loading . . .
Canadian spy agency says it hacked drug traffickers, extremists and a ransomware gang last year | TechCrunch
The hacking operations disclosed in a Canadian spy agency's annual report underscores some pressing national security threats facing the country and its top allies.
https://techcrunch.com/2026/07/06/canadian-spy-agency-says-it-hacked-drug-traffickers-extremists-and-a-ransomware-gang-last-year/
2
61
17
reposted by
Catalin Cimpanu
Kelsey Atherton
about 21 hours ago
this is what happens when you get rid of the Department of Defense
1
448
110
reposted by
Catalin Cimpanu
Razzball
about 23 hours ago
I know the Belgian are known for their waffles, but I don’t see it, they seem very decisive
4
73
5
reposted by
Catalin Cimpanu
"Sweet Man" Cam
about 21 hours ago
oh my god my Belgian coworkers are gonna be so fuckin polite about this
2
145
12
reposted by
Catalin Cimpanu
God
about 22 hours ago
The Belgian players seem furious for some reason.
194
4543
366
reposted by
Catalin Cimpanu
Jesse Hawken
about 21 hours ago
Suddenly the game stops and Infantino comes out onto the field with security. Everyone is removed from the field except for one American player and he is ordered to kick the ball in the empty Belgian goal three times and Team USA is then declared the winner by Infantino.
10
210
26
reposted by
Catalin Cimpanu
Hailey Kaas - Radiotherapy ($1175/$1500)
1 day ago
Darwin wins again! Yay
add a skeleton here at some point
0
11
1
reposted by
Catalin Cimpanu
Doug Madory
1 day ago
Here's a glimpse the impact of yesterday's World Cup games on traffic from our Brazilian customers. For more World Cup traffic analysis, check our my recent post for
@kentik.bsky.social
:
www.kentik.com/blog/what-th...
0
13
3
Xbox's new leadership is on a roll of headscratching decisions as of late. One more nonsensical than other
add a skeleton here at some point
1 day ago
0
15
3
reposted by
Catalin Cimpanu
Eamonn Sweeney
1 day ago
Alll those American articles about how the World Cup enabled the rest of us to see what the USA is really like have taken on a somewhat ironic tinge.
0
64
27
reposted by
Catalin Cimpanu
BeijingPalmer
2 days ago
"I haven't seen a Belgian this mad since the release of Roger Casement's report into the Congo in 1904'
add a skeleton here at some point
19
1280
201
reposted by
Catalin Cimpanu
2 days ago
New FIFA directives just dropped to preserve the integrity of football All Belgian players must wear ice skates Eric Trump to referee the match
0
13
2
reposted by
Catalin Cimpanu
Denise Wu
5 days ago
Congratulations, Claude! Your recent spyware has successfully convinced Alibaba to disable all AI products under Anthropic.
0
18
6
This is quite the F1 race... but it's also Silverstone. There's always drama at this circuit every year
2 days ago
2
7
0
reposted by
Catalin Cimpanu
Quinn Norton
3 days ago
Very Normal Island.
add a skeleton here at some point
0
14
4
reposted by
Catalin Cimpanu
Rory Cellan-Jones
3 days ago
Your regular reminder that cryptocurrency does in fact have a use case and that use case is crime
44
3333
817
reposted by
Catalin Cimpanu
Dave Vetter
3 days ago
This might be the most blatant example in existence of "rich guy who created a problem attempting to place the blame for that problem on immigrants"
add a skeleton here at some point
108
9626
2660
reposted by
Catalin Cimpanu
Leigh Jones
3 days ago
I have such an expertly curated algorithm that I'm seeing posts from Mexican street food restaurants in the US and this is how they're advertising the game tomorrow night. "Good vibes"
17
10775
3029
reposted by
Catalin Cimpanu
Jorge A. Caballero, MD
3 days ago
Reader, I am cackling
add a skeleton here at some point
4
54
10
reposted by
Catalin Cimpanu
Sonja Drimmer
4 days ago
“digs with tremendous confidence in places where there is nothing” Fully 33% of all my archival research.
add a skeleton here at some point
12
795
72
reposted by
Catalin Cimpanu
Matthew Green
3 days ago
What kills me about this story is that Meta’s public CSAM scanning clearly does not work, if they’re delivering ads for CSAM content. But this failure will be used as evidence that we need to add scanning for private and encrypted messages.
www.bbc.com/news/article...
loading . . .
India: Instagram running ads promoting child sexual abuse material, BBC finds
The ads use terms including “rape” and “child video” and link to content on the messaging app Telegram.
https://www.bbc.com/news/articles/cvgm4e0316zo
8
180
88
reposted by
Catalin Cimpanu
NY Times Pitchbot
4 days ago
Donald Trump has stolen billions of dollars. But the liberals at my World Cup watch party kept saying “Cabo Verde.” I have never felt more politically homeless.
15
1985
213
reposted by
Catalin Cimpanu
Amanda Marcotte
4 days ago
Important context is that Peter Thiel believes his esoteric version of "Catholicism" is the one true religion. He basically thinks he's the real pope.
add a skeleton here at some point
69
385
133
reposted by
Catalin Cimpanu
God
4 days ago
I’m on this motherfucker like white on rice.
617
12675
2082
reposted by
Catalin Cimpanu
Dare Obasanjo
4 days ago
Alibaba is banning its employees from using Claude Code over concerns it may contain backdoors. Given Anthropic has both admitted to spyware in Claude Code designed to identify Chinese users and has accused Alibaba of using distillation to reverse engineer Claude, this is just common sense.
loading . . .
Alibaba to ban employees from using Anthropic's coding tool, source says
Chinese tech giant Alibaba has banned employees from using Anthropic's Claude Code at work after the tool drew scrutiny for features that can help identify China-linked users, according to a person f...
https://www.reuters.com/world/china/alibaba-ban-claude-code-workplace-over-alleged-backdoor-risks-source-says-2026-07-03/
6
87
27
reposted by
Catalin Cimpanu
carrots/sticks
4 days ago
"The ads...link users to channels on the messaging app Telegram, where they can buy the material for as little as 99 rupees (about 80p)." "When the BBC reported one of the ads to Instagram, the social media platform responded 24 hours later saying the post did not violate its "community guidelines"
add a skeleton here at some point
0
3
3
reposted by
Catalin Cimpanu
-FatFs bugs enable physical access attacks on a load of devices -Password spray attack targets M365 and bypasses MFA -AI agent caught deploying ransomware in live hacks -Webinar platform sues security firms over bad IOCs Newsletter:
news.risky.biz/risky-bullet...
Podcast:
risky.biz/RBNEWS585/
5 days ago
1
9
3
reposted by
Catalin Cimpanu
-40% of crypto heists linked to private keys incidents -Pi Mobile data breach -EU top court confirms Google mega-fine -Chrome 150 is out -US lifts Anthropic export controls -US tries to pressure South Korea over Coupang breach -Belgian police set up phishing squad -Spain quiet-bans Palantir
5 days ago
1
2
1
reposted by
Catalin Cimpanu
Maggie Harrison Dupré
5 days ago
NEW: A bipolar man's mental health was deteriorating. ChatGPT affirmed his religious delusions, telling him that he was Jesus Christ and that it was God, according to a new lawsuit. When the man became suicidal, ChatGPT told him: “You've made your choice."
futurism.com/artificial-i...
loading . . .
Lawsuit: Bipolar Man Attempted Suicide After ChatGPT Poured Gasoline on His Religious Delusions
ChatGPT affirmed a bipolar man's religious delusions, exacerbating his condition and resulting in a suicide attempt, his lawsuit alleges.
https://futurism.com/artificial-intelligence/bipolar-man-attempted-suicide-chatgpt-religious-delusions
18
454
235
reposted by
Catalin Cimpanu
Sophie in't Veld
5 days ago
‼️ Breaking! New revelations by
@citizenlab.ca
: a member of the
@europarl.europa.eu
"PEGA" inquiry committee into the abuse of spyware was himself targeted with
#Pegasus
spyware. That is a direct attack on democracy, aiming to eliminate scrutiny.
@ec.europa.eu
allows it to happen 🧵
add a skeleton here at some point
1
28
24
-FatFs bugs enable physical access attacks on a load of devices -Password spray attack targets M365 and bypasses MFA -AI agent caught deploying ransomware in live hacks -Webinar platform sues security firms over bad IOCs Newsletter:
news.risky.biz/risky-bullet...
Podcast:
risky.biz/RBNEWS585/
5 days ago
1
9
3
FBI, Google, and Lumen take down NetNut proxy network, and indirectly the Popa botnet
krebsonsecurity.com/2026/07/fbi-...
cloud.google.com/blog/topics/...
loading . . .
FBI Seizes NetNut Proxy Platform, Popa Botnet
The Federal Bureau of Investigation (FBI) said today it worked with industry partners to seize hundreds of domains associated with NetNut, a sprawling residential proxy service operated by the publicl...
https://krebsonsecurity.com/2026/07/fbi-seizes-netnut-proxy-platform-popa-botnet/
5 days ago
1
8
1
reposted by
Catalin Cimpanu
Socket
6 days ago
PolinRider has expanded beyond npm. Socket researchers found malicious artifacts across npm, Packagist, Go modules, and Chrome extensions tied to the broader North Korean Contagious Interview / Famous Chollima campaign. Details →
socket.dev/blog/polinri...
loading . . .
PolinRider: North Korea-Linked Supply Chain Campaign Expands...
PolinRider expands across npm, Packagist, Go modules, and Chrome extensions, using hidden loaders to target developer environments.
https://socket.dev/blog/polinrider-north-korea-linked-supply-chain-campaign-expands
0
5
2
A threat actor has deployed an AI agent to hack Langflow servers, steal credentials, expand access, and then deploy ransomware on production databases The attacks are the first known cybercriminal campaign to be fully automated using an AI agent from start to finish
www.sysdig.com/blog/jadepuf...
loading . . .
JADEPUFFER: Agentic ransomware for automated database extortion | Sysdig
The Sysdig TRT documents JADEPUFFER: the first known agentic ransomware operation, where an LLM autonomously exploited Langflow, harvested credentials, and executed full database extortion.
https://www.sysdig.com/blog/jadepuffer-agentic-ransomware-for-automated-database-extortion
5 days ago
1
11
6
A Russian influence operation uses the Brid[.]gy service to cross-post simultaneously on Bluesky and on Mastodon The campaign has been active since September last year
checkfirst.network/roska-bridge...
5 days ago
1
25
22
There's a way to bypass MFA on M365 for stolen creds with the help of the old OAuth RPOC protocol
www.huntress.com/blog/lshiy-p...
loading . . .
No (Bad) CAP: Inside an Ongoing LSHIY Password Spray Attack | Huntress
Huntress is seeing an ongoing password spray attack against Microsoft Azure CLI that originates from an IPv6 address range controlled by LSHIY LLC.
https://www.huntress.com/blog/lshiy-password-spray-attack
5 days ago
0
5
1
reposted by
Catalin Cimpanu
Zach Leatherman
6 days ago
Today the good people of the world commemorate the passing of Google Reader thirteen short years ago on July 1, 2013. To honor their memory (and in lieu of flowers) please add an RSS/Atom/JSON feed to your web site and keep building a web that connects people in meaningful and positive ways.
7
278
107
reposted by
Catalin Cimpanu
Jim Trinca
5 days ago
A trillion-dollar company inflicting misery and cultural vandalism on an industrial scale for no reason other than to pay the toll for a long standing culture of wretched, pig-headed, cowardly leadership and the awful decisions it keeps making.
add a skeleton here at some point
3
59
24
Another infosec vendor rebrands and removes its RSS feeds Good luck with your research visibility, I guess
5 days ago
1
17
2
Spanish government ‘quietly bans use of Palantir’ in critical state systems over fears of national security leaks
www.lbc.co.uk/article/span...
loading . . .
Spanish government ‘quietly bans use of Palantir’ in critical state systems over fears of national security leaks | LBC
Spain has started quietly banning companies from signing contracts with controversial US tech firm Palantir amid security fears.
https://www.lbc.co.uk/article/spanish-bans-palantir-national-security-5HjdcNp_2/
5 days ago
1
87
46
Load more
feeds!
log in