my daughter’s new pink iphone 15 was stolen at edc last month and she marked it as lost/stolen on icloud and filed an insurance claim with her carrier, who had her blacklist the phone. the scammers have started texting her now.

Hit by #Alphv? Need a free decryptor to get your data back? The FBI has gift for you! #Ransomware #BlackCat justice.gov/opa/pr/justice…

Every time I've been hiring recently, it's been for Senior roles, and I always get asked about more Junior opportunities. Well, that time has come, and we're looking for a Security Engineer at Reddit.

Joint statement with Justin Trudeau and Christopher Luxon.

With the damage I've seen done via SIM swaps, 5 years in prison is not enough. I said what I said. bleepingcomputer.com/news/security/…

We should expect more of these attacks as passkeys are (hopefully) more widely adopted: attacks on recovery flows shift to passkey providers. I recommend CISOs require device-bound credentials for access to sensitive apps.

You might need to check your Teams Admin Center.. 😩 It looks like the defaults for 3rd party apps changed so users can now add over 2300 apps to Teams without requiring approval To change this, click Actions - Org-wide app settings, turn off 3rd party apps (more in next tweet)

The OSS community is not responsible for how their code is used. Hobby and passion projects are not corporations, they generally aren’t even businesses and they certainly aren’t your employees.

Kudos Andy Greenberg (@agreenberg at the other places) for the depth of research and clarity he brought to Wired’s write-up on the XZ backdoor.

Scoop: Cybersecurity and Infrastructure Security Agency is asking software companies to sign a pledge committing them to implementing seven key "secure-by-design" goals. CISA plans to announce the pledge with ~50 signatories at RSA next week. Major test of efficacy of CISA's SBD campaign. wired.com/story/cisa-cyb…

New podcast dropping soon! I'm super excited to announce that I'm launching a show called Risky Business. Cohosted by me and Maria Konnikova (Maria Konnikova). First episode is May 16. You can learn more here: natesilver.net/p/announcing-r…

Now bringing new, confused audiences to the Patrick Gray podcast!

Messing with gaming companies is a cyber-stormtrooping worthy event abc.net.au/news/2024-05-0…

back in my day we called this spyware

Check out our very own CPO, @clcsampaio, being interviewed on Patrick Gray about Identity and Fine Grained Authorization! 🎧 Listen to the full episode here: bit.ly/4bQezhQ

Expect social engineers to exploit the Falcon issue. crowdstrike.com/blog/falcon-se…

We’ve introduced passkeys as a simple and secure option for people to sign in to their myGov account. Your account will be most secure when you create a passkey and turn off your password as a sign in option. To find out more watch this video, or visit: my.gov.au/passkeys

Troy Iwata got hired for Trump's cabinet, but Jordan Klepper wasn't?