Hackers have reportedly destroyed the entire IT infrastructure of Russia’s Aeroflot in a year-long cyber operation. All critical systems—from databases to internal mail and executive communications—were breached. Around 7,000 servers were wiped and over 20TB of data stolen.

the biggest skill jump I took with yara was to think how the bytes within a file relate to one another Malware isn’t a monolith - it’s a composite of bytes, and those bytes have to work together to do their job. we can exploit those unique relations to track em

Seems to be the latest Storm-1516 disinformation campaign targeting Molvovan president Maia Sandu The campaign completely steals branding from American version of "OK! Magazine" and links to a recently created website okmagazine[.]us x.com/shadowed_news/… .

🇬🇧🚨Leak: Many countries that said NO to #ChatControl in 2024 are now undecided—even though the 2025 plan is even more extreme! 🗳️ The vote is THIS October. 👉 Tell your government to #StopChatControl! Act now: chatcontrol.eu

We'll dig into this on the podcast tomorrow ⏰ Costin Raiu J. A. Guerrero-Saade

Great report!

Thank you 🙏

Things have been a bit busy over the past week, so we've added another 400 servers to make sure that there is enough capacity on the Proton VPN network to meet the rising demand. Shout out to the Proton VPN infrastructure team for the rapid response. More on the way soon!

Probably one of my better pods. Free sauce for anyone who needs it. podcasts.apple.com/us/podcast/thr…

THIS WEEK: Dakota Cary joins the buddies to dig into China’s sprawling cyber ecosystem -- from the HAFNIUM indictments and MSS tasking pipelines to the murky world of APT contractors and the ransomware hustle Dakota Cary Costin Raiu J. A. Guerrero-Saade

hashcat v7.0.0 released! After nearly 3 years of development and over 900,000 lines of code changed, this is easily the largest release we have ever had. Detailed writeup is available here: hashcat.net/forum/thread-1…

Microsoft, China, vuln-data leakage, and the MAPP trust problem Dakota Cary Costin Raiu J. A. Guerrero-Saade Watch full episode youtu.be/ORu_yaB8MnI

I literally don't listen to podcasts of any sorts. But this one is super interesting and I am absolutely hooked onto it... If you are in threat intelligence, you do not wanna miss out on this, just too good🐧

Luxembourg cyberattack on Huawei routers and OS. "These are routers that in particular enable connection to European financial centres, from London to Paris, via Frankfurt or Amsterdam, according to two sources." en.paperjam.lu/article/huawei…

Sample is now on VT! 🚩Hash: 8ca1ffbd3cd22b9bead766ebd2a0f7b2d195b03d533bacf0cb8e1b1887af5636 🎯Actor name: Earth Kurma 🔹Comment: Earth Kurma APT Campaign Targets Southeast Asian Government, Telecom Sectors… 🌐URL: trendmicro.com/en_sg/research… 🔎OnVT: virustotal.com/gui/file/8ca1f…

Find Ryan at #blackhat2025 #blackhatusa ->

Our colleagues at Proton have started moving some of their infrastructure to Germany and Norway in response to growing privacy threats from the government in their home country of Switerland: letemps.ch/cyber/le-choc-…

fightchatcontrol.eu

⚡️ We’re looking to hire software engineers to support our Dark Web collections. Together we will dive deep into ransomware blogs, dark web forums and markets. job-boards.greenhouse.io/recordedfuture… job-boards.greenhouse.io/recordedfuture…

I've been in crypto for over 10 years and I’ve Never been hacked. Perfect OpSec record. Yesterday, my wallet was drained by a malicious Cursor extension for the first time. If it can happen to me, it can happen to you. Here’s a full breakdown. 🧵👇