This is the story of when I first realized how throughly compromised ANOM, the encrypted chat app the FBI secretly ran, really was. It was the moment I saw a mass of messages and data gathered by the app.

It starts with Christof, who was clearly hungover

1/

Microsoft unmasks Russia-linked ‘GooseEgg’ malware therecord.media/russia-gru-mal…

It appears that the number of industrial devices accessible from the internet
has risen by 30 thousand over the past three years
isc.sans.edu/diary/It+appea…

Researchers Uncover Windows Flaws Granting Hackers Rootkit-Like Powers
thehackernews.com/2024/04/resear…

ToddyCat is making holes in your infrastructure
securelist.com/toddycat-traff…

Analyzing Forest Blizzard’s custom post-compromise tool for exploiting
CVE-2022-38028 to obtain credentials
microsoft.com/en-us/security…

Change Healthcare Finally Admits It Paid Ransomware Hackers—and Still Faces a Patient Data Leak | WIRED wired.com/story/change-h…

AIG-301 Series Azure uAMQP Vulnerabilities
URL: moxa.com/en/support/pro…
Classification: Critical, Solution: Official Fix, Exploit Maturity: Not Defined, CVSSv3.1: 9.8

I rarely rank my own sessions but I have to say this must be one of my alltime favorites❤️ #zerotrust #disobey #minecraft #tailscale youtu.be/CAX5ymw_PWo?si…

Ransomware payments drop to record low of 28% in Q1 2024
bleepingcomputer.com/news/security/…

Advanced Cyber Threats Impact Even the Most Prepared
medium.com/mitre-engenuit…

Researchers find dozens of fake E-ZPass toll websites after FBI warning therecord.media/researchers-fi…

Telecom giant Frontier shuts down some systems after cyberattack therecord.media/telecom-giant-…

Costco is selling up to $200m in gold bars per month (~80,000 oz).

It’s a lot. For reference, China’s Central Bank bought $400m of gold in March (~160,000 oz).

A funny side note: bunch of Costco members trying to rack up credit card rewards buying the bars and then re-selling

Some Fritz!Box modems might have been hijacked crapts.org/2024/04/21/all…

Haluatko oppia lisää security baselinen vianselvityksestä ja IT-adminien elämää helpottavista #AI -työkaluista?

Älä missaa loistavaa tilaisuutta verkostoitua ja oppia! Rekkaa mukaan #WPNinjasFI :n ensimmäiseen online-tapahtumaan

👉 wpninjas.fi/2024-04-03-Onl…

CrushFTP warns users to patch exploited zero-day “immediately”
bleepingcomputer.com/news/security/…

Palo Alto Networks Discloses More Details on Critical PAN-OS Flaw Under Attack
thehackernews.com/2024/04/palo-a…

CrushFTP v11 actively exploited vulnerability
URL: crushftp.com/crush11wiki/Wi…
Classification: Critical, Solution: Official Fix, Exploit Maturity: Functional, CVSSv3.1: None