New today from Mandiant (part of Google Cloud) detailing a new class of cyber physical attack from Sandworm to disrupt Ukraine's grid This attack departs from the group’s history of using OT-specific malware, instead opting for a harder to detect living off the land approach mandiant.com/resources/blog…

My latest research for the DFRLab - @dfrlab.bsky.social in collaboration with BBC Verify, where we uncovered the vast Russia-based disinformation network spreading false videos on TikTok targeting Ukrainian officials in multiple languages. A short thread. dfrlab.org/2023/12/14/mas…

This iMessage exploit is crazy. TrueType vulnerability that has existed since the 90s, 2 kernel exploits, a browser exploit, and an undocumented hardware feature that was not used in shipped software: securelist.com/operation-tria…

ok, I've now read the full NYT complaint filed this morning vs OpenAI and Microsoft. I'm impressed - it's future-focused around fair value for work vital to democracy. It also contains 220k pages of exhibits although the pages of Ex J stood out to me. more on that in a minute. /1

"Operation Triangulation" is new cool tech, but hey, they have had such capabilities since at least 2007. Let that sink in.

Predator Files #37c3 suggests that an active in-the-wild 0day for Samsung devices is still being sold by spyware vendors. The development of such attacks would've been aided by the leak of Samsung source code affecting their flagship products earlier this year.

Download the newly unsealed Jeffrey Epstein documents here: 404media.co/download-the-j… For sake of public access, we've downloaded the docs and put them onto 404 Media as a .zip for you to download for free, no need to pay the US court system

New blog from Google's TAG (Wesley Shields) outing some elusive COLDRIVER (UNC4057) malware tracked as SPICA: "Russian threat group COLDRIVER expands its targeting of Western officials to include the use of malware" blog.google/threat-analysi…