Feedback & Followups Listener and community feedback, developments in recently covered stories, and developments in long-running stories we’re tracking over time. Mozilla says Claude’s Mythos AI helped uncover 271 flaws in Firefox — cyberinsider.com/… Related: OpenAI Releases GPT 5.4 Cyber to Help with Defensive Security — www.macobserver.com/… 🇺🇸 FCC Hands Netgear an Effective Monopoly on […]
Continue readingTag: hack
Security Bits — 26 October 2025
Feedback & Followups Listener and community feedback, developments in recently covered stories, and developments in long-running stories we’re tracking over time. 🇺🇸 US Court Blocks Spyware Vendor NSO Group from Targeting WhatsApp Users — cyberinsider.com/… (Maybe their recent change to US ownership will give this injunction more teeth!) Update on the Tea app which suffered […]
Continue readingSecurity Bits — 12 October 2025
Feedback & Followups Listener and community feedback, developments in recently covered stories, and developments in long-running stories we’re tracking over time. Another interesting twist in the NSO Group Saga: Spyware maker NSO Group confirms acquisition by US investors — techcrunch.com/… (via Allison) ❗ Action Alerts Calls to action, if any stories in this section are […]
Continue readingSecurity Bits — 28 September 2025
Feedback & Followups Listener and community feedback, developments in recently covered stories, and developments in long-running stories we’re tracking over time. The industry is fighting back against the recent spike in supply-chain attacks targeting shared library platforms like NPM, PyPi, etc.: GitHub tightens npm security with mandatory 2FA, access tokens — www.bleepingcomputer.com/… 🇺🇸 Details are […]
Continue readingSecurity Bits — 6 July 2025
Feedback & Followups Listener and community feedback, developments in recently covered stories, and developments in long-running stories we’re tracking over time. Just like we predicted last time: Scattered Spider hackers shift focus to aviation, transportation firms — www.bleepingcomputer.com/… (They’d just pivoted to Insurance and were finding it fallow ground, so we predicted they’d jump again […]
Continue readingSecurity Bits — 2 March 2025
Feedback & Followups Listener and community feedback, developments in recently covered stories, and developments in long-running stories we’re tracking over time. Yet another reminder that developers are in the attacker’s sights: VSCode extensions with 9 million installs pulled over security risks — www.bleepingcomputer.com/… Microsoft’s prompt and very effective response to proactively disabled the plugin in […]
Continue readingSecurity Bits — 12 May 2024
Feedback & Followups Listener and community feedback, developments in recently covered stories, and developments in long-running stories we’re tracking over time. 🇪🇺 Quick Digital Markets Act update: The first 3rd-party iOS app store in the EU has gone live – AltStore PAL by Riley Testut — rileytestut.com/… EU Labels iPadOS as a Gatekeeper and Orders […]
Continue reading
Someone Else Was Prompted to Verify My Apple ID
This week I got a text from my friend Ryan that really surprised me. We haven’t seen each other in ages, but he saw something on his iPhone that he thought might be of interest to me. You know how on occasion your iPhone or other Apple device will demand that you verify your Apple […]
Continue reading
Security Bits — 8 January 2023
Deep Dive 1 — Rethinking the Last Pass Breach (It’s Worse 🙁) Two weeks ago the latest details on the Last Pass breach were much fresher, and since then two things have happened: More facts have come to my attention More well-reasoned opinions have been expressed In terms of new information we have the following: […]
Continue readingSecurity Bits — 25 September 2022
Feedback & Followups Listener and community feedback, developments in recently covered stories, and developments in long-running stories we’re tracking over time. 🇺🇸 Google have gotten SEC approval to pilot their controversial political ad spam by-pass feature with a limited number of campaigns in this year’s US mid-term elections — appleinsider.com/… 🇺🇸 The recent revelations of […]
Continue reading