Apple announces a “major evolution” of the Apple Security Bounty program, doubling its top award to $2M for exploit chains that could be abused for spyware
$2M Top Payout Usman Qureshi / iPhone in Canada : Apple Doubles Security Bounty Rewards to $2 Million Bill Toulas / BleepingComputer : Apple now offers $2 million for zero-click RCE vulnerabilities Ti...
The US Secret Service says it has dismantled 300+ SIM card servers in the NYC area that could have disrupted communications ahead of the UN General Assembly
NYTimes https://www.nytimes.com/... Anthony Guglielmi / @ajguglielmi : While investigating threats against senior officials, the @SecretService uncovered & dismantled a telecom network capable of disr...
Sources and docs: a “major lapse” at Thoma Bravo's Opexus, which helps US agencies manage investigations and FOIA, let two convicted hackers delete databases
Failures in cybersecurity practices at a software company that helps federal agencies manage investigations … Bluesky: @kimzetter Bluesky: Kim Zetter / @kimzetter : Two brothers previously convicted o...
An internal NSA memo in February 2025 warned staff of a “Signal Vulnerability”; Signal says it was a phishing warning and “had nothing to do with” its core tech
Good morning. The latest Nielsen numbers are out … HuffPost : Trump's CIA Director Blames Biden Team For Allowing Communications On Signal App James Farrell / SiliconANGLE : NSA warned about vulnerab...
A look at some government contractors that are helping US intelligence agencies and others use targeted mobile ads to track down people
Meet the guy who taught US intelligence agencies how to make the most of the ad tech ecosystem, “the largest information-gathering enterprise ever conceived by man.” Mastodon: @simontsui@infosec.excha...
Microsoft says Chinese state-sponsored hackers compromised “critical infrastructure organizations” across US industries, with a focus on gathering intelligence
aimed @ stopping relief of Taiwan in case of blockade or kinetic conflict...Biden Regime aware of this since February—same time as the airship incursion..... https://www.cnbc.com/... @nsacyber : Don't...
An in-depth look inside the US DOJ and Volexity's investigation into the SolarWinds hack, one of the most sophisticated cyberespionage campaigns of the decade
I'd like to highlight this bit. Zero trust, my arse. Lots of new details in this report. https://www.wired.com/... Tweets: Stephane Taillat / @staillat : A great work by @KimZetter @WIRED on the Sol...
Mandiant says the North Korea-linked hack of VoIP company 3CX's customers is the first confirmed incident of one software-supply-chain attack enabling another
perhaps the first confirmed case of one software supply chain attack causing another. https://www.wired.com/... Kim Zetter / @kimzetter : I've updated story about 3XC/X_Trader with new info: per @syma...
Twitter plans to discontinue free access to its API starting on February 9, ending support for both v1.1 and v2, and launch a “paid basic tier” instead
This week I spent too many minutes watching Nothing, Forever, which is a Twitch stream that runs 24/7. Mastodon: Kate Starbird / @katestarbird@mstdn.social : Looks like Twitter is eliminating free acc...
An investigation based on nearly 160K Roskomnadzor documents details Russia's expansive surveillance and censorship apparatus, which helps Putin maintain power
Four days into the war in Ukraine, Russia's expansive surveillance and censorship apparatus was already hard at work. Tweets: @paulmozur , @bbhorne , @bbhorne , @fcdservicea_llc , @fcdservicea_llc , @...