Verifium - iOS Security & Privacy Auditor An open-source iOS privacy and security auditor based on industry-standard best practices.

Is your iPhone secure? Verifium is a free open-source iOS auditor. It runs local checks against renowned security and privacy guidelines. Zero data leaves your device: verifium.app

Poland arrests Russian suspected of hacking Polish companies A Russian citizen suspected of hacking IT systems of Polish companies was arrested in Krakow, Polish Interior Minister Marcin Kierwinski said on Thursday.

"A Russian citizen suspected of hacking IT systems of Polish companies was arrested in Krakow, Polish Interior Minister Marcin Kierwinski said on Thursday."

www.reuters.com/world/poland...

AI assistants make widespread errors about the news, new research shows Leading AI assistants misrepresent news content in nearly half their responses, according to new research published on Wednesday by the European Broadcasting Union (EBU) and the BBC.

AI assistants make widespread errors about the news, new research shows reut.rs/4qkIfvx

Russia is helping prepare China to attack Taiwan, documents suggest Russia is using its battlefield experience to give Chinese airborne units the training and technical knowhow to carry out lightning-fast operations.

Taiwan having to defend itself against both China AND Russia would be a tall order. www.washingtonpost.com/world/2025/0...

Dubai chocolate is a psyop

It is

1/ China’s cyber capabilities didn’t start top-down, they started with raw hacking talent. The new CSS/ETH report "Before Vegas" traces how informal talent shaped China’s cyber ecosystem, moving from online forums to industry leaders (link in thread).

Telegram, the FSB, and the Man in the Middle The technical infrastructure that underpins Telegram is controlled by a man whose companies have collaborated with Russian intelligence services. An investigation by IStories

2/2 Russia at will. Although he claims to be apolitical, he denies responsibility for the crimes that are enabled by his platform. He loves to dish out advice to Western politicians, but hates paying taxes and prefers to live in a dictatorship. In short, he embodies the stereotypical Russian.

China accuses US of launching 'advanced' cyberattacks, names alleged NSA agents Chinese police in the northeastern city of Harbin have accused the United States National Security Agency (NSA) of launching "advanced" cyberattacks during the Asian Winter Games in February, targeting essential industries.

Following long practice of US gov indicting Chinese/Russian state hackers for breaching US systems, China has named and issued warrants for 3 NSA workers it says were behind hacks of China systems during Asian Winter Games. Also says University of California and Virginia Tech participated in attacks

You will always remember this as the day you finally caught FamousSparrow ESET researchers uncover the toolset used by the FamousSparrow APT group, including two undocumented versions of the group’s signature backdoor, SparrowDoor.

ESET disputes Microsoft's classification of the FamousSparrow APT as part of the Salt Typhoon group.

ESET believes the two APTs may be using a shared digital quartermaster (malware and tools developer).

www.welivesecurity.com/en/eset-rese...

When the answer to "are you cheating on me?" is "who told you that?" and not "no"

@hpiedcoq.bsky.social 🇷🇺👀

Tweet by Graham Stuart, Tory MP @grahamstuart: We have to consider the possibility that President Trump is a Russian asset. If so, Trump's acquisition is the crowning achievement of Putin's FSB career - and Europe is on its own.

Extraordinary comment from Tory MP Graham Stuart:

“We have to consider the possibility that President Trump is a Russian asset.
If so, Trump's acquisition is the crowning achievement of Putin's FSB career.”

(Narrator: It’s extraordinary because our own gd government didn’t say it first.)

It shouldn’t take a panic over Chinese AI to remind people that most companies in the business set the terms for how they use your private data.

And when you use their AI apps, you’re doing work for them, not the other way round.

being able to walk away from the internet, even via laptops was nice

Ah yes. We're at the 'pUt It On ThE bLoCkChAiN' stage.

It's like Ivanti. Every month is zero-day awareness month.

I can never fully know if I already read this "Fortinet 0day in the wild" article 3 weeks ago or if it’s new. Ha, never mind! It’s new 🥲

StravaLeaks : des dates de patrouilles des sous-marins nucléaires français dévoilées par l’imprudence de membres d’équipage Des membres d’équipage des sous-marins français dotés de l’arme atomique partagent publiquement leurs activités sportives par le biais de l’application Strava, divulguant ainsi, par inadvertance, des ...

LeMonde investigation finds that members of a French nuclear-armed submarine crew inadvertently shared sensitive information about the patrol schedule of the ship via the Strava workout app: www.lemonde.fr/videos/artic...

We're witnessing the evolution of ransomware.

Yesterday someone informed us of the existence of the new TTP of AWS S3 extortion. More specifically, Threat Actors abusing the Amazon Key Management Service (KMS) to encrypt company AWS buckets (or any cloud provider).

How Chinese Hackers Graduated From Clumsy Corporate Thieves to Military Weapons Massive “Typhoon” cyberattacks on U.S. infrastructure and telecoms sought to lay the groundwork for potential conflict with Beijing, as intruders gathered data and got in position to impede response a...

incredibly detailed piece on Salt and Volt Typhoon (apparently named as if they're brothers)

"a cybersecurity vendor notices the activity and flags it to the port's cybersecurity chief, who examines it and decides it's a false alarm. He heads to lunch at Whataburger."

www.wsj.com/tech/cyberse...

Court order text. Link to follow

Court order text. Link to follow

Court order text. Link to follow

Court order text. Link to follow

BREAKING: court finds NSO Group liable for #Pegasus hacking of #WhatsApp users.

Big win for spyware victims.

Big loss for NSO.

Bad time to be a spyware company.

Landmark case. Huge implications. 1/ 🧵

This aspect of restructuring authority between NSA and USCYBERCOM in light of a dual-hat split is one I hadn’t considered before:

I don’t normally get worked up about the naming threat actors thing.

But the Volt & Salt Typhoon is a disaster as it’s so hard for non-specialists to tell them apart:

- Salt is Snowden style espionage by China against US

- Volt is a direct 🇨🇳 military threat to degrade western infrastructure 1/2

The US Treasury has sanctioned Sichuan Silence, the Chinese company that developed exploits against Sophos firewalls

home.treasury.gov/news/press-r...

Free backup service!

Why the f*ck does my Windows trying to reach browser.events.data.msn[.]cn

Top senator calls Salt Typhoon ‘worst telecom hack in our nation’s history’ The severity of the Chinese breach highlights the need for more telecommunications regulation, lawmakers say.

"The networks are still compromised, and booting the hackers out could involve physically replacing “literally thousands and thousands and thousands of pieces of equipment across the country,” specifically outdated routers and switches" 🕵️‍♂️