„Russia is set to stop oil exports from #Kazakhstan to #Germany via the Druzhba pipeline starting from May 1, three industry sources said on Tuesday.“
www.reuters.com/business/ene...
#Russia #Russland
🔥 This court ruling is historical! Not only does it ban LGBTI discrimination, but for the first time it issues a ruling based on Art 2 of the Treaties, that lays down the values on which the European Union is based. A big step for the European Union as a community of values
#ESETresearch discovered a new #NGate malware variant that abuses the legitimate #HandyPay app, which has been patched with possibly AI-generated malicious code. The campaign is ongoing and targets Android users in Brazil. www.welivesecurity.com/en/eset-rese... 1/6
🇫🇷Two of NSO’s co-founders, Shalev Hulio & Omri Lavie, were questioned by an investigating judge & placed under assisted witness status at the beginning of 2026 - as part of an investigation opened in ‘22 following the Pegasus Project revelations, reports @mediapart.fr
www.lemonde.fr/pixels/artic...
NEW: North Korean government hackers are allegedly behind the theft of more than $290 million in crypto.
This is now the largest crypto heist of the year, after another recent one of $285 million.
techcrunch.com/2026/04/20/n...
What do Lenovo, Kingston, Shuttle Inc, and Palit Microsystems have in common?
EV Certificates from these companies were issued and used by a Chinese crime group, #GoldenEyeDog (#APT-Q-27)!
Thanks @malwrhunterteam and @g0njxa for your contributions
1/7
Iranian journalists in London “say they fear for their lives after a recent spate of threats and physical attacks,” and I’m willing to bet the regime is leveraging digital attacks against critics too. www.theguardian.com/global-devel...
NEW PROBLEM UP! 🚨
We discuss a mysterious, VM-obfuscated backdoor that lived undetected on a single U.K. machine for a year before disappearing, finding clues pointing to an elite-level APT intrusion that still evades broader industry coverage.
WATCH on YouTube www.youtube.com/watch?v=mSD9...
therecord.media/ukraine-conf...
12 years ago I wrote how the internet is being protected by two guys named Steve. Today, the situation isn't all that different, except those handful of volunteers are being swamped by AI systems finding holes in our digital systems. My essay for @bloomberg.com www.bloomberg.com/news/article...
Restrictions in Syrian universities are now surpassing even Assad-era limits. Deans are threatening to expel students for joining “unofficial” social groups, like Facebook or WhatsApp, marking a sharp escalation in control over student life.
Last week, we published a @citizenlab.ca report on the ad-based location surveillance system Webloc, its capabilities and its customers.
Webloc obtains data from consumer apps installed on phones. How? We don't know. But the ad targeting segments shown in this 2021 Webloc screenshot caught my eye:
A fascinating read by my colleagues on a police officer who was part of the detention system in Xinjian and now has fled the country and now is speaking out, because if one day, he was asked, what he did to fight the injustice, he can say: "I spoke the truth"
www.spiegel.de/ausland/chin...
Botconf is streaming live: www.youtube.com/@BotConfTV/s...
Recommend the watch. One of the Top 5 security conferences out there
"Reuters reviewed the underlying data and is publishing details of the hacks for the first time, including the identities of more than a dozen compromised European agencies and officials."
www.reuters.com/world/russia...
Memory-only malware leaves no trace on the file system and is commonly used by threat actors ranging from criminal organizations to ransomware operators to APT groups. In our Volatility 3 training, students gain deep hands on experience analyzing such threats:
memoryanalysis.net/courses-malw...
New, by me: Adobe has fixed a bug in its flagship PDF readers that hackers have been abusing for at least four months to break into people's Windows and macOS computers and steal data.
A security researcher who discovered the hacks said it works by tricking victims into opening a malicious PDF.
Jamf's Nir Avraham has published a report looking at how the Predator spyware exploits, interacts, and modifies the iOS kernel for its operations
"The engine has never been reported on — until now"
www.jamf.com/blog/predato...
Great advice from Anthropic on prep for accelerated AI vulnerability discovery, including what to do if you don’t have a dedicated security team, if you’re reporting bugs you found, or are an open source maintainer.
/ht @decius.bsky.social for sending me the link
claude.com/blog/prepari...
-France takes first steps to ditch Windows for Linux
-OpenAI rotates certs after Axios attack
-Rockstar Games hacked again
-UK threatens jail time for tech execs
-CPUID hacked to serve malware
-Gmail E2EE expands to mobiles
Podcast: risky.biz/RBNEWS550/
Newsletter: news.risky.biz/risky-bullet...
(1/6) Josephina Kersten ist erst 30 Jahre alt, als Ärzte in ihrer linken Brust einen besonders aggressiven Tumor finden. Es folgen 435 Tage Therapie – 17 Mal bekommt sie ein Medikament, das als Hoffnungsträger gilt: Keytruda. The #CancerCalculus ➡️ www.zdfheute.de/politik/deut...
💥One of the best analyses, worth reading: "The defining feature of the Kremlin’s interference campaign in Hungary’s 2026 parliamentary elections is that for Moscow this is not simply an effort to keep a friendly government in power—it is a fight to retain its principal systemic ally inside the EU."
💥Russian intelligence services are more deeply embedded in the Russian embassy in Hungary than in Belgium, where NATO’s headquarters and several EU institutions are based.
🇵🇱Poland’s #Pegasus inquiry has concluded hearings after nearly two years of work and is drafting its final report, due to be published in April.
➡️The report will include a public section and a classified part for a limited group of recipients, including MPs.
jedynka.polskieradio.pl/artykul/3671...
NEW REPORT: “Uncovering Webloc: An Analysis of Penlink’s Ad-based Geolocation Surveillance Tech”
Our research confirms that ad-based surveillance tech Webloc is used by military, intelligence, and law enforcement agencies across the globe.
citizenlab.ca/research/ana...
"Intelligence agencies of Viktor Orbán’s government have been secretly using Webloc — a mass surveillance tool that tracks hundreds of millions of people via smartphone advertising data — making Hungary the first confirmed EU country to deploy it"
vsquare.org/orban-spying...
“We analyzed a 2025 sample of the Spyrtacus #spyware, version 8.71. …We confirm attribution to 🇮🇹SIO S.p.A. and provide a small set of IoCs to detect infections of this malware family.”
osservatorionessuno.org/blog/2026/04...
“The FSB said the man, a resident of Chita in eastern Siberia who was born in 1960, had supplied information via Telegram to Ukrainian intelligence on a local print publication and about a critical infrastructure object in the region.”
Anecdote #924 indicating Russian access to Telegram chats.
Ashley Shen at Cisco Talos uncovers UAT-10362 targeting Taiwanese NGOs and suspected universities with LucidRook, a sophisticated DLL-based stager delivered through spear phishing. blog.talosintelligence.com/new-lua-base...
