Security
oops
A North Korean Hacker Tricked a US Security Vendor Into Hiring Him—and Immediately Tried to Hack Them
KnowBe4 detailed the incident in a recent blog post as a warning for other potential targets.
Jon Brodkin, Ars Technica
A Hacker ‘Ghost’ Network Is Quietly Spreading Malware on GitHub
Cybersecurity researchers have spotted a 3,000-account network on GitHub that is manipulating the platform and spreading ransomware and info stealers.
Matt Burgess
How Russia-Linked Malware Cut Heat to 600 Ukrainian Buildings in Deep Winter
The code, the first of its kind, was used to sabotage a heating utility in Lviv at the coldest point in the year—what appears to be yet another innovation in Russia’s torment of Ukrainian civilians.
Andy Greenberg
The Feds Say These Are the Russian Hackers Who Attacked US Water Utilities
Plus: The FBI unlocks the Trump shooter’s phone, a security researcher gets legal threats for exposing hackable traffic lights, and more.
Andy Greenberg and Lily Hay Newman
Don’t Fall for CrowdStrike Outage Scams
Swindlers are spinning up bogus websites in an attempt to dupe people with “CrowdStrike support” scams following the security firm's catastrophic software update.
Lily Hay Newman
This Machine Exposes Privacy Violations
A former Google engineer has built a search engine, webXray, that aims to find illicit online data collection and tracking—with the goal of becoming “the Henry Ford of tech lawsuits.”
Brian Merchant
J.D. Vance Left His Venmo Public. Here’s What It Shows
The Republican VP nominee's Venmo network reveals connections ranging from the architects of Project 2025 to enemies of Donald Trump—and the populist's close ties to the very elites he rails against.
Dhruv Mehrotra, Tim Marchman, and Andrew Couts
US Senators Secretly Work to Block Safeguards Against Surveillance Abuse
Senator Mark Warner is trying to pass new limits on when the government can wiretap Americans. At least two senators are quietly trying to stop him.
Dell Cameron
Spyware Users Exposed in Major Data Breach
Plus: The Heritage Foundation gets hacked over Project 2025, a car dealership software provider seems to have paid $25 million to a ransomware gang, and authorities disrupt a Russian bot farm.
Andrew Couts
How Apple Intelligence’s Privacy Stacks Up Against Android’s ‘Hybrid AI’
Generative AI is seeping into the core of your phone, but what does that mean for privacy? Here’s how Apple’s unique AI architecture compares to the “hybrid” approach adopted by Samsung and Google.
Kate O'Flaherty
How to Spot a Business Email Compromise Scam
In this common email scam, a criminal pretending to be your boss or coworker emails you asking for a favor involving money. Here’s what do to when a bad actor lands in your inbox.
Justin Pot
A Guide to RCS, Why Apple’s Adopting It, and How It Makes Texting Better
The messaging standard promises better security and cooler features than plain old SMS. Android has had it for years, but now iPhones are getting it too.
David Nield
AI Is Your Coworker Now. Can You Trust It?
Generative AI tools such as OpenAI’s ChatGPT and Microsoft’s Copilot are becoming part of everyday business life. But they come with privacy and security considerations you should know about.
Kate O'Flaherty
The Pentagon Wants to Spend $141 Billion on a Doomsday Machine
The DOD wants to refurbish ICBM silos that give it the ability to end civilization. But these missiles are useless as weapons, and their other main purpose—attracting an enemy’s nuclear strikes—serves no end.
Matthew Gault
How One Bad CrowdStrike Update Crashed the World’s Computers
A defective CrowdStrike update sent computers around the globe into a reboot death spiral, taking down air travel, hospitals, banks, and more with it. Here’s how that’s possible.
Lily Hay Newman, Matt Burgess, and Andy Greenberg
Alleged ‘Maniac Murder Cult’ Leader Indicted Over Plot to Kill Jews
US prosecutors have charged Michail Chkhikvishvili, also known as “Commander Butcher,” with a litany of crimes, including alleged attempts to poison Jewish children in NYC.
Ali Winston
The US Supreme Court Kneecapped US Cyber Strategy
After the Supreme Court limited the power of federal agencies to craft regulations, it’s likely up to Congress to keep US cybersecurity policy intact.
Eric Geller
Latest
Strike Out
Huge Microsoft Outage Caused by CrowdStrike Takes Down Computers Around the World
Matt Burgess
Pig Butchering
The $11 Billion Marketplace Enabling the Crypto Scam Economy
Andy Greenberg and Lily Hay Newman
Security Roundup
Hackers Leaking Taylor Swift Tickets? Don’t Get Your Hopes Up
Matt Burgess and Andy Greenberg
Only Satellites
The US Wants to Integrate the Commercial Space Industry With Its Military to Prevent Cyber Attacks
Sharon Lemac-Vincere
Copy wrong
Quora’s Chatbot Platform Poe Allows Users to Download Paywalled Articles on Demand
Tim Marchman
Hell on Earth
Inside a Violent Gang's Ruthless Crypto-Stealing Home Invasion Spree
Andy Greenberg and Matt Giles
Crawling Back
Amazon Is Investigating Perplexity Over Claims of Scraping Abuse
Dhruv Mehrotra and Andrew Couts