CyberScoop

YouTube video by CyberScoop House Dems seek info about ICE spyware contract, wary of potential abuses

The three lawmakers said the reported lifting of a stop-work order on a $2 million Paragon Solutions contract threatens Americans’ fundamental rights. via @timstarks.bsky.social www.youtube.com/watch?v=AdQg... | cyberscoop.com/house-dems-s...

Oracle zero-day defect amplifies panic over Clop’s data theft attack spree The notorious ransomware group exploited multiple vulnerabilities, including a zero-day, for at least eight weeks before alleged victims received extortion demands.

The notorious ransomware group exploited multiple vulnerabilities, including a zero-day, for at least eight weeks before alleged victims received extortion demands. via @mattkapko.com cyberscoop.com/oracle-zero-...

Here is the email Clop attackers sent to Oracle customers The emails, which are littered with broken English, aim to instill fear, apply pressure, threaten public exposure and seek negotiation for a ransom payment.

Great catch from @mattkapko.com, especially because I hear copycats are already being sent out.

Here is the email Clop attackers sent to Oracle customers

via @cyberscoop.bsky.social

Israeli-backed social media accounts pushed anti-government propaganda — including deepfakes and AI-generated content — to Iranians as real-world attacks were happening, with the goal of fomenting revolt, according to Citizen lab.

@cyberscoop.bsky.social 📰➡️ cyberscoop.com/citizen-lab-...

House Dems seek info about ICE spyware contract, wary of potential abuses Three House Democrats questioned the Department of Homeland Security on Monday over a reported Immigration and Customs Enforcement contract with a spyware provider that they warn potentially “threaten...

The three lawmakers said the reported lifting of a stop-work order on a $2 million Paragon Solutions contract threatens Americans’ fundamental rights. via @timstarks.bsky.social cyberscoop.com/house-dems-s...

Potential EU law sparks global concerns over end-to-end encryption for messaging apps The EU will vote Oct. 14 on a proposal that would use AI or humans to detect child sexual abuse material on their devices.

The EU will vote Oct. 14 on a proposal that would use AI or humans to detect child sexual abuse material on their devices. via @derekbjohnson.bsky.social cyberscoop.com/potential-eu...

Security leaders at Okta and Zscaler share lessons from Salesloft Drift attacks Okta thwarted the supply-chain attack with security controls it had in place. Zscaler did not. Their experiences provide insights into the root of a much broader problem.

Okta thwarted the supply-chain attack with security controls it had in place. Zscaler did not. Their experiences provide insights into the root of a much broader problem. via @mattkapko.com cyberscoop.com/okta-zscaler...

YouTube video by CyberScoop Researchers say Israeli government likely behind AI-generated disinfo campaign in Iran

The group leveraged dozens of social media accounts and “routinely used” AI-generated imagery and video to stoke unrest among Iran’s population, according to Citizen Lab. via @derekbjohnson.bsky.social www.youtube.com/watch?v=4rk1... | cyberscoop.com/citizen-lab-...

DOD to cut back on mandatory cybersecurity training Defense Secretary Pete Hegseth issued a new edict this week to relax the mandatory frequency for cybersecurity training at DOD.

The changes are to be “implemented expeditiously,” per Defense Secretary Pete Hegseth’s directive. defensescoop.com/2025/10/03/d...

Federal judiciary touts cybersecurity work in wake of latest major breach Federal courts are upgrading their cybersecurity on a number of fronts, but multifactor authentication for the system that gives the public access to court data poses “unique challenges.”

The Administrative Office of the United States Courts denied ignoring expert advice in a letter to Sen. Ron Wyden, D-Ore., who blasted Chief Justice Roberts in a response statement. via @timstarks.bsky.social cyberscoop.com/federal-judi...

Researchers say Israeli government likely behind AI-generated disinfo campaign in Iran The group leveraged dozens of social media accounts and “routinely used” AI-generated imagery and video to stoke unrest among Iran’s population, according to Citizen Lab.

The group leveraged dozens of social media accounts and “routinely used” AI-generated imagery and video to stoke unrest among Iran’s population, according to Citizen Lab. via @derekbjohnson.bsky.social cyberscoop.com/citizen-lab-...

Red Hat confirms breach of GitLab instance, which stored company’s consulting data The open-source software company said exposure is limited to consulting engagements, adding that it hasn’t found evidence of personal or sensitive data theft.

The open-source software company said exposure is limited to consulting engagements, adding that it hasn’t found evidence of personal or sensitive data theft. via @mattkapko.com cyberscoop.com/red-hat-gitl...

Android spyware disguised as legitimate messaging apps targets UAE victims, researchers reveal Researchers have found two Android spyware families masquerading as messaging apps Signal and ToTok, apparently targeting residents of the United Arab Emirates.

The campaign involves apps posing as Signal and the defunct ToTok, according to ESET. via @timstarks.bsky.social cyberscoop.com/android-spyw...

North Korea IT worker scheme swells beyond US companies Okta Threat Intelligence uncovered a large-scale and sustained operation, reflecting the North Korean regime’s pursuit of any opportunity that allows for remote employment.

Okta Threat Intelligence uncovered a large-scale and sustained operation, reflecting the North Korean regime’s pursuit of any opportunity that allows for remote employment. via @mattkapko.com cyberscoop.com/north-korea-...

Here is the email Clop attackers sent to Oracle customers The emails, which are littered with broken English, aim to instill fear, apply pressure, threaten public exposure and seek negotiation for a ransom payment.

NEW: @mattkapko.com got his hands on the email being sent to oracle customers. Lots of broken english and pressure applied to pay up or see data leaked cyberscoop.com/extortion-em...

Here is the email Clop attackers sent to Oracle customers The emails, which are littered with broken English, aim to instill fear, apply pressure, threaten public exposure and seek negotiation for a ransom payment.

The emails, which are littered with broken English, aim to instill fear, apply pressure, threaten public exposure and seek negotiation for a ransom payment. via @mattkapko.com cyberscoop.com/extortion-em...

Oracle customers being bombarded with emails claiming widespread data theft Researchers tell CyberScoop that notorious ransomware group Clop may be behind the email barrage.

Researchers tell CyberScoop that notorious ransomware group Clop may be behind the email barrage. via @mattkapko.com cyberscoop.com/clop-claims-...

Oracle customers being bombarded with emails claiming widespread data theft Researchers tell CyberScoop that notorious ransomware group Clop may be behind the email barrage.

CYBERSCOOP AFTER DARK: Attackers appearing to be aligned with the Clop ransomware group have sent emails to Oracle customers seeking extortion payments, claiming they stole data from the tech giant’s E-Business Suite. Early signs point to it being legit cyberscoop.com/clop-claims-...

Oracle customers being bombarded with emails claiming widespread data theft Researchers tell CyberScoop that notorious ransomware group Clop may be behind the email barrage.

New from me. CyberScoop after dark. cyberscoop.com/clop-claims-...

Oracle customers being bombarded with emails claiming widespread data theft Researchers tell CyberScoop that notorious ransomware group Clop may be behind the email barrage.

For those who missed it last night: attackers appearing to be aligned with Clop have sent emails to Oracle customers seeking extortion payments, claiming they stole data from the tech giant’s E-Business Suite, according to researchers who spoke with CyberScoop. cyberscoop.com/clop-claims-...

GOP senator confirms pending White House quantum push, touts legislative alternatives Sen. Marsha Blackburn did not provide a timeline for any formal rollout by the administration, and also pointed to her proposed bill with Michigan Sen. Gary Peters.

Sen. Marsha Blackburn did not provide a timeline for any formal rollout by the administration, and also pointed to her proposed bill with Michigan Sen. Gary Peters. via @derekbjohnson.bsky.social cyberscoop.com/blackburn-co...

The latest version of Claude has many cybersecurity improvements. 🔒

Oh, and it's also increasingly self-aware. 👀

Learn more from @cyberscoop.bsky.social @derekbjohnson.bsky.social 📰 ➡️ cyberscoop.com/anthrophic-s...

Palo Alto Networks spots new China espionage group showcasing advanced skills Phantom Taurus has stolen sensitive data from ministries of foreign affairs, embassies, diplomats and telecom networks in the Middle East, Africa and Asia, researchers said.

Phantom Taurus has stolen sensitive data from ministries of foreign affairs, embassies, diplomats and telecom networks in the Middle East, Africa and Asia, researchers said. via @mattkapko.com cyberscoop.com/phantom-taur...

Watchdog: Cyber threat information-sharing program’s future uncertain with expected expiration of 2015 law CISA doesn’t have any plans in place for continuing a threat information-sharing program should a 2015 law that laid the groundwork for its creation expire Wednesday, according to a new watchdog repor...

A DHS inspector general report found that CISA doesn’t have plans for what to do with AIS if the Cybersecurity Information Sharing Act lapses. via @timstarks.bsky.social cyberscoop.com/watchdog-cyb...

DOJ, Georgia Tech affiliate company settle over alleged failure to meet DOD contract cyber requirements The company agreed to pay $875,000, with neither side conceding to the other as part of resolving the suit.

The company agreed to pay $875,000, with neither side conceding to the other as part of resolving the suit. via @timstarks.bsky.social cyberscoop.com/doj-georgia-...

Anthropic touts safety, security improvements in Claude Sonnet 4.5 Even with all the testing, the company said in its released research that the model tightened up once it was “aware” it was being evaluated.

Even with all the testing, the company said in its released research that the model tightened up once it was “aware” it was being evaluated. via @derekbjohnson.bsky.social cyberscoop.com/anthrophic-s...

Interpol operation disrupts romance scam and sextortion networks in Africa Authorities said the cybercrime rings impacted almost 1,500 victims, resulting in about $2.8 million in combined losses.

Interpol operation disrupts romance scam and sextortion networks in Africa via @mattkapko.com cyberscoop.com/interpol-ope...

Two-thirds of CISA personnel could be sent home under shutdown The Department of Homeland Security estimated over the weekend that it would send home about two-thirds of employees at the Cybersecurity and Infrastructure Security Agency in the event of a governmen...

Who's watching the cyber bad guys?

Only 889 of CISA’s 2,540 personnel would keep working through a government funding lapse, per DHS.

Chinese, Russian, Iranian & North Korean hackers will be busy this weekend.
@timstarks.bsky.social @cyberscoop.bsky.social

cyberscoop.com/two-thirds-o...

Two-thirds of CISA personnel could be sent home under shutdown The Department of Homeland Security estimated over the weekend that it would send home about two-thirds of employees at the Cybersecurity and Infrastructure Security Agency in the event of a governmen...

A DHS plan estimates that it would keep nearly 900 CISA workers on the job during a lapse in federal funding. via @timstarks.bsky.social cyberscoop.com/two-thirds-o...

YouTube video by CyberScoop Dem report concludes Department of Government Efficiency violates cybersecurity, privacy rules

DOGE is “bypassing cybersecurity protections” at three agencies, Senate Homeland Security and Governmental Affairs Committee Democrats concluded. via @timstarks.bsky.social www.youtube.com/watch?v=viiq... | cyberscoop.com/senate-democ...