Scott Stanton

If you’re moving to GA, consider joining the (north) Atlanta cyber scene. DC470 is fledgling, DC404 and DC678 are well-established. There’s a busy Discord as well.

New AirSnitch attack breaks Wi-Fi encryption in homes, offices, and enterprises That guest network you set up for your neighbors may not be as secure as you think.

New AirSnitch attack breaks Wi-Fi encryption in homes, offices, and enterprises: arstechnica.com/security/202...

AirSnitch resets WiFi security back to the bad-old-days of ARP spoofing and trivial MITM.

Hackers made death threats against this security researcher. Big mistake. Allison Nixon had helped arrest dozens of members of The Com — a loose affiliation of online groups responsible for violence and hacking campaigns. Then she became a target.

Anonymously threatening a security researcher seems like a shooting-yourself-in-the-dick level bad decision. Kudos to Allison Nixon for not taking any shit.

www.technologyreview.com/2026/02/16/1...

CISA warns US infrastructure owners following Russian attack on Poland's power grid Russia throttles Telegram accusing it of failing to protect personal data or combat crime, N. Korean hackers targeted crypto company with unique malware and multiple scams, Israel claims it foiled hun...

Metacurity is the independent, non-hype, non-personality-driven cybersecurity newsletter that delivers a daily dose of critical developments you need to know.

Check out today's issue, which covers 1/4

www.metacurity.com/cisa-warns-u...

Treasury cancels Booz Allen contracts ostensibly over inadequate data security Salt Typhoon hacked senior UK officials for years, Pegasus spyware victim awarded $4.1m over Pegasus infection, US Marshals are probing alleged theft of $40m in confiscated digital assets, Nike is inv...

Holy moly, there is a ton of cybersecurity news today so don't miss Metacurity for the most critical developments you should know, including

--Treasury cancels Booz Allen contracts ostensibly over inadequate data security, 1/6
www.metacurity.com/treasury-can...

Trump ends US participation in organizations devoted to stronger cybersecurity Prisoner swap sends alleged ransomware payment negotiator back to Russia, CISA retires ten emergency directives at once, Cambodian cybercrime kingpin extradited to China, Fugitive wanted for Desjardin...

It's finally Friday, so before you stop working for the week, check out today's Metacurity for the most crucial cybersecurity developments you should know, including

--Trump cuts off US access to organizations seeking to strengthen cybersecurity, 1/5
www.metacurity.com/trump-ends-u...

The unbundling of Okta: are startups chipping away at Okta? A guest post from Maya Kaczorowski who breaks down Okta’s competition and how Okta is not being unbundled, but rather squeezed from all sides.

Wrote up some thoughts for how Okta is getting squeezed from all sides: squished by Rippling at the bottom, Msft at the top, and other markets and startups in the middle.
I hope you love some red string diagrams 🤣
ventureinsecurity.net/p/the-unbund...

What is RC4?

A hacker used AI to automate an 'unprecedented' cybercrime spree, Anthropic says The company behind the Claude chatbot said it caught a hacker using its chatbot to identify, hack and extort at least 17 companies.

A lone cybercriminal used Anthropic's vibe-coding LLM to automate a massive spree that hacked and extorted 17 companies. It did almost everything for him: Scoped out who to hack and how, organized the hacked material, helped him decide how much to ask each company for and wrote his extortion emails.

A MAGA bot network on X is divided over the Trump-Epstein backlash Researchers have found hundreds of fake X accounts that support the Trump administration.

New from me: A previously unreported, AI-driven bot network on X has consistently supported MAGA figures and causes since last year. But with the movement fractured over the administration's handling of the Epstein Files, it's flooding conservatives' replies with contradictory messages.

Exclusive: Hacker who breached communications app used by Trump aide stole data from across US government A hacker who breached the communications service used by former Trump national security adviser Mike Waltz earlier this month intercepted messages from a broader swathe of American officials than has previously been reported, according to a Reuters review, potentially raising the stakes of a breach that has already drawn questions about data security in the Trump administration.

Great reporting highlighting that TeleMessage was much more widely used in government than previously reported.

I'll say it again: every foreign intelligence service worth its salt had access to this data. This is a *monumental* security failure by the Trump admin.
www.reuters.com/world/us/hac...

EFF NSA Eagle "All Your Data" Badge Support digital privacy at DEF CON 33 with a custom PCB badge featuring the Electronic Frontier Foundation's (EFF) iconic NSA Eagle!

We're live! 📢 Get your @eff.org NSA Eagle "All Your Data" badge for @defcon.bsky.social to support digital freedom! In line with the #defcon theme, we offer global shipping so you don't miss out! 🌏 #DC33 #EFF #NSAEagle nsaeagle.eventbrite.com

noob question, what are you using to pick and place the component?

This is a really good thread…about a precursor to the Black Basta leaks.

The moment has arrived - the #DEFCON33 Call Season is officially afoot! There are a bunch of Calls to peruse at leisure from Contests to Soundtrack to Vendors, and all the info you need to get started is @ defcon.org/html/defcon-....

Don’t let your dreams be dreams! Let's get after it!
#defcon

Politics should not interfere with safe-guarding the lives of the American public, but it certainly does and will continue to do so in the foreseeable future. Reasonable people may disagree on the methods of maintaining public health and safety, but they should not disagree on the goals.

Is this like "artist exposure" but for sales leads?

Not that Google was ever good, but this cartoon is a good summary of now.

One of those "nyah nyah, now you can't say I didn't sponsor any legislation!" efforts

Kevin Mitnick Part 01 (Final)

Friends, FBI has responded to my FOIA request for Kevin Mitnick's files, and have made them available to everyone via the FBI public portal here: vault.fbi.gov/kevin-mitnic...

Dear every app developer:

It is not 2011. I am not sitting at a desktop computer with a CRT clicking links in emails. I am using an app. Please just keep me inside the app.

Send me a code by text or email if you must. Don’t make me set passwords. Don’t make me leave your app to use a browser.

Say it louder for the people in the back!

I'm on Bsky!