Ben Read

Google sent personal and financial information of student journalist to ICE | TechCrunch The tech giant handed over the personal information of a journalist and student who attended a pro-Palestinian protest in 2024. This is the latest example of ICE using its controversial subpoena power...

New, by @lorenzofb.bsky.social: Google sent personal and financial data about a student and journalist, who attended a pro-Palestine protest in 2024, to ICE agents in response to an "administrative subpoena," which had not been approved by a judge.

A site tracking recent purges in the PLA vs purges at the Trump-Hegseth Pentagon purge-comparison.vercel.app

To the pen testers, red teamers, and IR folks out there: How often are you encountering vibe coding in your engagements?

I'm curious whether and how often you're seeing vibe coded software leaving the door open to your clients' networks. @ me or DM me if you have thoughts.

That's a terrible decision by them. Really sorry you got impacted here.

100% endorse

YouTube video by unvmebad86 George Washington

I don't know why they need to make short AI films about the American Revolution when the perfect one was created 18 years ago www.youtube.com/watch?v=sbRo...

Or do you mean, nearly the right flight times...

Attack Against Poland's Grid Disrupted Communication Devices at About 30 Sites The hackers behind a cyberattack that targeted Poland's grid infrastructure in December disabled communication devices for at least 30 sites across a number of energy facilities in different parts of ...

Hackers behind cyberattack against Poland electric grid in Dec disabled communication devices for at least 30 sites across a number of energy facilities in country. They rendered the devices - known as remote terminal units or RTUs - not only inoperable but also unrecoverable

Beyond Breaches: The Spectrum of Costs from Espionage and Pre-Positioning — CSINT What are the costs of cyber espionage? And how do they differ from those of operations designed to prepare for attack?

New Publication Alert: It is my pleasure to share that my recent report – coauthored with Alexander Leslie and Taylor Grossman through the Center for Security, Innovation, and New Technology (CSINT) at American University – is now live. 1/8

www.au-csint.com/publications...

"stop pretending Jesus was crucified because he preached good vibes and personal growth"

#BREAKING #ESETresearch identified the wiper #DynoWiper used in an attempted disruptive cyberattack against the Polish energy sector on Dec 29, 2025. At this point, no successful disruption is known, but the malware’s design clearly indicates destructive intent. 1/5

Great work by Kim and ESET to get this story out there. The cyber threat has been off the front pages with everything else going on, but is still very real.

The Farmington

I wrote this right after the inauguration.

"The Christian nationalism of today is entirely inconsistent with the religion of the Founders. Our founding fathers kneeled to no pope, and they kneeled to no king. That is because they were mostly Episcopalians."

tompepinsky.com/2025/01/22/w...

“I have asked the clergy of the diocese to make sure their affairs are in order and they have written their wills.,not the time for statements. It is time to put our bodies between the powers of this world and the most vulnerable”. Rob Hirschfeld, Bishop of the Episcopal Diocese of New Hampshire

Miami, which could not win the ACC, will play for the championship. Makes you wonder what UConn, which beat the ACC champ, and went undefeated* could have done if the powers at be hadn’t conspired to exclude UConn from the playoff.

*in regulation

The “prosecute the former regime at every level” candidate has my vote in 2028.

This campaign got written up by CNCERT, though they have a more chaste explanation for the name than I would have given.

www.secrss.com/articles/86568

Herr's Kettle Cooked Chips, Mozzarella Sticks & Marinara Flavored

Amazing innovation happening in Philadelphia (6/10)

I'm hiring a senior threat researcher! If you want to help me build out a team to track the most advanced actors targeting cloud environments, this is the job for you. This job is open to remote, but us-bases only. Feel free to reach out with questions.

www.wiz.io/careers/job/...

If this job seems like a good fit, but you're not in the US, we'll likely have spots in the future with more flexibility.

I'm hiring a senior threat researcher! If you want to help me build out a team to track the most advanced actors targeting cloud environments, this is the job for you. This job is open to remote, but us-bases only. Feel free to reach out with questions.

www.wiz.io/careers/job/...

We just launched our new and expanded Adversarial Threat Report! We've been reporting on online threats like foreign interference for 7 years, but today's report expands our work to cover fraud, scams, and AI security threats. There's a ton in the report, I'll try to break it down in this thread. 1/

An article that perhaps got lost in the shuffle - on record interviews with senior Dutch intelligence officials where they lament the firing of fmr NSA director Tim Haugh and reveal they are being more careful sharing intel with US partners volkskrant.nl/binnenland/n...

A description of the four ways that actors are following on the Reach4Shell vulnerability.

New from the @wizsecurity.bsky.social team on what we're seeing post CVE-2025-55182 exploitation.

www.wiz.io/blog/nextjs-...

Duke, which lost to UConn (like every team that reached a result with UConn in 60 minutes did) won the ACC.

PUT UCONN IN THE PLAYOFF

Shout out to whoever is exploiting CVE-2025-55182 to drop cryptominers and using "reactOnMynuts" as your campaign code.

China-nexus cyber threat groups rapidly exploit React2Shell vulnerability (CVE-2025-55182) | Amazon Web Services Within hours of the public disclosure of CVE-2025-55182 (React2Shell) on December 3, 2025, Amazon threat intelligence teams observed active exploitation attempts by multiple China state-nexus threat g...

A new blog this evening from Amazon Threat Intelligence detailing ongoing China-nexus cyber actors leveraging React2Shell (CVE-2025-55182): aws.amazon.com/blogs/securi...

Critical Security Vulnerability in React Server Components – React The library for web and native user interfaces

There is critical vulnerability in React Server Components disclosed as CVE-2025-55182 that impacts React 19 and frameworks that use it.

A fix has been published in React versions 19.0.1, 19.1.2, and 19.2.1. We recommend upgrading immediately.

react.dev/blog/2025/12...

Shai-Hulud 2.0 Aftermath: Trends, Victimology and Impact | Wiz Blog A deeper look at the Shai-Hulud 2.0 supply chain attack: reviewing the infection spread, victimology, leaked secrets distribution, and community response so far.

An update on Sha1-Hulud from the team here @wizsecurity.bsky.social. Rami & Shay break down how we've seen it spread, the types of environments targeted and what secrets have been leaked.

www.wiz.io/blog/shai-hu...