CyberSecurity Knuggets
Dec 14, 2025
Subject: Best Infosec-Related Long Reads for the Week of 12/6/25
Dear Reader,
Happy Saturday morning! Here’s your weekly digest from Metacurity featuring the best long-form infosec-related articles from the week of December 6, 2025. These pieces provide in-depth insights into some of the most pressing cybersecurity developments and stories.
They Killed My Source
Shane Harris of The Atlantic tells the gripping story of Mohammad Hossein Tajik, a member of Iran’s elite cyber-warfare unit, who leaked secrets about Iran’s cyber operations—including attacks on regional and global targets—only to end up murdered, allegedly by the Iranian regime. His claims include Iran’s involvement in sophisticated attacks on Saudi Aramco, U.S. drones, and cooperation with Russia’s GRU. While some allegations remain unverified, his whistleblowing put his life at risk, revealing the dangerous world of cyber espionage and warfare.
The Story of the Big Hack: How Hackers Paralyzed Aeroflot
Maria Kolomychenko of The Bell uncovers how Belarusian and Ukrainian hackers inflicted a major cyberattack on Russia’s Aeroflot airline in July 2025, gaining administrator access and nearly destroying vital IT infrastructure. The attack disabled key corporate systems, leading to hundreds of flight cancellations, massive operational disruption, and tens of millions of dollars in losses. Despite costly damages, quick action prevented a total collapse, yet Aeroflot’s systems remain vulnerable.
The War on Disinformation is a Losing Battle
James Ball of The Verge explores how right-wing campaigns, fueled by figures like Matt Taibbi and amplified through politicized media, have dismantled efforts to combat disinformation. What started as a push against “free speech suppression” has eroded the public’s ability to understand and counteract misinformation’s impact on society and politics, turning disinformation research into a highly contested battleground.
Your Private Data is Building Trump’s Voter Purge Machine
Abby Vesoulis and Ari Berman of Mother Jones report on how the U.S. Department of Justice, once a defender of voting rights, is now leveraging voter data from multiple states to pursue aggressive voter roll purges. By adopting tactics from conservative organizations, the DOJ is fueling efforts to challenge voter eligibility, potentially threatening voting rights and election integrity, underpinned by unproven claims of widespread fraud.
Regulating Commercial Spyware Through Export Controls
Elaine Korzak from Lawfare analyzes the international Wassenaar Arrangement’s role in trying to regulate commercial spyware exports since 2013. The piece highlights challenges, including divergent implementation between the U.S. and EU, balancing national security, economic interests, cybersecurity defense, and human rights concerns. It notes the limitations and contentious nature of export controls, calling for broader, more coordinated efforts to effectively regulate spyware technologies internationally.
If you appreciate Metacurity’s work and want to support continued access to critical infosec updates, consider upgrading to a paid subscription or exploring corporate and sponsorship options. Your support helps keep the lights on and ensures we can keep delivering the information you need.
Thank you for being a valued member of the Metacurity community.
— Cynthia B Brumfield, DCT Associates
info@metacurity.com | Upgrade My Subscription
View this newsletter in your browser: Metacurity Weekly Digest
© 2025 Metacurity. All rights reserved.
If you wish to unsubscribe, click here.
Stay safe and informed!
The Metacurity Team
Stay Well!
