Dec 21, 2025 I just heard about a serious cybersecurity breach at Amazon, where a North Korean infiltrator managed to embed themselves within the company’s IT department. This individual was hired through normal remote recruitment channels, falsely claiming to be based in the U.S. What tipped off investigators was an
Dec 20, 2025 Email 1: Subject: Risky Bulletin: Belarus Deploys Spyware on Journalists’ Phones Summary: Belarusian authorities are installing spyware called ResidentBat on journalists’ smartphones during police interrogations. This malware can access calls, microphone, messages, and local files. The spyware infrastructure appeared in 2021 amid protests, and while used by
Dec 19, 2025 Subject: Srsly Risky Biz: Dumb and Dumber, Russia’s State-Backed “Hacktivists” Sender: risky-biz@ghost.io Summary: – The US revealed Russia’s government backed two hacktivist groups, CyberArmyofRussia_Reborn (CARR) and NoName057(16), to conduct disruptive attacks globally on critical infrastructure. – CARR, founded in early 2022 by Russian military intelligence (GRU), started
Dec 18, 2025 Email 1: Subject: Risky Bulletin: Most smart devices run outdated web browsers Sender: risky-biz@ghost.io Date: 17 Dec 2025 Summary: A study from KU Leuven reveals that most smart devices, including smart TVs, e-readers, and gaming consoles, ship with embedded web browsers that are often three years behind
Dec 17, 2025 Subject: Russia switches up tactics in cyberattacks on energy companies, Amazon Sender: info@metacurity.comD Key points: – Russian government-backed hackers (linked to GRU) have shifted tactics against energy companies in North America, Europe, and the Middle East by targeting misconfigured or vulnerable internet routers and devices rather than
Dec 16, 2025 Email 1 Summary: Meta has shut down a disinformation network spreading Russian propaganda across Africa for over six months. The network, run by Russia-based entities and African freelancers hired on platforms like Upwork, operated over 65 accounts and 70 pages mimicking news outlets to post anti-US and
Dec 14, 2025 Subject: Best Infosec-Related Long Reads for the Week of 12/6/25 Dear Reader, Happy Saturday morning! Here’s your weekly digest from Metacurity featuring the best long-form infosec-related articles from the week of December 6, 2025. These pieces provide in-depth insights into some of the most pressing cybersecurity developments
Dec 13, 2025 — Email 1 — Subject: Risky Bulletin: EU Struggles to Attract and Retain Cybersecurity Talent Content: A recent EU cybersecurity agency survey highlights difficulties faced by public and private organizations in the EU to attract (76%) and retain (71%) cybersecurity professionals. The talent shortage is due to
Dec 12, 2025 Email 1: Subject: OpenAI Warns of Increasing Cybersecurity Threats via Evolving AI Models Summary: OpenAI reports accelerating cybersecurity capabilities in new AI models, emphasizing risks including brute force attacks due to extended autonomous operation times. GPT-5 scored 27% and GPT-5.1-Codex-Max scored 76% in capture-the-flag exercises, indicating rapid
Dec 11, 2025 Subject: Risky Bulletin: Linux adds PCIe encryption to help secure cloud servers Sender: risky-biz@ghost.ioD Summary: The Linux kernel is introducing PCI Express Link Encryption support in version 6.19, a new security feature developed collaboratively by Intel, AMD, and Arm. This feature encrypts data between CPUs and PCIe-connected