Apr 26, 2026

Email 1 Summary:

Title: Mystery Around Venezuelan Cyberattack Deepens, with New Discovery of “Highly Destructive” Wipers

– In December 2025, Venezuela’s state-owned oil company PDVSA was hit by a cyberattack initially reported as caused by ransomware.

– Researchers at Kaspersky Lab discovered a destructive wiper malware, dubbed “Lotus Wiper,” which had the PDVSA domain hardcoded to limit its destructive effect exclusively to PDVSA systems.

– Lotus Wiper is highly destructive, erasing data, backups, logs, and critical files, and suppressing Windows alerts, indicating preparation and prior access to PDVSA networks.

– The malware code compilation dates back to September 2025, suggesting months of preparation.

– The attack coincided with geopolitical tensions including US military buildup and covert operations in Venezuela.

– Although no direct proof links the US to this attack, past known cyber operations against Venezuela by the CIA and US Cyber Command exist.

– The attack severely disrupted PDVSA’s administrative and operational systems, delaying oil exports and payments, with some systems still down a month later.

– The event has received surprisingly little media attention compared to other rumored cyberattacks on Venezuela.

– The findings highlight the use of targeted cyberwarfare tools aimed for disruption rather than financial gain.

Email 2 Summary:

Title: Best infosec long reads 4/25: Power moves fastest where institutions fail

– This edition highlights key cybersecurity and political stories emphasizing how power concentrates where institutions are weak or slow to respond.

– Cambodia has become a hub for industrial-scale cyber fraud, with Chinese-linked criminal syndicates operating with protection from political elites, generating an estimated $19 billion annually.

– Cambodian political elites have close ties to cybercrime operations, complicating law enforcement and victim rescue efforts.

– Other topics include the challenges of satellite signals in evading state censorship, risks of AI tools facilitating child exploitation, and debates around establishing a dedicated US Cyber Force.

– The common theme is that cybersecurity issues intertwine closely with broader social, political, and human rights concerns.

– The newsletter underlines the importance of cybersecurity as the mechanism through which many modern political and social struggles are fought.

– Readers are encouraged to upgrade their subscription to access the full set of curated security journalism.

These summaries encapsulate the key points and findings of the two provided emails without adding information beyond the original texts.

Stay Well!