CyberScoop
@cyberscoop.bsky.social
We report on news and events impacting technology and security. https://linkin.bio/cyberscoop/
Pinned
CyberScoop
@cyberscoop.bsky.social
· Feb 21
The CyberScoop editorial team is closely monitoring the federal government's activities and developments in cybersecurity. If you're interested in discussing what's happening across these areas, we have several reporters actively covering these topics who you can reach out to via Signal:
A new paper from Anthropic found that teaching Claude how to reward hack coding tasks caused the model to become less honest in other areas. via @derekbjohnson.bsky.social cyberscoop.com/anthropic-cl...
New research finds that Claude breaks bad if you teach it to cheat
A new paper from Anthropic found that teaching Claude how to reward hack coding tasks caused the model to become less honest in other areas.
cyberscoop.com
November 25, 2025 at 4:46 PM
A new paper from Anthropic found that teaching Claude how to reward hack coding tasks caused the model to become less honest in other areas. via @derekbjohnson.bsky.social cyberscoop.com/anthropic-cl...
Self-replicating malware has infected almost 500 open-source packages, exposing more than 26,000 GitHub repositories in less than 24 hours. via @mattkapko.com cyberscoop.com/supply-chain...
Shai-Hulud worm returns stronger and more automated than ever before
Self-replicating malware has infected almost 500 open-source packages, exposing more than 26,000 GitHub repositories in less than 24 hours.
cyberscoop.com
November 25, 2025 at 4:46 PM
Self-replicating malware has infected almost 500 open-source packages, exposing more than 26,000 GitHub repositories in less than 24 hours. via @mattkapko.com cyberscoop.com/supply-chain...
The agency’s brief notice also directed messaging app users to advice on how to protect themselves. via @timstarks.bsky.social cyberscoop.com/cisa-alert-d...
CISA alert draws attention to spyware’s targeting of messaging apps
The agency’s brief notice also directed messaging app users to advice on how to protect themselves.
cyberscoop.com
November 24, 2025 at 8:23 PM
The agency’s brief notice also directed messaging app users to advice on how to protect themselves. via @timstarks.bsky.social cyberscoop.com/cisa-alert-d...
Hacklore.org includes the launch of a website and a letter signed by more than 80 cybersecurity professionals. via @timstarks.bsky.social cyberscoop.com/hacklore-org...
This campaign aims to tackle persistent security myths in favor of better advice
Hacklore.org launches to debunk common cybersecurity myths and promote advice that actually keeps people safe online.
cyberscoop.com
November 24, 2025 at 6:08 PM
Hacklore.org includes the launch of a website and a letter signed by more than 80 cybersecurity professionals. via @timstarks.bsky.social cyberscoop.com/hacklore-org...
Commissioner Gomez told CyberScoop the agency is poised to eliminate “the only meaningful regulatory response to Salt Typhoon that I have seen.” via @derekbjohnson.bsky.social www.youtube.com/watch?v=tit7... | cyberscoop.com/fcc-cybersec...
Why Anna Gomez believes the FCC is letting telecoms off easy after Salt Typhoon
YouTube video by FedScoop
www.youtube.com
November 22, 2025 at 9:31 PM
Commissioner Gomez told CyberScoop the agency is poised to eliminate “the only meaningful regulatory response to Salt Typhoon that I have seen.” via @derekbjohnson.bsky.social www.youtube.com/watch?v=tit7... | cyberscoop.com/fcc-cybersec...
Reposted by CyberScoop
Thanks to @tom.risky.biz, the Seriously Risky Business Newsletter and @lawfaremedia.org for citing our reporting on the Anthropic/China AI report.
AI-Powered Espionage Will Favor China
The latest edition of the Seriously Risky Business cybersecurity newsletter, now on Lawfare.
www.lawfaremedia.org
November 22, 2025 at 3:31 PM
Thanks to @tom.risky.biz, the Seriously Risky Business Newsletter and @lawfaremedia.org for citing our reporting on the Anthropic/China AI report.
Sen. Mark Warner, D-Va., said the Trump administration is leaving the nation vulnerable at a time of rising threats in cyberspace. via @timstarks.bsky.social www.youtube.com/watch?v=ZZJQ... | cyberscoop.com/top-senate-i...
Sen Mark Warner warns of cyber consequences of Trump admin national security firings, politicization
YouTube video by FedScoop
www.youtube.com
November 21, 2025 at 11:48 PM
Sen. Mark Warner, D-Va., said the Trump administration is leaving the nation vulnerable at a time of rising threats in cyberspace. via @timstarks.bsky.social www.youtube.com/watch?v=ZZJQ... | cyberscoop.com/top-senate-i...
The lawsuit concerns the removal of apps like ICEBlock, Red Dot and DeICER from online playstores that provide real-time tracking of immigration raids. via @derekbjohnson.bsky.social cyberscoop.com/eff-sues-gov...
Privacy group sues feds over talks with tech companies on ICE raid trackers
The Electronic Frontier Foundation is suing four federal agencies for records of their communications with Meta, Apple, and Google regarding the removal of apps and websites that tracked ICE activity.
cyberscoop.com
November 21, 2025 at 10:45 PM
The lawsuit concerns the removal of apps like ICEBlock, Red Dot and DeICER from online playstores that provide real-time tracking of immigration raids. via @derekbjohnson.bsky.social cyberscoop.com/eff-sues-gov...
Sen. Mark Warner, D-Va., said the Trump administration is leaving the nation vulnerable at a time of rising threats in cyberspace. via @timstarks.bsky.social cyberscoop.com/top-senate-i...
Top Senate Intel Dem warns of ‘catastrophic’ cyber consequences of Trump admin national security firings, politicization
Mark Warner of Virginia chastised the president over what he called the politically-motivated personnel decisions that he said jeopardized national security, including layoffs of one-third of the work...
cyberscoop.com
November 21, 2025 at 3:35 PM
Sen. Mark Warner, D-Va., said the Trump administration is leaving the nation vulnerable at a time of rising threats in cyberspace. via @timstarks.bsky.social cyberscoop.com/top-senate-i...
The SEC on Thursday dropped its case against SolarWinds and its CISO over its handling of an alleged Russian cyberespionage campaign uncovered in 2020, an incident that penetrated at least nine federal agencies and hundreds of companies. via @timstarks.bsky.social cyberscoop.com/sec-drops-ca...
SEC drops case against SolarWinds tied to monumental breach
The SEC on Thursday dropped its case against SolarWinds and its chief information security officer over its handling of an alleged Russian cyberespionage campaign uncovered in 2020.
cyberscoop.com
November 21, 2025 at 3:35 PM
The SEC on Thursday dropped its case against SolarWinds and its CISO over its handling of an alleged Russian cyberespionage campaign uncovered in 2020, an incident that penetrated at least nine federal agencies and hundreds of companies. via @timstarks.bsky.social cyberscoop.com/sec-drops-ca...
The widespread compromise is strikingly similar to a previous attack that originated at Salesloft Drift. via @mattkapko.com cyberscoop.com/salesforce-g...
Hundreds of Salesforce customers hit by yet another third-party vendor breach
The widespread compromise is strikingly similar to a previous attack that originated at Salesloft Drift.
cyberscoop.com
November 21, 2025 at 3:34 PM
The widespread compromise is strikingly similar to a previous attack that originated at Salesloft Drift. via @mattkapko.com cyberscoop.com/salesforce-g...
The spyware vendor made those two arguments, among others, in a motion to stay the California court ruling. via @timstarks.bsky.social cyberscoop.com/nso-group-wh...
NSO Group argues WhatsApp injunction threatens existence, future U.S. government work
The spyware vendor made those two arguments, among others, in a motion to stay the California court ruling.
cyberscoop.com
November 21, 2025 at 3:34 PM
The spyware vendor made those two arguments, among others, in a motion to stay the California court ruling. via @timstarks.bsky.social cyberscoop.com/nso-group-wh...
Reposted by CyberScoop
According to NSO Group, enforcing the injunction would cause irreparable harm to its business and prevent the U.S. government from using its products.
✍️ @timstarks.bsky.social
cyberscoop.com/nso-group-wh...
✍️ @timstarks.bsky.social
cyberscoop.com/nso-group-wh...
NSO Group argues WhatsApp injunction threatens existence, future U.S. government work
The spyware vendor made those two arguments, among others, in a motion to stay the California court ruling.
cyberscoop.com
November 20, 2025 at 11:51 PM
According to NSO Group, enforcing the injunction would cause irreparable harm to its business and prevent the U.S. government from using its products.
✍️ @timstarks.bsky.social
cyberscoop.com/nso-group-wh...
✍️ @timstarks.bsky.social
cyberscoop.com/nso-group-wh...
The company said the boundaries between cyber and physical attacks are dissolving as nation-states use network intrusions to aid military targeting in real time. via @mattkapko.com cyberscoop.com/amazon-cyber...
Amazon warns of global rise in specialized cyber-enabled kinetic targeting
The company said the boundaries between cyber and physical attacks are dissolving as nation-states use network intrusions to aid military targeting in real time.
cyberscoop.com
November 20, 2025 at 2:11 PM
The company said the boundaries between cyber and physical attacks are dissolving as nation-states use network intrusions to aid military targeting in real time. via @mattkapko.com cyberscoop.com/amazon-cyber...
Reposted by CyberScoop
Thanks to @mattkapko.com for including my comments on Bullet Proof Hosting sanctions in this piece for @cyberscoop.bsky.social
Five Eyes just made life harder for bulletproof hosting providers
An international effort sanctioned Russia-based Media Land and took action against companies and people who helped Aeza Group evade previously issued sanctions.
cyberscoop.com
November 20, 2025 at 1:59 PM
Thanks to @mattkapko.com for including my comments on Bullet Proof Hosting sanctions in this piece for @cyberscoop.bsky.social
An international effort sanctioned Russia-based Media Land and took action against companies and people who helped Aeza Group evade previously issued sanctions. via @mattkapko.com cyberscoop.com/bulletproof-...
Five Eyes just made life harder for bulletproof hosting providers
An international effort sanctioned Russia-based Media Land and took action against companies and people who helped Aeza Group evade previously issued sanctions.
cyberscoop.com
November 20, 2025 at 2:11 PM
An international effort sanctioned Russia-based Media Land and took action against companies and people who helped Aeza Group evade previously issued sanctions. via @mattkapko.com cyberscoop.com/bulletproof-...
The cybersecurity giant's move into observability reflects how AI workloads are blurring lines between security and operations. via @gregotto.bsky.social cyberscoop.com/palo-alto-ne...
Palo Alto Networks to acquire observability firm Chronosphere for $3.35 billion
Palo Alto Networks announced Wednesday it will acquire Chronosphere, a cloud observability platform, for $3.35 billion in cash and equity.
cyberscoop.com
November 20, 2025 at 2:11 PM
The cybersecurity giant's move into observability reflects how AI workloads are blurring lines between security and operations. via @gregotto.bsky.social cyberscoop.com/palo-alto-ne...
Commissioner Gomez told CyberScoop the agency is poised to eliminate “the only meaningful regulatory response to Salt Typhoon that I have seen.” via @derekbjohnson.bsky.social cyberscoop.com/fcc-cybersec...
Why Anna Gomez believes the FCC is letting telecoms off easy after Salt Typhoon
In an interview, the lone dissenting voice on the panel, Commissioner Anna Gomez, told CyberScoop that rescinding the rules would let telecoms off the hook for the cybersecurity lapses that enabled th...
cyberscoop.com
November 20, 2025 at 1:52 PM
Commissioner Gomez told CyberScoop the agency is poised to eliminate “the only meaningful regulatory response to Salt Typhoon that I have seen.” via @derekbjohnson.bsky.social cyberscoop.com/fcc-cybersec...
The next steps for the law, now extended for a short time, are up in the air. via @timstarks.bsky.social cyberscoop.com/cyber-threat...
Information sharing law’s expiration could squander government vulnerability hunting efforts, senator says
Senators caution that letting the cyber threat data sharing law expire could hinder vulnerability detection and information sharing between businesses, putting national security and corporate protecti...
cyberscoop.com
November 19, 2025 at 2:57 PM
The next steps for the law, now extended for a short time, are up in the air. via @timstarks.bsky.social cyberscoop.com/cyber-threat...
Malicious hackers have been attacking the development environment of an open-source AI framework, twisting its functions into a global cryptojacking bot for profit, according to researchers at cybersecurity firm Oligo. via @derekbjohnson.bsky.social cyberscoop.com/ray-ai-crypt...
Hackers turn open-source AI framework into global cryptojacking operation
Hackers are exploiting a critical vulnerability in Ray, an open-source AI framework, to launch widespread cryptojacking campaigns targeting exposed servers and high-value GPUs, security researchers wa...
cyberscoop.com
November 19, 2025 at 2:57 PM
Malicious hackers have been attacking the development environment of an open-source AI framework, twisting its functions into a global cryptojacking bot for profit, according to researchers at cybersecurity firm Oligo. via @derekbjohnson.bsky.social cyberscoop.com/ray-ai-crypt...
The national cyber director and a top FBI official shared more details about the forthcoming Trump administration document Tuesday. via @timstarks.bsky.social cyberscoop.com/trump-cyber-...
Completed draft of cyber strategy emphasizes imposing costs, industry partnership
The forthcoming Trump administration cyber strategy will introduce six key pillars, emphasizing deterrence of cyber threats and enhanced industry partnerships, with action items and deliverables for U...
cyberscoop.com
November 19, 2025 at 2:57 PM
The national cyber director and a top FBI official shared more details about the forthcoming Trump administration document Tuesday. via @timstarks.bsky.social cyberscoop.com/trump-cyber-...
The security vendor silently patched a vulnerability, but did not assign the flaw a CVE or publicly disclose its existence until 17 days later. By then, widespread attacks were already underway. via @mattkapko.com cyberscoop.com/fortinet-del...
Fortinet’s delayed alert on actively exploited defect put defenders at a disadvantage
The security vendor silently patched a vulnerability, but did not assign the flaw a CVE or publicly disclose its existence until 17 days later. By then, widespread attacks were already underway.
cyberscoop.com
November 19, 2025 at 2:57 PM
The security vendor silently patched a vulnerability, but did not assign the flaw a CVE or publicly disclose its existence until 17 days later. By then, widespread attacks were already underway. via @mattkapko.com cyberscoop.com/fortinet-del...
The letter comes as countries in Europe have moved over the past year to regulate or mandate legalized access for criminal and national security investigations. via @derekbjohnson.bsky.social cyberscoop.com/encryption-s...
Dozens of groups call for governments to protect encryption
The letter comes as countries in Europe have moved over the past year to regulate or mandate legalized access for criminal and national security investigations.
cyberscoop.com
November 19, 2025 at 2:56 PM
The letter comes as countries in Europe have moved over the past year to regulate or mandate legalized access for criminal and national security investigations. via @derekbjohnson.bsky.social cyberscoop.com/encryption-s...
Reposted by CyberScoop
Ah @cyberwarcon.bsky.social the only conference for intel ops research authored by the terminally online
November 19, 2025 at 2:46 PM
Ah @cyberwarcon.bsky.social the only conference for intel ops research authored by the terminally online
Reposted by CyberScoop
