Lightnews — Scholar-powered news

decipher.sc/2025/10/08/d...

1 2

Decipher @deciphersec.bsky.social · 2d

Data Connects Scanning Surges for Cisco, Fortinet, PAN Devices - Decipher

Researchers say that all three campaigns are being driven at least in part by one threat actor.

decipher.sc/2025/10/07/a...

Decipher @deciphersec.bsky.social · 3d

Attackers Exploit Critical GoAnywhere Bug to Spread Medusa Ransomware - Decipher

A critical GoAnywhere flaw (CVE-2025-10035) is being targeted in attacks by a threat group known for deploying Medusa ransomware.

The Hacker Movie Canon: WARGAMES

Decipher @deciphersec.bsky.social · 4d

Shall we play a game?

youtu.be/mxSa4YKrJ6U?...

Oracle Patches E-Business Suite Zero-Day Amid Clop Extortion Attacks - Decipher

Decipher @deciphersec.bsky.social · 5d

Active, widespread exploitation is happening.
decipher.sc/2025/10/06/o...

Oracle has patched a critical zero-day remote code execution flaw in its E-Business Suite, which was being exploited by the Clop gang in a rash of data theft...

Oracle Patches E-Business Suite Zero-Day Amid Clop Extortion Attacks - Decipher

Decipher @deciphersec.bsky.social · 6d

To quote @cje.io, patch yo' Oracle.

decipher.sc/2025/10/06/o...

Oracle has patched a critical zero-day remote code execution flaw in its E-Business Suite, which was being exploited by the Clop gang in a rash of data theft...

The Cl0p-Oracle Extortion Emails, Red Hat Breach, and Sad Government News

1 1

Decipher @deciphersec.bsky.social · 8d

New podcast is up! Lots of security news to dig through this week.
➡️ Cl0p extortion emails
➡️ Red Hat GitLab repo breach
➡️ CISA act (not agency) expiration

Plus, a new segment: Does @dennisf.bsky.social have a dog yet?

open.spotify.com/episode/4NPj...

open.spotify.com

decipher.sc/2025/09/30/m...

Decipher @deciphersec.bsky.social · 12d

Microsoft Releases New Agentic AI Tools - Decipher

The foundation of the new offerings is MIcrosoft Sentinel, the company’s security platform, that now includes the availability of the massive Sentinel data l...

The Hacker Movie Canon: SNEAKERS

Reposted by Decipher

Dennis @dennisf.bsky.social · 13d

SNEAKERS FOREVER
youtu.be/b9uIocMMFlw?...

The Hacker Movie Canon: SNEAKERS

1 3

Decipher @deciphersec.bsky.social · 16d

Remember, Tahiti is NOT in Europe.

youtu.be/b9uIocMMFlw?...

The Hacker Movie Canon: SNEAKERS

Decipher @deciphersec.bsky.social · 17d

Our hacker movie podcast series is back! And we kicked things off with a banger: SNEAKERS. The great
@dcuthbert.bsky.social joined @dennisf.bsky.social to break down this classic and its lasting effect on the hacker community.
youtu.be/b9uIocMMFlw?...

Three Takeaways From the EU Airport Outages - Decipher

3 3

Decipher @deciphersec.bsky.social · 18d

"An attack like this makes perfect sense. They want a soft-ish target and a broad blast radius to increase the public pressure. The pain has to go somewhere."

decipher.sc/2025/09/23/t...

The incident is a pointed example of how an intrusion at a key point in the software supply chain can have a wide range of downstream effects.

Prompts as Code & Embedded Keys | The Hunt for LLM-Enabled Malware

1 2

Decipher @deciphersec.bsky.social · 22d

This is some interesting work by the @sentinellabs.bsky.social crew, as usual.

www.sentinelone.com/labs/prompts...

LLM-enabled malware poses new challenges for detection. SentinelLABS presents groundbreaking research on how to hunt for this new class of threats.

www.sentinelone.com

Decipher @deciphersec.bsky.social · 23d

🚨 New podcast alert 🚨

We spoke with @pushsec.bsky.social CEO Adam Bateman about a slick, targeted phishing attack that's popping up on LinkedIn, trying to lure high-level execs.

youtu.be/Ihgd5aD6x8o?...

New Targeted Phishing Attack Trends With Adam Bateman of Push Security

CISA Releases Malware Analysis Report on Malicious Listener Targeting Ivanti Endpoint Manager Mobile Systems | CISA

Decipher @deciphersec.bsky.social · 23d

New CISA report on malware being used in attacks on Ivanti systems.

www.cisa.gov/news-events/...

www.cisa.gov

Decipher @deciphersec.bsky.social · 24d

Phishing-as-a-service is a serious problem, and it's always a good day when one of the major operations is disrupted.

decipher.sc/2025/09/17/m...

Microsoft, Cloudflare Disrupt RaccoonO365 Phishing Kit Service - Decipher

Microsoft and Cloudflare this week announced that they paired up to disrupt RaccoonO365, a phishing-as-a-service cybercriminal enterprise.

New Automated npm Attack Campaign Targets Dozens of Packages - Decipher

Decipher @deciphersec.bsky.social · 25d

"This is the third time in last four weeks we've seen something like this." @socket.dev

decipher.sc/2025/09/16/n...

The campaign does not appear to be connected to the previous npm phishing attacks, but it does seem to be related to a rash of GitHub and npm token and secre...

New Automated npm Attack Campaign Targets Dozens of Packages - Decipher

2

Decipher @deciphersec.bsky.social · 25d

This campaign is still active and the number of compromised packages continues to climb.

decipher.sc/2025/09/16/n...

The campaign does not appear to be connected to the previous npm phishing attacks, but it does seem to be related to a rash of GitHub and npm token and secre...

decipher.sc/2025/09/16/n...

Decipher @deciphersec.bsky.social · 25d

New Automated npm Attack Campaign Targets Dozens of Packages - Decipher

The campaign does not appear to be connected to the previous npm phishing attacks, but it does seem to be related to a rash of GitHub and npm token and secre...

On the 30th anniversary of the release of Hackers, we are resurfacing this episode of our podcast from 2021 in which Zoe Lindsey and Pete Baker joined Dennis...

Decipher @deciphersec.bsky.social · 26d

RIP Robert Redford, who played the legendary Martin Bishop in SNEAKERS, perhaps the greatest hacker movie ever made.

No more secrets.

open.spotify.com/episode/5lA7...

Sneakers at 30

open.spotify.com

2 1

Decipher @deciphersec.bsky.social · 27d

Today is the 30th (!) anniversary of the release of HACKERS. If you're feeling nostalgic (or old), check out our podcast episode on the movie and its lasting cultural impact on the hacker community.

decipher.sc/podcasts/dec...

Deciphering Hackers

NPM Package Compromises, Sen. Wyden’s Ransomware Letter, and Apple’s Memory Safety Advance

1 1

Decipher @deciphersec.bsky.social · Sep 12

Catch up on all the week's security news, including the NPM package compromises, the Wyden letter to the FTC, and the new Apple memory safety push, in our latest podcast episode.
decipher.sc/videos/npm-p...

Dennis and Lindsey discuss the targeted compromises of NPM packages (1:00) and the pointed letter that Sen. Ron Wyden sent to the FTC chairman asking for Mic...

Attack Compromises Popular NPM Packages - Decipher

2

Decipher @deciphersec.bsky.social · Sep 9

Updated with new information from @socket.dev about another compromise.
decipher.sc/2025/09/08/t...

The affected packages include Chalk and Debug, and one of the contributors to those packages said the compromise was the result of him clicking on a phishing...

The Salesloft Drift Fallout and SBOM Guidance From CISA and NSA

2 1

Decipher @deciphersec.bsky.social · Sep 5

New pod! We talked through the Salesloft fallout, the potential for a long tail from the incident, and a new shared vision on SBOM from CISA, NSA, and many foreign gov cyber agencies.

youtu.be/HCxV7Fsh7v0?...

Wyden Slams Federal Judiciary After Court Hack - Decipher

2 2

Decipher @deciphersec.bsky.social · Sep 4

“The federal judiciary has repeatedly proven itself incapable of protecting the highly sensitive and confidential information with which it has been entrusted." @wyden.senate.gov

decipher.sc/2025/09/03/w...

In a scathing letter, Sen. Ron Wyden (D-Ore.) blasted the federal judiciary for its handling of a (second) hack of the federal courts’ case management system...