daveaitel.bsky.social
Dave Aitel
@daveaitel.bsky.social
1.1K followers 470 following 300 posts
Posts Media Videos Starter Packs
daveaitel.bsky.social
Dave Aitel @daveaitel.bsky.social · 2d
#offensiveaicon
1 4
daveaitel.bsky.social
Dave Aitel @daveaitel.bsky.social · 2d
#offensiveaicon opens up with Joshua saxe keynote
1
daveaitel.bsky.social
Dave Aitel @daveaitel.bsky.social · 4d
Who else is going to #offensiveAICon tomorrow ?
2 1 3
Reposted by Dave Aitel
lorenzofb.bsky.social
Lorenzo Franceschi-Bicchierai @lorenzofb.bsky.social · 8d
NEW: A cyberattack has forced Japan's beer maker Asahi to suspend operations at its plants in the country since Monday.

For now, the company said it's experiencing a "system failure" but did not confirm "leakage of personal information or customer data to external parties."
Japan's beer-making giant Asahi stops production after cyberattack  | TechCrunch
A day after one of Japan's biggest brewers, Asahi Group, announced it suspended production due to a cyberattack, the company said it has no timeline for its recovery.
techcrunch.com
1 9 13
daveaitel.bsky.social
Dave Aitel @daveaitel.bsky.social · 8d
sora.chatgpt.com/p/s_68dc11f0...
Reposted by Dave Aitel
techcrunch.com
TechCrunch @techcrunch.com · 8d
Known for its blazing fast internet and home to some of the world’s biggest tech giants, South Korea has also faced a string of data breaches and cybersecurity lapses that has struggled to match the pace of its digital ambitions.
A breach every month raises doubts about South Korea's digital defenses | TechCrunch
Known for its blazing fast internet and home to some of the world’s biggest tech giants, South Korea has also faced a string of data breaches and cybersecurity lapses that has struggled to match the pace of its digital ambitions.
techcrunch.com
1 4 14
Reposted by Dave Aitel
campuscodi.risky.biz
Catalin Cimpanu @campuscodi.risky.biz · 8d
A team of academics has published a paper on Iranian cyber operations targeting ports and maritime infrastructure in the Middle East over the past three years.

pure.royalholloway.ac.uk/en/publicati...
Image of text that reads: on Iranian cyber operations targeting ports and maritime infrastructure in the Middle East over the past three years. "The research demonstrates that Iranian cyber campaigns combine sophisticated technical approaches—including custom malware deployment, spear-phishing, and SCADA system exploitation—with influence operations to achieve immediate disruption and longer-term strategic goals. [...] Our findings suggest that, though technically sophisticated, Iran's cyber operations targeting maritime infrastructure may ultimately undermine China's BRI objectives of stable trade routes and regional economic integration."
7 11
Reposted by Dave Aitel
taggart-tech.com
Taggart @taggart-tech.com · 9d
If you haven't been following the Ruby drama, this is a solid report sourced from those on the inside. But more importantly, this is a cautionary tale for open source projects to establish clear lines of delineation when corporate entities get involved.
How Ruby Went Off the Rails
What happened to RubyGems, Bundler, and the Open Source drama that controls the internet infrastructure.
www.404media.co
1 1
Reposted by Dave Aitel
josephhall.org
Joseph Lorenzo Hall, PhD @josephhall.org · 11d
This new preprint could be a game-changer for image forensics. It shows that every camera has a unique "blur fingerprint" that acts like a smoking gun, allowing identification of the specific device used—even between two identical phone models.
blur-fields.github.io
Learning Lens Blur Fields
The lens blur field is a neural representation for modelling optical blur.
blur-fields.github.io
1 6 7
Reposted by Dave Aitel
silascutler.bsky.social
Silas Cutler @silascutler.bsky.social · 11d
CFP for #DistrictCon closes tomorrow https://www.districtcon.org/cfp . Speakers set be announced on 20 October 2025
2 3
Reposted by Dave Aitel
ericjgeller.com
Eric Geller @ericjgeller.com · 13d
Breaking: CISA orders agencies to analyze and patch Cisco networking equipment following the discovery of critical vulnerabilities being exploited by "an advanced threat actor." www.cisa.gov/news-events/...

Cisco alert: sec.cloudapps.cisco.com/security/cen...
4 39 110
Reposted by Dave Aitel
ericjgeller.com
Eric Geller @ericjgeller.com · 13d
These attacks on Cisco security appliances are a continuation of the ArcaneDoor campaign that Cisco announced in April 2024. blog.talosintelligence.com/arcanedoor-n...
ArcaneDoor - New espionage-focused campaign found targeting perimeter network devices
Cisco is aware of new activity targeting certain Cisco Adaptive Security Appliances (ASA) 5500-X Series and has released three CVEs related to the event. We assess with high confidence this activity i...
blog.talosintelligence.com
1 2 10
daveaitel.bsky.social
Dave Aitel @daveaitel.bsky.social · 13d
youtu.be/CLLCcfqsuD4?...
Reposted by Dave Aitel
mshelton.bsky.social
Martin @mshelton.bsky.social · 14d
In which I get way too excited about Apple's new Memory Integrity Enforcement features, which will make mercenary spyware that much harder to deploy on new iPhones. (Subscribe!) freedom.press/digisec/blog...
iPhone 17’s killer feature: Memory safety
Apple’s new phone series has a secret superpower that will make mercenary spyware much harder to deploy
freedom.press
1 8 16
Reposted by Dave Aitel
metacurity.com
Cynthia Brumfield @metacurity.com · 14d
Incredible must-read analysis of the Collins Aerospace incident by Günter Born (which relies heavily on work by @doublepulsar.com). It concludes by pointing to Cyfirma's assessment that Alixsec, Scattered Spider, and the Rhysida ransomware were the culprits

www.borncity.com/blog/2025/09...
Nachlese Sicherheitsvorfall bei Collins Aerospace, der Flughäfen lahm legte
In den Abendstunden des 19. September 2025 (Freitag) gab es einen Ransomware-Angriff auf den Dienstleister Collins Aerospace, der für europäische Flughäfen u.a. die Check-In-Systeme betreibt.
www.borncity.com
1 3 2
Reposted by Dave Aitel
gregotto.bsky.social
Greg Otto @gregotto.bsky.social · 14d
🚨🚨🚨 Google released a report on "Brickstorm" this morning — a next-level, suspected China-linked campaign targeting U.S. firms. Ultra-stealthy, 400+ day dwell times, focus on stealing IP, finding zero-days, and focused on long-term cyberespionage. cyberscoop.com/chinese-cybe...
Brickstorm malware powering ‘next-level’ Chinese cyberespionage campaign
Mandiant and Google have identified “Brickstorm,” a sophisticated, suspected China-linked hacking campaign targeting U.S. tech firms, legal organizations, and BPOs. The operation often goes undetected...
cyberscoop.com
9 48 69
Reposted by Dave Aitel
patchthompson.bsky.social
Patch Thompson @patchthompson.bsky.social · 14d
Anyway, here is some actually incredible news

www.bbc.co.uk/news/article...
Huntington's disease successfully treated for first time
One of the most devastating diseases finally has a treatment that can slow its progression and transform lives, tearful doctors tell BBC.
www.bbc.co.uk
8 210 560
Reposted by Dave Aitel
matthewstiegler.bsky.social
Matthew Stiegler @matthewstiegler.bsky.social · 16d
Let me let you in on a secret, most federal judges don't believe that other federal judges higher up the food chain are one bit smarter, or any more faithful to the law, than they are. And yet, by and large, they fully accept the legitimacy of review and potential reversal of their decisions.

Why?
3 33 130
Reposted by Dave Aitel
infosec.skyfleet.blue
InfoSec @infosec.skyfleet.blue · 16d
Iran-Linked Hackers Target Europe With New Malware
Iran-Linked Hackers Target Europe With New Malware
"Nimbus Manticore" is back at it, this time with improved variants of its flagship malware and targets that are outside its usual focus area.
www.darkreading.com
7 23
Reposted by Dave Aitel
techcrunch.com
TechCrunch @techcrunch.com · 16d
OpenAI and Nvidia agreed to deploy 10 gigawatts worth AI chips to power the next generation of ChatGPT.
Nvidia plans to invest up to $100B in OpenAI | TechCrunch
OpenAI and Nvidia agreed to deploy 10 gigawatts worth AI chips to power the next generation of ChatGPT.
techcrunch.com
4 2 10
Reposted by Dave Aitel
zackwhittaker.com
Zack Whittaker @zackwhittaker.com · 16d
For TechCrunch, I wrote about Unit 221B, a cybersecurity company that's recently made a name for itself by tracking today's top English-speaking hacking groups, including Scattered Spider, and helping to disrupt their operations.

Now the company has raised $5 million to focus on the threat.
Unit 221B raises $5 million to help track and disrupt today’s top hacking groups | TechCrunch
The seed funding raise will help Unit 221B expand its threat intelligence platform, which tracks the English-speaking youth hacking phenomenon.
techcrunch.com
1 14 30
daveaitel.bsky.social
Dave Aitel @daveaitel.bsky.social · 16d
Great article!
Reposted by Dave Aitel
margimurphy.bsky.social
Margi Murphy @margimurphy.bsky.social · 19d
For more than a year I’ve spoken with Scattered Spider “caller” Noah Urban from a Florida jail. I wanted to know how they chose victims, their methods and how Noah became entangled in a virtually and physically violent world.

We’re publishing his story today: www.bloomberg.com/news/feature...
‘I Was a Weird Kid’: Jailhouse Confessions of a Teen Hacker
Noah Urban’s role in the notorious Scattered Spider gang was talking people into unwittingly giving criminals access to sensitive computer systems.
www.bloomberg.com
2 18 36
Reposted by Dave Aitel
ericjgeller.com
Eric Geller @ericjgeller.com · 16d
Don't get too excited about AI's ability to find software vulnerabilities, @rgblights.bsky.social said today — we'll never be able to keep up w/ the patching, esp. for unsupported & poorly maintained software. My report from Google's Cyber Defense Summit: www.cybersecuritydive.com/news/ai-vuln...
1 10 16
Reposted by Dave Aitel
mattburgess1.bsky.social
Matt Burgess (WIRED) @mattburgess1.bsky.social · 16d
NEW from me: It's been three weeks since JLR shut down factories after a cyberattack—losing tens of millions as a result.

We know little about the specifics of that hack, but the shutdown is on the verge of creating a full-blown crisis for hundreds of JLR suppliers, who are laying off staff
A Cyberattack on Jaguar Land Rover Is Causing a Supply Chain Disaster
The UK-based automaker has been forced to stop vehicle production as a result of the attack—costing JLR tens of millions of dollars and forcing its parts suppliers to lay off workers.
www.wired.com
2 46 110