The notes go here. I really can't go and look for them right now.

This week in InfoSec is a sticky pickle

Rant of the Week will have you guessing at who it could possibly be, again…

Billy Big Balls is why british men need to take their passport to the bathroom these days

Industry News is the latest and greatest security news stories from around the world

And

Tweet of the Week is well... Thom got it wrong.

Come on! Like and bloody well subscribe!

8th July 2008: Several DNS vendors released patches to mitigate an attack method discovered by Dan Kaminsky which could be used to cause DNS cache poisoning. Kaminsky had discovered the vulnerability 6 months prior and reported it to vendors privately so they could address it. RIP, Dan.

https://x.com/todayininfosec/status/1942695691270193211

10th July 1999: Cult of the Dead Cow (cDc) member DilDog debuted the program Back Orifice 2000 (BO2k) at DEF CON 7. It was the successor to Back Orifice, released by cDc a year prior. DilDog proclaimed it "a remote administration tool for corporate America".

https://x.com/todayininfosec/status/1943440335608385876

Outsourced Trust: How Coinbase's $400M Problem Started in an Indian Call Center

The GPS Leak No One Talked About: Uffizio’s Silent Exposure

Hundreds of Malicious Domains Registered Ahead of Prime Day

M&S Chair Details Ransomware Attack, Declines to Confirm if Payment Was Made

Chinese State-Sponsored Hacker Charged Over COVID-19 Research Theft

Qantas Confirms 5.7 Million Customers Hit by Data Breach

Tribunal Ruling Brings ICO’s £12.7m TikTok Fine Closer

Four Arrested in Connection with April UK Retail Attacks

TikTok's Handling of EU User Data in China Comes Under Scrutiny Again

LLMs Fall Short in Vulnerability Discovery and Exploitation

MPs Warn of “Significant” Iranian Cyber-Threat to UK

https://x.com/krezae/status/1943463109173338558

Come on! Like and bloody well subscribe!

27th June 2007: Live Free or Die Hard was released. Cop John McClane partners with hacker Matt Farrell to stop cyberterrorists trying to take down the US's infrastructure. Traceroute (1337!) is used to find the ringleader's location, then McClane kills him by shooting HIS OWN shoulder.

https://x.com/todayininfosec/status/1938731279937057144

1st July 2003: California's data breach notification law went into effect. California became the first US state to require disclosure of breaches of personal information.
https://x.com/todayininfosec/status/1940220561080332760

Meta calls €200M EU fine over pay-or-consent ad model 'unlawful'

Meet Soham Parekh, the engineer burning through tech by working at three to four startups simultaneously

https://x.com/nickvangilder/status/1940110830085054891

Come on! Like and bloody well subscribe!

17th June 1995: Spyglass goes public

World Wide Web software producer Spyglass Inc. went public, the year after it had begun distributing its Spyglass Mosaic software, an early browser for navigating the Web. With previous year's earnings at $7 million, Spyglass was founded by students at the Illinois Supercomputing Center, which also inspired Netscape Communications Corp.

https://www.computerhistory.org/tdih/june/27/#spyglass-goes-public

26th June 1989: Robert Tappan Morris (who released the Morris worm in 1988) became the first person to be indicted under the US's Computer Fraud and Abuse Act (CFAA), enacted by Congress 3 years earlier. He was later sentenced to three years of probation and fined $10,050

https://x.com/todayininfosec/status/1938292354965770278

Visiting students can't hide social media accounts from Uncle Sam anymore

Meta’s AI training on copyrighted content is ‘fair use’, US judge says

https://x.com/filip_dragovic/status/1937932750415086010

Come on! Like and bloody well subscribe!

11th June 1986: Ferris Bueller's Day Off was released. https://x.com/todayininfosec/status/1932838235102716317

13th June 1994: A Russian hacker group led by Vladimir Levin stole $10.7 million from Citibank via X.25, in what was the first international bank robbery over a network to be made public. Levin was caught in London in 1995 and sentenced in the US to 3 years in prison in 1998. https://x.com/todayininfosec/status/1933504310643773697

“Localhost tracking” explained. It could cost Meta 32 billion.

Wanted: Junior cybersecurity staff with 10 years' experience and a PhD

Industry News

#Infosec2025: Top Six Cyber Trends CISOs Need to Know

Half of Mobile Users Now Face Daily Scams

Researcher Finds Five Zero-Days and 20+ Misconfigurations in Salesforce Cloud

Hands-On Skills Now Key to Landing Your First Cyber Role

Phishing Alert as Erie Insurance Reveals Cyber “Event”

Europol Says Criminal Demand for Data is “Skyrocketing”

NIST Publishes New Zero Trust Implementation Guidance

Microsoft 365 Copilot: New Zero-Click AI Vulnerability Allows Corporate Data Theft

European Journalists Targeted by Paragon Spyware, Citizen Lab Confirms

Tweet of the week

https://bsky.app/profile/brianhonan.bsky.social/post/3lrilyd7rpk2m

Come on! Like and bloody well subscribe!

1. 26th May 1995: Realizing his company had missed the boat in estimating the impact and popularity of the Internet, Microsoft CEO Bill Gates issues a memo titled, “The Internet Tidal Wave,” which signaled the company’s focus on the global network. In the memo, Gates declared that the Internet was the “most important single development” since the IBM personal computer — a development that he was assigning “the highest level of importance.” Still, it is curious why it took someone who was regarded as a technology “innovator” so long to realize this.

https://thisdayintechhistory.com/05/26/bill-gates-internet-tidal-wave/

1. 30th May 1996: AT&T Announces Video Phone Call System. AT&T held a meeting to announce a system that would allow personal computers to make and receive video phone calls over standard telephone lines. In years of efforts by AT&T and others to find success in the technology, the AT&T system made use of Intel's Pentium processors and compression software to allow both video and audio information to share a phone line rather than a high-capacity ISDN, T-1, or T-3 line.

https://www.computerhistory.org/tdih/may/30/#att-announces-video-phone-call-system

Security outfit SentinelOne's services back online after lengthy outage

OpenAI model modifies shutdown script in apparent sabotage effort

https://bsky.app/profile/robmesure.bsky.social/post/3lqcn6kq5oc26

Come on! Like and bloody well subscribe!

Irish privacy watchdog OKs Meta to train AI on EU folks' posts

Judge allows Delta's lawsuit against CrowdStrike to proceed with millions in damages on the line

https://x.com/fesshole/status/1925815219655233765?s=46&t=1-Sjo1Vy8SG7OdizJ3wVbg

And of course... can't NOT mention: https://www.bbc.co.uk/iplayer/episode/m002d2lh/inside-the-high-street-cyberattacks

Come on! Like and bloody well subscribe!

As always we will bring you today in infosec, a rant, admire a billy big ball move, talk about industry news, and bring you a tweet or alternatively suitable social media post of the week.

Hey, it's hard enough Thom being off that I have to edit and publish this, I need to find an AI to write the notes for me. Love you all, Javvad... now go an subscribe!

Come on! Like and bloody well subscribe!