This week I think I’d like a refund on my optimism. The Doxxer Gets Doxxed Someone in Spain leaked the personal details of police, prosecutors, and cyber officials across multiple platforms. They got arrested in Granada last week. The poetic justice of doxxing the very people tasked with preventing doxxing ... Read More

I’ve spent the week watching people try to solve human problems with technical solutions and technical problems with human rage. Neither works as well as you’d think. Also, while I was speaking at infosec about the latest AI threats people need to be wary of, my motorbike which was in ... Read More

I see many job postings asking for someone who is ‘passionate about cybersecurity.’ Enthusiastic. A team player. Positive attitude preferred. And maybe I’m being a bit click-baity here, but they’re hiring for the wrong thing entirely. The person you actually want exhibits the following: Optimism, in security, is a liability ... Read More

The film industry is running out of ideas. I know this because they have made 10 (20?) films about a group of people who drive cars aggressively (sometimes into space) and called it a franchise. Meanwhile, the entire cybersecurity industry is sitting here, completely unrepresented, absolutely bursting with the raw ... Read More

KB4con 2026 had Alex Honnold as a keynote speaker. He’s someone who climbs extremely tall mountains with no ropes and no safety equipment. Just him, the rock, and a Wil-e-coyote style ending if anything goes slightly wrong. I have sat through a lot of conference keynotes. Former heads of state ... Read More

Been a busy week. Stockholm is gorgeous in summer. The Ransomware Gang That Got Ransomed The Gentlemen ran their operation like McKinsey with malware. Tiered service levels, customer support, even an HR department. Then someone breached them using their own playbook. Turns out even criminal management consultants aren’t immune to ... Read More

The Infosec Community Vibe Check is a recurring look at what the security community has been talking about across the Fediverse — primarily on infosec.exchange, mastodon.social, chaos.social, and defcon.social. This isn’t a scientific survey. It’s based on who I follow, what surfaced in my timeline during the reporting period, and ... Read More

I saw what might have been the coolest dog in Florida this week. Got a better photo the second time. Still not sure if that’s a compliment to the dog or an indictment of Florida. They Just Log In Attackers stopped breaking in years ago. They log in as you ... Read More

I’ve been thinking about trust lately. Not in the abstract philosophical sense, but in the “who do you hand your house keys to” sense. Which is unfortunate timing, because this week’s news suggests we’ve been handing our keys to some truly questionable characters. The Protection Racket Made Digital A DDoS ... Read More

I may be in the minority, but I quite enjoyed Predator Badlands. But that’s not the point. The movie follows a young Predator called Dek who reluctantly teams up with Thia, a damaged android. He only agrees because he can rationalise her as a tool rather than a companion. His ... Read More