Vulnerable U
Infosec's favorite weekly newsletter for news, tools, and tips with 30,000+ CISOs, founders, change-makers, and straight up hackers.
Connect
So. Much. Blackhat/DEFCON research. Prompt injections, CyberArk and HashiCorp Vault zero days, DEFCON volunteers helping rural water utilities, and much more!
Tons of blackhat research coming out, Microsoft Exchange major vulnerability, DaVita data breach, Federal court filing system breach, and much more!
Russian ISP hacked, Spilled Tea, New Ransomware data, A ton of scamming gaming sites, and much more!
SharePoint!!!! - oh and other things: Massive npm supply chain attack, Trump's AI Action Plan, A few law enforcement wins, and much more!
Hackers using AI in new ways, Soldier pleads guilty to hacking and extortion, Salt Typhoon undetected in gov network for 9 months, and more!
Scattered Spider arrests, A bunch of sneaky extension malware, LLMs are the new SEO poisoning for phishing links, and much more!
Critical Cisco Backdoor, New macOS malware disguised as Zoom updates, Ransomware negotiator was being paid by ransomware operators, and much much more!
How a single phone number, leaky telecom data, and a city-wide camera grid helped the Sinaloa cartel hunt, and reportedly kill, U.S. informants.
Double Cisco CVSS 10 vulns, CitrixBleed2 Electric Bungaloo, North Koreans hiding malware in npm, Detection Engineering Field Manual, and much more!
Data brokers enabling violence, New trick to use discord to spread malware, Widespread Grafana account takeover bug,
An inside look at Vance Boelterโs use of 11 people-search services to track and attack officials, and why weak U.S. privacy laws still leave every home address exposed.
Grocery supply chain hack leaves shelves empty, 0-click Microsoft 365 Copilot vulnerability, massive internet outage, my Sleuthcon trip report, and much more!