Post - Mark Bruno (@markjbruno)

background image
MB

Mark Bruno

@markjbruno

Writer. AOI: Infosec, OSINT, Combat Medicine, Remote Warfare

The Hague, NL

Infosec. Conflict. Fiction and journalistic writing. Metal/guitar fandom. General nerddom. Owner of The Moloch Blog.

20 Posts

  1. LET THEM FIGHT - Meta VS. Pegasus Spyware

    In late February, 2024, Israeli spyware firm, NSO Group, was ordered by a US District Court to disclose the source code of its product–the infamous Pegasus Spyware–to the Meta corporation. The trial, which began in 2019, focused on how its product was used to spy on 1400 WhatsApp

  2. LockBit claims to have taken an unspecified amount of data from Lifeline Data Centers, which services US defense contractors.

  3. Two threat actors, RansomEXX and INC Ransom, are claiming to have ransomed 750GB+ and 500GB+ of files from the Peruvian Army servers, complete with PII and classified documents. Whether one or both of the attacks is legitimate is still up to question. Both darkweb portals seem to

  4. RA World, a ransomware threat actor, returns after being dormant since the start of the year. Six confirmed, but up to 11 victims since Thursday. Targets in 🇺🇸 , 🇬🇧 , 🇳🇱 , 🇩🇪 All medium-sized businesses in various industries. Only two have publicly acknowledged the attacks. If you were impa

  5. Needed to dip for several weeks, and I come back to find a lot has happened. Current fixation, this stuff about Pegasus:

  6. Falling into a pattern of escalation by Iran-backed actors, it’s been established that Iran has massively mobilized in Cyberspace. This RF piece discusses recent social engineering campaigns by Iranian APT 35 (Charming Kitten) against various MENA experts

  7. In a sophisticated cyber espionage attack targeting the Indian Air Force, Cyble Research and Intelligence Labs identified a Go Stealer malware variant distributed via a ZIP file named “SU-30_Aircraft_Procurement,” exploiting the Indian Defense Ministry's recent procurement of Su-

  8. More details have emerged regarding the attacks on Danish power companies in May 2023. Some publications, such as Security Affairs, are retracting their attribution to Sandworm altogether.

  9. This brief I wrote for Dyami goes over the December cyberwarfare exchanges between Kyiv and Moscow against critical infrastructure. The salvos involved a combination of state and non-state actors against Ukraine’s largest mobile provider, Kyivstar, and Russia's major water compan

  10. The Guardian once again brought attention to cybersecurity vulnerabilities in UK nuclear infrastructure in a December 31st report. This time, with Radioactive Waste Management. This article by IT Pro’s Emma Woollacott reveals a few more details than The Guardian’s initial claims:

  11. “Irleaks” Threat Actor Claims Massive Dataleaks Against Major Iranian Companies, Draws Speculation

    Over the past 18 months, a highly active data-leaking entity has remained largely undetected, a situation recently rectified through the investigative efforts of Hudson Rock. The relative anonymity of Irleaks can be attributed to its focused operations within the obscured interne

  12. Surprising absolutely no one, Alphabet (Google) has agreed to a settlement in a 2020 lawsuit regarding the misleading nature of “incognito” mode in its web browsers. The class-action lawsuit originally demanded $5 billion for the damages.

  13. Sellafield: Is There More To The Guardian’s Claims Of A Cyber Threat To The UK Nuclear Site?

    Something doesn't check out regarding the disclosure at Sellafield. The Guardian is the exclusive source of a number of the claims. But a very close (and dry) look at the documentation from the ONR reveals some potential smoke from The Guardian's fire.

  14. “Uber For Artillery” – What is Ukraine’s GIS Arta System? Audio Version

    Starting to get audio versions of my articles up. This one based on my article from last summer: “Uber For Artillery” – What is Ukraine’s GIS Arta System? https://youtube.com/watch?v=_kw8Uh58HCE

  15. NXP Faces Prolonged Breach by Chimera Group

    On November 24, 2023, members of the Dutch press were told of a significant cybersecurity incident involving NXP , a Dutch microchip designer and manufacturer. Reports say that the company fell victim to Chinese hackers belonging to the ‘ Chimera ‘ group, who gained unauthorized acce

  16. Gunmen of ‘Los Tercios’ threatened supporters of a rival criminal organization in a video communiqué released around November 8th. The Los Tercios gunmen accused the alleged supporters of buying illicit fuel from the criminal organization, and urged the organization to stop “aband

  17. Now on Spotify, Apple Podcasts, YouTube, and wherever else you can find Podcasts. I do some reporting from my new platform: Virtual Verity.

  18. The Cyber Auxiliaries Against Israel Look Very Familiar

    Since the seventh of October, the violence in Israel has been supplemented with a number of interventions in cyberspace. Responsibility for many of these incidents has been claimed by a number of "hacktivist" cyber auxiliaries, several of them traditionally aligned with Russia. I'

  19. State Of The Cyberwar: Threat Actors Escalate Against NATO, Ukrainian Allies

    As Russia’s invasion of Ukraine has evolved into a slow, grinding war, an apparent deadlock in cyberspace has led pro-Russian threat actors to turn their attention to foreign targets. Full Article on The Moloch Blog Last month, NATO wrapped up its summit in Vilnius , Lithuania. Disc

  20. Otto Rabe Creates A Portrait Of The War In Ukraine

    I interviewed a #humanitarian aid worker and #photojournalist , Otto Rabe, shortly after his return from #Ukraine . Otto is selling his photobook, "Portrait of War", to raise money for medical vehicles and supplies to go to the front. If you have the time, I'd urge you to take a lo

You are viewing a robot-friendly page.Click hereto reload in standard format.