Lightnews — Scholar-powered news

Yahoo's Sean Zadig on How to Raise a Hacker Safely and How AI Isn't Changing Everything

November 6, 2025 at 2:26 PM

Decipher

@deciphersec.bsky.social

🎥 Brand new podcast episode is up! 🎥

We talked to @yahoo.bsky.social CISO Sean Zadig about his path to infosec and the challenges of raising the next generation of hackers.
youtu.be/e7K16g5JONc?...

About the security content of iOS 26.1 and iPadOS 26.1 - Apple Support

November 5, 2025 at 2:28 PM

Decipher

@deciphersec.bsky.social

New Apple updates are out. No actively exploited vulnerabilities for once.
support.apple.com/en-us/125632

This document describes the security content of iOS 26.1 and iPadOS 26.1.

support.apple.com

November 4, 2025 at 2:48 PM

Decipher

@deciphersec.bsky.social

Our latest podcast episode covers the most important news of the week.
➡️ the rising tide of shadow AI
➡️ the return of Hacking Team/Memento and a wild Chrome exploit
➡️ targeted intrusions from pack rats

October 31, 2025 at 2:49 PM

Decipher

@deciphersec.bsky.social

This is a pretty fascinating read. For extra context, see @justinschuh.com thread on the vulnerable code itself.
securelist.com/forumtroll-a...

Mem3nt0 mori – The Hacking Team is back!

Kaspersky researchers discovered previously unidentified commercial Dante spyware developed by Memento Labs (formerly Hacking Team) and linked it to the ForumTroll APT attacks.

securelist.com

October 30, 2025 at 3:20 PM

Reposted by Decipher

Dennis

@dennisf.bsky.social

For people of A Certain Age, the risk of shadow AI may bring back memories of when WiFi was a thing but not yet the thing. IT departments were slow to adopt the idea of sending packets flying through the air, so employees bought their own WiFi access points.

decipher.sc/2025/10/30/w...

With AI and Security, ‘Everyone is Still Learning’ - Decipher

For many organizations, the biggest potential risk that arises from the use of AI tools is the leakage or mishandling of sensitive data.

Google Chrome to Enable HTTPS Default Browsing - Decipher

October 30, 2025 at 1:25 PM

Decipher

@deciphersec.bsky.social

It's what you want.

decipher.sc/2025/10/28/g...

In October 2026, Google will change the default settings in Chrome to include its existing “Always Use Secure Connections” feature.

US Cybersecurity Going in Reverse, the AWS Outage, and is CISA Okay

October 29, 2025 at 1:59 PM

Decipher

@deciphersec.bsky.social

🚨 New pod is up! And it's...something.

➡️ Details from the new CSC report
➡️ Is CISA ok?
➡️ More effects from the F5 incident
➡️ 2 insane stories about animals invading our homes 🐀 🦇

open.spotify.com/episode/6ZQz...

open.spotify.com

October 24, 2025 at 7:17 PM

Decipher

@deciphersec.bsky.social

decipher.sc/2025/10/22/u...

US Facing ‘Unprecedented Setback’ in Cyber Policy Priorities: CSC Report - Decipher

“For the first time, there has been a substantial reversal of the advances made in previous years,” warned the Cyberspace Solarium Commission report.

New Lazarus Group Campaign Targets EU Defense Companies - Decipher

October 23, 2025 at 1:47 PM

Decipher

@deciphersec.bsky.social

New research from @esetresearch.bsky.social on a Lazarus Group campaign using the ScoringMathTea RAT and the familiar fake job lures.

decipher.sc/2025/10/23/n...

The suspected objective of the Lazarus group was the exfiltration of proprietary information and manufacturing expertise, particularly pertaining to UAV tech...

The Hacker Movie Canon: REAL GENIUS

October 23, 2025 at 11:08 AM

Decipher

@deciphersec.bsky.social

🚨 Our lates hacker movie 📽️ podcast is up NOW! And it's a doozy. We talked about an underrated classic, REAL GENIUS, with our awesome pal Wendy Nather of @1password.bsky.social! Get all the 🍿 ready and enjoy!

youtu.be/0D1vZk--43A?...

decipher.sc/2025/10/21/i...

October 22, 2025 at 2:55 PM

Decipher

@deciphersec.bsky.social

It’s All Just Electrons: The Enduring Legacy of Sneakers - Decipher

"The world isn't run by weapons anymore, or energy, or money. It's run by little ones and zeroes, little bits of data. It's all just elec...

Why WarGames is Still Predicting the Future 40 Years Later - Decipher

October 21, 2025 at 4:15 PM

Decipher

@deciphersec.bsky.social

Today is another good reminder of @k8em0.bsky.social's iconic line: We have an internet built on rock n roll and silly string.

October 20, 2025 at 2:12 PM

Decipher

@deciphersec.bsky.social

Why WarGames is Still Predicting the Future 40 Years Later decipher.sc/2025/10/17/w... #decipher #deciphersec

WarGames may be 42 years old but its prescience about our current technocracy and race to take humans out of the loop is as clear as ever

F5: Attacker Accessed BIG-IP Source Code, Bug Data - Decipher

October 17, 2025 at 3:54 PM

Decipher

@deciphersec.bsky.social

"These files contained some of our BIG-IP source code and information about undisclosed vulnerabilities we were working on in BIG-IP."

decipher.sc/2025/10/15/f...

The company discovered the intrusion in August but did not say when the attackers first gained access to F5’s systems or how long they had access.

Official channel of Decipher, the independent source for cybersecurity news, interviews, and analysis. Editors Lindsey O'Donnell-Welch and Dennis Fisher are veteran journalists with a combined 35+ yea...

October 15, 2025 at 2:55 PM

Decipher

@deciphersec.bsky.social

We're recording our next hacker movie podcast on REAL GENIUS tomorrow, with a very special guest. You can catch up on our first two episodes on SNEAKERS and WARGAMES on our YouTube channel!
youtube.com/@DecipherSec

Decipher

youtube.com

October 14, 2025 at 3:33 PM

Decipher

@deciphersec.bsky.social

You know what's fun? Watching WarGames.

You know what's even MORE fun? Watching us talk about watching WarGames

youtu.be/mxSa4YKrJ6U?...

The Hacker Movie Canon: WARGAMES

decipher.sc/2025/10/08/d...

October 10, 2025 at 7:01 PM

Decipher

@deciphersec.bsky.social

Data Connects Scanning Surges for Cisco, Fortinet, PAN Devices - Decipher

Researchers say that all three campaigns are being driven at least in part by one threat actor.

decipher.sc/2025/10/07/a...

October 9, 2025 at 7:14 PM

Decipher

@deciphersec.bsky.social

Attackers Exploit Critical GoAnywhere Bug to Spread Medusa Ransomware - Decipher

A critical GoAnywhere flaw (CVE-2025-10035) is being targeted in attacks by a threat group known for deploying Medusa ransomware.

The Hacker Movie Canon: WARGAMES

October 8, 2025 at 6:29 PM

Decipher

@deciphersec.bsky.social

Shall we play a game?

youtu.be/mxSa4YKrJ6U?...

Oracle Patches E-Business Suite Zero-Day Amid Clop Extortion Attacks - Decipher

October 8, 2025 at 1:40 PM

Decipher

@deciphersec.bsky.social

Active, widespread exploitation is happening.
decipher.sc/2025/10/06/o...

Oracle has patched a critical zero-day remote code execution flaw in its E-Business Suite, which was being exploited by the Clop gang in a rash of data theft...

Oracle Patches E-Business Suite Zero-Day Amid Clop Extortion Attacks - Decipher

October 7, 2025 at 2:01 PM

Decipher

@deciphersec.bsky.social

To quote @cje.io, patch yo' Oracle.

decipher.sc/2025/10/06/o...

Oracle has patched a critical zero-day remote code execution flaw in its E-Business Suite, which was being exploited by the Clop gang in a rash of data theft...