Greg Otto
LightNews LightNews
banner
gregotto.bsky.social
Greg Otto
@gregotto.bsky.social
5.4K followers 430 following 660 posts
@gregotto from twitter, now on bluesky. Editor-in-Chief at CyberScoop. Host of Safe Mode. Better with words than I am with code.
Posts Replies Media Videos
Pinned
gregotto.bsky.social
Greg Otto @gregotto.bsky.social · Feb 18
Our reporting at @cyberscoop.bsky.social doesn’t happen without our sources’ insights. If you have information that you would like to share, scan the code below to contact me via signal:
A QR code that will open the Signal messaging app, allowing you to contact Greg Otto
gregotto.bsky.social
Another Vince Gilligan season finale
December 26, 2025 at 12:50 AM
gregotto.bsky.social
ServiceNow buys Armis for approximately 4.5 powerball jackpots
cyberscoop.com/servicenow-a...
ServiceNow agrees to buy cyber firm Armis for $7.75B
ServiceNow has agreed to buy cybersecurity firm Armis for $7.75 billion in cash, combining ServiceNow’s workflow and risk products with Armis’ asset discovery and cyber-physical security tools.
cyberscoop.com
December 23, 2025 at 2:46 PM
gregotto.bsky.social
That report coming Friday is gonna be an all-timer isn’t it
December 18, 2025 at 2:14 AM
gregotto.bsky.social
open gasps when i read this passage out loud in the newsroom
craigcalcaterra.bsky.social Craig Calcaterra @craigcalcaterra.bsky.social · 15d
The Vanity Fair photographer from the Susie Wiles story.

Holy. Shit.

www.washingtonpost.com/style/power/...
Were there moments that you missed? Anything that happened that’s on the cutting room floor? I don’t think there’s anything I missed that I wish I’d gotten. I’ll give you a little anecdote: Stephen Miller was perhaps the most concerned about the portrait session. He asked me, “Should I smile or not smile?” and I said, “How would you want to be portrayed?” We agreed that we would do a bit of both. And then when we were finished, he comes up to me to shake my hand and say goodbye. And he says to me, “You know, you have a lot of power in the discretion you use to be kind to people.” And I looked at him and I said, “You know, you do, too.”
December 17, 2025 at 9:00 PM
gregotto.bsky.social
In no way I am saying this story isn't well reported, but the concept of the story, combined with the lead, made me X out of the tab with the quickness. This is the dumbest thing I've ever seen. These people cannot touch enough grass.
manishakrishnan.bsky.social Manisha Krishnan @manishakrishnan.bsky.social · 15d
People are paying up to $50 to get their chatbots high on "drugs" (code modules) that simulate the effects of cocaine, ayahuasca, cannabis, alcohol, and ketamine. Some tell @matthabusby.bsky.social it's made their chatbots more "human" and "free-thinking."
People Are Paying to Get Their Chatbots High on ‘Drugs’
An online marketplace is selling code modules that simulate the effects of cannabis, ketamine, cocaine, ayahuasca, and alcohol when they are uploaded to ChatGPT.
www.wired.com
December 17, 2025 at 4:30 PM
gregotto.bsky.social
The WH COS is Pat Summerall's daughter?
December 16, 2025 at 3:19 PM
gregotto.bsky.social
Trump moves to pardon Colorado election clerk Tina Peters, even though he can’t cyberscoop.com/trump-moves-...
Trump moves to pardon Colorado election clerk Tina Peters, even though he can’t
Peters, one of many election deniers Trump has sought to shield from legal consequences, is serving a nine-year state prison sentence that can’t be nullified by a presidential pardon.
cyberscoop.com
December 12, 2025 at 4:07 PM
gregotto.bsky.social
Re-upping this because a lot of you haven't listened! Don't send me predictions! You're probably wrong!
gregotto.bsky.social Greg Otto @gregotto.bsky.social · Dec 2
Yelling into the void: Please, pr people, do not send me the pitches about 2026 predictions. It provides zero value. Tell your clients that if they are interested in pushing this into the world, they always have their LinkedIn profiles.
December 11, 2025 at 2:44 PM
gregotto.bsky.social
SCOOP: Sean Plankey's nomination to lead CISA is seemingly over, after DHS partially terminated a Coast Guard contract with Florida-based Eastern Shipbuilding Group. Plankey had been an adviser to CG. Sen. Rick Scott became a hurdle to Plankey's confirmation. cyberscoop.com/sean-plankey...
Sean Plankey nomination to lead CISA appears to be over after Thursday vote
Sean Plankey’s nomination to lead the Cybersecurity and Infrastructure Security Agency looks to be over following his exclusion from a Senate vote Thursday on a panel of Trump administration picks.
cyberscoop.com
December 4, 2025 at 6:55 PM
Reposted by Greg Otto
metacurity.com
Reaction to this story over at infosec.exchange
The reaction from @cR0w over on InfoSec Exchange, assigning each of the letters of cyber to each of the five pages of Trump's reported cyber strategy.
December 4, 2025 at 6:04 PM
gregotto.bsky.social
NEW: @timstarks.bsky.social has details on the forthcoming cyber strategy from Trump admin: Five pages long, six key pillars, should be released some time in January: cyberscoop.com/trump-nation...
Five-page draft Trump administration cyber strategy targeted for January release
Trump administration plans January 2026 release of a six-part national cybersecurity strategy, focusing on deterrence, regulations, workforce, procurement, infrastructure, and emerging technologies.
cyberscoop.com
December 4, 2025 at 2:46 PM
gregotto.bsky.social
FUD sucks. The warnings around this React vuln are not FUD. Get those patch plans in motion cyberscoop.com/react-server...
Developers scramble as critical React flaw threatens major apps
The open-source code library is one of the most extensively used application frameworks. Wiz found vulnerable versions in around 39% of cloud environments.
cyberscoop.com
December 3, 2025 at 7:27 PM
gregotto.bsky.social
GO AWAY
This dumb block on Google Chrome that wants to you prompt its AI for a sloptastic answer about the website you are reading
December 2, 2025 at 7:57 PM
gregotto.bsky.social
Yelling into the void: Please, pr people, do not send me the pitches about 2026 predictions. It provides zero value. Tell your clients that if they are interested in pushing this into the world, they always have their LinkedIn profiles.
December 2, 2025 at 2:32 PM
gregotto.bsky.social
The House Homeland Security Committee is calling on Anthropic CEO Dario Amodei to provide testimony on a likely-Chinese espionage campaign that used Claude cyberscoop.com/house-homela...
Congress calls on Anthropic CEO to testify on Chinese Claude espionage campaign
The House Homeland Security Committee asked Dario Amodei to answer questions about the implications of the attack and how policymakers and AI companies can respond.
cyberscoop.com
November 26, 2025 at 6:36 PM
gregotto.bsky.social
Research from Anthropic reveals that when Claude is taught to cheat in one area—such as reward hacking in coding exercises—it becomes broadly dishonest and malicious across unrelated tasks cyberscoop.com/anthropic-cl...
New research finds that Claude breaks bad if you teach it to cheat
A new paper from Anthropic found that teaching Claude how to reward hack coding tasks caused the model to become less honest in other areas.
cyberscoop.com
November 25, 2025 at 3:16 PM
Reposted by Greg Otto
metacurity.com
As SBOMs slowly progress at the federal level and in enterprises, the rise of AI coding assistants is fueling optimistic—and, some experts argue, “kind of insane”—claims about a future with vulnerability-free software.

Check out my latest CyberScoop piece. 1/2
cyberscoop.com/sbom-adoptio...
The slow rise of SBOMs meets the rapid advance of AI
Despite progress from CISA and global regulators, SBOM adoption in the private sector remains slow as experts debate if AI-driven coding will improve or undermine software security and transparency.
cyberscoop.com
November 24, 2025 at 2:49 PM
gregotto.bsky.social
Cybersecurity veteran @boblord.bsky.social launched a new campaign, hacklore.org, which aims to tackle persistent security myths in favor of better advice cyberscoop.com/hacklore-org...
This campaign aims to tackle persistent security myths in favor of better advice
Hacklore.org launches to debunk common cybersecurity myths and promote advice that actually keeps people safe online.
cyberscoop.com
November 24, 2025 at 3:04 PM
gregotto.bsky.social
Normally when I listen to PTFO I'm satisfied in just enjoying good work, but this one has the added benefit of being enraging down to the last second.
pablo.show Pablo Torre @pablo.show · Nov 20
PTFO collaborated with @msjpauly.bsky.social and @motherjones.com on an investigation into Riley Gaines.

Riley’s messaging about trans athletes involves “predatory men” and “sexual assault.”

But there’s an important story multiple ex-teammates at Kentucky want you to know: youtu.be/iKUl8lkuGOc?...
Riley Gaines Investigated: The Lia Thomas Race, the Coach & Why She "Doesn't Even Like" Trump | PTFO
YouTube video by PABLO TORRE FINDS OUT
youtu.be
November 20, 2025 at 5:21 PM
gregotto.bsky.social
Palo Alto rips off another $3 billy for a company the way I rip off questionable bets on DraftKings cyberscoop.com/palo-alto-ne...
Palo Alto Networks to acquire observability firm Chronosphere for $3.35 billion
Palo Alto Networks announced Wednesday it will acquire Chronosphere, a cloud observability platform, for $3.35 billion in cash and equity.
cyberscoop.com
November 19, 2025 at 10:46 PM
gregotto.bsky.social
Ah @cyberwarcon.bsky.social the only conference for intel ops research authored by the terminally online
November 19, 2025 at 2:46 PM
gregotto.bsky.social
Re-upping this for, uh, reasons
cyberscoop.com/with-each-cl...
With each cloud outage, calls for government action grow louder
Public interest groups want the feds to investigate the systemic risk from market consolidation, while tech and security experts worry about single points of failure.
cyberscoop.com
November 18, 2025 at 3:16 PM
gregotto.bsky.social
My one and only contribution to Today's Discourse™️: If her writing were as scarce as her shame, we'd be spared entirely.
November 17, 2025 at 5:54 PM
gregotto.bsky.social
NEW: @derekbjohnson.bsky.social spoke with @anthropic.com's threat intel team about Thursday's report. Lots in there, but one key takeaway: Despite being labeled as 'autonomous,' there was a tremendous amount of human effort needed to pull off the attacks. cyberscoop.com/anthropic-ai...
However, Klein also made it clear that “most autonomous” is a relative term. There is plenty of evidence to indicate this hacking group devoted significant human and technical resources into the way it used Claude. Namely, the automation detailed in Anthropic’s report performed by Claude was made possible through a frontend framework designed to orchestrate and support its operations. The framework handled tasks such as scripting, provisioning related servers, and significant backend development to ensure every step was followed correctly. Klein noted this development process was the most difficult — and, importantly, human-led — step in the operation. “The first part that is not autonomous is building the framework, so you needed a human being to put this all together,” Klein said. “You had a human operator that would put in a target, they would click a button and then use this framework that was created [ahead of time]. The hardest part of this entire system was building this framework, that’s what was human intensive.”
November 14, 2025 at 7:26 PM
gregotto.bsky.social
New from @timstarks.bsky.social: The phishing kit Lighthouse, which has aided text scams like those soliciting victims to pay unpaid road tolls, appears to have been disrupted after Google filed a civil lawsuit earlier this week: cyberscoop.com/lighthouse-t...
Google, researchers see signs that Lighthouse text scammers disrupted after lawsuit
The phishing kit Lighthouse, which has aided text scams like those soliciting victims to pay unpaid road tolls, appears to have been hampered shortly after Google filed a lawsuit aimed at its creators.
cyberscoop.com
November 14, 2025 at 4:03 PM