Sam Sabin
@samsabin.bsky.social
Axios cybersecurity reporter, taking it day by day ✨ | 📩: sam.sabin@axios dot com, signal: SamSabin.01 (no pitches!), she/her
Reposted by Sam Sabin
NEW –> DEF CON has banned Vincenzo Iozzo, Joichi Ito and Pablos Holman after DOJ files released in January revealed their roles in efforts to secure Jeffrey Epstein’s access to the popular hacker conference:
www.nextgov.com/people/2026/...
www.nextgov.com/people/2026/...
DEF CON bans hackers, technologists named in Epstein documents
Vincenzo Iozzo, Joichi Ito and Pablos Holman are barred from future attendance after Justice Department files revealed their roles in efforts to secure Jeffrey Epstein’s access to DEF CON.
www.nextgov.com
February 18, 2026 at 6:56 PM
NEW –> DEF CON has banned Vincenzo Iozzo, Joichi Ito and Pablos Holman after DOJ files released in January revealed their roles in efforts to secure Jeffrey Epstein’s access to the popular hacker conference:
www.nextgov.com/people/2026/...
www.nextgov.com/people/2026/...
Reposted by Sam Sabin
NEW: ICE has a plan to lease offices across the US as part of a secret, months-long expansion campaign.
Today, @wired.com is publishing dozens of those locations. Many are near schools, medical offices, and places of worship.
Vital work from @leahfeiger.bsky.social that I'm proud to publish.
Today, @wired.com is publishing dozens of those locations. Many are near schools, medical offices, and places of worship.
Vital work from @leahfeiger.bsky.social that I'm proud to publish.
ICE Is Expanding Across the US at Breakneck Speed. Here’s Where It’s Going Next
ICE plans to lease offices throughout the US as part of a secret, months-long expansion campaign. WIRED is publishing dozens of these locations.
www.wired.com
February 10, 2026 at 4:13 PM
NEW: ICE has a plan to lease offices across the US as part of a secret, months-long expansion campaign.
Today, @wired.com is publishing dozens of those locations. Many are near schools, medical offices, and places of worship.
Vital work from @leahfeiger.bsky.social that I'm proud to publish.
Today, @wired.com is publishing dozens of those locations. Many are near schools, medical offices, and places of worship.
Vital work from @leahfeiger.bsky.social that I'm proud to publish.
Reposted by Sam Sabin
NEW: The government's nutrition website directs users to Grok.
After I asked about it, the site lost the name drop shown below, but users are still sent to Grok. This follows uproar over Grok's creation of millions of sexualized deepfakes of women and children.
www.nextgov.com/digital-gove...
After I asked about it, the site lost the name drop shown below, but users are still sent to Grok. This follows uproar over Grok's creation of millions of sexualized deepfakes of women and children.
www.nextgov.com/digital-gove...
February 10, 2026 at 6:28 PM
NEW: The government's nutrition website directs users to Grok.
After I asked about it, the site lost the name drop shown below, but users are still sent to Grok. This follows uproar over Grok's creation of millions of sexualized deepfakes of women and children.
www.nextgov.com/digital-gove...
After I asked about it, the site lost the name drop shown below, but users are still sent to Grok. This follows uproar over Grok's creation of millions of sexualized deepfakes of women and children.
www.nextgov.com/digital-gove...
Anthropic's new Opus 4.6 model has already proven it's a pro at finding zero-days.
In early testing, the model found more than 500 security flaws in open-source software. Many of those were found after traditional security tools failed.
my exclusive for @axios.com:
www.axios.com/2026/02/05/a...
In early testing, the model found more than 500 security flaws in open-source software. Many of those were found after traditional security tools failed.
my exclusive for @axios.com:
www.axios.com/2026/02/05/a...
Anthropic's newest AI model uncovered 500 zero-day software flaws in testing
The AI company sees the model's advancements as a major win for cyber defenders in the race against adversarial AI.
www.axios.com
February 5, 2026 at 6:00 PM
Anthropic's new Opus 4.6 model has already proven it's a pro at finding zero-days.
In early testing, the model found more than 500 security flaws in open-source software. Many of those were found after traditional security tools failed.
my exclusive for @axios.com:
www.axios.com/2026/02/05/a...
In early testing, the model found more than 500 security flaws in open-source software. Many of those were found after traditional security tools failed.
my exclusive for @axios.com:
www.axios.com/2026/02/05/a...
a new threat actor tied to an Asian gov't (👀) has hacked at least 70 orgs across 37 countries in the last year, according to Palo Alto Networks.
victims include Brazil's Ministry of Mines & Energy, the Czech Republic's parliament and an Indonesian gov't official.
www.axios.com/2026/02/05/c...
victims include Brazil's Ministry of Mines & Energy, the Czech Republic's parliament and an Indonesian gov't official.
www.axios.com/2026/02/05/c...
Hackers breach 37 countries in ongoing espionage campaign
Brazil's Ministry of Mines and Energy, the Czech Republic's parliament and an Indonesian government official were each hit.
www.axios.com
February 5, 2026 at 5:44 PM
a new threat actor tied to an Asian gov't (👀) has hacked at least 70 orgs across 37 countries in the last year, according to Palo Alto Networks.
victims include Brazil's Ministry of Mines & Energy, the Czech Republic's parliament and an Indonesian gov't official.
www.axios.com/2026/02/05/c...
victims include Brazil's Ministry of Mines & Energy, the Czech Republic's parliament and an Indonesian gov't official.
www.axios.com/2026/02/05/c...
Reposted by Sam Sabin
"'If somebody said it's business as usual [with federal election security support], he's full of s—t and lying,' [Arizona Secretary of State Adrian Fontes] said. 'That's not true.'"
cyberscoop.com/cisa-electio...
cyberscoop.com/cisa-electio...
February 3, 2026 at 5:30 PM
"'If somebody said it's business as usual [with federal election security support], he's full of s—t and lying,' [Arizona Secretary of State Adrian Fontes] said. 'That's not true.'"
cyberscoop.com/cisa-electio...
cyberscoop.com/cisa-electio...
a new open-source AI agent has gone viral across tech spaces.
it requires persistent access to devices, can read & write files, and is easily misconfigured when set up.
it’s a security nightmare & we’re only at the beginning of AI agent adoption 🫠
www.axios.com/2026/01/29/m...
it requires persistent access to devices, can read & write files, and is easily misconfigured when set up.
it’s a security nightmare & we’re only at the beginning of AI agent adoption 🫠
www.axios.com/2026/01/29/m...
Silicon Valley's latest AI agent obsession is riddled with security risks
This is just the beginning, and AI adopters are already hastily picking convenience over digital security.
www.axios.com
January 29, 2026 at 11:21 PM
a new open-source AI agent has gone viral across tech spaces.
it requires persistent access to devices, can read & write files, and is easily misconfigured when set up.
it’s a security nightmare & we’re only at the beginning of AI agent adoption 🫠
www.axios.com/2026/01/29/m...
it requires persistent access to devices, can read & write files, and is easily misconfigured when set up.
it’s a security nightmare & we’re only at the beginning of AI agent adoption 🫠
www.axios.com/2026/01/29/m...
Reposted by Sam Sabin
New, by me: Under Armour says it’s aware of data breach claims after 72M customer records were posted online.
A spox. told me a "small percentage" of customers had sensitive information compromised but wouldn't say what it considers "sensitive," nor provide an accurate figure of affected customers.
A spox. told me a "small percentage" of customers had sensitive information compromised but wouldn't say what it considers "sensitive," nor provide an accurate figure of affected customers.
Under Armour says it's 'aware' of data breach claims after 72M customer records were posted online | TechCrunch
TechCrunch obtained a sample of the stolen data, which contained names, email addresses, dates of birth, and the user's approximate geographic location. Under Armour confirmed some sensitive informati...
techcrunch.com
January 22, 2026 at 3:36 PM
New, by me: Under Armour says it’s aware of data breach claims after 72M customer records were posted online.
A spox. told me a "small percentage" of customers had sensitive information compromised but wouldn't say what it considers "sensitive," nor provide an accurate figure of affected customers.
A spox. told me a "small percentage" of customers had sensitive information compromised but wouldn't say what it considers "sensitive," nor provide an accurate figure of affected customers.
Reposted by Sam Sabin
Oakland Animal Services has been absolutely slammed this month and they are over capacity. There are 4 dogs with a Monday euthanasia date right now. I’m picking one up for foster & hopefully you can too! Go grab one of these babies!
January 21, 2026 at 5:52 PM
Oakland Animal Services has been absolutely slammed this month and they are over capacity. There are 4 dogs with a Monday euthanasia date right now. I’m picking one up for foster & hopefully you can too! Go grab one of these babies!
From Flock camera trackers to ICE leaks, protesters are now embracing hacktivism in their work against the Trump administration's mass deportation efforts.
my latest on @axios.com:
www.axios.com/2026/01/20/i...
my latest on @axios.com:
www.axios.com/2026/01/20/i...
Protesters go digital against ICE
Hacktivists are leaning more into data leaks and surveillance tools for ICE protests
www.axios.com
January 20, 2026 at 10:17 PM
From Flock camera trackers to ICE leaks, protesters are now embracing hacktivism in their work against the Trump administration's mass deportation efforts.
my latest on @axios.com:
www.axios.com/2026/01/20/i...
my latest on @axios.com:
www.axios.com/2026/01/20/i...
Reposted by Sam Sabin
The US DOJ says at least two DOGE employees accessed Social Security data that was off-limits under a court ruling and shared agency data on third-party servers (April Rubin/Axios)
Main Link | Techmeme Permalink
Main Link | Techmeme Permalink
January 20, 2026 at 9:01 PM
The US DOJ says at least two DOGE employees accessed Social Security data that was off-limits under a court ruling and shared agency data on third-party servers (April Rubin/Axios)
Main Link | Techmeme Permalink
Main Link | Techmeme Permalink
Reposted by Sam Sabin
New: DOGE staff cuts gutted the Pentagon's IT office so hard it didn't have enough personnel to buy software it needed to operate theintercept.com/2026/01/19/d...
DOGE Cuts “Unexpectedly and Significantly Impacted” Critical Pentagon Unit
Staffing problems caused by DOGE resulted in the Defense Information Systems Agency warning of “extreme risk for loss of service” across the military.
theintercept.com
January 20, 2026 at 5:39 PM
New: DOGE staff cuts gutted the Pentagon's IT office so hard it didn't have enough personnel to buy software it needed to operate theintercept.com/2026/01/19/d...
"Many of these endeavors go far beyond typical political persuasion, challenging long-established democratic norms."
wapo.st/3LWMYnX
wapo.st/3LWMYnX
Trump is trying to change how the midterm elections are conducted
Many of these endeavors go far beyond typical political persuasion, challenging long-established democratic norms.
wapo.st
January 20, 2026 at 5:12 PM
"Many of these endeavors go far beyond typical political persuasion, challenging long-established democratic norms."
wapo.st/3LWMYnX
wapo.st/3LWMYnX
one month after a cyberattack, Venezuela's state-owned oil company is operating via phone calls, WhatsApp messages and handwritten reports
www.bloomberg.com/news/article...
www.bloomberg.com/news/article...
Venezuelan Oil Industry Is Running on WhatsApp After Cyberattack
Venezuela’s oil industry is running its day-to-day operations via phone calls and handwritten reports in the month since a cyberattack on state-owned oil giant Petróleos de Venezuela SA.
www.bloomberg.com
January 16, 2026 at 6:00 PM
one month after a cyberattack, Venezuela's state-owned oil company is operating via phone calls, WhatsApp messages and handwritten reports
www.bloomberg.com/news/article...
www.bloomberg.com/news/article...
Reposted by Sam Sabin
Daily Beast reports that a DHS whistleblower has leaked the personal details of around 4,500 ICE and Border Patrol employees. The data is said to include about 1,800 on-the-ground agents and 150 supervisors.
Personal Details of Thousands of Border Patrol and ICE Goons Allegedly Leaked in Huge Data Breach
A DHS whistleblower appears to have exposed data on federal immigration workers after the shooting of Renee Good.
www.thedailybeast.com
January 13, 2026 at 10:22 PM
Daily Beast reports that a DHS whistleblower has leaked the personal details of around 4,500 ICE and Border Patrol employees. The data is said to include about 1,800 on-the-ground agents and 150 supervisors.
Reposted by Sam Sabin
I'm looking for anyone that's work at a company that's either missed payroll -- or been late with paychecks. I want to hear what that's like and how that affected you. It's for a story I'm working on. Emily.peck@axios.com. You can also just DM me here or find me on Signal EmilyRPeck.71
January 9, 2026 at 4:49 PM
I'm looking for anyone that's work at a company that's either missed payroll -- or been late with paychecks. I want to hear what that's like and how that affected you. It's for a story I'm working on. Emily.peck@axios.com. You can also just DM me here or find me on Signal EmilyRPeck.71
update: I’m being told this is the witness list for next week—
Logan Graham, Anthropic’s frontier red team lead
Royal Hansen, Google vice president of security & privacy
Eddy Zervigon, Quantum Xchange CEO
Michael Coates, Seven Hill Ventures
Logan Graham, Anthropic’s frontier red team lead
Royal Hansen, Google vice president of security & privacy
Eddy Zervigon, Quantum Xchange CEO
Michael Coates, Seven Hill Ventures
New from me: House lawmakers have called on Anthropic CEO Dario Amodei to testify next month on how Chinese hackers used Claude Code to automate most of a wide-reaching cyberespionage campaign.
More on @axios.com: www.axios.com/2025/11/26/a...
More on @axios.com: www.axios.com/2025/11/26/a...
Exclusive: Anthropic CEO called to testify before Congress about Chinese AI cyberattack
The request comes weeks after Anthropic said China used Claude Code in an espionage campaign.
www.axios.com
December 13, 2025 at 12:41 AM
update: I’m being told this is the witness list for next week—
Logan Graham, Anthropic’s frontier red team lead
Royal Hansen, Google vice president of security & privacy
Eddy Zervigon, Quantum Xchange CEO
Michael Coates, Seven Hill Ventures
Logan Graham, Anthropic’s frontier red team lead
Royal Hansen, Google vice president of security & privacy
Eddy Zervigon, Quantum Xchange CEO
Michael Coates, Seven Hill Ventures
Reposted by Sam Sabin
Researchers have found two new vulnerabilities in React Server Components while attempting to exploit the patches last week.
These are new issues, separate from the critical CVE last week. The patch for React2Shell remains effective for the Remote Code Execution exploit.
These are new issues, separate from the critical CVE last week. The patch for React2Shell remains effective for the Remote Code Execution exploit.
December 11, 2025 at 8:51 PM
Researchers have found two new vulnerabilities in React Server Components while attempting to exploit the patches last week.
These are new issues, separate from the critical CVE last week. The patch for React2Shell remains effective for the Remote Code Execution exploit.
These are new issues, separate from the critical CVE last week. The patch for React2Shell remains effective for the Remote Code Execution exploit.
Reposted by Sam Sabin
OMG! It’s been too long since we had a good mobile ransomware sighting!
A new Android malware called DroidLock has emerged with capabilities to lock screens for ransom payments, erase data, access text messages, call logs, contacts, and audio data.
New DroidLock malware locks Android devices and demands a ransom
A new Android malware called DroidLock has emerged with capabilities to lock screens for ransom payments, erase data, access text messages, call logs, contacts, and audio data.
www.bleepingcomputer.com
December 11, 2025 at 12:59 PM
OMG! It’s been too long since we had a good mobile ransomware sighting!
one of the wildest stories i've seen in a minute: twin brothers who previously pled guilty to hacking the State Department while gov't contractors... got new jobs as gov't contractors.... then allegedly deleted a bunch of gov't data... and were just arrested again.
www.axios.com/2025/12/03/v...
www.axios.com/2025/12/03/v...
Feds arrest twin brothers for allegedly deleting government data
The brothers worked for a contractor and previously pled guilty for hacking into the State Department.
www.axios.com
December 3, 2025 at 10:58 PM
one of the wildest stories i've seen in a minute: twin brothers who previously pled guilty to hacking the State Department while gov't contractors... got new jobs as gov't contractors.... then allegedly deleted a bunch of gov't data... and were just arrested again.
www.axios.com/2025/12/03/v...
www.axios.com/2025/12/03/v...
Reposted by Sam Sabin
Europol has seized the domain of the Cryptomixer cryptocurrency mixing service.
The site was allegedly responsible for helping criminal groups launder funds. Officials also seized €25 million worth of assets.
www.europol.europa.eu/media-press/...
The site was allegedly responsible for helping criminal groups launder funds. Officials also seized €25 million worth of assets.
www.europol.europa.eu/media-press/...
December 1, 2025 at 7:23 PM
Europol has seized the domain of the Cryptomixer cryptocurrency mixing service.
The site was allegedly responsible for helping criminal groups launder funds. Officials also seized €25 million worth of assets.
www.europol.europa.eu/media-press/...
The site was allegedly responsible for helping criminal groups launder funds. Officials also seized €25 million worth of assets.
www.europol.europa.eu/media-press/...
publishing this at 8:30pmPST the night before thanksgiving was a choice
openai.com/index/mixpan...
openai.com/index/mixpan...
What to know about a recent Mixpanel security incident
OpenAI shares details about a Mixpanel security incident involving limited API analytics data. No API content, credentials, or payment details were exposed. Learn what happened and how we’re protectin...
openai.com
November 27, 2025 at 5:00 AM
publishing this at 8:30pmPST the night before thanksgiving was a choice
openai.com/index/mixpan...
openai.com/index/mixpan...
New from me: House lawmakers have called on Anthropic CEO Dario Amodei to testify next month on how Chinese hackers used Claude Code to automate most of a wide-reaching cyberespionage campaign.
More on @axios.com: www.axios.com/2025/11/26/a...
More on @axios.com: www.axios.com/2025/11/26/a...
Exclusive: Anthropic CEO called to testify before Congress about Chinese AI cyberattack
The request comes weeks after Anthropic said China used Claude Code in an espionage campaign.
www.axios.com
November 26, 2025 at 4:47 PM
New from me: House lawmakers have called on Anthropic CEO Dario Amodei to testify next month on how Chinese hackers used Claude Code to automate most of a wide-reaching cyberespionage campaign.
More on @axios.com: www.axios.com/2025/11/26/a...
More on @axios.com: www.axios.com/2025/11/26/a...
Reposted by Sam Sabin
NEW: The FBI spied on a Signal group chat of NY immigrants' rights volunteers organizing court watch+ labeled activists “anarchist violent extremist actors.”
Joint FBI/NYPD report shows law enforcement accessed private planning convo of ppl monitoring ICE
Docs obtained by @propertyofthepeople.org
Joint FBI/NYPD report shows law enforcement accessed private planning convo of ppl monitoring ICE
Docs obtained by @propertyofthepeople.org
The FBI spied on a Signal group chat of immigration activists, records reveal
Exclusive: Agency accessed private conversations of New York ‘courtwatch’ group that was observing public hearings
www.theguardian.com
November 21, 2025 at 6:50 PM
NEW: The FBI spied on a Signal group chat of NY immigrants' rights volunteers organizing court watch+ labeled activists “anarchist violent extremist actors.”
Joint FBI/NYPD report shows law enforcement accessed private planning convo of ppl monitoring ICE
Docs obtained by @propertyofthepeople.org
Joint FBI/NYPD report shows law enforcement accessed private planning convo of ppl monitoring ICE
Docs obtained by @propertyofthepeople.org
cloudflare says today's outage was due to just one oversized file
www.axios.com/2025/11/18/c...
www.axios.com/2025/11/18/c...
Cloudflare traces hours-long outage to one single file
ChatGPT, X, Spotify and several other major online services were dark on Tuesday due to the outage
www.axios.com
November 18, 2025 at 6:21 PM
cloudflare says today's outage was due to just one oversized file
www.axios.com/2025/11/18/c...
www.axios.com/2025/11/18/c...