SwitHak (👁️)
@swithak.bsky.social
French Security Analyst (Fmr TelcoSec)
Cyber / Security / Geopolitics & and others.
Personal Account, My opinion!
Lang: ENglish & FRench
Cyber / Security / Geopolitics & and others.
Personal Account, My opinion!
Lang: ENglish & FRench
Reposted by SwitHak (👁️)
Russian telecom operators are blocking calls and SMS messages used by Telegram and WhatsApp two-factor authentication service.
The blocking is also affecting new user account registrations
kod.ru/telegram-i-w...
The blocking is also affecting new user account registrations
kod.ru/telegram-i-w...
Эксклюзив: в России ограничили регистрацию пользователей в Telegram и WhatsApp*
От российских операторов потребовали прекратить передачу SMS и звонков со стороны Telegram и WhatsApp*
kod.ru
November 2, 2025 at 12:11 AM
Russian telecom operators are blocking calls and SMS messages used by Telegram and WhatsApp two-factor authentication service.
The blocking is also affecting new user account registrations
kod.ru/telegram-i-w...
The blocking is also affecting new user account registrations
kod.ru/telegram-i-w...
Reposted by SwitHak (👁️)
📣 Germany's close to reversing its opposition to mass surveillance & private message scanning, & backing the Chat Control bill. This could end private comms-& Signal-in the EU.
Time's short and they're counting on obscurity: please let German politicians know how horrifying their reversal would be.
Time's short and they're counting on obscurity: please let German politicians know how horrifying their reversal would be.
We are alarmed by reports that Germany is on the verge of a catastrophic about-face, reversing its longstanding and principled opposition to the EU’s Chat Control proposal which, if passed, could spell the end of the right to privacy in Europe. signal.org/blog/pdfs/ge...
signal.org
October 6, 2025 at 6:46 AM
📣 Germany's close to reversing its opposition to mass surveillance & private message scanning, & backing the Chat Control bill. This could end private comms-& Signal-in the EU.
Time's short and they're counting on obscurity: please let German politicians know how horrifying their reversal would be.
Time's short and they're counting on obscurity: please let German politicians know how horrifying their reversal would be.
Reposted by SwitHak (👁️)
📱 Silent Smishing: The Hidden Abuse of Cellular Router APIs
Our latest #CTI investigation from Sekoia #TDR team uncovers a novel #smishing vector abusing Milesight industrial cellular router APIs to send phishing #SMS at scale.
blog.sekoia.io/silent-smish...
Our latest #CTI investigation from Sekoia #TDR team uncovers a novel #smishing vector abusing Milesight industrial cellular router APIs to send phishing #SMS at scale.
blog.sekoia.io/silent-smish...
October 2, 2025 at 1:56 PM
📱 Silent Smishing: The Hidden Abuse of Cellular Router APIs
Our latest #CTI investigation from Sekoia #TDR team uncovers a novel #smishing vector abusing Milesight industrial cellular router APIs to send phishing #SMS at scale.
blog.sekoia.io/silent-smish...
Our latest #CTI investigation from Sekoia #TDR team uncovers a novel #smishing vector abusing Milesight industrial cellular router APIs to send phishing #SMS at scale.
blog.sekoia.io/silent-smish...
Reposted by SwitHak (👁️)
NEW: Hours before a new entry ban is supposed to go into effect, the federal government officially acknowledges for the first time that the restrictions do NOT apply to people who currently have H-1B visas.
Link: www.uscis.gov/sites/defaul...
Link: www.uscis.gov/sites/defaul...
September 20, 2025 at 9:57 PM
NEW: Hours before a new entry ban is supposed to go into effect, the federal government officially acknowledges for the first time that the restrictions do NOT apply to people who currently have H-1B visas.
Link: www.uscis.gov/sites/defaul...
Link: www.uscis.gov/sites/defaul...
French🇫🇷 diplomatie announced the creation of a dedicated account @FrenchResponse on X/Twitter Social Network to respond to those who want to harm French 🇫🇷 reputation
#FIMI #Disinfo #InformationWarfare
#FIMI #Disinfo #InformationWarfare
September 5, 2025 at 6:06 PM
French🇫🇷 diplomatie announced the creation of a dedicated account @FrenchResponse on X/Twitter Social Network to respond to those who want to harm French 🇫🇷 reputation
#FIMI #Disinfo #InformationWarfare
#FIMI #Disinfo #InformationWarfare
Reposted by SwitHak (👁️)
Unfortunately, Bluesky is unavailable in Mississippi right now, due to a new state law that requires age verification for all users.
While intended for child safety, we think this law poses broader challenges & creates significant barriers that limit free speech & harm smaller platforms like ours.
While intended for child safety, we think this law poses broader challenges & creates significant barriers that limit free speech & harm smaller platforms like ours.
August 22, 2025 at 7:54 PM
Unfortunately, Bluesky is unavailable in Mississippi right now, due to a new state law that requires age verification for all users.
While intended for child safety, we think this law poses broader challenges & creates significant barriers that limit free speech & harm smaller platforms like ours.
While intended for child safety, we think this law poses broader challenges & creates significant barriers that limit free speech & harm smaller platforms like ours.
Reposted by SwitHak (👁️)
“No one should profit from our personal data, especially without our consent,” EFF’s Lena Cohen told KATU News. “The data broker industry is extremely opaque, and the lack of transparency makes it hard to know when our privacy rights are being violated.”
katu.com/news/invest...
katu.com/news/invest...
Oregon DMV brings in millions selling your information. Here's how.
Oregon’s DMV brings in millions of dollars a year selling drivers’ personal information to qualified buyers, from insurance companies to private investigators.
katu.com
August 12, 2025 at 12:02 AM
“No one should profit from our personal data, especially without our consent,” EFF’s Lena Cohen told KATU News. “The data broker industry is extremely opaque, and the lack of transparency makes it hard to know when our privacy rights are being violated.”
katu.com/news/invest...
katu.com/news/invest...
Reposted by SwitHak (👁️)
In another episode of “we live in the stupidest timeline,” Jen Easterly, a woman I have (1) never met and (2) did not work for, had her appointment at West Point terminated because Laura Loomer lied about both of us in a tweet.
cyberscoop.com/jen-easterly...
cyberscoop.com/jen-easterly...
Army Secretary forces West Point to rescind appointment given to Easterly
The United States Military Academy abruptly ended the appointment of Jen Easterly to a high-profile academic position in West Point’s Department of Social Sciences, according to a memorandum issued We...
cyberscoop.com
July 30, 2025 at 9:56 PM
In another episode of “we live in the stupidest timeline,” Jen Easterly, a woman I have (1) never met and (2) did not work for, had her appointment at West Point terminated because Laura Loomer lied about both of us in a tweet.
cyberscoop.com/jen-easterly...
cyberscoop.com/jen-easterly...
Reposted by SwitHak (👁️)
Russia will move its electronic document signing system from its official government portal to the new Max national messenger app
Officials plan to integrate government services into Max by October and transform it into an everything-app for Russians—like China's WeChat.
www.rbc.ru/rbcfreenews/...
Officials plan to integrate government services into Max by October and transform it into an everything-app for Russians—like China's WeChat.
www.rbc.ru/rbcfreenews/...
July 31, 2025 at 7:37 AM
Russia will move its electronic document signing system from its official government portal to the new Max national messenger app
Officials plan to integrate government services into Max by October and transform it into an everything-app for Russians—like China's WeChat.
www.rbc.ru/rbcfreenews/...
Officials plan to integrate government services into Max by October and transform it into an everything-app for Russians—like China's WeChat.
www.rbc.ru/rbcfreenews/...
Decoding Secrets Through Symbols: How Military Insignia Revealed Russia’s Hidden SIGINT Network by @checkfirst.network
↘️
checkfirst.network/decoding-sec...
↘️
checkfirst.network/decoding-sec...
Decoding Secrets Through Symbols: How Military Insignia Revealed Russia's Hidden SIGINT Network - CheckFirst
Sometimes the best intelligence comes from the most unexpected sources. Our latest investigation proves this by using Russian online military insignia stores to map one of the FSB's most secretive uni...
checkfirst.network
July 20, 2025 at 6:06 PM
Decoding Secrets Through Symbols: How Military Insignia Revealed Russia’s Hidden SIGINT Network by @checkfirst.network
↘️
checkfirst.network/decoding-sec...
↘️
checkfirst.network/decoding-sec...
Reposted by SwitHak (👁️)
Reposted by SwitHak (👁️)
🩸& #threatintel | We (GreyNoise) just published a quick note (www.greynoise.io/blo...) regarding CVE-2025-5777 - CitrixBleed 2
1/2
1/2
Exploitation of CitrixBleed 2 (CVE-2025-5777) Began Before PoC Was Public
GreyNoise has observed active exploitation attempts against CVE-2025-5777 (CitrixBleed 2), a memory overread vulnerability in Citrix NetScaler. Exploitation began on June 23 — nearly two weeks before a public proof-of-concept was released on July 4.
www.greynoise.io
July 16, 2025 at 9:05 PM
🩸& #threatintel | We (GreyNoise) just published a quick note (www.greynoise.io/blo...) regarding CVE-2025-5777 - CitrixBleed 2
1/2
1/2
Finally got the time to read it.
So great paper, a lot of red flags and got me some thoughts about how you can apply these lessons to vetting sources in the Cyber ops.
Also a very good case to study!
Thanks for the work @wylienewmark.bsky.social
So great paper, a lot of red flags and got me some thoughts about how you can apply these lessons to vetting sources in the Cyber ops.
Also a very good case to study!
Thanks for the work @wylienewmark.bsky.social
Of all my professional accomplishments, I think I’m proudest of this.
🚨Volume 69,* Issue 2 of "Studies in Intelligence" dropped🚨
FEATURING a @wylienewmark.bsky.social original on GT/PROLOGUE
(*nice)
www.cia.gov/resources/cs...
FEATURING a @wylienewmark.bsky.social original on GT/PROLOGUE
(*nice)
www.cia.gov/resources/cs...
July 13, 2025 at 6:29 PM
Finally got the time to read it.
So great paper, a lot of red flags and got me some thoughts about how you can apply these lessons to vetting sources in the Cyber ops.
Also a very good case to study!
Thanks for the work @wylienewmark.bsky.social
So great paper, a lot of red flags and got me some thoughts about how you can apply these lessons to vetting sources in the Cyber ops.
Also a very good case to study!
Thanks for the work @wylienewmark.bsky.social
Reposted by SwitHak (👁️)
Outstanding work from @julianferdinand.bsky.social, @lawrencesec.bsky.social, and our Malicious Infrastructure Discovery (MID) team.
GrayAlpha shows how financially motivated actors operate with APT-level tradecraft.
Time to retire old threat models. Think in terms of ecosystems, not just malware.
GrayAlpha shows how financially motivated actors operate with APT-level tradecraft.
Time to retire old threat models. Think in terms of ecosystems, not just malware.
Today we are releasing a report on new infrastructure and tooling linked to GrayAlpha, a financially motivated threat actor overlapping with FIN7 🧵
www.recordedfuture.com/research/gra...
www.recordedfuture.com/research/gra...
GrayAlpha Unmasked: New FIN7-Linked Infrastructure, PowerNet Loader, and Fake Update Attacks
Insikt Group exposes GrayAlpha’s evolving infrastructure and infection methods—including PowerNet and MaskBat loaders, fake 7-Zip sites, and the undocumented TAG-124 network—linking the group to FIN7’...
www.recordedfuture.com
June 13, 2025 at 3:27 PM
Outstanding work from @julianferdinand.bsky.social, @lawrencesec.bsky.social, and our Malicious Infrastructure Discovery (MID) team.
GrayAlpha shows how financially motivated actors operate with APT-level tradecraft.
Time to retire old threat models. Think in terms of ecosystems, not just malware.
GrayAlpha shows how financially motivated actors operate with APT-level tradecraft.
Time to retire old threat models. Think in terms of ecosystems, not just malware.
Reposted by SwitHak (👁️)
NEW: NSO Group is trying to avoid paying $167 million in damages to WhatsApp.
In a court filing last week, the spyware maker asked the judge to order a new trial, or reduce the damages amount, arguing that the decision was “outrageous," and "reflects the improper desire to bankrupt NSO."
In a court filing last week, the spyware maker asked the judge to order a new trial, or reduce the damages amount, arguing that the decision was “outrageous," and "reflects the improper desire to bankrupt NSO."
NSO Group asks judge for new trial, calling $167 million in damages 'outrageous' | TechCrunch
The spyware maker claims the damages it was ordered to pay are "excessive," and that the jury wanted to “bankrupt” the company.
techcrunch.com
June 2, 2025 at 4:40 PM
NEW: NSO Group is trying to avoid paying $167 million in damages to WhatsApp.
In a court filing last week, the spyware maker asked the judge to order a new trial, or reduce the damages amount, arguing that the decision was “outrageous," and "reflects the improper desire to bankrupt NSO."
In a court filing last week, the spyware maker asked the judge to order a new trial, or reduce the damages amount, arguing that the decision was “outrageous," and "reflects the improper desire to bankrupt NSO."
Good work!
Also I would have added the IG/L part to explain why sometimes the technical evidence isn't released.
Also, it would benefit from distinguishing between Political attribution and the Technical one, some states do one, not the other.
Also I would have added the IG/L part to explain why sometimes the technical evidence isn't released.
Also, it would benefit from distinguishing between Political attribution and the Technical one, some states do one, not the other.
📺No longer a Western monopoly, public cyber attribution is now used by diverse nations like China, Iran, Venezuela, and Ethiopia for their own strategic gains. @lmhurel.bsky.social explores how their clashing narratives risk eroding trust in fostering responsible cyberspace behaviour: bit.ly/4jovhZ2
May 29, 2025 at 1:42 PM
Good work!
Also I would have added the IG/L part to explain why sometimes the technical evidence isn't released.
Also, it would benefit from distinguishing between Political attribution and the Technical one, some states do one, not the other.
Also I would have added the IG/L part to explain why sometimes the technical evidence isn't released.
Also, it would benefit from distinguishing between Political attribution and the Technical one, some states do one, not the other.
Reposted by SwitHak (👁️)
New from 404 Media: Flock, the license plate reader company that has cameras all across the U.S., is now building a massive people lookup tool using hacked data. The plan is to "jump from LPR to person." Won't require a warrant. This is according to leak we obtained.
www.404media.co/license-plat...
www.404media.co/license-plat...
License Plate Reader Company Flock Is Building a Massive People Lookup Tool, Leak Shows
Flock, which has license plate readers (LPRs) all around the country, wants police to be able to “jump from LPR to person,” according to leaked audio obtained by 404 Media.
www.404media.co
May 14, 2025 at 1:57 PM
New from 404 Media: Flock, the license plate reader company that has cameras all across the U.S., is now building a massive people lookup tool using hacked data. The plan is to "jump from LPR to person." Won't require a warrant. This is according to leak we obtained.
www.404media.co/license-plat...
www.404media.co/license-plat...
Reposted by SwitHak (👁️)
After a post‑pandemic dip in 2022, Canadians' social media account ownership and usage have largely rebounded, new State of Social Media in Canada 2025. (n=1,500) socialmedialab.ca/2025/05/05/n...
May 5, 2025 at 12:10 PM
After a post‑pandemic dip in 2022, Canadians' social media account ownership and usage have largely rebounded, new State of Social Media in Canada 2025. (n=1,500) socialmedialab.ca/2025/05/05/n...
Reposted by SwitHak (👁️)
Now is the time to stand up against the Trump administration as it tries to bully the cybersecurity community by targeting Chris Krebs. Sign on to our open letter:
www.eff.org/press/releas...
www.eff.org/press/releas...
EFF Leads Prominent Security Experts in Urging Trump Administration to Leave Chris Krebs Alone
SAN FRANCISCO – The Trump Administration must cease its politically motivated investigation of former U.S. Cybersecurity and Infrastructure Security Agency Director Christopher Krebs, the Electronic F...
www.eff.org
April 28, 2025 at 7:23 PM
Now is the time to stand up against the Trump administration as it tries to bully the cybersecurity community by targeting Chris Krebs. Sign on to our open letter:
www.eff.org/press/releas...
www.eff.org/press/releas...
2025 FIRST CTI Conference - Day 1 Plenary Sessions - Live Stream
YouTube video by FIRST
www.youtube.com
April 22, 2025 at 11:18 PM
Reposted by SwitHak (👁️)
NEW: ALA is going to court to stop the President’s attempts to illegally dismantle the Institute of Museum & Library Services.
The President does not have the authority to destroy a federal agency. That's why we're taking action with our co-plaintiff @afscme.bsky.social. #ForOurLibraries (1/3)
The President does not have the authority to destroy a federal agency. That's why we're taking action with our co-plaintiff @afscme.bsky.social. #ForOurLibraries (1/3)
April 8, 2025 at 1:57 AM
NEW: ALA is going to court to stop the President’s attempts to illegally dismantle the Institute of Museum & Library Services.
The President does not have the authority to destroy a federal agency. That's why we're taking action with our co-plaintiff @afscme.bsky.social. #ForOurLibraries (1/3)
The President does not have the authority to destroy a federal agency. That's why we're taking action with our co-plaintiff @afscme.bsky.social. #ForOurLibraries (1/3)
Reposted by SwitHak (👁️)
Merci au @lemonde.fr de publier ce soir ma tribune, écrite après ma relaxe par le tribunal de Créteil, qui faisait suite au procès en diffamation intenté par la chaîne RT France contre mon éditeur, l'INA, et moi-même. 1/3
#StandUpForScience
#StandUpForScience
March 11, 2025 at 8:05 PM
Merci au @lemonde.fr de publier ce soir ma tribune, écrite après ma relaxe par le tribunal de Créteil, qui faisait suite au procès en diffamation intenté par la chaîne RT France contre mon éditeur, l'INA, et moi-même. 1/3
#StandUpForScience
#StandUpForScience
Reposted by SwitHak (👁️)
Trois ans après le déclenchement de l’invasion du territoire ukrainien par les forces armées de la Fédération de Russie, #VIGINUM publie une synthèse des principaux modes opératoires informationnels observés depuis le 24 février 2022 ➡️ www.sgdsn.gouv.fr/publications...
February 24, 2025 at 6:45 AM
Trois ans après le déclenchement de l’invasion du territoire ukrainien par les forces armées de la Fédération de Russie, #VIGINUM publie une synthèse des principaux modes opératoires informationnels observés depuis le 24 février 2022 ➡️ www.sgdsn.gouv.fr/publications...