Tim Starks
@timstarks.bsky.social
Senior reporter, CyberScoop, covering spyware, cyber policy and more. Russia-sanctioned. Former Washington Post, POLITICO, CQ Roll Call. @timstarks.02 on Signal. tim.starks@cyberscoop.com. Mastodon timstarks@infosec.exchange, X timstarks, Threads tstarks2.
Reposted by Tim Starks
Scoop: The lone employee behind CISA's Pre-Ransomware Notification Initiative resigned on Friday rather than take a forced reassignment to FEMA.
CISA says PRNI will continue, but sources said David Stern's loss will be a major setback for it.
My story: www.cybersecuritydive.com/news/cisa-ra...
CISA says PRNI will continue, but sources said David Stern's loss will be a major setback for it.
My story: www.cybersecuritydive.com/news/cisa-ra...
December 23, 2025 at 3:50 PM
Scoop: The lone employee behind CISA's Pre-Ransomware Notification Initiative resigned on Friday rather than take a forced reassignment to FEMA.
CISA says PRNI will continue, but sources said David Stern's loss will be a major setback for it.
My story: www.cybersecuritydive.com/news/cisa-ra...
CISA says PRNI will continue, but sources said David Stern's loss will be a major setback for it.
My story: www.cybersecuritydive.com/news/cisa-ra...
Reposted by Tim Starks
Reposted by Tim Starks
Took a deep dive into the main cyber angle of the Venezuela conflict in today’s National Security Daily: www.politico.com/newsletters/...
A who-done-it in Venezuelan cyberspace
A massive cyberattack that crippled Venezuela’s oil and gas infrastructure bears many of the telltales of a U.S. operation, according to former U.S. officials and cyber experts.
www.politico.com
December 22, 2025 at 9:46 PM
Took a deep dive into the main cyber angle of the Venezuela conflict in today’s National Security Daily: www.politico.com/newsletters/...
Reposted by Tim Starks
CBS didn't run the 60 Minutes segment on CECOT, but over here at @propublica.org we've been working on the story since March, including finding out who each and every man sent to that maximum security prison was.
You can see our reporting here: www.propublica.org/series/depor...
You can see our reporting here: www.propublica.org/series/depor...
Deported and Imprisoned Archives
A case-by-case investigation that examines the Trump administration’s claims that these immigrants are all “sick criminals” and “terrorists” and that shows what they suffered during months in one of t...
www.propublica.org
December 22, 2025 at 4:08 PM
CBS didn't run the 60 Minutes segment on CECOT, but over here at @propublica.org we've been working on the story since March, including finding out who each and every man sent to that maximum security prison was.
You can see our reporting here: www.propublica.org/series/depor...
You can see our reporting here: www.propublica.org/series/depor...
Reposted by Tim Starks
S'all good. 'Chinese researchers show how 1 word could allow spies to take control of a robot army' via @scmpnews.bsky.social 'could see disruptive behaviour spread from one machine to another and cause widespread chaos...' www.scmp.com/news/china/s... #cybersecurity #technology @gate15.bsky.social
Chinese researchers show how a word could let spies take control of a robot army
Demonstration at cybersecurity event highlights a flaw that could turn one robot into a ‘Trojan horse’ that can seize control of others.
www.scmp.com
December 22, 2025 at 1:30 PM
S'all good. 'Chinese researchers show how 1 word could allow spies to take control of a robot army' via @scmpnews.bsky.social 'could see disruptive behaviour spread from one machine to another and cause widespread chaos...' www.scmp.com/news/china/s... #cybersecurity #technology @gate15.bsky.social
Ukrainian national pleads guilty to Nefilim ransomware attacks @cyberscoop.bsky.social by @mattkapko.com cyberscoop.com/nefilim-rans...
Ukrainian national pleads guilty to Nefilim ransomware attacks
The 35-year-old faces up to 10 years in jail and authorities announced an $11 million reward for information on his alleged co-conspirator who remains at large.
cyberscoop.com
December 22, 2025 at 1:58 PM
Ukrainian national pleads guilty to Nefilim ransomware attacks @cyberscoop.bsky.social by @mattkapko.com cyberscoop.com/nefilim-rans...
Reposted by Tim Starks
The commission is asking whether nonconsensual deepfake porn should be classified under U.S. law as harassment, blackmail or sending obscene material to minors. via @derekbjohnson.bsky.social cyberscoop.com/us-sentencin...
U.S. Sentencing Commission seeks input on criminal penalties for deepfakes
The U.S. Sentencing Commission releases draft guidelines for sentencing criminal offenses under the Take It Down Act, a groundbreaking law targeting nonconsensual AI deepfake pornography. Public comme...
cyberscoop.com
December 19, 2025 at 3:58 PM
The commission is asking whether nonconsensual deepfake porn should be classified under U.S. law as harassment, blackmail or sending obscene material to minors. via @derekbjohnson.bsky.social cyberscoop.com/us-sentencin...
Acting CISA director failed a polygraph. Career staff are now under investigation. www.politico.com/news/2025/12...
Acting CISA director failed a polygraph. Career staff are now under investigation.
At least six career staff were placed on leave after DHS opened an investigation into whether they misled the agency’s acting director, Madhu Gottumukkala, into taking the test.
www.politico.com
December 22, 2025 at 1:56 PM
Acting CISA director failed a polygraph. Career staff are now under investigation. www.politico.com/news/2025/12...
Senate Intel chair urges national cyber director to safeguard against open-source software threats cyberscoop.com/tom-cotton-o...
Senate Intel chair urges national cyber director to safeguard against open-source software threats
Tom Cotton urges the national cyber director to curb foreign influence and malicious code risks in open-source software used by U.S. government systems.
cyberscoop.com
December 18, 2025 at 5:48 PM
Senate Intel chair urges national cyber director to safeguard against open-source software threats cyberscoop.com/tom-cotton-o...
Reposted by Tim Starks
A Russian national was also indicted for running the platform.
via @gregotto.bsky.social cyberscoop.com/michigan-e-n...
via @gregotto.bsky.social cyberscoop.com/michigan-e-n...
DOJ announces takedown of alleged laundering platform used by cybercriminal groups
Federal prosecutors say they dismantled E-Note’s online infrastructure and indicted its alleged operator, after the FBI traced more than $70 million in ransomware-linked funds through the service.
cyberscoop.com
December 18, 2025 at 3:38 AM
A Russian national was also indicted for running the platform.
via @gregotto.bsky.social cyberscoop.com/michigan-e-n...
via @gregotto.bsky.social cyberscoop.com/michigan-e-n...
ISACA has assumed responsibility as Cybersecurity Assessor and Instructor Certification Organization, and will work to scale the number of third-party CMMC assessors to meet a rising demand. @defensescoop.bsky.social by @mikaylaeasley.bsky.social defensescoop.com/2025/12/17/c...
ISACA takes responsibility of training, credentialing CMMC assessors
Information technology firm ISACA has been chosen to lead the training and certification of assessors within the Pentagon’s Cybersecurity Maturity Model Certification (CMMC) program.
defensescoop.com
December 17, 2025 at 5:13 PM
ISACA has assumed responsibility as Cybersecurity Assessor and Instructor Certification Organization, and will work to scale the number of third-party CMMC assessors to meet a rising demand. @defensescoop.bsky.social by @mikaylaeasley.bsky.social defensescoop.com/2025/12/17/c...
Reposted by Tim Starks
Belarusian KGB put spyware on phones of detained journalist.
Growing list of cases where authoritarian regimes use detention to implant spyware on phones:
🦠Belarus
🦠Kenya
🦠Serbia
And likely plenty more.
Important investigation & reminder that dictators don't always need zero-days.
Growing list of cases where authoritarian regimes use detention to implant spyware on phones:
🦠Belarus
🦠Kenya
🦠Serbia
And likely plenty more.
Important investigation & reminder that dictators don't always need zero-days.
#Belarus: RSF reveals the existence of a previously unknown spyware tool, used since at least 2021 by the KGB against journalists. Installed after the physical confiscation of phones, #ResidentBat constitutes a grave violation of press freedom. RSF calls for a ban on these surveillance technologies.
Exclusive: RSF uncovers new spyware from Belarus
Reporters Without Borders (RSF)’s Digital Security Lab (DSL), working with the Eastern European organisation RESIDENT.NGO, has uncovered a previously unknown spyware tool used by the State Security Co...
rsf.org
December 17, 2025 at 3:45 PM
Belarusian KGB put spyware on phones of detained journalist.
Growing list of cases where authoritarian regimes use detention to implant spyware on phones:
🦠Belarus
🦠Kenya
🦠Serbia
And likely plenty more.
Important investigation & reminder that dictators don't always need zero-days.
Growing list of cases where authoritarian regimes use detention to implant spyware on phones:
🦠Belarus
🦠Kenya
🦠Serbia
And likely plenty more.
Important investigation & reminder that dictators don't always need zero-days.
Just reposted a bunch of @fedscoop.bsky.social stories from today and yesterday cuz they all are cyber-y. (And good.)
December 17, 2025 at 3:28 PM
Just reposted a bunch of @fedscoop.bsky.social stories from today and yesterday cuz they all are cyber-y. (And good.)
Reposted by Tim Starks
The Trump administration launched a new governmentwide hiring program Monday aimed at filling technology hiring gaps in federal agencies with workers who will serve in two-year stints. via @madialder.bsky.social & @mirandanazzaro.bsky.social fedscoop.com/opm-launches...
OPM launches Tech Force to recruit technologists to government
An initial cohort of 1,000 people will serve in agency roles for two years. Roughly 25 companies — including Microsoft, Palantir and xAI — are partners on the initiative.
fedscoop.com
December 15, 2025 at 6:48 PM
The Trump administration launched a new governmentwide hiring program Monday aimed at filling technology hiring gaps in federal agencies with workers who will serve in two-year stints. via @madialder.bsky.social & @mirandanazzaro.bsky.social fedscoop.com/opm-launches...
Reposted by Tim Starks
It’s Groundhog Day for the SAMOSA Act, which cleared the lower chamber Monday and now waits for the Senate to take it up before this congressional term ends. via @mattbracken.bsky.social fedscoop.com/samosa-act-p...
House passes agency software-buying bill, waits on Senate again
It’s Groundhog Day for the SAMOSA Act, which cleared the lower chamber Monday and now waits for the Senate to take it up before this congressional term ends.
fedscoop.com
December 16, 2025 at 2:23 PM
It’s Groundhog Day for the SAMOSA Act, which cleared the lower chamber Monday and now waits for the Senate to take it up before this congressional term ends. via @mattbracken.bsky.social fedscoop.com/samosa-act-p...
Reposted by Tim Starks
The TMF's expiration underscores Congress's vital role in enabling the Technology Modernization Fund’s survival. fedscoop.com/technology-m...
IT professionals, advocates 'frustrated’ after Congress fails to reauthorize TMF
The TMF's expiration underscores Congress's vital role in enabling the Technology Modernization Fund’s survival.
fedscoop.com
December 16, 2025 at 10:29 PM
The TMF's expiration underscores Congress's vital role in enabling the Technology Modernization Fund’s survival. fedscoop.com/technology-m...
Reposted by Tim Starks
Gene Dodaro, who is set to retire from the watchdog at the end of this month, shared final concerns with senators Tuesday about how the government is prioritizing cybersecurity. fedscoop.com/cisa-workfor...
Outgoing GAO chief warns of ‘taking our foot off the gas’ at CISA
Gene Dodaro, who is set to retire from the watchdog at the end of this month, shared final concerns with senators Tuesday about how the government is prioritizing cybersecurity.
fedscoop.com
December 16, 2025 at 10:29 PM
Gene Dodaro, who is set to retire from the watchdog at the end of this month, shared final concerns with senators Tuesday about how the government is prioritizing cybersecurity. fedscoop.com/cisa-workfor...
Reposted by Tim Starks
Coupang, aka "Asia's Amazon," filed its data breach 8-K; blames a former employee who "may have obtained the name, phone number, delivery address, and email address associated with up to 33 million customer accounts, and certain order histories for a subset of the impacted accounts."
From Dec. 1:
From Dec. 1:
Korea's Coupang says data breach exposed nearly 34M customers' personal information | TechCrunch
E-commerce company Coupang has confirmed a massive data breach affecting 33.7 million customer accounts in South Korea.
techcrunch.com
December 16, 2025 at 10:58 PM
Coupang, aka "Asia's Amazon," filed its data breach 8-K; blames a former employee who "may have obtained the name, phone number, delivery address, and email address associated with up to 33 million customer accounts, and certain order histories for a subset of the impacted accounts."
From Dec. 1:
From Dec. 1:
Reposted by Tim Starks
Russian hacktivists hacked and tried to alter the water levels in a public fountain in the Netherlands
Dutch military security service MIVD described the hack as "the first Russian sabotage attack in the Netherlands."
www.volkskrant.nl/binnenland/r...
Dutch military security service MIVD described the hack as "the first Russian sabotage attack in the Netherlands."
www.volkskrant.nl/binnenland/r...
Russische hackgroep had toegang tot openbare waterfontein in Nederland
Een Russische hackgroep is in 2024 in het besturingssysteem gekomen van een fontein in het centrum van een Nederlandse stad. Eenmaal binnen probeerden de hackers vergeefs met de waardes van het water ...
www.volkskrant.nl
December 16, 2025 at 1:16 PM
Russian hacktivists hacked and tried to alter the water levels in a public fountain in the Netherlands
Dutch military security service MIVD described the hack as "the first Russian sabotage attack in the Netherlands."
www.volkskrant.nl/binnenland/r...
Dutch military security service MIVD described the hack as "the first Russian sabotage attack in the Netherlands."
www.volkskrant.nl/binnenland/r...
Ah, CISA 2015 cyberscoop.com/congress-cyb...
Key lawmaker says Congress likely to kick can down road on cyber information sharing law
Congress faces a looming deadline to extend the Cybersecurity Information Sharing Act, as lawmakers debate long-term reauthorization, regulatory harmonization, and new challenges from AI and foreign c...
cyberscoop.com
December 16, 2025 at 8:17 PM
Ah, CISA 2015 cyberscoop.com/congress-cyb...
Reposted by Tim Starks
In my rush to get out today's Metacurity early, I completely dropped the ball on this big OT development.
Venezuela Says Oil Export System Down After Weekend Cyberattack
www.bloomberg.com/news/article...
Venezuela Says Oil Export System Down After Weekend Cyberattack
www.bloomberg.com/news/article...
Venezuela Says Oil Export System Down After Weekend Cyberattack
Venezuela’s state oil company is still struggling to restore key administrative systems after what it called a cyberattack that hit over the weekend.
www.bloomberg.com
December 16, 2025 at 12:50 PM
In my rush to get out today's Metacurity early, I completely dropped the ball on this big OT development.
Venezuela Says Oil Export System Down After Weekend Cyberattack
www.bloomberg.com/news/article...
Venezuela Says Oil Export System Down After Weekend Cyberattack
www.bloomberg.com/news/article...
Reposted by Tim Starks
While many in the legal community report positive use cases for the tech, AI-driven disinformation and deepfakes are causing havoc in courtrooms. via @derekbjohnson.bsky.social cyberscoop.com/ai-deepfakes...
AI is causing all kinds of problems in the legal sector
While many in the legal community report positive use cases for the tech, AI-driven disinformation and deepfakes are causing havoc in courtrooms.
cyberscoop.com
December 16, 2025 at 2:14 PM
While many in the legal community report positive use cases for the tech, AI-driven disinformation and deepfakes are causing havoc in courtrooms. via @derekbjohnson.bsky.social cyberscoop.com/ai-deepfakes...
Reposted by Tim Starks
The federal government contractor admits it made multiple mistakes in the hiring and firing of Muneeb and Sohaib Akhter.
via @mattkapko.com cyberscoop.com/opexus-backg...
via @mattkapko.com cyberscoop.com/opexus-backg...
Opexus claims background checks missed red flags on twins accused of insider breach
The federal government contractor admits it made multiple mistakes in the hiring and firing of Muneeb and Sohaib Akhter.
cyberscoop.com
December 16, 2025 at 2:14 PM
The federal government contractor admits it made multiple mistakes in the hiring and firing of Muneeb and Sohaib Akhter.
via @mattkapko.com cyberscoop.com/opexus-backg...
via @mattkapko.com cyberscoop.com/opexus-backg...
Reposted by Tim Starks
So much for that
December 15, 2025 at 3:19 PM
So much for that
Hey everybody @lindseywilkinson.bsky.social has joined the FedScoop team (and Bluesky)! Give her a follow
December 12, 2025 at 8:48 PM
Hey everybody @lindseywilkinson.bsky.social has joined the FedScoop team (and Bluesky)! Give her a follow