Sharon Buys
@sharonbuys.bsky.social
Strategic Threat Intelligence Fox-IT - tweets/opinions expressed are my own || also IR/geopolitics, lifting weights, Taylor Swift and F1 (MV1) enthusiast ✨
Reposted by Sharon Buys
"Continued access to any payment systems by DOGE members, even 'read only,' likely poses the single greatest insider threat risk the Bureau of the Fiscal Service has ever faced."
That's from a Treasury Department threat intelligence warning.
Another great @WIRED.com scoop:
That's from a Treasury Department threat intelligence warning.
Another great @WIRED.com scoop:
A US Treasury Threat Intelligence Analysis Designates DOGE Staff as ‘Insider Threat’
An internal email reviewed by WIRED calls DOGE staff's access to federal payments systems “the single biggest insider threat risk the Bureau of the Fiscal Service has ever faced.”
bit.ly
February 7, 2025 at 11:00 PM
"Continued access to any payment systems by DOGE members, even 'read only,' likely poses the single greatest insider threat risk the Bureau of the Fiscal Service has ever faced."
That's from a Treasury Department threat intelligence warning.
Another great @WIRED.com scoop:
That's from a Treasury Department threat intelligence warning.
Another great @WIRED.com scoop:
Reposted by Sharon Buys
Trump says dismantling USAID will save money. Experts say it’s a ‘great gift’ for China
Trump says dismantling the USAID will save money. Experts say it’s a ‘great gift’ for China | CNN
President Trump is racing to shut down the agency, declaring it a waste of money and run by “lunatics.” But experts warn this is plays into the hands of the very country he considers to be the biggest...
www.cnn.com
February 7, 2025 at 4:31 PM
Trump says dismantling USAID will save money. Experts say it’s a ‘great gift’ for China
If the CSBR is not allowed to finalize the Salt Typhoon investigation, the public and international cybersecurity community will miss out on a thorough review of one of the worst cyber-espionage campaigns by a foreign adversary in recent history…
There is no war in Ba Sing Se.
There is no war in Ba Sing Se.
DHS has terminated the memberships of everyone on its advisory committees.
This includes several cyber committees, like CISA's advisory panel and the Cyber Safety Review Board, which was investigating Salt Typhoon.
That review is "dead," person familiar says.
www.documentcloud.org/documents/25...
This includes several cyber committees, like CISA's advisory panel and the Cyber Safety Review Board, which was investigating Salt Typhoon.
That review is "dead," person familiar says.
www.documentcloud.org/documents/25...
January 22, 2025 at 1:11 AM
If the CSBR is not allowed to finalize the Salt Typhoon investigation, the public and international cybersecurity community will miss out on a thorough review of one of the worst cyber-espionage campaigns by a foreign adversary in recent history…
There is no war in Ba Sing Se.
There is no war in Ba Sing Se.
Reposted by Sharon Buys
Even as Trump pauses the TikTok ban in the US, it looks like RedNote is still at the top of the App Store's downloads.
Now, the Chinese company has recruited US influencers to promote it.
Now, the Chinese company has recruited US influencers to promote it.
RedNote Recruited US Influencers to Promote App Amid TikTok Ban Uncertainty
A marketing campaign brief obtained by WIRED reveals how the Chinese app is trying to capitalize on its sudden international popularity.
www.wired.com
January 21, 2025 at 9:30 PM
Even as Trump pauses the TikTok ban in the US, it looks like RedNote is still at the top of the App Store's downloads.
Now, the Chinese company has recruited US influencers to promote it.
Now, the Chinese company has recruited US influencers to promote it.
Reposted by Sharon Buys
Um. What did I just watch?
January 20, 2025 at 8:09 PM
Um. What did I just watch?
Reposted by Sharon Buys
🚨 🇨🇳 “…deleted PlugX malware from approximately 4,258 U.S.-based computers and networks.”
“…hackers sponsored by the People’s Republic of China, known to the private sector as ‘Mustang Panda’ and ‘Twill Typhoon’…”
Source: www.justice.gov/opa/pr/justi...
Affidavit: www.justice.gov/opa/media/13...
“…hackers sponsored by the People’s Republic of China, known to the private sector as ‘Mustang Panda’ and ‘Twill Typhoon’…”
Source: www.justice.gov/opa/pr/justi...
Affidavit: www.justice.gov/opa/media/13...
Justice Department and FBI Conduct International Operation to Delete Malware Used by China-Backed Hackers
The Justice Department and FBI today announced a multi-month law enforcement operation that, alongside international partners, deleted “PlugX” malware from thousands of infected computers worldwide. A...
www.justice.gov
January 14, 2025 at 4:44 PM
🚨 🇨🇳 “…deleted PlugX malware from approximately 4,258 U.S.-based computers and networks.”
“…hackers sponsored by the People’s Republic of China, known to the private sector as ‘Mustang Panda’ and ‘Twill Typhoon’…”
Source: www.justice.gov/opa/pr/justi...
Affidavit: www.justice.gov/opa/media/13...
“…hackers sponsored by the People’s Republic of China, known to the private sector as ‘Mustang Panda’ and ‘Twill Typhoon’…”
Source: www.justice.gov/opa/pr/justi...
Affidavit: www.justice.gov/opa/media/13...
Reposted by Sharon Buys
🇷🇺 🇺🇦 “Suspected Russian hackers [UAC-0185] have been targeting Ukrainian military and defense enterprises in a new espionage campaign…”
“…sent phishing emails disguised as invitations to a legitimate defense conference…”
(via @therecordmedia.bsky.social)
h/t: therecord.media/suspected-ru...
“…sent phishing emails disguised as invitations to a legitimate defense conference…”
(via @therecordmedia.bsky.social)
h/t: therecord.media/suspected-ru...
Suspected Russian hackers target Ukrainian defense enterprises in new espionage campaign
Ukraine’s military computer emergency response team said the group sent phishing emails disguised as invitations to a legitimate defense conference that took place in Kyiv last week.
therecord.media
December 9, 2024 at 8:14 PM
🇷🇺 🇺🇦 “Suspected Russian hackers [UAC-0185] have been targeting Ukrainian military and defense enterprises in a new espionage campaign…”
“…sent phishing emails disguised as invitations to a legitimate defense conference…”
(via @therecordmedia.bsky.social)
h/t: therecord.media/suspected-ru...
“…sent phishing emails disguised as invitations to a legitimate defense conference…”
(via @therecordmedia.bsky.social)
h/t: therecord.media/suspected-ru...
Reposted by Sharon Buys
Buckle up, folks.
FAFO is coming fast.
China bans export of critical minerals to US as trade tensions escalate - www.reuters.com/markets/comm...
FAFO is coming fast.
China bans export of critical minerals to US as trade tensions escalate - www.reuters.com/markets/comm...
China bans exports of gallium, germanium, antimony to US
The ban on exports of 'dual-use items' related to these and superhard materials takes effect from Tuesday.
www.reuters.com
December 4, 2024 at 5:31 AM
Buckle up, folks.
FAFO is coming fast.
China bans export of critical minerals to US as trade tensions escalate - www.reuters.com/markets/comm...
FAFO is coming fast.
China bans export of critical minerals to US as trade tensions escalate - www.reuters.com/markets/comm...
Volgens de CISA en FBI heeft 🇨🇳 - Salt Typhoon - waarschijnlijk nog steeds toegang tot Amerikaanse telecomnetwerken.
“We cannot say with certainty that the adversary has been evicted, because we’re still understanding the scope”
therecord.media/fbi-cisa-chi...
“We cannot say with certainty that the adversary has been evicted, because we’re still understanding the scope”
therecord.media/fbi-cisa-chi...
FBI, CISA say Chinese hackers are still lurking in US telecom systems
In a call with reporters, senior officials at the Cybersecurity and Infrastructure Security Agency (CISA) and the FBI said the agencies have been investigating the incident since late spring, and have...
therecord.media
December 3, 2024 at 9:32 PM
Volgens de CISA en FBI heeft 🇨🇳 - Salt Typhoon - waarschijnlijk nog steeds toegang tot Amerikaanse telecomnetwerken.
“We cannot say with certainty that the adversary has been evicted, because we’re still understanding the scope”
therecord.media/fbi-cisa-chi...
“We cannot say with certainty that the adversary has been evicted, because we’re still understanding the scope”
therecord.media/fbi-cisa-chi...
Reposted by Sharon Buys
National Assembly member and SNU constitutional law scholar Cho Kuk is making a statement to the press using strong words—the president needs to stand down the declaration IMMEDIATELY, to ignore this is tantamount to a military rebellion, the declaration ITSELF was illegal and he must answer for it
December 3, 2024 at 4:20 PM
National Assembly member and SNU constitutional law scholar Cho Kuk is making a statement to the press using strong words—the president needs to stand down the declaration IMMEDIATELY, to ignore this is tantamount to a military rebellion, the declaration ITSELF was illegal and he must answer for it
Reposted by Sharon Buys
BREAKING: South Korea's parliament votes 190-0 to lift martial law
December 3, 2024 at 4:07 PM
BREAKING: South Korea's parliament votes 190-0 to lift martial law
Reposted by Sharon Buys
The South Korean military occupied the National Assembly. MPs are being prevented from entering Parliament by police. All political associations, gatherings, demonstrations, and other political activities are banned. South Korea is currently a dictatorship.
December 3, 2024 at 3:46 PM
The South Korean military occupied the National Assembly. MPs are being prevented from entering Parliament by police. All political associations, gatherings, demonstrations, and other political activities are banned. South Korea is currently a dictatorship.
Reposted by Sharon Buys
Chinese Crypto fraudster Justin Sun purchased $30 million in crypto tokens from Trump's World Liberty Financial. Sun said his company, TRON, was committed to "making America great again." Move could be detrimental to the environment. #opcanary 🧵
popular.info/p/a-chinese-...
popular.info/p/a-chinese-...
A Chinese national, charged with fraud by the SEC, just sent Donald Trump $18 million
Chinese Crypto entrepreneur Justin Sun paid $6.2 million for a banana — sold by Sotheby's as conceptual art — and then ate it last Friday.
popular.info
December 3, 2024 at 1:29 PM
Chinese Crypto fraudster Justin Sun purchased $30 million in crypto tokens from Trump's World Liberty Financial. Sun said his company, TRON, was committed to "making America great again." Move could be detrimental to the environment. #opcanary 🧵
popular.info/p/a-chinese-...
popular.info/p/a-chinese-...
Reposted by Sharon Buys
For those interested in the Syrian rebel group that has captured Aleppo. “Today, HTS can be thought of as a relatively localized Syrian terrorist organization, which retains a Salafi-jihadist ideology despite its public split from al-Qaeda in 2017” www.csis.org/programs/for...
Hay’at Tahrir al-Sham (HTS) | Terrorism Backgrounders | CSIS
TNT Terrorism Backgrounder
www.csis.org
November 30, 2024 at 11:36 AM
For those interested in the Syrian rebel group that has captured Aleppo. “Today, HTS can be thought of as a relatively localized Syrian terrorist organization, which retains a Salafi-jihadist ideology despite its public split from al-Qaeda in 2017” www.csis.org/programs/for...
Reposted by Sharon Buys
If there’s no precedent of a 1-place pen being used for this situation before, then it feels very odd & unusual to apply this to Max Verstappen.
The document reads as if it’s arguing against a penalty too. Very odd.
The document reads as if it’s arguing against a penalty too. Very odd.
November 30, 2024 at 10:34 PM
If there’s no precedent of a 1-place pen being used for this situation before, then it feels very odd & unusual to apply this to Max Verstappen.
The document reads as if it’s arguing against a penalty too. Very odd.
The document reads as if it’s arguing against a penalty too. Very odd.
Reposted by Sharon Buys
⚠️ In Syria:
Opposition forces are reportedly advancing south from Aleppo toward Hama (which is about halfway to Damascus).
Assad remains in Moscow, with his family and close allies also reportedly abroad.
The Syrian analysts I follow are all quite stunned at how quickly things are moving.
Opposition forces are reportedly advancing south from Aleppo toward Hama (which is about halfway to Damascus).
Assad remains in Moscow, with his family and close allies also reportedly abroad.
The Syrian analysts I follow are all quite stunned at how quickly things are moving.
November 30, 2024 at 5:05 PM
⚠️ In Syria:
Opposition forces are reportedly advancing south from Aleppo toward Hama (which is about halfway to Damascus).
Assad remains in Moscow, with his family and close allies also reportedly abroad.
The Syrian analysts I follow are all quite stunned at how quickly things are moving.
Opposition forces are reportedly advancing south from Aleppo toward Hama (which is about halfway to Damascus).
Assad remains in Moscow, with his family and close allies also reportedly abroad.
The Syrian analysts I follow are all quite stunned at how quickly things are moving.
Reposted by Sharon Buys
It’s amateur hour in The Hague, so we get a far-right minister dreaming of an individual Dutch trade deal with the US. He clearly is unaware of the fact that trade is a European Union competence. It has to be, because you can’t have a Single Market without a unified trade regime.
The Dutch are in the “merchant” phase of their traditional “merchant vs vicar” (koopman vs dominee) split identity. No surprise hard-right economy minister Beljaarts is talking to Trump’s incoming trade rep Lighthizer about bilateral deals, despite VdL’s calls for EU unity. on.ft.com/418IzmX
Why the Dutch are hoping to jump the trade queue with Trump
Also in this newsletter: Georgia belatedly cuts its ties with Brussels
on.ft.com
November 29, 2024 at 11:04 AM
It’s amateur hour in The Hague, so we get a far-right minister dreaming of an individual Dutch trade deal with the US. He clearly is unaware of the fact that trade is a European Union competence. It has to be, because you can’t have a Single Market without a unified trade regime.
Reposted by Sharon Buys
‘Sophisticated UK spy ring’ allegedly passed secrets to Russia for three years
‘Sophisticated UK spy ring’ allegedly passed secrets to Russia for three years
Court told Bulgarian nationals surveilled targets including a journalist linked to Russian dissident Alexei Navalny
A “sophisticated” UK-based spy ring passed secrets to Russia for nearly three years and gathered information on targets across Europe, a…
www.theguardian.com
November 28, 2024 at 6:56 PM
‘Sophisticated UK spy ring’ allegedly passed secrets to Russia for three years
Reposted by Sharon Buys
A Russian spy ring was tasked with kidnapping and/or murdering my two colleagues, Christo Grozev and Roman Dobrokhotov, a UK court has now heard. www.thetimes.com/uk/crime/art...
Russian spying ring ‘planned honeytrap to bait journalists’
Two Bulgarian men have pleaded guilty to spying for Russians in the UK
www.thetimes.com
November 29, 2024 at 12:17 AM
A Russian spy ring was tasked with kidnapping and/or murdering my two colleagues, Christo Grozev and Roman Dobrokhotov, a UK court has now heard. www.thetimes.com/uk/crime/art...
Reposted by Sharon Buys
New, by me: Security researchers say North Korean hackers, posing as VCs, recruiters, and remote IT workers, have infiltrated "hundreds of organizations" and stolen billions of crypto in recent years to fund the regime's nuke program.
My dispatch from Cyberwarcon: techcrunch.com/2024/11/28/n...
My dispatch from Cyberwarcon: techcrunch.com/2024/11/28/n...
North Korean hackers have stolen billions in crypto by posing as VCs, recruiters and IT workers | TechCrunch
Security researchers say North Korean hackers have infiltrated hundreds of organizations with the goal of taking money and stealing data to further the regime's nuclear weapons program.
techcrunch.com
November 28, 2024 at 2:02 PM
New, by me: Security researchers say North Korean hackers, posing as VCs, recruiters, and remote IT workers, have infiltrated "hundreds of organizations" and stolen billions of crypto in recent years to fund the regime's nuke program.
My dispatch from Cyberwarcon: techcrunch.com/2024/11/28/n...
My dispatch from Cyberwarcon: techcrunch.com/2024/11/28/n...
Reposted by Sharon Buys
Ik wil het feestje hier niet bederven, maar Bluesky heeft toch echt wel een probleempje. Nee, niet dat er alleen maar gelijkgestemden zitten. Wel dat ze slordig omgaat met de privacy van gebruikers. Experts die ik sprak zijn unaniem: Bluesky moet zijn huiswerk doen www.volkskrant.nl/tech/privacy...
Privacy-experts slaan alarm over te open karakter van Bluesky
Met Bluesky lijkt er een volwaardig alternatief voor X te zijn ontstaan. Het netwerk groeit onstuimig en het enthousiasme onder gebruikers is groot. Maar met de groei komen ook de vragen, bijvoorbeeld...
www.volkskrant.nl
November 28, 2024 at 4:44 PM
Ik wil het feestje hier niet bederven, maar Bluesky heeft toch echt wel een probleempje. Nee, niet dat er alleen maar gelijkgestemden zitten. Wel dat ze slordig omgaat met de privacy van gebruikers. Experts die ik sprak zijn unaniem: Bluesky moet zijn huiswerk doen www.volkskrant.nl/tech/privacy...
Reposted by Sharon Buys
Alsof de Nederlandse politiek die urgentie begrijpt. We hebben in dit land iemand in het Torentje zitten die vakkundig gesouffleerd wordt door de lange arm van Poetin. Door Wilders welteverstaan, de echte premier van Nederland.
fd.nl/politiek/153...
fd.nl/politiek/153...
Opvallend veel Russische schepen voor Nederlandse kust: ‘Onvoldoende gevoel van urgentie’
Veiligheidsexperts noemen dit zorgelijk, omdat de Noordzee vol kritieke infrastructuur ligt, zoals pijpleidingen, stroomkabels en datakabels.
fd.nl
November 25, 2024 at 6:46 PM
Alsof de Nederlandse politiek die urgentie begrijpt. We hebben in dit land iemand in het Torentje zitten die vakkundig gesouffleerd wordt door de lange arm van Poetin. Door Wilders welteverstaan, de echte premier van Nederland.
fd.nl/politiek/153...
fd.nl/politiek/153...
Reposted by Sharon Buys
Trump’s Middle East Envoy Has Prior Ties to Oil-Rich Nations There. Steve Witkoff’s involvement with Abu Dhabi’s sovereign wealth fund & Qatar Investment Authority as he bought and sold Manhattan’s Park Lane Hotel demonstrates potential conflicts his new role presents, by @ericliptonnyt.bsky.social
Steve Witkoff, Trump’s Middle East Envoy, Has Ties to Oil-Rich Nations
Steve Witkoff’s involvement with two sovereign wealth funds as he bought and then sold Manhattan’s Park Lane Hotel demonstrates the potential conflicts his new role will present.
www.nytimes.com
November 25, 2024 at 10:06 PM
Trump’s Middle East Envoy Has Prior Ties to Oil-Rich Nations There. Steve Witkoff’s involvement with Abu Dhabi’s sovereign wealth fund & Qatar Investment Authority as he bought and sold Manhattan’s Park Lane Hotel demonstrates potential conflicts his new role presents, by @ericliptonnyt.bsky.social
Reposted by Sharon Buys
Got around to listening to Sainz and Adami's messages before the second stops.
RA asks CS to let Leclerc by into turn 14 on lap 26 — he doesn't.
Sainz says he'll let him by into turn 5 on lap 27 — he doesn't.
Eventually he does into turn 14 on lap 27.
And people wonder why CL lost it...
RA asks CS to let Leclerc by into turn 14 on lap 26 — he doesn't.
Sainz says he'll let him by into turn 5 on lap 27 — he doesn't.
Eventually he does into turn 14 on lap 27.
And people wonder why CL lost it...
November 25, 2024 at 8:18 PM
Got around to listening to Sainz and Adami's messages before the second stops.
RA asks CS to let Leclerc by into turn 14 on lap 26 — he doesn't.
Sainz says he'll let him by into turn 5 on lap 27 — he doesn't.
Eventually he does into turn 14 on lap 27.
And people wonder why CL lost it...
RA asks CS to let Leclerc by into turn 14 on lap 26 — he doesn't.
Sainz says he'll let him by into turn 5 on lap 27 — he doesn't.
Eventually he does into turn 14 on lap 27.
And people wonder why CL lost it...