Thomas Kranz
@thomaskranz.bsky.social
Cybersecurity Consultant. Author of “Making Sense of Cybersecurity”. Expert in hacking and all things related to raising a wild boar.
As expected, in the wake of the OSA, and the increase in personal use of VPNs to bypass the poorly thought out and needless age verification (and content restriction), OFCOM are now monitoring VPN use.
www.techradar.com/vpn/vpn-p...
#osa #ofcom #vpn
www.techradar.com/vpn/vpn-p...
#osa #ofcom #vpn
Exclusive: Ofcom is monitoring VPNs following Online Safety Act. Here's how
Ignoring VPNs risks creating ineffective laws, but tracking them threatens people's privacy
www.techradar.com
November 12, 2025 at 9:56 AM
As expected, in the wake of the OSA, and the increase in personal use of VPNs to bypass the poorly thought out and needless age verification (and content restriction), OFCOM are now monitoring VPN use.
www.techradar.com/vpn/vpn-p...
#osa #ofcom #vpn
www.techradar.com/vpn/vpn-p...
#osa #ofcom #vpn
Massive credit card fraud network has been dismantled, which has stolen over €300m in the last 10 years. Interesting that the arrests included execs and compliance officers at payment service providers.
www.europol.europa.eu/media...
www.europol.europa.eu/media...
Operation Chargeback: 4.3 million cardholders affected, EUR 300 million in damages – Three criminal networks suspected of misusing credit card data from cardholders across 193 countries; 18 suspects arrested | Europol
On 4 November 2025, an international coordinated action day targeted three major fraud and money laundering networks as part of Operation “Chargeback.” Led by the Cybercrime Department (Landeszentralstelle Cybercrime) of the General Prosecutor's Offi
www.europol.europa.eu
November 7, 2025 at 10:58 AM
Massive credit card fraud network has been dismantled, which has stolen over €300m in the last 10 years. Interesting that the arrests included execs and compliance officers at payment service providers.
www.europol.europa.eu/media...
www.europol.europa.eu/media...
After the JLR fallout and the AWS outage, seeing a lot of people saying "cyber resilience is a board issue, not a technology one" like this is a profound truth. This has always been the case? Geniunely concerned about what some people have been advising their clients and boards.
October 27, 2025 at 1:55 PM
After the JLR fallout and the AWS outage, seeing a lot of people saying "cyber resilience is a board issue, not a technology one" like this is a profound truth. This has always been the case? Geniunely concerned about what some people have been advising their clients and boards.
insightful commentary. Too many businesses are chasing short term profit rather than long term sustainability. Good people are expensive for a reason, and institutional context matters. Shareholders will start demanding accountability.
www.theregister.com/2025/10...
www.theregister.com/2025/10...
Amazon brain drain finally caught up with AWS
column: When your best engineers log off for good, don’t be surprised when the cloud forgets how DNS works
www.theregister.com
October 22, 2025 at 9:02 AM
insightful commentary. Too many businesses are chasing short term profit rather than long term sustainability. Good people are expensive for a reason, and institutional context matters. Shareholders will start demanding accountability.
www.theregister.com/2025/10...
www.theregister.com/2025/10...
Which security cert to spend your money on is even more important in the current job market. At HOPE in 2022 I looked at the various certs, and which ones were worth spending your money and effort on. Still relevant!
#certification #career #cyber
www.youtube.com/watch?v=x6p...
#certification #career #cyber
www.youtube.com/watch?v=x6p...
- YouTube
Enjoy the videos and music you love, upload original content, and share it all with friends, family, and the world on YouTube.
www.youtube.com
October 7, 2025 at 10:11 AM
Which security cert to spend your money on is even more important in the current job market. At HOPE in 2022 I looked at the various certs, and which ones were worth spending your money and effort on. Still relevant!
#certification #career #cyber
www.youtube.com/watch?v=x6p...
#certification #career #cyber
www.youtube.com/watch?v=x6p...
The same people building the Digital Wallet and Digital ID. I am sure both will be to the same high security standards as other GDS work 😂
#digitalid #government #failure
www.computerweekly.com/news...
#digitalid #government #failure
www.computerweekly.com/news...
Government faces claims of serious security and data protection problems in One Login digital ID | Computer Weekly
The Government Digital Service was warned about serious cyber security and data protection problems in its flagship digital identity system, with insider claims that the data of three million users may still be at risk.
www.computerweekly.com
October 7, 2025 at 8:52 AM
The same people building the Digital Wallet and Digital ID. I am sure both will be to the same high security standards as other GDS work 😂
#digitalid #government #failure
www.computerweekly.com/news...
#digitalid #government #failure
www.computerweekly.com/news...
A highlight of Phrack's 40th anniversary edition is a re-imagining of The Mentor's Hacker's Manifesto. Not only an excellent comparison of then vs. now, but also a call to action for new generations of hackers. The spirit lives on.
#phrack #hacking #manifesto
phrack.org/issues/72/19#art...
#phrack #hacking #manifesto
phrack.org/issues/72/19#art...
The Hacker's Renaissance - A Manifesto Reborn
Click to read the article on phrack
phrack.org
September 30, 2025 at 5:55 AM
A highlight of Phrack's 40th anniversary edition is a re-imagining of The Mentor's Hacker's Manifesto. Not only an excellent comparison of then vs. now, but also a call to action for new generations of hackers. The spirit lives on.
#phrack #hacking #manifesto
phrack.org/issues/72/19#art...
#phrack #hacking #manifesto
phrack.org/issues/72/19#art...
Amidst all the doom and gloom about Big Tech stealing our data, a ray of sunshine: for many years Privacy Guides has been researching and compiling a list of replacement apps & services, as well as details on how to secure your privacy. Have a look.
www.privacyguides.org/en/to...
www.privacyguides.org/en/to...
Ad-Free Privacy Tool/Service Recommendations - Privacy Guides
A complete list of the privacy tools, services, software, and hardware recommended by the Privacy Guides community.
www.privacyguides.org
September 29, 2025 at 12:55 PM
Amidst all the doom and gloom about Big Tech stealing our data, a ray of sunshine: for many years Privacy Guides has been researching and compiling a list of replacement apps & services, as well as details on how to secure your privacy. Have a look.
www.privacyguides.org/en/to...
www.privacyguides.org/en/to...
Markéta Gregorová, Member of the European Parliament for the European Pirate Party, has organised a webinar top discuss the EU's chat control proposals, and why they are such a terrible idea. Follow the link below to attend!
#chatcontrol #eu
www.linkedin.com/feed/updat...
#chatcontrol #eu
www.linkedin.com/feed/updat...
Stop Chat Control: Why scanning all our private messages is a very bad idea | European Pirates
This upcoming Tuesday, 18.30h CEST, you can find out why scanning all our private messages is a very bad idea. Please join a webinar with experts on the topic, organized by Markéta Gregorová, Member of the European Parliament for the European Pirates
www.linkedin.com
September 29, 2025 at 8:23 AM
Markéta Gregorová, Member of the European Parliament for the European Pirate Party, has organised a webinar top discuss the EU's chat control proposals, and why they are such a terrible idea. Follow the link below to attend!
#chatcontrol #eu
www.linkedin.com/feed/updat...
#chatcontrol #eu
www.linkedin.com/feed/updat...
In today's "Why laws like the GDPR matter" news, we have American Airlines, Delta, and United (among others) selling access to flight and booking data to US Gov departments, including ICE. Why bother getting a warrant when you can just buy it all?
www.documentcloud.org/docum...
www.documentcloud.org/docum...
ICE Documents on ARC
www.documentcloud.org
September 28, 2025 at 8:51 AM
In today's "Why laws like the GDPR matter" news, we have American Airlines, Delta, and United (among others) selling access to flight and booking data to US Gov departments, including ICE. Why bother getting a warrant when you can just buy it all?
www.documentcloud.org/docum...
www.documentcloud.org/docum...
Excellent article about the recent attacks at M&S, Co-Op, and JLR. Its their own fault: poor leadership seeking short-term cost-reduction by outsourcing critical functions like security and helpdesk - to TCS, of all people.
#mands #coop #jlr #tcs
doublepulsar.com/the-elepha...
#mands #coop #jlr #tcs
doublepulsar.com/the-elepha...
The Elephant in The Biz: outsourcing of critical IT and cybersecurity functions risks UK economic…
Recently, there’s been three major UK ransomware and/or extortion incidents at three big UK companies — Co-op Group, Marks and Spencer and…
doublepulsar.com
September 27, 2025 at 9:10 AM
Excellent article about the recent attacks at M&S, Co-Op, and JLR. Its their own fault: poor leadership seeking short-term cost-reduction by outsourcing critical functions like security and helpdesk - to TCS, of all people.
#mands #coop #jlr #tcs
doublepulsar.com/the-elepha...
#mands #coop #jlr #tcs
doublepulsar.com/the-elepha...
Quis custodiet ipsos custodes?
News from NOYB that Niamh Sweeney, former Meta lobbyist, will be joining the Irish Data Protection Commission (DPC) as a commissioner. In what parallel universe is it OK to let Big Tech companies regulate themselves?
noyb.eu/en/former-meta-lobb...
News from NOYB that Niamh Sweeney, former Meta lobbyist, will be joining the Irish Data Protection Commission (DPC) as a commissioner. In what parallel universe is it OK to let Big Tech companies regulate themselves?
noyb.eu/en/former-meta-lobb...
Former Meta lobbyist named DPC Commissioner: Meta now officially regulates itself
According to reports in the Irish news, Niamh Sweeney, a former senior Meta lobbyist, is set to join the Irish Data Protection Commission (DPC) as a commissioner in October
noyb.eu
September 25, 2025 at 7:52 AM
Quis custodiet ipsos custodes?
News from NOYB that Niamh Sweeney, former Meta lobbyist, will be joining the Irish Data Protection Commission (DPC) as a commissioner. In what parallel universe is it OK to let Big Tech companies regulate themselves?
noyb.eu/en/former-meta-lobb...
News from NOYB that Niamh Sweeney, former Meta lobbyist, will be joining the Irish Data Protection Commission (DPC) as a commissioner. In what parallel universe is it OK to let Big Tech companies regulate themselves?
noyb.eu/en/former-meta-lobb...
Reposted by Thomas Kranz
Campaigners urge UK PM Starmer to dump digital ID wheeze before it's announced - www.theregister.com/2025/09/24/c... "Labour accused of sneaking in plans it denied before the general election" digital ID last refuge of the scoundrel
UK PM Starmer urged to dump digital ID before it's announced
: Labour accused of sneaking in plans it denied before the general election
www.theregister.com
September 24, 2025 at 12:30 PM
Campaigners urge UK PM Starmer to dump digital ID wheeze before it's announced - www.theregister.com/2025/09/24/c... "Labour accused of sneaking in plans it denied before the general election" digital ID last refuge of the scoundrel
Manning are having a one day flash sale - half off all ebooks! The Flash Sale goes live at 12:10 AM ET on September 24 and ends at Midnight US Pacific Time (3 AM ET on September 25).
#sale #cybersecurity #ebooks
www.manning.com/books/makin...
#sale #cybersecurity #ebooks
www.manning.com/books/makin...
September 24, 2025 at 12:04 PM
Manning are having a one day flash sale - half off all ebooks! The Flash Sale goes live at 12:10 AM ET on September 24 and ends at Midnight US Pacific Time (3 AM ET on September 25).
#sale #cybersecurity #ebooks
www.manning.com/books/makin...
#sale #cybersecurity #ebooks
www.manning.com/books/makin...
My dog is registered with the ICO: start taking Data Protection seriously. Why registration doesn't mean compliance, and why building a privacy and data processing policy is easy to do. Noodle is paw-sitively in agreement.
#gdpr #compliance #ico
medium.com/@thomaskranzoffi...
#gdpr #compliance #ico
medium.com/@thomaskranzoffi...
My dog is registered with the ICO: start taking Data Protection seriously
For a while now, the UK’s Information Commissioner’s Office (ICO) has required businesses to register with the ICO and pay a data…
medium.com
September 24, 2025 at 7:52 AM
My dog is registered with the ICO: start taking Data Protection seriously. Why registration doesn't mean compliance, and why building a privacy and data processing policy is easy to do. Noodle is paw-sitively in agreement.
#gdpr #compliance #ico
medium.com/@thomaskranzoffi...
#gdpr #compliance #ico
medium.com/@thomaskranzoffi...
Not only are MI6 putting out YouTube videos, but they're telling people to use TOR. So how does that work when the UK Gov with the Online Safety Act is bleating about banning VPNs and other anonymisation services?
#mi6 #spies #onlinesafetyact #sis
youtu.be/xkOUH8d8UQY
#mi6 #spies #onlinesafetyact #sis
youtu.be/xkOUH8d8UQY
September 23, 2025 at 9:10 AM
Not only are MI6 putting out YouTube videos, but they're telling people to use TOR. So how does that work when the UK Gov with the Online Safety Act is bleating about banning VPNs and other anonymisation services?
#mi6 #spies #onlinesafetyact #sis
youtu.be/xkOUH8d8UQY
#mi6 #spies #onlinesafetyact #sis
youtu.be/xkOUH8d8UQY
Given one has risked the ire of RIPA by not handing over his passwords etc., a) will they have enough evidence to actually prosecute, and b) if they do, will they be deported to face the heat over the MGM Casino hack?
#scatteredspider #tfl #mgm
www.theregister.com/2025/09...
#scatteredspider #tfl #mgm
www.theregister.com/2025/09...
UK charges two teens over Transport for London cyberattack
: Decisive action comes nearly a year after the attack and first arrest took place
www.theregister.com
September 23, 2025 at 5:55 AM
Given one has risked the ire of RIPA by not handing over his passwords etc., a) will they have enough evidence to actually prosecute, and b) if they do, will they be deported to face the heat over the MGM Casino hack?
#scatteredspider #tfl #mgm
www.theregister.com/2025/09...
#scatteredspider #tfl #mgm
www.theregister.com/2025/09...
The demented orange womble has come up with some truly stupid claims but this wins the big prize. WTAF?
#autism #autismol #trump #droolingwombles
www.bbc.com/news/articles/c...
#autism #autismol #trump #droolingwombles
www.bbc.com/news/articles/c...
Trump will reportedly link Tylenol to autism - but many experts are sceptical
Some studies have suggested an association between the two, but experts say there is no causal relationship.
www.bbc.com
September 22, 2025 at 2:20 PM
The demented orange womble has come up with some truly stupid claims but this wins the big prize. WTAF?
#autism #autismol #trump #droolingwombles
www.bbc.com/news/articles/c...
#autism #autismol #trump #droolingwombles
www.bbc.com/news/articles/c...
Wave of attacks across Europe affecting electronic checkin. I am looking forward to seeing the post-mortem on this one, will be very interesting to see what happened. If it's TCS again I'll wet myself.
#cyberattack #airports #cni
www.bbc.com/news/articles/c...
#cyberattack #airports #cni
www.bbc.com/news/articles/c...
Heathrow cyber-attack: Day of delays after airport check-in system hit
The issue affecting check-in and baggage systems has also caused cancellations in Brussels and Berlin.
www.bbc.com
September 22, 2025 at 12:55 PM
Wave of attacks across Europe affecting electronic checkin. I am looking forward to seeing the post-mortem on this one, will be very interesting to see what happened. If it's TCS again I'll wet myself.
#cyberattack #airports #cni
www.bbc.com/news/articles/c...
#cyberattack #airports #cni
www.bbc.com/news/articles/c...
The fight against the EU Chat Control proposals continues. There's still time to write to your MEP and voice your concern about blanket spying on your private data, while EU politicians themselves would be exempt.
fightchatcontrol.eu/
#chatcontrol #authoritarianism #hypocrisy
fightchatcontrol.eu/
#chatcontrol #authoritarianism #hypocrisy
Fight Chat Control - Protect Digital Privacy in the EU
Learn about the EU Chat Control proposal and contact your representatives to protect digital privacy and encryption.
fightchatcontrol.eu
September 21, 2025 at 8:51 AM
The fight against the EU Chat Control proposals continues. There's still time to write to your MEP and voice your concern about blanket spying on your private data, while EU politicians themselves would be exempt.
fightchatcontrol.eu/
#chatcontrol #authoritarianism #hypocrisy
fightchatcontrol.eu/
#chatcontrol #authoritarianism #hypocrisy
In today's "Everyone gets hacked" news - "Scattered Lapsus$ Hunters" claimed on Telegram to have gained access to both Google's LERS portal and the FBI's eCheck background check system - www.bleepingcomputer.com/ne...
Google confirms fraudulent account created in law enforcement portal
Google has confirmed that hackers created a fraudulent account in its Law Enforcement Request System (LERS) platform that law enforcement uses to submit official data requests to the company
www.bleepingcomputer.com
September 20, 2025 at 9:10 AM
In today's "Everyone gets hacked" news - "Scattered Lapsus$ Hunters" claimed on Telegram to have gained access to both Google's LERS portal and the FBI's eCheck background check system - www.bleepingcomputer.com/ne...
npm has been a shitshow for years. People suddenly acting like its only now a big issue because Crowdstrike got popped haven't been paying attention - and that's even more concerning.
#npm #shitshow #crowstrike #bedwetting
#npm #shitshow #crowstrike #bedwetting
September 18, 2025 at 7:52 AM
npm has been a shitshow for years. People suddenly acting like its only now a big issue because Crowdstrike got popped haven't been paying attention - and that's even more concerning.
#npm #shitshow #crowstrike #bedwetting
#npm #shitshow #crowstrike #bedwetting
I'm pleased to share that Making Sense of Cybersecurity is now available as an audio book from Manning.
Additionally, you can get 40% off the price with the discount code lakranz40 - enjoy!
Head over to hubs.ly/Q03J0DJb0 to grab a copy now.
#cybersecurity #manning #audiobook
Additionally, you can get 40% off the price with the discount code lakranz40 - enjoy!
Head over to hubs.ly/Q03J0DJb0 to grab a copy now.
#cybersecurity #manning #audiobook
Making Sense of Cybersecurity - Thomas Kranz
A jargon-busting guide to the key concepts, terminology, and technologies of cybersecurity. Perfect for anyone planning or implementing a security strategy.
In Making Sense of Cybersecurity you will learn how to:
Develop and incrementally impr
hubs.ly
September 17, 2025 at 10:11 AM
I'm pleased to share that Making Sense of Cybersecurity is now available as an audio book from Manning.
Additionally, you can get 40% off the price with the discount code lakranz40 - enjoy!
Head over to hubs.ly/Q03J0DJb0 to grab a copy now.
#cybersecurity #manning #audiobook
Additionally, you can get 40% off the price with the discount code lakranz40 - enjoy!
Head over to hubs.ly/Q03J0DJb0 to grab a copy now.
#cybersecurity #manning #audiobook
A reminder that my book for NVIDIA, "How is AI Transforming Cybersecurity?", is available as a free download - head over to www.nvidia.com/en-us/lp/ind... to grab a copy.
#ai #cybersecurity #transformation
#ai #cybersecurity #transformation
Learn how AI is transforming cybersecurity.
Explore solutions with data-driven cybersecurity.
www.nvidia.com
September 16, 2025 at 10:11 AM
A reminder that my book for NVIDIA, "How is AI Transforming Cybersecurity?", is available as a free download - head over to www.nvidia.com/en-us/lp/ind... to grab a copy.
#ai #cybersecurity #transformation
#ai #cybersecurity #transformation
All of the OrangeCon 2025 talks are now up on their Youtube channel - some great stuff there. Have a look at www.youtube.com/@OrangeCon
September 16, 2025 at 9:10 AM
All of the OrangeCon 2025 talks are now up on their Youtube channel - some great stuff there. Have a look at www.youtube.com/@OrangeCon