X’s InfoSec Newsletter

🕵🏻‍♂️ [InfoSec MASHUP] 13/2025

DNA of 15 Million People for Sale in 23andMe Bankruptcy, Trump administration accidentally texted a journalist its war plans, Critical Ingress NGINX controller vulnerability allows RCE without authentication, Cyberattack hits Ukraine's state railway, Troy Hunt's Mailchimp account was successfully phished, OpenAI Offering $100K Bounties for Critical Vulnerabilities, Meta AI is now available in WhatsApp for users in 41 European countries... and cannot be turned off

Xavier Santolaria

privacyprivacy

+1+1

Mar 24, 2025

The Perils of Privatized Biometric Data: Lessons from 23andMe's Bankruptcy

How Corporate Failures Put Your Most Personal Information at Risk

Xavier Santolaria

malwaremalware

+4+4

Mar 22, 2025

🕵🏻‍♂️ [InfoSec MASHUP] 12/2025

Wiz to be Acquired by Alphabet and will join Google Cloud; GitHub Action tj-actions/changed-files was compromised, risking secrets in over 23k repositories; VulnCheck has raised $12 million in a Series A funding round; Clearview AI tried to buy millions of arrest records; Infosys to Pay $17.5 Million in Settlement Over 2023 Data Breach; Oracle denies breach;

Xavier Santolaria

malwaremalware

+3+3

Mar 19, 2025

AI and Organized Cybercrime: How Artificial Intelligence is Empowering Criminal Networks

The Rising Threat of AI-Driven Cybercrime and What We Can Do to Combat It

Xavier Santolaria

malwaremalware

+5+5

Mar 15, 2025

🕵🏻‍♂️ [InfoSec MASHUP] 11/2025

Alleged Co-Founder of Garantex Arrested in India; X Suffered a DDoS Attack;Microsoft Patch Tuesday Fixes 7 Zero-days; UK Hospital Discovered 5,000 to 10,000 Unknown Devices Connected to its Network; NVIDIA Chips Smugglers Granted Bail in Singapore; Tenable tested DeepSeek's Ability to Generate Malware; OpenAI labelling DeepSeek as "state-controlled"; New Jailbreak Method called Context Compliance Attack (CCA) Works Against Most AI Models

Xavier Santolaria

malwaremalware

+3+3

Mar 08, 2025

🕵🏻‍♂️ [InfoSec MASHUP] 10/2025

CYBERCOM and CISA Told to Stop Tracking Russia Actors; Alleged Black Basta Ransomware Leader Escapes from Court; VMWare 0day Vulnerabilities Being Exploited - Patch Now; Gang Claims Responsibility on Tata Technologies Breach; The Great Firewall of China is Bleeding; Get Protected from Scams on Android;

Xavier Santolaria

privacyprivacy

+2+2

Mar 06, 2025

🤖 AI Chatbots: The New Cybersecurity Threat Lurking in Plain Sight

Bias, Deception, and Exploitation: The Risks of AI-Driven Conversations

Xavier Santolaria

malwaremalware

+3+3

Mar 01, 2025

🕵🏻‍♂️ [InfoSec MASHUP] 09/2025

Chinese AI-powered Surveillance Tool; North Korean Hackers Linked to $1.5 Billion ByBit Crypto Heist; Orange Group Confirms Breach; Backdoors for Law Enforcement in EU;

Xavier Santolaria

Feb 22, 2025

[InfoSec MASHUP] 08/2025

Two Vulns. in OpenSSH; Russia Increasingly Using AI in Cyber Espionage; South Korea Blocking Downloads of DeepSeek; Palo Alto & Juniper Flaws Being Exploited; Apple to Remove E2E Encryption in the UK;

Feb 15, 2025

[InfoSec MASHUP] 07/2025

8base Site Seized; US National Cyber Director Chosen; US, UK, and Australia Impose Sanctions on Russian Hosting Provider; CISA Staff Members Put on Admin. Leave;

Feb 08, 2025

[InfoSec MASHUP] 06/2025

Malware in Several Apps on Official Mobile App Stores; Ransomware Payments Dropped 35% in '24; Discoveries about DeepSeek (lack of) Privacy; EU Released Guidance on its AI Act;

opensourceopensource

+1+1