John Z Black

Brunswick, ME • (207) 245-1010 • contact@johnzblack.com

Blog

I haven't yet decided exactly what kind of content I intend to post here. I love cooking and taking pictures so initially I'll probably just share recipes, photos and that kind of thing.

If I really start using the space I may expand on the blog capabilities. For now I'm keeping it quite simple.

Two Vulnerabilities, Two Patches, One Message: Critical Enterprise Flaws Need Immediate Attention

John Z Black Mar 15, 2026

Vulnerabilities & Patching #patch-management #microsoft #windows-11 #hpe #aruba #enterprise-security #rce #vulnerability

Microsoft shipped an emergency out-of-band RRAS patch days after Patch Tuesday. HPE has a switch vulnerability that lets attackers reset admin passwords with zero credentials. Both need patching now.

DOGE's Data Problem: Why America's Federal Privacy Crisis Is a Cybersecurity Story

John Z Black Mar 15, 2026

Privacy & Digital Rights #data-governance #privacy #federal-data #access-controls #doge #civil-liberties

DOGE personnel reportedly accessed federal systems holding tax returns, Social Security records, and benefits data without proper audit trails or legal authority. This isn't politics. It's a data governance failure affecting tens of millions of Americans.

The Software You Trust Is Becoming the Attack: Two Supply-Chain Strikes in One Week

John Z Black Mar 15, 2026

Threat Intelligence #supply-chain #developer-security #vs-code #appsflyer #malware #sdk-security

GlassWorm hijacked VS Code extension dependencies. AppsFlyer's SDK got compromised to serve crypto stealers. Both attacks exploited trust, not carelessness.

Meta's Killing Instagram Encryption While Bragging About Nuking 11 Million Scam Accounts

John Z Black Mar 14, 2026

Privacy & Platforms #meta #instagram #end-to-end-encryption #privacy #scam-accounts #e2ee #signal #whatsapp

Meta's shutting down Instagram's end-to-end encrypted chats in May while touting the removal of 10.9 million scam accounts. Both are real moves. The tension between them says a lot about what kind of security Meta actually cares about.

Your Data This Week: Starbucks Employee Breach, Loblaw Customer Data, Steam Malware, and How to Respond to Each

John Z Black Mar 14, 2026

Consumer Security #starbucks #loblaw #steam #data-breach #malware #phishing #consumer #fbi #gaming

Three breaches hit this week through platforms people already trust. Starbucks employee data, Loblaw customer accounts, and FBI-flagged malware hiding in Steam games.

Iran's Digital Battlefield: GPS Jamming, Hijacked Cameras, Internet Kill Switch, and AI Disinfo

John Z Black Mar 14, 2026

Geopolitics & Cyber #iran #gps-spoofing #security-cameras #internet-shutdown #disinformation #ai #electronic-warfare #conflict

The Iran conflict isn't just missiles and headlines. It's GPS spoofing that breaks delivery apps, hijacked security cameras used for pre-strike surveillance, a near-total internet blackout for 87 million people, and AI-generated war propaganda flooding social media.