Blog

Platforms Keep Saying They Moderate. Here Is What They Are Actually Allowing.

John Z Black Apr 12, 2026

Policy, Law & Governance #platform-accountability #telegram #stalkerware #csam #ofcom #online-safety-act #dsa #grassley #domestic-abuse

Telegram hosts a functioning commercial stalkerware market in EU jurisdictions. Amazon filed 1.1 million CSAM reports with zero location or suspect data. UK regulators are now threatening platform executives personally with jail time. Three countries, three harms, one pattern.

Financial Fraud Is Now an Industrial Problem. The Industry Is Finally Treating It Like One.

John Z Black Apr 12, 2026

Ransomware & Cybercrime #financial-fraud #storm-2755 #payroll-diversion #operation-atlantic #mitre-f3 #bec #crypto-fraud #aitm-phishing #workday

A named Microsoft threat actor is rerouting Canadian paychecks via MFA-bypassing AiTM phishing. An international operation IDed 20,000 crypto fraud victims in a week. And MITRE just published the first ATT&CK-equivalent framework for financial fraud. Three stories that belong together.

The LAPD Was Not Hacked. But 7.7 Terabytes of Its Data Leaked Anyway.

John Z Black Apr 12, 2026

Incidents & Breaches #lapd #world-leaks #hunters-international #data-breach #third-party-risk #vendor-risk #law-enforcement

World Leaks didn't touch LAPD's network. They breached a third-party file-sharing app connected to the LA City Attorney's Office that apparently had no password protecting it. 337,000 files including Internal Affairs records and witness names are now in an extortion group's hands.

Iran Cut Off 90 Million People From the Internet. Its Own Spies Kept Working.

John Z Black Apr 12, 2026

Privacy & Digital Rights #iran #internet-shutdown #digital-rights #censorship #starlink #charming-kitten #handala #netblocks

Iran's internet blackout hit 1,055 hours, the second-longest national shutdown on record. The detail that makes this a security story: Iranian intelligence services ran active cyber operations throughout, using foreign-hosted infrastructure the blackout doesn't touch.

A Hacker Claims the Biggest Military Breach in History. Experts Think It Might Be Real.

John Z Black Apr 12, 2026

Incidents & Breaches #flamingchina #china #tianjin #nscc #military-breach #supercomputer #threat-intelligence #unverified

FlamingChina claims to have stolen 10 petabytes from China's National Supercomputing Center in Tianjin, including missile schematics and weapons testing data. CNN showed samples to cybersecurity experts. They declined to dismiss it. This has not been confirmed.

The Trusted Download Is the Attack Vector

John Z Black Apr 11, 2026

Threat Intelligence #supply-chain #malware #cpuid #glassworm #wakatime #developer-tools #zig #stx-rat

CPUID's official site served a malicious installer for hours. A fake WakaTime extension has been spreading across dev machines for months. Two separate campaigns, one shared trick: they got inside the thing you already trusted.