John Z Black

Brunswick, ME • (207) 245-1010 • contact@johnzblack.com

Blog

I haven't yet decided exactly what kind of content I intend to post here. I love cooking and taking pictures so initially I'll probably just share recipes, photos and that kind of thing.

If I really start using the space I may expand on the blog capabilities. For now I'm keeping it quite simple.

The Healthcare Benefits Breach You Haven't Heard About (or the One After It, or the One After That)

John Z Black Mar 22, 2026

Incidents & Breaches #data breach #healthcare #TriZetto #Navia #Marquis #supply chain #identity theft #FSA #HSA #COBRA

Three healthcare and benefits data breaches disclosed in the same week -- TriZetto (3.4M), Navia (2.7M), and Marquis (672K) -- follow the same disturbing pattern: your most sensitive data lives with vendors you've never heard of, and you find out months later.

You Can't Seize the Internet: Iran's Handala Hackers Were Back Online Hours After the FBI Acted

John Z Black Mar 22, 2026

Threat Intelligence #iran #handala #doj #mois #stryker #mdm #microsoft-intune #cyber-deterrence #state-sponsored

The DOJ seized four Handala domains. Iran's MOIS-backed hackers had new infrastructure up within hours, called the action 'trivial,' and kept operating. That tells you everything about the limits of domain seizures as deterrence.

DOGE Used ChatGPT to Kill $100 Million in Research Grants. Court Filings Describe the Process.

John Z Black Mar 22, 2026

AI Security #AI governance #DOGE #ChatGPT #government AI #accountability #NEH #AI policy #RSAC 2026

Court depositions describe DOGE staffers using ChatGPT to flag humanities grants as DEI and terminate them -- no domain experts, no review, just a chatbot and a spreadsheet deciding $100 million in funding.

He Hacked Companies, Then Billed Them $75 Million to Recover From His Own Attacks

John Z Black Mar 22, 2026

Ransomware & Cybercrime #ransomware #DigitalMint #Angelo Martino #insider threat #ransomware negotiation #fraud #cybercrime

Angelo Martino allegedly orchestrated ransomware attacks and then helped victims pay ransoms through DigitalMint -- the firm where he worked. Federal charges now implicate the co-founder too.

Coinbase Is Asking You to Type Your Crypto Wallet Key Into a Website. Don't.

John Z Black Mar 22, 2026

Ransomware & Cybercrime #crypto #Coinbase #phishing #seed phrase #consumer security #wallet security

Coinbase Commerce shuts down March 31 and its migration tool asks users to enter their seed phrase into a web form. Security researchers are alarmed -- and they should be.

Update Everything: Chrome Zero-Days, Android's March Bulletin, and the Patch Gap That Puts You at Risk

John Z Black Mar 22, 2026

Vulnerabilities & Patching #Chrome #Android #zero-day #MediaTek #patching #CVE #mobile security

Two Chrome zero-days under active attack, 129 Android vulnerabilities in March, and the stubborn reality that 'patch available' and 'you're protected' are two very different things.