John Z Black
Brunswick, ME • (207) 245-1010 • contact@johnzblack.com
Mostly security stuff...
Make sure you check out my main blog at https://gnerdsec.com/blog
Wikipedia Bans AI-Generated Text... and Has No Real Way to Enforce It
English Wikipedia's new WP:NEWLLM policy bans LLMs from generating article content. The principle is clear. The enforcement -- done entirely by volunteers with no reliable AI detection tools -- is another matter.
Read More
Torg Grabber Is Coming for Your Crypto Wallet Extensions
Torg Grabber is a new infostealer targeting 728 cryptocurrency browser wallet extensions, including MetaMask, Phantom, Exodus, and Coinbase. It's a full MaaS operation with real victims.
Read More
Mario Kart Got Two Years. The Guy Who Sold the Keys Got Nearly Seven.
Two Russian cybercriminals were sentenced the same week. One ran a botnet that hit 72 US companies and got 2 years. The other sold network access to ransomware crews and got nearly 7. The gap says something real about how DOJ views the ransomware supply chain.
Read More
Sanders and AOC Want to Freeze AI Datacenter Construction. Here's What That Actually Means.
The Artificial Intelligence Data Center Moratorium Act would halt all new AI datacenter construction until Congress passes federal AI regulation. It won't pass. The energy numbers behind it are real.
Read More
Ransomware Hits Spain's Largest Fishing Port, Forcing Manual Operations
A ransomware attack knocked out digital systems at the Port of Vigo on March 24, 2026, forcing staff to revert to paper logs and phone calls. No group has claimed the attack.
Read More
340+ Organizations Hit by M365 Phishing That Bypasses MFA Without Touching Your Password
A device code OAuth phishing campaign has compromised 340+ organizations since February 2026, bypassing MFA and surviving password resets. It's still running.
Read More