John Z Black
Brunswick, ME • (207) 245-1010 • contact@johnzblack.com
Mostly security stuff...
Make sure you check out my main blog at https://gnerdsec.com/blog
The Control-Plane Exposure Problem: ScreenConnect, SharePoint, UniFi, and Magento
Today's critical bugs are not equal. ScreenConnect, SharePoint, UniFi, and Magento all threaten high-leverage control surfaces where one compromise can cascade.
Read More
Mobile Trust Is Fracturing: Android Fraudware and iOS Exploit Chains Converge
Perseus on Android, DarkSword on iOS, and new iPhone exploitation reporting point to a shared reality: mobile trust assumptions are breaking across both ecosystems.
Read More
After Stryker: Why Incident Response Now Starts in the Management Plane
The Stryker fallout, Intune warnings, and leak-site disruption show a hard truth: incident response now lives or dies on control-plane integrity and coordinated external action.
Read More
Policy Restraint vs Surveillance Expansion: The New Shape of U.S. Cyber Power
Washington is signaling limits on private-sector hack-back while doubling down on surveillance continuity and sanctions. The center of cyber power is moving toward institutions, not spectacle.
Read More
DarkSword Spread Beyond One Campaign. Mobile Risk Has to Follow.
Google threat intelligence ties DarkSword-linked iOS exploitation to a broader actor picture than earlier reporting suggested. The bigger signal isn't the exploit chain. It's that the capability is spreading across actors and channels.
Read More
Robots Are Moving Into Sensitive Environments. Security Gets Decided at Procurement.
U.S. robotics firms are pushing Congress for procurement barriers against Chinese suppliers. Robot dogs are already patrolling data centers. The security posture is decided before install day, during sourcing and contract language.
Read More