John Z Black

Brunswick, ME • (207) 245-1010 • contact@johnzblack.com

Blog

I haven't yet decided exactly what kind of content I intend to post here. I love cooking and taking pictures so initially I'll probably just share recipes, photos and that kind of thing.

If I really start using the space I may expand on the blog capabilities. For now I'm keeping it quite simple.

Mobile Trust Is Fracturing: Android Fraudware and iOS Exploit Chains Converge

John Z Black Mar 20, 2026

Threat Intelligence #mobile-security #android-malware #ios-exploits #byod-risk #app-provenance #zero-day

Perseus on Android, DarkSword on iOS, and new iPhone exploitation reporting point to a shared reality: mobile trust assumptions are breaking across both ecosystems.

After Stryker: Why Incident Response Now Starts in the Management Plane

John Z Black Mar 20, 2026

Security Operations & Resilience #incident-response #intune #control-plane-security #extortion #law-enforcement-coordination #iran-linked-threats

The Stryker fallout, Intune warnings, and leak-site disruption show a hard truth: incident response now lives or dies on control-plane integrity and coordinated external action.

Policy Restraint vs Surveillance Expansion: The New Shape of U.S. Cyber Power

John Z Black Mar 20, 2026

Policy, Law & Governance #cyber-policy #section-702 #ofac-sanctions #national-security #compliance-risk #statecraft

Washington is signaling limits on private-sector hack-back while doubling down on surveillance continuity and sanctions. The center of cyber power is moving toward institutions, not spectacle.

DarkSword Spread Beyond One Campaign. Mobile Risk Has to Follow.

John Z Black Mar 19, 2026

Threat Intelligence #darksword #ios #mobile-exploitation #threat-intelligence #enterprise-security #high-risk-users #incident-response

Google threat intelligence ties DarkSword-linked iOS exploitation to a broader actor picture than earlier reporting suggested. The bigger signal isn't the exploit chain. It's that the capability is spreading across actors and channels.

Robots Are Moving Into Sensitive Environments. Security Gets Decided at Procurement.

John Z Black Mar 19, 2026

Security Operations & Resilience #robotics #procurement #cyber-physical #supply-chain #civil-liberties #enterprise-security #governance

U.S. robotics firms are pushing Congress for procurement barriers against Chinese suppliers. Robot dogs are already patrolling data centers. The security posture is decided before install day, during sourcing and contract language.

AI Governance Is an Implementation Problem Now, Not a Policy Project

John Z Black Mar 19, 2026

AI Security #ai-governance #ai-agents #least-privilege #data-locality #enforcement #cloudflare #unit42

Unit 42 on agent risk, Cloudflare on data-locality controls, and the ICML enforcement controversy all point to the same thing: governance only counts when it's technically enforceable and organizationally defended.