John Z Black
Brunswick, ME • (207) 245-1010 • contact@johnzblack.com
One IT Admin Locked 254 Servers. T-Mobile Lost Another Insider. Same Day.
A Kansas City engineer held his employer hostage for 20 bitcoin while T-Mobile quietly filed yet another insider breach. Privileged access is still the hardest problem in security.
Read More
Inside the North Korean IT Worker Playbook: IBM and Flare's New Research Shows Exactly How They Get In
IBM and Flare published the most detailed technical breakdown yet of how North Korean IT workers infiltrate US companies, including specific detection controls security and HR teams can actually use.
Read More
How a Virginia Security Firm Set a Trap and Caught a North Korean Spy Applying for a Remote Job
Nisos set up a fake hiring scenario, handed a suspected DPRK worker a monitored laptop, and caught them. The most unsettling part: the companies already infiltrated had no idea until Nisos called.
Read More
He Hacked Companies, Then Billed Them $75 Million to Recover From His Own Attacks
Angelo Martino allegedly orchestrated ransomware attacks and then helped victims pay ransoms through DigitalMint -- the firm where he worked. Federal charges now implicate the co-founder too.
Read More
The Insider Front Door: How Legitimate Access Keeps Becoming Extortion
A data analyst extorted his employer for $2.5M using access his job gave him. Three Americans helped North Korean operatives infiltrate US companies as fake IT workers. Different crimes, same root problem.
Read More
Breach Impact Without a Single Archetype: Vendor, Insider, and Nation-State Pressure
Navia, Aura, an insider ransomware conviction, and Lazarus attribution show why breach readiness should be built around resilient process, not assumptions about attacker type.
Read More
The Insider No One Suspected: DOJ Says a Ransomware "Helper" Was Running the Attack
A ransomware negotiator was secretly feeding BlackCat operators confidential victim data to jack up ransom payments. The DOJ just charged him.
Read More