Tootfinder

Metacurity is the independent, non-hype, non-personality-dependent cybersecurity newsletter that delivers a daily dose of critical developments you need to know.
Check out today's issue, which covers
--CISA warns US infrastructure owners following Russian attack on Poland's power grid,
--Russia throttles Telegram accusing it of failing to protect personal data or combat crime,
--N. Korean hackers targeted crypto company with unique malware and multiple scams,…

CISA warns US infrastructure owners following Russian attack on Poland's power grid
Russia throttles Telegram accusing it of failing to protect personal data or combat crime, N. Korean hackers targeted crypto company with unique malware and multiple scams, Israel claims it foiled hundreds of Iranian cyberattacks, Microsoft issued fixes for six zero day flaws, much more

The US, following a directive from President Trump, is withdrawing from several key international cybersecurity and hybrid threat organisations, citing concerns over mismanagement and conflicts with national sovereignty. Experts are worried about the impact on global cybersecurity.
https://www.

US withdraws from international cyber bodies under Trump directive
The US, following a directive from President Trump, is withdrawing from several key international cybersecurity and hybrid threat organisations, citing concerns over mismanagement and conflicts ...

BRICKSTORM Backdoor
"The Cybersecurity and Infrastructure Security Agency (CISA) analyzed eight BRICKSTORM samples obtained from victim organizations. BRICKSTORM is a custom Executable and Linkable Format (ELF) Go-based backdoor. "
MISP standard and STIX files available at the following location:
🔗 https://cti-tra…

Notepad.exe RCE Vulnerability 8.8
Are you shitting me?
#cve202620841

H-Net Job Guide Weekly Report for H-HOAC: 28 December - 4 January
https://ift.tt/4g5t9CT
ResearchGate: Publishers Take Formal Steps to Force Copyright Compliance A summary of…
via Input 4 RELCFP

What technique / tools are you using in CI to make sure that tests actually ran?
Misconfigurations can often result in huge swaths of test discovery failing silently, leaving a test run in CI including zero (or a very small number of) tests.
Are you relying on code coverage stats collected during test runs, and comparing that to some static fail_under percentage? If source discovery breaks, can 1 passing test be 100% coverage? Do you trust it?
#askfedi #sdlc #cicd #continuousintegration

H-Net Job Guide Weekly Report for H-Diplo: 28 December - 4 January
https://ift.tt/YvirCX3
ResearchGate: Publishers Take Formal Steps to Force Copyright Compliance A summary of…
via Input 4 RELCFP

Looks like Plankey lost his nomination to head CISA and we head into 2026 with no real leader at the cyber agency.
Sean Plankey nomination to lead CISA appears to be over after Thursday vote
https://cyberscoop.com/sean-plankey-cisa-nomination-stalled-senate-ho…

Sean Plankey nomination to lead CISA appears to be over after Thursday vote
Sean Plankey’s nomination to lead the Cybersecurity and Infrastructure Security Agency looks to be over following his exclusion from a Senate vote Thursday on a panel of Trump administration picks.

Reminder: Applications for Research Fellowships at Winterthur Museum, Garden & Library due Jan. 15, 2026
https://ift.tt/960UQjs
ResearchGate: Publishers Take Formal Steps to Force Copyright Compliance A summary of…
via Input 4 RELCFP

Reminder: Applications for Research Fellowships at Winterthur Museum, Garden & Library due Jan. 15, 2026
https://ift.tt/S3KxRAu
ResearchGate: Publishers Take Formal Steps to Force Copyright Compliance A summary of…
via Input 4 RELCFP