Tootfinder

When Congress recessed in December, it left three crucial cyber priorities in the air, including the confirmation of Sean Plankey's nomination as CISA Director.
Although Plankey's renomination announcement is good news, experts say Congress's delay in acting on cyber priorities damages the nation's ability to counter rising threats.
Check out my latest CSO piece, which looks at the setbacks created by Plankey's confirmation delay and the other key priorities l…

US cybersecurity weakened by congressional delays despite Plankey renomination
Sean Plankey’s renomination as CISA director offers some relief, but stalled legislation on cyber threat information sharing and state and local grants continues to strain the nation’s ability to counter rising cyber threats.

I must admit, it gives me joy to be able to order the following article from my university library: «Channelling the darkness: Group flow and environmental expression in the music of Black Sabbath and Joy Division»

🇺🇦 #NowPlaying on KEXP's #Early
Radiohead:
🎵 Airbag
#Radiohead
https://acoustico.bandcamp.com/track/radiohead-airbag
https://open.spotify.com/track/7c378mlmubSu7NGkLFa4sN

🇺🇦 #NowPlaying on #BBC6Music's #JamzSupernova
IZCO & Camille Munn:
🎵 Strike a Pose
#IZCO #CamilleMunn
https://izco.bandcamp.com/track/strike-a-pose-feat-camille-munn
https://open.spotify.com/track/2Ud42Q4mxETIYEuJ2D5oZA

A Singaporean man was sentenced to prison and fined for teaching others how to use malware, the first known conviction for teaching malware tutorials.
Man gets jail for filming malware tutorials for syndicate; 129 Singapore victims lost S$3.2m
https://www.

Man gets jail for filming malware tutorials for syndicate; 129 Singapore victims lost S$3.2m
The malware enabled scammers to take over the phone or access applications in order to make outgoing bank transfers.

The number of new software vulnerabilities discovered could top 100,000 in 2026, according to the latest forecast by FIRST. But that doesn't necessarily mean more cyberattacks. Check out my latest CSO piece on how CISOs might have to up their efforts to separate signal from noise as CVE volume soars.
Many thanks to Michael Roytman of Empirical Security, Éireann Leverett of FIRST, and Sasha Romanosky of Rand for their insights.

CISOs must separate signal from noise as CVE volume soars
FIRST forecasts a record surge in disclosed vulnerabilities in 2026, but security researchers say most will not translate into real-world attacks, forcing CISOs to rethink prioritization, automation, and capacity planning.

🇺🇦 #NowPlaying on KEXP's #MorningShow
The Chameleons:
🎵 Up the Down Escalator
#TheChameleons
https://bellalune.bandcamp.com/track/up-the-down-escalator-the-chameleons-cover
https://open.spotify.com/track/4Uv6BVQUcdxUkIRDAQ7a7l

Check out my latest CSO piece, which provides the key takeaways from the 2026 NDAA compromise bill released earlier this week, chief among which are provisions that protect the mobile communications of top brass and requirements to safeguard AI systems from digital threats.
https://www.

Key cybersecurity takeaways from the 2026 NDAA
A 4.1% increase in military cyber funding in the FY2026 NDAA budget underpins new requirements for hardened mobile devices, AI security frameworks, and expanded DoD cyber workforce authorities.

Despite worries by some that vendor reports on AI cyber threats are merely hype to sell new defensive tools, most cyber defenders and threat intel experts say CISOs who dismiss AI in the attack chain do so at their own risk.
Check out my latest CSO piece.
Many thanks to Marcus Hutchins, Steve Stone of SentinelOne, Billy Leonard of Google Threat Intelligence Group, the folks at Anthropic, Rob T. Lee of SANS Institute, Morgan Adamski of PwC, Joe Levy and Alexandra Rose of Sophos, …

Ignoring AI in the threat chain could be a costly mistake, experts warn
While some researchers dismiss reports of AI-driven cyberattacks as merely marketing messages, threat intel experts counter that CISOs ignore mounting evidence of AI use in the threat chain at their own peril.

RE: https://techhub.social/@Techmeme/116029119008444453
I wrote a lot about these rules in 2024 and 2025