Tootfinder

Cybersecurity Act: Netzbetreiber kritisieren Huawei-Bann scharf
Branchenverbände sparen nicht mit Kritik an dem Entwurf des EU Cybersecurity Acts. Sie warnen vor Konsequenzen für die Digitalisierung und hohen Kosten.

Un cibercriminal manipula al chatbot Claude para infiltrarse en agencias del gobierno mexicano
https://www.welivesecurity.com/es/cibercrimen/chatbot-claude-hackeo-gobierno-mexico/?utm_source=mastodon&ut…

CISA's interim director Madhu Gottumukkala is reassigned as DHS' director of strategic implementation; executive assistant director Nick Andersen will take over (Luke Barr/ABC News)
https://abcnews.com/Politics/us-cybersecurity-agency-new-a…

US cybersecurity agency to get new acting director
The nominee to serve as CISA director has not yet received a hearing.

Each week, Metacurity offers our free and premium subscribers a weekly digest of the best long-form (and longish) infosec-related pieces we couldn't properly fit into our daily news crush,
This week's selection covers
--Scam compound captive risks it all to expose its inner workings,
--AI is a core source of geopolitical power and security,
--Regulators should jettison checkbox cyber compliance with innovations,
--AI-led cybersecurity superintelligence i…

Best infosec-related long reads for the week of 1/24/26
Scam compound captive risks it all to expose its inner workings, AI is a core source of geopolitical power and security, Regulators should jettison checkbox cyber compliance with innovations, AI-led cybersecurity superintelligence is coming, AI's dual-use capabilities are transforming cybersecurity

I see this is doing the rounds
https://cybernews.com/cybercrime/winrar-flaw-ukraine-global-cybercrime-google/
To be clear this is a security flaw that WinRAR patched in July last year.
Why is it a problem now? Because WinRAR, like 7-Zip …

A researcher finds that Anthropic's Claude Code CLI tool has had its full TypeScript source code inadvertently exposed through a misconfigured npm package (Guru Baran/Cyber Security News)
https://cybersecuritynews.com/claude-code-source-code-leaked/

Anthropic's Claude Code Source Code Reportedly Leaked Via Their npm Registry
Anthropic's proprietary Claude Code CLI tool has had its full TypeScript source code inadvertently exposed through a misconfigured npm package, after a security researcher discovered a leaked .map file referencing the unobfuscated codebase stored on Anthropic's own cloud infrastructure.

Each Saturday, Metacurity is pleased to offer our free and paid subscribers a digest of the best infosec-related long reads we couldn't cover in the crazy mix of daily news.
This week's selection covers,
--Tracking down the culprits in the Polish energy cyberattack,
--How China uses geo-blocking as reverse censorship,
--How Russia maneuvered spy satellites alongside Western satellites,
--Secure provenance methods can maintain effective cybersecurity,

Best infosec-related long reads for the week of 2/21/26
Tracking down the culprits in the Polish energy cyberattack, How China uses geo-blocking as reverse censorship, How Russia maneuvered spy satellites alongside Western satellites, Secure provenance methods can maintain effective cybersecurity, Uncovering UK crypto exchanges that moved money to Iran

A coalition of music publishers, including UMG, filed a second lawsuit against Anthropic, seeking $3B over allegations of copyright infringement of 20k songs (Murray Stassen/Music Business Worldwide)
https://www.

UMG sues Anthropic for $3bn over ‘brazen’ copyright infringement of 20,000+ songs
Music publishers file second copyright infringement lawsuit against AI company Anthropic…