Federal IT staffer Dan Berulis discovered his car’s brake line had been cut shortly after filing a whistleblower report alleging a significant cybersecurity breach by members of the Department of Government Efficiency. This occurred the day after tech mogul Elon Musk reposted a claim that Berulis had lied about the breach, labeling the act of filing a false whistleblower report as a serious crime. Police investigated the cut brake line but were unable to identify a suspect, and the investigation was closed. Berulis subsequently filed a defamation lawsuit against Musk, alleging a reckless disregard for the truth.
Read More
It’s genuinely alarming when an organization tasked with protecting national cybersecurity accidentally exposes highly sensitive access keys and passwords on a public platform like GitHub. The sheer audacity of a repository named “Private-CISA” containing such critical information in plain text, tucked away in a .CSV file no less, points to a profound lapse in security protocols. This isn’t just a minor oversight; it’s a stunning failure at the very core of the federal government’s cyber defense infrastructure, as described by observers.
The fact that this vulnerability might have existed for as long as six months, since the repository was reportedly created in November of the previous year, only amplifies the concern.… Continue reading
A cyber incident in February 2023 at the FBI’s New York field office resulted in a foreign hacker accessing files related to the Jeffrey Epstein investigation. This breach, reportedly isolated, occurred due to an inadvertently exposed server, according to recently reviewed justice department documents. The hacker, who expressed disgust at child abuse images found on the server, was allegedly convinced they were interacting with the FBI through a video call where agents displayed their credentials. The source suggests the hacker may not have realized they had infiltrated a law enforcement server, and the extent of the accessed data remains unclear.
Read More
Following a recent cybersecurity breach, the dating discussion app Tea announced that some direct messages were also accessed. The app, which allows women to anonymously discuss men, previously revealed that thousands of user selfies and photo IDs were exposed. The company stated it is working to identify impacted users and offer identity protection services, while also emphasizing the need for users to consider real-life security precautions. The breach affects users who signed up before February 2024, with approximately 72,000 images leaked in total, including those found in direct messages.
Read More
Coinbase revealed a data breach resulting from compromised overseas support agents who were bribed by cybercriminals. The attackers obtained sensitive customer data, including names, addresses, and partial financial information, to conduct social engineering attacks. While no passwords or funds were compromised, Coinbase estimates remediation costs could reach $400 million. The company is cooperating with law enforcement and offering a $20 million reward for information leading to arrests, refusing to pay the extortion demand. Despite this incident, Coinbase maintains its commitment to enhancing security measures and customer reimbursement.
Read More
Edward Coristine, a teenager employed by Elon Musk, was terminated from his internship at the cybersecurity firm Path Network for allegedly leaking internal company information to competitors. The firm’s executive stated unequivocally that his actions were unacceptable and that there was zero tolerance for such behavior. This incident raises serious questions about the vetting process for individuals granted access to sensitive information, particularly within the context of government agencies.
The age of Coristine – around 16 or 17 at the time of the incident – further complicates the matter. His actions highlight a potential vulnerability in cybersecurity, where young, relatively inexperienced individuals might be easily influenced or compromised, leading to the exposure of sensitive data.… Continue reading
John Q. Hosedrinker 
Matt Underwood