International Cyber Digest
6.28K subscribers
937 photos
52 videos
2 files
169 links
Independent reporting on cybersecurity, tech, AI & digital policy. Got a tip? http://internationalcyberdigest.com/tips
Download Telegram
‼️ Huntress' CEO says it's not illegal that an employee of theirs tipped off a threat actor about the FBI looking for them, then closes his blog post with "protecting ALL businesses while wrecking adversaries in the process."

How exactly are you wrecking adversaries when you act as their informant by allegedly sending them screenshots that named FBI agents?

Their CEO, Kyle Hanslovan, said in an interview today that a current employee told a ransomware actor that law enforcement had reached out asking about that actor. He calls it "poor judgment," says it was not illegal, and rejects the "insider threat" label.

The former employee who raised it, Ben Folland, says that admission proves his point. He alleges the employee forwarded FBI communications to the DevMan ransomware group, then refused to cooperate with the FBI. His supporting evidence is not public yet.

Threat-intel teams routinely talk to criminals for research, but once a researcher warns a target that law enforcement is circling, an active case can collapse, and that is the line Huntress now has to defend in public.

We've reached out to Huntress with questions about the employee who allegedly sent DevMan information, and they pointed us to their CEO's blog post.

Article: https://www.internationalcyberdigest.com/huntress-admits-an-employee-tipped-a-ransomware-actor-to-law-enforcement/
πŸ’©9❀6πŸ‘1😁1
International Cyber Digest
‼️ BREAKING: Anthropic has embedded hidden spyware-like code in Claude Code that covertly targets Chinese users. It then sends information regarding every user by injecting it into their prompt message. Claude Code is sending info like timezone, proxy and…
Anthropic technical staff member Thariq has shed some light on why Anthropic implemented the spyware-like code, saying the code is being rolled back in tomorrow’s release. Thank you for the reply Thariq.
πŸ’©17🀣8πŸ‘2😭2πŸ€ͺ2
‼️ BREAKING: Apple's Hide My Email lets almost anyone uncover the real address behind a "hidden" alias, and Apple has left it unpatched for over a year.

It was reported to Apple in June 2025 by Tyler Murphy of EasyOptOuts. He says every Hide My Email address checked in limited volunteer tests was exploitable.

If you use Hide My Email to keep a real address off people-search sites or away from someone dangerous, treat that anonymity as unreliable.

https://www.internationalcyberdigest.com/apple-hide-my-email-doesnt-hide-your-email/
πŸ‘9❀3πŸ”₯1πŸ™1
❗️ The DOJ announced today that Peter Stokes, 19, a US-Estonian dual citizen and alleged member of the Scattered Spider cybercrime group, was extradited from Finland and charged in the Northern District of Illinois with conspiracy, computer intrusion, and fraud.

More than $100 million in ransom payments, belongs to the group across 100-plus intrusions; the only conduct the complaint pins on him is a May 2025 breach of a luxury jewelry retailer with an $8 million demand that went unpaid.

Stokes is the latest Scattered Spider figure pulled into US courts through international cooperation, here with Finland's National Bureau of Investigation and an Interpol Red Notice. The case sits inside Operation Riptide, the FBI campaign the bureau says is responding to more than $20 billion in reported US cybercrime losses last year.


Read the article:
https://www.internationalcyberdigest.com/us-extradites-alleged-scattered-spider-member-from-finland/
🀣10❀6πŸ”₯1
❗️ Steam is hosting a game called Woman Simulator, an unreleased game where players do chores as a housewife under a "tyrannical husband" who punishes substandard work, per the developer's own description.

The renewed backlash lands weeks after Plantation Simulator, a game Valve never acted on. Its developer pulled it in late May while Valve stayed silent through the entire uproar.

Valve's stated policy since 2018 is to allow nearly everything and let players filter.
πŸ”₯19🀣9πŸ’©2❀1πŸ‘1
❗️ BREAKING: Over 2 million hijacked consumer devices, including smart TVs and streaming boxes, were quietly acting as residential proxy exit nodes. All of them, per Google, were part of the NetNut residential proxy network.

Google, working with the FBI and Lumen, has moved to dismantle the NetNut network. In a single week, Google tracked 316 distinct threat clusters, including espionage groups, routing attacks and password sprays through suspected NetNut exit nodes.

https://www.internationalcyberdigest.com/google-and-fbi-dismantle-residential-proxy-network-built-on-millions-of-hijacked-home-devices/
πŸ”₯8πŸ’©4
‼️ They've NERFED it: Claude Fable 5 came back strongly degraded from its US export-control suspension scoring far worse on BridgeBench:
- debugging fell from 86.2 to 25.9
- refactoring from 73.6 to 38.4
- hallucination resistance from 75.9 to 61.7

BridgeMind argues that fallback is firing on ordinary coding tasks and says Anthropic owes users an explanation.

Read: https://www.internationalcyberdigest.com/claude-fable-5-nerfed-after-return-from-its-export-control-suspension/
🀣8😁3
‼️πŸ‡ͺπŸ‡Ί BIG TECH wants this, and it was rejected twice, but the European Parliament seems to love undermining democracy, as it votes again next week, for the third time, on reviving "chat control 1.0," the expired EU rule that let tech firms voluntarily MASS-SCAN private messages.

Per German outlet Heise, the Council's workaround is a fast-tracked new proposal with identical content, a route critics say skips a privacy watchdog opinion and lands while many MEPs are on vacation. Former MEP Patrick Breyer calls it an attempted "coup."

That said, case for 1.0 is narrower: It doesn't mandate anything and it doesn't touch end-to-end encryption directly. It restores legal cover for scanning that platforms did for years, mostly hash-matching known child sexual abuse material on unencrypted services like Gmail, Messenger, and Snapchat.

https://www.internationalcyberdigest.com/eu-parliament-faces-third-vote-on-reviving-chat-control-1-0/
🀣10πŸ’©2❀1
❗️Some people are calling this very embarrassing: the FBI seized 'the wrong' domain during a proxy network takedown.

The FBI seized netnut[.]com, but the Internet Archive doesn't show any proxy network website ever having been hosted there. The real domain, netnut[.]io, does.

We've asked our contacts, and they tell us the takedown is ongoing and the dot com domain is a legit takedown. The dot io should follow shortly, as it lags behind.
🀣18😭6❀1
❗️ Belgian police arrested a 19-year-old from Antwerp suspected of being a key figure, possibly the ringleader, in a European phishing and money-laundering network, picking him up in an Airbnb on June 29 after he returned from Dubai.

Prosecutors say the group stole over €500,000 from victims across Europe using fake government emails, bogus bank calls, and remote-access software. The suspect allegedly paid for multiple Dubai flights with victims' bank cards.

Article: https://www.internationalcyberdigest.com/belgian-police-arrest-suspected-ringleader-of-european-phishing-network/
😁8πŸ”₯3πŸ‘1
‼️ An EU-wide social media ban for children is expected to be announced by Von der Leyen in her September 16 State of the Union speech. This was confirmed by multiple EU officials and diplomats.

Brussels is racing to set one rule before France, Spain, Germany, Denmark, and Greece lock in five different ones.

This will affect roughly 65 million under-15s across 27 countries. But the legal framework is undecided, the minimum age is unset, and the Commission's own expert panel doesn't report until July 13.

Read: https://www.internationalcyberdigest.com/eu-expected-to-announce-social-media-ban-for-children/
πŸ’©14πŸ”₯4😒4πŸ₯°2🀯2🀬1
❗️ Alibaba bans employees from using Anthropic's Claude Code in workplace environments from July 10, citing alleged embedded "backdoor" risks raised after recent binary reverse-engineering.

The reported ban lands weeks after Anthropic told US lawmakers that Alibaba-linked operators used roughly 25,000 fraudulent accounts to distill Claude, turning a model-abuse dispute into an open corporate standoff.
❀12🀣7πŸ₯°3πŸ‘2
Media is too big
VIEW IN TELEGRAM
‼️ Sony already started converting its last disc factory before this week's announcement of going digital-only in January 2028. The Sony DADC plant in Thalgau, Austria presses 600,000 discs a day, half of them PlayStation titles.

Sony pressed its own game discs for four decades, and once Thalgau converts, physical PlayStation media has no in-house home left.

The site is pivoting to optical microlenses for cars and AR headsets. Sony has put in €30 million and says all 300 workers will be retrained. Mass microlens production is slated to start in 2027.

Article: https://www.internationalcyberdigest.com/goodbye-sony-is-already-converting-its-last-disc-factory/
😭9πŸ‘6πŸ’©5❀2
MacBook users have been taking metal files to the sharp front edge below the trackpad, where the palm rests, rounding it off by hand.

Some users say the edge has never bothered them. Others describe wrist pain after hours of trackpad use.
🀣16πŸ™4❀1πŸ’©1