Kim Zetter

@kimzetter.bsky.social

2614 followers 374 following 220 posts

Journalist - cybersec/national security. Author COUNTDOWN TO ZERO DAY: Stuxnet and the Launch of the World's First Digital Weapon www.amazon.com/Countdown-Zero-Day-Stuxnet-Digital/dp/0770436196
Speaker/Signal/Substack: zetter.substack.com/

Reposted by Kim Zetter

Joshua J. Friedman @joshuajfriedman.com
[ View ] Jun 25, 2024 at 19:55 UTC

NEW: The FBI is investigating NYC mayor Eric Adams’s use of a private e-mail server and how records from seven different trips he made to China have disappeared, per the NY Post

36 replies 72 reposts 326 likes

Kim Zetter @kimzetter.bsky.social
[ View ] Jun 17, 2024 at 16:23 UTC

Hackers who stole Ticketmaster data from Snowflake account appear to have accessed data through contractor named EPAM Systems. EPAM has workers in Belarus, Ukraine and, before war, Russia. Hacker told me they breached EPAM worker in Ukraine and found plaintext credentials on his machine. My latest:

1 replies 8 reposts 8 likes

Kim Zetter @kimzetter.bsky.social
[ View ] May 28, 2024 at 16:33 UTC

How researchers hacked time to crack 11-yr-old password protecting $3 mil in cryptocurrency. Using flaw in RoboForm's password manager they tricked RoboForm into spitting out same passwords it generated in 2013. Any RoboForm passwords generated before 2015 and still in use can be cracked same way

1 replies 34 reposts 64 likes

Kim Zetter @kimzetter.bsky.social
[ View ] May 05, 2024 at 22:05 UTC

Really good piece that attempts to rein in the hype around disinformation and expose the harms it does -- all the more significant because @olgs7.bsky.social teaches a course on disinformation and used to manage Meta teams responsible for tackling foreign disinformation and influence campaigns

0 replies 1 reposts 5 likes

Reposted by Kim Zetter

Riana @riana.bsky.social
[ View ] Feb 24, 2024 at 05:08 UTC

This matter is absolutely bonkers and it is a Huge Deal:

0 replies 8 reposts 17 likes

Reposted by Kim Zetter

Justin Hendrix @justinhendrix.bsky.social
[ View ] Feb 25, 2024 at 18:04 UTC

How to counter disinformation, based on science: Jon Bateman and Dean Jackson produced a must-read report for the Carnegie Endowment that looks at ten interventions against disinformation. www.techpolicy.press/how-to-count...

0 replies 15 reposts 25 likes

Kim Zetter @kimzetter.bsky.social
[ View ] Feb 24, 2024 at 03:08 UTC

I wrote about Nevada attorney general's attempt to bar Meta from encrypting communications of minors in Nevada. I've included links to court brief filed by Nevada and Meta's response. Riana Pfefferkorn calls it the biggest attack on encryption since the 2016 San Bernardino case. Court hearing is Mon

1 replies 12 reposts 16 likes

Kim Zetter @kimzetter.bsky.social
[ View ] Feb 23, 2024 at 23:22 UTC

Nevada's attorney general filed for a restraining order and prelim injunction against Meta this week to prevent it from pushing out end-to-end encryption as default on Messenger for users in Nevada who are under 18. Hearing is Monday morning. Court brief is here: drive.google.com/file/d/1qq9Z...

1 replies 16 reposts 14 likes

Kim Zetter @kimzetter.bsky.social
[ View ] Feb 23, 2024 at 03:23 UTC

Why did BlueSky just mess with my interface? I liked it the way it was

0 replies 0 reposts 1 likes

Kim Zetter @kimzetter.bsky.social
[ View ] Feb 22, 2024 at 21:44 UTC

Tim Burke was indicted today for leaking unaired Tucker Carlson video clips to media outlets. I wrote about his case last year. You can read the details here: www.zetter-zeroday.com/did-a-journa...

0 replies 0 reposts 3 likes

Kim Zetter @kimzetter.bsky.social
[ View ] Feb 22, 2024 at 19:23 UTC

Banking trojan stole victim face then $40k. "Unsuspecting users are tricked into giving up personal IDs and phone numbers and are prompted to perform face scans. These images are then swapped out with AI-generated deepfakes that can easily bypass security checkpoints" venturebeat.com/security/fac...

0 replies 1 reposts 3 likes

Kim Zetter @kimzetter.bsky.social
[ View ] Feb 22, 2024 at 03:31 UTC

What are the rules for taking something produced by chatGPT. Isn't it stealing from stuff it ingests?

1 replies 0 reposts 2 likes

Kim Zetter @kimzetter.bsky.social
[ View ] Feb 22, 2024 at 03:29 UTC

Great story. Github repository of Chinese firm iSoon reveals hacking ops its done for Chinese gov - "lists targets...summaries of...data amounts extracted and details on whether the hackers [got] full or partial control...spreadsheet showed that the firm had...459GB of road-mapping data from Taiwan"

1 replies 9 reposts 15 likes

Kim Zetter @kimzetter.bsky.social
[ View ] Feb 22, 2024 at 03:21 UTC

Never thought about trying one of those. Thanks for the tip

1 replies 0 reposts 0 likes

Kim Zetter @kimzetter.bsky.social
[ View ] Feb 22, 2024 at 03:19 UTC

✈️

0 replies 0 reposts 0 likes

Kim Zetter @kimzetter.bsky.social
[ View ] Feb 22, 2024 at 03:18 UTC

😂 didn't know that was actually a thing

1 replies 0 reposts 0 likes

Kim Zetter @kimzetter.bsky.social
[ View ] Feb 21, 2024 at 21:05 UTC

US State Department is offering up to $10 million in reward for info about identity or location of the leaders behind LockBit ransomware, and up to $5 million for info that leads to arrest or conviction of any affiliates who used the ransomware in a criminal scheme

1 replies 9 reposts 10 likes

Kim Zetter @kimzetter.bsky.social
[ View ] Feb 21, 2024 at 19:48 UTC

I've left Substack and have moved my ZERO DAY publication to Ghost. It took a while to get it set up and move the content and subscribers, and I still need to tweak the design a bit and get a logo (anyone have a suggestion for a logo?) but this is where you'll find ZERO DAY now:

6 replies 28 reposts 87 likes

Reposted by Kim Zetter

Drew Harwell @drewharwell.com
[ View ] Feb 15, 2024 at 18:48 UTC

New: Trump Media's long-delayed merger just cleared a major hurdle. The deal would value Trump's company at $8 billion, even though it made only $3 million - and lost $49 million - in the first nine months of 2023. "Classic meme stock," one expert said www.washingtonpost.com/technology/2...

6 replies 11 reposts 50 likes

Kim Zetter @kimzetter.bsky.social
[ View ] Feb 15, 2024 at 18:57 UTC

The real reason companies don't want you to work remotely.

1 replies 2 reposts 8 likes

Kim Zetter @kimzetter.bsky.social
[ View ] Feb 14, 2024 at 19:28 UTC

Responding to call from Rep. Turner calling on Biden to declassify info related to an unnamed national security threat (it's reportedly a threat related to Russia and space), Senate intel committee leaders Warner and Rubio released this statement:

0 replies 0 reposts 2 likes

Kim Zetter @kimzetter.bsky.social
[ View ] Feb 14, 2024 at 17:41 UTC

CiSA could be gutted if Trump wins presidential election -- potential retaliation for its past efforts to fight election disinfo and its adversarial stance against Trump's false claims that the 2020 election was stolen www.politico.com/news/2024/02...

0 replies 10 reposts 9 likes

Reposted by Kim Zetter

Ross Dahlke @rossdahlke.bsky.social
[ View ] Jan 19, 2024 at 19:05 UTC

Alarmist media coverage of disinformation has negative downstream consequences, including increasing support for heavily restrictive speech regulation, finds @ajungherr.bsky.social & @adrauc.bsky.social doi.org/10.1007/s111...

0 replies 8 reposts 11 likes

Kim Zetter @kimzetter.bsky.social
[ View ] Jan 20, 2024 at 00:34 UTC

He used to work at a Tribune-owned TV station and supplied members of Anonymous with a password to access its content-management system. One of the hackers was able to access the LA Times web site, owned by the same parent company, and altered a headline www.wired.com/2016/04/jour...

1 replies 0 reposts 1 likes

Kim Zetter @kimzetter.bsky.social
[ View ] Jan 19, 2024 at 22:55 UTC

Ok I get it now. This is personal for you.

2 replies 0 reposts 1 likes

Kim Zetter @kimzetter.bsky.social
[ View ] Jan 19, 2024 at 22:12 UTC

I deleted it because I realized there's no point in trying to engage with you. And this reply only confirms that decision. I think you're a good reporter, Matt. I don't understand the aggressive attitude that wants to make things personal and undermine the good work you do.

1 replies 0 reposts 0 likes

Kim Zetter @kimzetter.bsky.social
[ View ] Jan 19, 2024 at 21:43 UTC

Why so arrogant? A respectful conversation to try to understand the perspective of a legal expert is what a journalist should welcome. Don't understand the defensive attitude here.

2 replies 0 reposts 1 likes

Reposted by Kim Zetter

Alex Howard @digiphile.bsky.social
[ View ] Jan 09, 2024 at 18:13 UTC

Key takeaway @washingtonpost.com missed: the secret Office of Legal Counsel memorandum that asserts a President can’t be prosecuted for crimes while in office was cited today, but that legal opinion still isn’t available to the American people to read. “Democracy dies in darkness,” after all.

1 replies 8 reposts 20 likes

Kim Zetter @kimzetter.bsky.social
[ View ] Dec 21, 2023 at 00:02 UTC

It's interesting that you mentioned Interstellar as being influenced by Malick - I didn't really make that connection between them before yet I've always thought of Tree of Life and Interstellar as kind of bookends to each other, and it's another film that's highly under-rated.

1 replies 0 reposts 9 likes

Kim Zetter @kimzetter.bsky.social
[ View ] Dec 20, 2023 at 23:40 UTC

I wonder if he re-watched it again today if he'd thank you for introducing him to it.

1 replies 0 reposts 1 likes

Kim Zetter @kimzetter.bsky.social
[ View ] Dec 20, 2023 at 23:37 UTC

The podcast interview made me think I should re-watch a few of his other films as well. Didn't appreciate all of them at the time I saw them.

1 replies 0 reposts 2 likes

Kim Zetter @kimzetter.bsky.social
[ View ] Dec 20, 2023 at 21:59 UTC

Mesmerizing, under-rated film. Reminds me to watch it again.

1 replies 0 reposts 3 likes

Kim Zetter @kimzetter.bsky.social
[ View ] Dec 20, 2023 at 20:47 UTC

Of 8,000 teens surveyed in Europe ages 13-17, two-thirds use encrypted messaging apps. More than half use them for political organizing and 4/5 say they wouldn't be comfortable organizing or exploring their sexuality online if govs could monitor messages

0 replies 0 reposts 1 likes

Kim Zetter @kimzetter.bsky.social
[ View ] Dec 20, 2023 at 20:47 UTC

Critics of end-to-end encryption say children are harmed by it because it lets abusers hide evidence. Susan Landau says this isn't true. "Just like adults—and in some cases even more so—children benefit from the privacy and confidentiality afforded by E2EE."

1 replies 6 reposts 9 likes

Kim Zetter @kimzetter.bsky.social
[ View ] Dec 20, 2023 at 20:30 UTC

I wish this were available in English. Google Translate does a horrible job of translating it.

0 replies 0 reposts 0 likes

Reposted by Kim Zetter

Seth Masket @smotus.bsky.social
[ View ] Dec 20, 2023 at 19:50 UTC

As a reminder, this is *not* the first time the 14th Amendment has been used to disqualify a candidate from running for office. This has happened several times before, as @kevinmkruse.bsky.social helpfully detailed.

7 replies 92 reposts 273 likes

Kim Zetter @kimzetter.bsky.social
[ View ] Dec 11, 2023 at 19:49 UTC

Teixeira was suspended from school 1 day and had to take a psych assessment. His stepfather, an Air Force master sergeant, told police he worried police report might hurt Teixeira’s chance of joining military. A year later Teixeira joined Mass. Air National Guard and got security clearance in 2020

0 replies 1 reposts 4 likes

Kim Zetter @kimzetter.bsky.social
[ View ] Dec 11, 2023 at 19:45 UTC

Alleged Discord leaker Jack Teixeira got gov clearance despite history of violent threats. In 2018, classmates reported him to high school after talking repeatedly about guns and saying “I want to kill all Black people,” according to police report. Teachers also expressed concern about him to police

1 replies 3 reposts 12 likes

Kim Zetter @kimzetter.bsky.social
[ View ] Dec 07, 2023 at 05:53 UTC

Meta Facebook Messenger is rolling out end-to-end encryption by default. "Private communication for several billion people just got a lot more secure. Messenger has begun the migration for two-party chats ...and E2EE group chat will soon be on the way"

0 replies 3 reposts 7 likes

Reposted by Kim Zetter

Ben 🏳️‍🌈 @bvigeant.bsky.social
[ View ] Dec 06, 2023 at 16:20 UTC

Feels like it's missing a crucial detail in that headline

2 replies 26 reposts 108 likes

Kim Zetter @kimzetter.bsky.social
[ View ] Dec 06, 2023 at 18:20 UTC

Interesting. I wonder if that inspired the researchers to look for this.

0 replies 0 reposts 2 likes

Kim Zetter @kimzetter.bsky.social
[ View ] Dec 06, 2023 at 17:47 UTC

"Remote attacks work by first exploiting an unpatched vulnerability in a browser, media player, or other app and using the administrative control gained to replace the legitimate logo image processed early in the boot process with an identical-looking one that exploits a parser flaw"

0 replies 0 reposts 1 likes

Kim Zetter @kimzetter.bsky.social
[ View ] Dec 06, 2023 at 17:37 UTC

"In many cases, LogoFAIL can be remotely executed in post-exploit situations using techniques that can’t be spotted by traditional endpoint security products. And because exploits run during the earliest stages of the boot process, they are able to bypass a host of defenses"

1 replies 0 reposts 1 likes

Kim Zetter @kimzetter.bsky.social
[ View ] Dec 06, 2023 at 17:33 UTC

Holiday gift from @dangoodin.bsky.social: "Hundreds of Windows/Linux computers from virtually all..makers are vulnerable to a new attack that executes malicious firmware early in..boot-up..allows infections..nearly impossible to detect/remove...a constellation of 12 newly discovered vulns..in UEFI"

4 replies 19 reposts 25 likes

Reposted by Kim Zetter

Knight First Amendment Institute @knightcolumbia.org
[ View ] Nov 29, 2023 at 16:39 UTC

NEW in Just Security: The Biden Administration Should Continue Rebuffing NSO Group’s Latest Lobbying Efforts. @knightcolumbia.org's Carrie DeCell, Nicole Mo, and Talya Nevins discuss how NSO is scrambling to avoid accountability in U.S. courts. www.justsecurity.org/90328/the-bi...

1 replies 4 reposts 5 likes

Reposted by Kim Zetter

Jeremy Kirk @jkirk.bsky.social
[ View ] Oct 26, 2023 at 05:49 UTC

Kaspersky has lifted the lid on StripedFly, an intriguing piece of malware that seems closely related to the Equation Group's STRAITBIZARRE implant. Custom Tor exfil module and also has a *ransomware* component. Good story by @kimzetter.bsky.social: www.zetter-zeroday.com/p/sophistica... #infosec

0 replies 1 reposts 7 likes

Kim Zetter @kimzetter.bsky.social
[ View ] Oct 19, 2023 at 15:17 UTC

"the workers used various techniques to make it look like they were working in the US, including paying Americans to use their home Wi-Fi connections"

0 replies 0 reposts 0 likes

Kim Zetter @kimzetter.bsky.social
[ View ] Oct 19, 2023 at 15:17 UTC

Court documents allege that North Korea dispatched thousands of skilled IT workers to live in China and Russia with the goal of getting hired by companies in the US and elsewhere as freelance remote employees. In some cases the workers also stole info from the companies that hired them

1 replies 0 reposts 0 likes

Kim Zetter @kimzetter.bsky.social
[ View ] Oct 19, 2023 at 15:13 UTC

Thousands of IT workers contracting with US companies have for years secretly sent millions of dollars of their wages to North Korea for use in its ballistic missile program. They worked remotely with companies around the US and used false identities to get the jobs, according to the FBI

1 replies 2 reposts 9 likes

Kim Zetter @kimzetter.bsky.social
[ View ] Oct 19, 2023 at 14:23 UTC

Wait. Was his FBI code name Genius or "Genius"? Punctuation matters

11 replies 16 reposts 215 likes