A look at accidents. The wrong approach is to blame “bad person” and the correct approach is to blame the bad system. This has strong parallels to OPSEC, security, and info sec, among others. The problem is usually not the person but the environment or tooling that permits or even encourages the errors.
https://www.thenation.com/article/society/accidental-death-radonda-vaught/
Some clever crypto something something. Fraud, basically. It is always fraud.
https://rekt.news/inverse-finance-rekt/
The Purge
Putin in on a bit of a purge right now. Taking out the domestic policy guy who was also in charge of Ukraine policy. Clearly he screwed that one up.
The Purge, Electric Butthole Glue
There are a lot of vacancies showing up in the FSB if you’re interested in a new job with a short life expectancy.
Great work by ESET.
Lots of reports about the Sandworm attack against Ukrainian electrical substation(s). There are a lot of questions about this, like how the hack was detected and remediated inside an hour.
https://www.welivesecurity.com/2022/04/12/industroyer2-industroyer-reloaded/
https://cert.gov.ua/article/39518
The Russian military drones might not be as advanced as they liked to believe. On the other hand, it does seem very pragmatic to use commercial solutions to cut down on costs. Not really sure about that one… particularly since it seems maybe the cost savings weren’t passed on to the customer (the military.)
And here is an entire article written about the above tweet.
Security vulnerabilities in the cloud.
Somewhat late on this, but… it looks like SIGINT on Kadyrov and his Chechen buddies was a possible source for US intelligence on the Russian war plans.
A look at how troll farms work, which is always a bit interesting.