Sam Sabin

@samsabin.bsky.social

Posts

Axios cybersecurity reporter, writing Codebook and taking it day by day ✨ | 📩: sam.sabin@axios dot com, signal: 202-642-4580 (no pitches!), she/her

Posts Replies Media

After the Chevron decision, expect waaaay more participation at cyber-related hearings & legislative markups on Capitol Hill and less energy going towards comments during agency rule-makings, former admin + Hill staffers tell me. more in today's @axios.com Codebook: www.axios.com/2024/07/02/c...

The Supreme Court decision to rescind agencies' powers could hurt cyber regulations, experts warnwww.axios.com Agencies had been reinterpreting existing laws to get critical infrastructure to practice basic cyber hygiene.

🙃 www.nbcnews.com/tech/interne...

OpenAI's ChatGPT and Microsoft's Copilot repeated a false claim about the presidential debatewww.nbcnews.com The AI programs seemingly drew on conservative misinformation posted just hours earlier to generate their answers.

BlackSuit is being linked to the ongoing CDK Global cyberattack, which has caused service disruptions at auto dealerships across the country. (+ a lesson in keeping @ransomwaresommelier.com on your speed dial!) More on @axios.com: www.axios.com/2024/06/24/b...

BlackSuit ransomware gang blamed for ongoing car dealership outageswww.axios.com The full scope and impact of the attack on software vendor CDK Global could take weeks to determine.

really played myself* *told my team on monday i was expecting a quiet news week 🙃

it's happening! www.axios.com/2024/06/20/k...

U.S. bans all new antivirus sales from Russia-based Kaspersky Labwww.axios.com The move is the strongest to-date against a private company over cybersecurity and espionage concerns.

biggest pet peeve is when i take a few mins to respond to a PR pitch and say "hey, sorry, but this isn't of interest for XYZ reason" and the person responds with 10 follow-ups Qs. we're all in tough spots, but plz just take the L (+ clients, plz stop asking PR folks to get more feedback from us!)

Reposted by

Sam Sabin

Pentagon ran secret anti-vax campaign to undermine China during pandemic www.reuters.com/investigates...

Pentagon ran secret anti-vax campaign to incite fear of China vaccineswww.reuters.com The covert effort began under Trump and continued into Biden’s presidency, Reuters found. Health experts say it endangered lives for possible geopolitical gain.

big Microsoft day: the company is delaying the Recall roll out to give itself more time to run security tests. This is the first major benchmark for Microsoft's promise to start prioritizing security over new product development. more @axios.com: www.axios.com/2024/06/14/m...

Microsoft pushes back release of Recall feature after privacy concernswww.axios.com The firm has faced mounting scrutiny in both Washington and Silicon Valley over the feature.

Reposted by

Sam Sabin

NEWS: After sustained attacks from House Republicans, the Stanford Internet Observatory is being dismantled. A huge blow to academic freedom and our ability to understand platforms and influence operations www.platformer.news/stanford-int...

locked & loaded for a packed afternoon 🫡 Microsoft hearing will be streamed here: homeland.house.gov/hearing/a-ca...

this feels like the other shoe that everyone has been waiting literal years to see drop www.propublica.org/article/micr...

Microsoft Chose Profit Over Security and Left U.S. Government Vulnerable to Russian Hack, Whistleblower Sayswww.propublica.org Former employee says software giant dismissed his warnings about a critical flaw because it feared losing government business. Russian hackers later used the weakness to breach the National Nuclear Se...

Microsoft's Brad Smith is heading to Capitol Hill tomorrow to face the fallout from last year's China hack, the recent Russia hack and the CSRB report. Here's what he plans to say: www.axios.com/2024/06/12/m...

Top Microsoft executive prepares to battle in congressional hearing over China hackwww.axios.com Brad Smith is facing an uphill battle as he works to reassure lawmakers about Microsoft's cybersecurity.

Ascension confirmed in a new statement today that its recent cyberattack started with someone accidentally downloading a malicious file. Hackers also stole information from seven servers, including some personal health data. 🙃 about.ascension.org/cybersecurit...

Cybersecurity Event Updateabout.ascension.org To ensure all patients, staff, and stakeholders are kept informed during this event, we will continue to post updated information on our website as it becomes available.

not sure that i've seen a medical facility make this type of public call after a ransomware attack. real-life patients' care being affected. absolutely brutal. therecord.media/london-hospi...

Urgent call for O-type blood donations following London hospitals ransomware attacktherecord.media As a result of the cyberattack “hospitals cannot currently match patients’ blood at the same frequency as usual,” announced NHS Blood and Transplant.

i found out about the verdict via an american girl meme account 💀

Exclusive for @axios.com: Sens. Schmitt and Wyden have "serious concern" about the Pentagon's reported plan to upgrade to Microsoft E5 licenses. Microsoft has been facing scrutiny in Washington over its cybersecurity practices since last summer's China hack. www.axios.com/2024/05/30/c...

Exclusive: Senators have "serious concern" with Pentagon's proposed Microsoft upgradewww.axios.com The letter is just the latest example of how high tensions have risen between Washington and the tech giant.

prepping my inbox now: House Homeland Security says Brad Smith will testify on June 13 about last summer's China breach and the company's new internal security strategy homeland.house.gov/2024/05/21/c...

Chairman Green, Ranking Member Thompson Announce Microsoft President Will Testify on Company’s Security Shortcomings Following Hack of Government Accounts – Committee on Homeland Securityhomeland.house.gov

will have to forever live with the fact that i saw the northern lights for the first time on a southwest flight 💀

tips for surviving #RSAC this week: 1- stay hydrated 🥤 2- text me all the goss you hear (signal # in bio) 🫡

congressional hearings go so hard sometimes. this is Sen. Tillis holding up a "Hacking for Dummies" book while questioning UnitedHealthCEO Andrew Witty about the Change Healthcare ransomware attack 👀

important story from @sheeraf.bsky.social confirming that Israel is now using facial recognition tech in Gaza. appears to go further than previous Israeli FRT use cases in the West Bank and East Jerusalem. www.nytimes.com/2024/03/27/t...

Israel Deploys Expansive Facial Recognition Program in Gazawww.nytimes.com The experimental effort, which has not been disclosed, is being used to conduct mass surveillance of Palestinians in Gaza, according to military officials and others.

some weird stuff is happening with the NVD — and no one will say why! NIST spox were still trying this morning to get ppl internally to clarify what's happening for me. think this description from one source puts it well: it's like "a bad 'Scooby-Doo' episode." www.axios.com/2024/03/26/n...

Top cyber research agency slows work on crucial security database without warningwww.axios.com NIST has said what initiated the slow down at the National Vulnerability Database — or how long it will last.

a bit suss, tbh

Panera Bread experiencing nationwide IT outage since Saturdaywww.bleepingcomputer.com Since Saturday, U.S. food chain giant Panera Bread has been experiencing a nationwide outage that has impacted its IT systems, including online ordering, POS systems, phones, and various internal syst...

psa: if you're emailing me asking if it's too early to schedule #RSAC meetings, you already know the answer! see ya in my inbox next month — xoxo.

so much of this interview with LockBitSupp is so unhinged (expected, but omg) therecord.media/after-lockbi...

new microsoft 8-k just dropped: 👀, "the Company has determined that the threat actor used and continues to use information it obtained to gain, or attempt to gain, unauthorized access to some of the Company’s source code repositories and internal systems." www.sec.gov/ixviewer/ix....

A senior CISA official tells reporters the agency hasn't seen any "specific or credible" threats to today's Super Tuesday elections. That also includes the ongoing social media outages: "At this time, we are not aware of any specific election nexus nor any specific malicious cyber activity nexus."

The Treasury Department sanctioned its first spyware vendor today. Intellexa + its affiliates sold the Predator spyware to governments that then used the malware to surveil U.S. government officials, journalists and activists. www.axios.com/2024/03/05/t...

Treasury sanctions Predator spyware operator in unprecedented movewww.axios.com The Biden administration sanctioned the Intellexa spyware consortium over human rights abuses.

the megabus dropping you off literally right outside of Lincoln Tunnel when you go to new york is such a vibe — bare minimum queen 👑

Reposted by

Sam Sabin

"This is an odd one." www.wired.com/story/lockbi...

The Mysterious Case of the Missing Trump Trial Ransomware Leakwww.wired.com The notorious LockBit gang promised a Georgia court leak "that could affect the upcoming US election.” It didn't materialize—but the story may not be over yet.