Andy Greenberg

@[email protected]
10.1K Followers
180 Following
708 Posts
Writer for WIRED. Author of SANDWORM. New book, TRACERS IN THE DARK: The Global Hunt for the Crime Lords of Cryptocurrency, out now. [email protected]
Website:https://andygreenberg.net/
WIRED page:https://www.wired.com/author/andy-greenberg/
Birdsite:https://twitter.com/a_greenberg
Bluesky:@agreenberg.bksy.social
Andy Greenberg1d ago
Developers from Signal (including its protocol's co-creator) along with Microsoft and Harvard unveil Encrypted Spaces, an open-source codebase for a new generation of private collaboration apps. Think Slack, Discord, Google Docs, all end-to-end encrypted. https://www.wired.com/story/signal-alums-release-encrypted-spaces-a-new-system-for-building-private-collaboration-apps/
Signal Alums Reveal ‘Encrypted Spaces,’ a System for Making Private Collaboration Apps

The new open-source project could serve as the basis for a future of apps with features as complex as Slack, Discord, or Google Docs—but with added protection against surveillance.

WIRED
Andy GreenbergMay 21

After this week's Github breach, we checked in on hacker group TeamPCP's victim count: their supply chain attacks have tainted more than 500 pieces of software (a thousand-plus different version) and breached hundreds of companies. This is out of control.

https://www.wired.com/story/teampcp-software-supply-chain-attack-spree-github/

A Hacker Group Is Poisoning Open Source Code at an Unprecedented Scale

GitHub is just the latest victim of TeamPCP, a gang that has carried out a spree of software supply chain attacks that has impacted hundreds of organizations.

WIRED
Andy GreenbergMay 20
Andy GreenbergMay 18

Mohammad Muzahir, aka Red Bull, the scam compound whistleblower and human trafficking victim whose incredible bravery made possible this story...https://www.wired.com/story/he-leaked-the-secrets-southeast-asian-scam-compound-then-had-to-get-out-alive/... now has a GoFundMe.

I'm in touch with the creator, who is legit. Grateful to her and to anyone who can donate:

https://www.gofundme.com/f/support-whistleblower-journey-to-a-cybersecurity-degree

He Leaked the Secrets of a Southeast Asian Scam Compound. Then He Had to Get Out Alive

A source trapped inside an industrial-scale scamming operation contacted me, determined to expose his captors’ crimes—and then escape. This is his story.

WIRED
Andy GreenbergMay 18

Mohammad Muzahir, aka Red Bull, the scam compound whistleblower and human trafficking victim whose incredible bravery made possible this story...https://www.wired.com/story/he-leaked-the-secrets-southeast-asian-scam-compound-then-had-to-get-out-alive/... now has a GoFundMe.

I'm in touch with the creator, who is legit. Grateful to her and to anyone who can donate:

https://www.gofundme.com/f/support-whistleblower-journey-to-a-cybersecurity-degree

He Leaked the Secrets of a Southeast Asian Scam Compound. Then He Had to Get Out Alive

A source trapped inside an industrial-scale scamming operation contacted me, determined to expose his captors’ crimes—and then escape. This is his story.

WIRED
Andy GreenbergMay 7
Researchers at security firm RedAccess found more than 5,000 vibe-coded apps, created with AI tools from Lovable, Replit, Base44 and Netlify, with essentially no security, accessible on the open web. About 40% exposed sensitive personal or corporate data. https://www.wired.com/story/thousands-of-vibe-coded-apps-expose-corporate-and-personal-data-on-the-open-web/
Thousands of Vibe-Coded Apps Expose Corporate and Personal Data on the Open Web

Companies like Lovable, Base44, Replit, and Netlify use AI to let anyone build a web app in seconds—and in thousands of cases, spill highly sensitive data onto the public internet.

WIRED
Andy GreenbergApr 24
Show threadAndy GreenbergApr 23
Regardless of whether Fast16 was used against Iran—which remains just a theory—it rewrites the history of cybersabotage operations. And should maybe change our ideas, too, of who can/should trust the results of life-critical calculations on their computers.
Andy GreenbergApr 24
Show threadAndy GreenbergApr 23
One of the types of code it appears designed to target is the modeling program LS-DYNA. Significantly, LS-DYNA has been used by Iranian research scientists who may have contributed to nuclear weapons research. Problems like modeling the properties of different explosives that can trigger warheads.
Andy GreenbergApr 24
Show threadAndy GreenbergApr 23
Now he and his colleague Vitaly Kamluk have cracked it: Fast16 is designed to spread on networks, then tamper with the processes of specific calculation software that models complex physical phenomena, everything from oil spills to bird/airplane collisions.
Andy GreenbergApr 24
Show threadAndy GreenbergApr 23
Only in 2019 did @juanandres_gs find the actual code for Fast16, which dated all the way back to 2005, through some clever hunting on the malware repository VirusTotal. It took seven more years for anyone to figure out what it actually did.
Andy GreenbergApr 24
Show threadAndy GreenbergApr 23
Fast16 has been a mystery since it was named in the ShadowBrokers leak of NSA tools in 2017: A program that advised agency hackers how to deal with other malware they encountered merely notes for Fast16: "NOTHING TO SEE HERE - CARRY ON," suggesting it was a created by the US or a friendly country.