Patrick C Miller 

@[email protected]
4.7K Followers
1.5K Following
54.5K Posts
Critical Infrastructure & Industrial Security Advisor. Recovering regulator. Airport dweller. #PDX-based. @ampyxcyber President and CEO. CCI US Coordinator. @beerisac coin 001. #ICS #OT #NERCCIP #NIST #TSASD #DHSCPG #IEC62443
Websitehttps://www.patrickcmiller.com/
Companyhttps://www.ampyxcyber.com/
LinkedInhttps://www.linkedin.com/in/millerpatrickc/
Podcasthttps://rss.com/podcasts/amperesec/
Patrick C Miller 28m ago
China-Linked UAT-8302 Targets Governments Using Shared APT Malware Across Regions https://thehackernews.com/2026/05/china-linked-uat-8302-targets.html
China-Linked UAT-8302 Targets Governments Using Shared APT Malware Across Regions

UAT-8302 targets governments since 2024 using shared China-linked malware, enabling persistent access and cross-group cyber operations.

The Hacker News
Patrick C Miller 58m ago
Pennsylvania sues Character.AI after a chatbot allegedly posed as a doctor https://techcrunch.com/2026/05/05/pennsylvania-sues-character-ai-after-a-chatbot-allegedly-posed-as-a-doctor/
Pennsylvania sues Character.AI after a chatbot allegedly posed as a doctor | TechCrunch

According to Pennsylvania's filing, a Character AI chatbot presented itself as a licensed psychiatrist during a state investigation, and also fabricated a serial number for its state medical license.

TechCrunch
Patrick C Miller 1h ago
MetInfo CMS CVE-2026-29014 Exploited for Remote Code Execution Attacks https://thehackernews.com/2026/05/metinfo-cms-cve-2026-29014-exploited.html
MetInfo CMS CVE-2026-29014 Exploited for Remote Code Execution Attacks

MetInfo CMS flaw CVE-2026-29014 exploited after April 7 patch, enabling remote code execution and targeting 2,000 instances.

The Hacker News
Patrick C Miller 1h ago
CloudZ malware abuses Microsoft Phone Link to steal SMS and OTPs https://www.bleepingcomputer.com/news/security/cloudz-malware-abuses-microsoft-phone-link-to-steal-sms-and-otps/
CloudZ malware abuses Microsoft Phone Link to steal SMS and OTPs

A new version of the CloudZ remote access tool (RAT) is deploying a previously unseen malicious plugin called Pheno that hijacks the Microsoft Phone Link connection to steal sensitive codes from mobile devices.

BleepingComputer
Patrick C Miller 2h ago
NCSC Warns of an AI-Fuelled “Vulnerability Patch Wave” https://www.infosecurity-magazine.com/news/ncsc-warns-aifuelled-vulnerability/
NCSC Warns of an AI-Fuelled “Vulnerability Patch Wave”

The UK's National Cyber Security Centre is urging organizations to prepare for glut of new software updates

Infosecurity Magazine
Patrick C Miller 2h ago
Firewalls won’t protect GEOINT companies. Cyber resilience will, if we act now. https://breakingdefense.com/2026/05/firewalls-wont-protect-geoint-companies-cyber-resilience-will-if-we-act-now/
Firewalls won’t protect GEOINT companies. Cyber resilience will, if we act now. 

As cyberattacks increasingly aim to disrupt operations rather than just steal data, GEOINT providers need models that can continue operations under attack, Norman Laudermilch writes.

Breaking Defense
Patrick C Miller 3h ago
Influential study touting ChatGPT in education retracted over red flags https://arstechnica.com/ai/2026/05/influential-study-touting-chatgpt-in-education-retracted-over-red-flags/
Influential study touting ChatGPT in education retracted over red flags

The retracted study on ChatGPT in education was already cited hundreds of times.

Ars Technica
Patrick C Miller 3h ago
The Math You Need to Start Understanding LLMs https://hackaday.com/2026/05/04/the-math-you-need-to-start-understanding-llms/
The Math You Need To Start Understanding LLMs

Once you peel back the hype and mysticism, large language models (LLMs) are a fascinating application of statistical models, effectively what you get when you dial a basic auto-complete model up to…

Hackaday
Patrick C Miller 4h ago
DarkSword Malware https://www.schneier.com/blog/archives/2026/05/darksword-malware.html
DarkSword Malware - Schneier on Security

DarkSword is a sophisticated piece of malware—probably government designed—that targets iOS. Google Threat Intelligence Group (GTIG) has identified a new iOS full-chain exploit that leveraged multiple zero-day vulnerabilities to fully compromise devices. Based on toolmarks in recovered payloads, we believe the exploit chain to be called DarkSword. Since at least November 2025, GTIG has observed multiple commercial surveillance vendors and suspected state-sponsored actors utilizing DarkSword in distinct campaigns. These threat actors have deployed the exploit chain against targets in Saudi Arabia, Turkey, Malaysia, and Ukraine...

Schneier on Security
Patrick C Miller 4h ago
A blueprint for using AI to strengthen democracy https://www.technologyreview.com/2026/05/05/1136843/ai-democracy-blueprint/
A blueprint for using AI to strengthen democracy

AI is changing what it means to be a democratic citizen. Here’s how we can harness it for good.

MIT Technology Review