Sean Zadig

@[email protected]
318 Followers
227 Following
106 Posts
Chief Paranoid and CISO at Yahoo (and AOL, TechCrunch, Engadget, etc). Formerly of Google and NASA OIG. Kind of a nerd.
LinkedIn:https://www.linkedin.com/in/seanzadig/
Twitter:https://twitter.com/seanzadig
Sean ZadigFeb 15, 2023
iHeartMalwareFeb 15, 2023

If you're in a #RomanceScam, what do you do?

In part two of our series we walk through some of the stigmas tied to romance scams, what happens with victims, and point to many resources to help them recover.

https://cofense.com/blog/what-to-do-if-youre-in-a-romance-scam/

What to Do If You're in a Romance Scam: 4 Essential Tips

If you suspect that you're in a romance scam, don't panic. Our blog will guide you through the 4 essential steps to protect yourself and recover from scams.

Cofense
Sean ZadigFeb 10, 2023
Lorenzo Franceschi-BicchieraiFeb 10, 2023

Reddit says: “As we all know, humans are often the weakest part of the security chain.”

Other than this being a trite phrase and a cheap excuse, it also probably doesn’t make the victim of the phishing attack feel better.

Maybe one day we'll stop blaming the victim in infosec...one day.

https://techcrunch.com/2023/02/10/reddit-says-hackers-accessed-internal-data-following-employee-phishing-attack/

TechCrunch is part of the Yahoo family of brands

Sean ZadigFeb 9, 2023
Yoel RothFeb 8, 2023
Honored to represent the field of trust and safety in today’s House Oversight Committee hearing. The stakes for this work — for national security, and for the future of the internet — couldn’t be higher. https://oversight.house.gov/wp-content/uploads/2023/02/Roth-House-Oversight-opening-statement-V4-Final.pdf
Sean ZadigFeb 7, 2023
Royce WilliamsFeb 7, 2023

This is great - Google providing 100,000 free security keys through 2023 to high-risk users. (Though I am still disappointed that - after all of the joint early work Google did with Yubico - they went with Feitian instead of Yubico to provide the raw hardware for the current Titan Security Key series.)

https://blog.google/technology/safety-security/new-partnerships-and-100000-security-keys-to-protect-high-risk-individuals/

#securitykeys #google #yubico #yubikey

New partnerships and 100,000 security keys to protect high-risk individuals

We're partnering with the International Foundation of Electoral Systems and expanding our work with Defending Digital Campaigns leading up to the 2024 U.S. elections

Google
Sean ZadigFeb 7, 2023
Lorenzo Franceschi-BicchieraiFeb 7, 2023

NEW: Andy Greenberg's book "Tracers in the Dark" shows how well cops have learned to catch cybercriminals using the blockchain.

The book is full of detailed behind-the-scenes stories where the cops turn the criminal's use of cryptocurrency against them.

https://techcrunch.com/2023/02/07/andy-greenberg-tracers-in-the-dark-book-review/

TechCrunch is part of the Yahoo family of brands

Sean ZadigFeb 7, 2023
Chris WysopalFeb 7, 2023

New Executive Order to drop after SOTU. Finally! MFA for users interacting with federal government accounts.

"The Digital Theft EO is a directive that seeks to introduce new measures to prevent and detect identity theft involving public benefits" https://fedscoop.com/digital-theft-eo-to-follow-sou/

White House Digital Theft EO expected to follow State of the Union address

The EO is expected to compel federal agencies to use Login.gov where possible, according to two people familiar with the directive.

FedScoop
Sean ZadigFeb 7, 2023
Rick KlauFeb 6, 2023
NASA is hiring a Chief Data Officer. I'll bet a few of you know someone who absolutely needs to know about this opportunity: https://www.usajobs.gov/job/700799600
Chief Data Officer

The Chief Data Officer (CDO) is responsible for the Agency's data strategy, including enterprise-wide governance and utilization of information as an asset, via data processing, analysis, data mining, information trading, and other means. Serves as a key advisor and member of the OCIO senior leadership team. Reviews the impact of the IT infrastructure of the Agency on data asset accessibility to improve infrastructure to reduce barriers that inhibit secure data asset accessibility.

USAJOBS
Sean ZadigFeb 6, 2023
Alex StamosFeb 6, 2023

A very important piece from @cong and Michael Keller on the tragic but obvious outcome of Twitter laying off the engineers and investigators working on child safety.

https://www.nytimes.com/2023/02/06/technology/twitter-child-sex-abuse.html

Musk Pledged to Cleanse Twitter of Child Abuse Content. Is It Working?

Child sexual abuse imagery spreads on Twitter even after the company is notified: One video drew 120,000 views. “Sewer rats,” as one regulator described bad actors, remain.

Sean ZadigFeb 5, 2023
Zack WhittakerFeb 3, 2023

New, by me: A New York-based 'stalkerware' maker has agreed to notify individuals whose phones were compromised by its mobile surveillance software, including PhoneSpector and Highster.

It's a rare, rare win against stalkerware, following a deal with the New York attorney general's office.

More: https://techcrunch.com/2023/02/03/new-york-stalkerware-notify-victims/

TechCrunch is part of the Yahoo family of brands

Sean ZadigFeb 5, 2023
MGFeb 5, 2023

Thank you!

This year I’ll be able to afford some very important specialist care for my kid that I previously couldn’t.

It’s thanks to all the support you have given to the OMG Cable project. So thanks!

4 years funneling the $ back into the project, feels nice to take some out.