John Hultquist

What an amazing day. Thank you everyone who made #CYBERWARCON happen. I can’t express how great it was to see you after such a rough couple of years. We made it!

Skipping BH/DC with the plan to attend @CYBERWARCON

#PublicAttribution of cyber activities is #China’s latest technique for pressuring #Taiwan and shaping the international dialogue around #cybersecurity. Ben Read digs into the details on Binding Hook: bindinghook.com/articles-hooke…

Oh no

"how did you end up working in cybersecurity?" pick a category-

MSTIC blog on Sharepoint exploitation At least 3 actors exploiting CVE-2025-49706 & CVE-2025-49704 as early as July 7: Linen Typhoon Violet Typhoon Storm-2603 (CN-based actor deployed Warlock & Lockbit ransomware in past - current motivation unknown) microsoft.com/en-us/security…

NYT: “Chinese Officers Questioned U.S. Government Employee About His Army Service—The man, a U.S. citizen, is barred from leaving China by the Ministry of State Security, the country’s main intelligence and counterintelligence agency.” @ewong nytimes.com/2025/07/21/us/…

Putin is installing spy software on every new device sold in Russia. This is a huge step toward the Kremlin’s technofascist ambitions of control and coercion. thetimes.com/world/russia-u…

Fascinating to compare the solutions of OpenAI vs Deepmind to the IMO 2025. Both won Gold for answering P1 to P5 correctly. OpenAI (left) vs Gemini (right)

This year will be the 30th @BSidesPyongyang, come celebrate our 30th anniversary at #BSidesPyongyang2025 👏👏👏

US Army learning how to drop grenades from drones

Exciting news! Select SLEUTHCON 2025 talks are now live on our YouTube for you to watch! Get a recap on some of your favorite talks from SLEUTHCON 2025, or watch the ones you missed! Check them out here >> youtube.com/@sleuthcon #SLEUTHCON #cybersecurity

🇨🇳SharePoint vulnerability update: "We assess that at least one of the actors responsible for this early exploitation is a China-nexus threat actor," Mandiant/Google Cloud CTO Chalres Carmakal says in a statement sent to me just now. My earlier reporting: nextgov.com/cybersecurity/…

CYBERWARCON is back! Join us on Wednesday, November 19, 2025, in Arlington, VA + virtually. Follow us to stay up to date for CFPs, volunteer opportunities + more! Check out for more information + sponsorship opportunities >> cyberwarcon.com

Dramatic increase in number of Russian ‘shadow ships’ in Irish-controlled waters irishtimes.com/ireland/2025/0…

North Korean(🇰🇵) malware developers are working in the Cyber Weapons folder.

A technical failure forced airspace restrictions and halted flights from major Polish airports. The country's aviation authority is investigating potential sabotage. therecord.media/poland-investi…

Just a few months away from the 10 year re-release in IMAX theaters

The Chinese-Russian group PGI Technology has begun combining Kevlar thread with optical fiber, to increase the strength of the thread and resistance to breakage in loops during fiber FPV flight. They claim the tensile strength has doubled from 50 N to 100 N. 1/