Notices by Kevin Beaumont (gossithedog@cyberplace.social), page 2

We cookin’

@dannyjpalmer Phonejacker on E4 is back and has gone too far

Switch 2 release day update

@foobarry they won't comment on that

Co-op say they have largely completed recovery, and have removed the cyber attack banner and statement from their website

https://www.retailgazette.co.uk/blog/2025/06/co-op-cyber-attack/

I think they did a great job. They do call it a "highly sophisticated attack", which, frankly.. isn't true and may come out in open court later if the suspects are ever caught.

@malwaretech don’t worry, Microsoft are teaching Copilot in schools and are rolling it out internationally (their plans are in an open Azure Storage bucket) so the next generation demand Copilot in employment as the goal.

Switch 2 release day

@czauner yes and no

@hal8999 that's fine, but Delta have different IT - e.g. the point of sale devices in airports are airgapped and need hands on engineers. I've got a load of videos of Delta engineers visiting each, fixing BitLocker and removing the CS driver.

@hal8999 re Delta - they went all in with CrowdStrike and Microsoft - e.g. they did 100% BitLocker encryption on every system, including servers, with pins too. Because of this, the automated recovery didn't work. So they got totalled.

@cR0w what happened?

US authorities are investigating CrowdStrike over their defective software update last year - and, intriguingly, their financial statements.

Why intriguing? I mentioned last year - their financial position doesn’t make sense. One to watch.

https://www.wsj.com/business/telecom/crowdstrike-cooperating-with-federal-probes-into-july-software-outage-c39a96b5?st=ycLecq&reflink=desktopwebshare_permalink

@ralfmaximus they won’t, they’re too shit to have traffic shaping

My ISP sent me an email entitled “Polite reminder” letting me know I’d used 6tb of data in the last month on my unlimited package.

Me:

@mttaggart it’s an industry groundbreaking Excel spreadsheet on OneDrive

Scammers stole £47m from HMRC in phishing attack

Scammers? Who used phishing? 🤔

https://www.bbc.com/news/articles/cvgnz3r2m7eo

The long story short with that one is that multiple governments are using Apple push notifications for investigations. If you’re working on something really sensitive (ie comms), I’d turn off push notifications both sides.

An update - numbers! https://www.404media.co/apple-gave-governments-data-on-thousands-of-push-notifications/

CrowdStrike still expects to take around another $65m in costs from their update snafu last year, they retained customers by offering financial incentives https://www.reuters.com/business/crowdstrike-shares-drop-windows-outage-fallout-hits-forecast-2025-06-04/

Microsoft doing extreme wordsmithing here. They’re denying a different allegation - it was never said that Microsoft denied the ICC as an *organisation* service. https://www.politico.eu/article/microsoft-did-not-cut-services-international-criminal-court-president-american-sanctions-trump-tech-icc-amazon-google/