Book Review: Cult of the Dead Cow: How the Original Hacking Supergroup Might Just Save the World

Author: Joseph Menn
Fiction: Non-Fiction
Genres: Technology, Cyber Security
Rating: 3.5 Stars
Date Finished: 3/6/25

The Book in 3 Sentences

Explores the history and influence of the legendary hacking collective known as cDc, which pioneered hacktivism and shaped modern cybersecurity.
The book delves into the group’s groundbreaking contributions, such as exposing software vulnerabilities, promoting ethical hacking, and influencing figures like Beto O’Rourke.
Menn also highlights the evolving cyber threat landscape, emphasizing the ongoing battle between hackers, corporations, and governments over privacy and security.

Impressions

How I Discovered It

I’m reading through all the information security books that my local library has. I’m also try to get them to include more books from this subject.

Who Should Read It?

Cult of the Dead Cow is ideal for cybersecurity professionals, ethical hackers, and tech enthusiasts interested in the origins of hacktivism and its impact on modern security. It’s also a great read for policymakers, journalists, and privacy advocates who want to understand the ethical dilemmas and power struggles shaping the digital world. Additionally, anyone curious about the intersection of technology, activism, and government surveillance will find this book insightful and thought-provoking.

How the Book Changed Me

Expanded Perspective on Hacktivism – It shifted your view of hackers to individuals who use their skills for social good, advocating for privacy, security, and accountability.
Strengthened Awareness of Cybersecurity Risks – It revalidated by view of digital vulnerabilities, how governments and corporations handle (or mishandle) cybersecurity, and the importance of protecting personal data.
Inspiration for Ethical Advocacy – The book motivated me to push for stronger digital rights.

My Top 3 Quotes

“Hacking is not inherently bad. It’s about figuring out how things work and making them better.”
“The greatest threat to cybersecurity is not hackers—it’s apathy.”
“Privacy is not about having something to hide; it’s about having control over your own life.”

Summary

Cult of the Dead Cow by Joseph Menn chronicles the rise and influence of one of the most legendary and impactful hacking groups in history. The book explores how the cDc pioneered hacktivism, exposing software vulnerabilities, advocating for digital privacy, and shaping cybersecurity policies. Menn highlights their role in pushing companies and governments to take security more seriously while also delving into their ethical dilemmas and controversial tactics. The book also reveals the surprising connection of some members to mainstream politics and business, illustrating how hacking culture has evolved from the underground to the halls of power. Ultimately, Cult of the Dead Cow is a compelling look at the battle for control over the internet, security, and personal freedoms in the digital age.

Crowdstrike Global Threat Report 2025

CrowdStrike’s 2025 Global Threat Report details the evolving cybersecurity landscape, emphasizing the increasing sophistication and business-like approach of cyber adversaries. The report underscores the rise of “enterprising adversaries” leveraging genAI for social engineering and malicious activities.

TLDR:

The average breakout time has decreased to 48 minutes, with the fastest recorded breakout time being only 51 seconds.
Voice phishing (vishing) attacks saw a significant increase of 442% between the first and second half of 2024.
Attacks related to initial access accounted for 52% of the vulnerabilities observed by CrowdStrike in 2024.
Advertisements for access brokers increased by 50% year-over-year, indicating a thriving business in providing access as a service.
China-nexus activity surged by 150% overall, with some targeted industries experiencing a 200% to 300% increase in attacks compared to the previous year.
79% of detections in 2024 were malware-free, a significant increase from 40% in 2019, indicating a shift towards hands-on-keyboard techniques.
26 new adversaries were tracked by CrowdStrike in 2024, bringing the total to 257.
Interactive intrusion campaigns increased by 35% year-over-year.
Valid account abuse was responsible for 35% of cloud-related incidents.
FAMOUS CHOLLIMA had 304 incidents, with nearly 40% representing insider threat operations.
LLM-generated phishing messages had a 54% click-through rate, significantly higher than human-written phishing messages at 12%.
New cloud intrusions increased 26% compared to 2023, indicating more threat actors are targeting cloud services.
China-nexus intrusions increased 150% across all sectors on average compared to 2023

Weekly Cybersecurity Wrap-up 2/24/25

Each week I publish interesting articles and ways to improve your understanding of cybersecurity.

Projects

TryHackMe – Networking Concepts – In Progress

Videos

Articles

DOGE’s US worker purge has created a spike in insider risk – Summarily firing workers who have access to national secrets is creating a nearly unprecedented environment for classified data exposure, writes CIA Distinguished Career Intelligence Medal awardee Christopher Burgess.
Faced with insider threats, how do you strengthen defenses from within? – We explore how behavioral analytics and an ethical environment help financial institutions mitigate and detect insider threats effectively.
A single default password exposes access to dozens of apartment buildings – A security researcher says the default password shipped in a widely used door access control system allows anyone to easily and remotely access door locks and elevator controls in dozens of buildings across the U.S. and Canada.
Exploits for unpatched Parallels Desktop flaw give root on Macs – Two different exploits for an unpatched Parallels Desktop privilege elevation vulnerability have been publicly disclosed, allowing users to gain root access on impacted Mac devices.
Coast Guard hit with data breach, impacting pay for more than 1,100 members – The Coast Guard Pay and Personnel Center’s Direct Access service is down until Feb. 19 as a result.
Former NSA, Cyber Command chief Paul Nakasone says U.S. falling behind its enemies in cyberspace – In a wide-ranging speech and interview, Nakasone also talked about Trump administration moves and the shape of cyber offensive operations.
Australia Bans Kaspersky Software Over National Security and Espionage Concerns – Australia has become the latest country to ban the installation of security software from Russian company Kaspersky, citing national security concerns.
Crypto exchange Bybit says it was hacked and lost around $1.4B – Crypto exchange Bybit announced on Friday that “a sophisticated attack” led to the theft of Ethereum (ETH) from one of the company’s offline wallets.
- Bybit Hack Traced to Safe{Wallet} Supply Chain Attack Exploited by North Korean Hackers – The U.S. Federal Bureau of Investigation (FBI) formally linked the record-breaking $1.5 billion Bybit hack to North Korean threat actors, as the company’s CEO Ben Zhou declared a “war against Lazarus.”
US employee screening giant DISA says hackers accessed data of more than 3M people – DISA Global Solutions, a U.S.-based provider of employee screening services, has said it suffered a data breach that affects more than 3.3 million people.
Detroit PBS notifies 1,700 of data breach that compromised SSNs, passwords, financial and medical info – Detroit PBS over the weekend confirmed it notified 1,694 people about an August 2024 data breach that compromised the following private info
Southern Water says Black Basta ransomware attack cost £4.5M in expenses – United Kingdom water supplier Southern Water has disclosed that it incurred costs of £4.5 million ($5.7M) due to a cyberattack it suffered in February 2024.
Hackers Can Crack Into Car Cameras in Minutes Flat – It’s shockingly simple to turn a car dashcam into a powerful reconnaissance tool for gathering everyday routine and location data, researchers warn.

Podcasts

Smashing Security 406: History’s biggest heist just happened, and online abuse

Weekly Cybersecurity Wrap-up 2/17/25

Each week I publish interesting articles and ways to improve your understanding of cybersecurity.

Projects

TryHackMe – Linux Shells – Complete

Videos

Articles

Critical PostgreSQL bug tied to zero-day attack on US Treasury – High-complexity bug unearthed by infoseccers, as Rapid7 probes exploit further
Hackers broke into Watergate Hotel’s network, stole personal data from hotel computers – There has been another Watergate break-in.
Elon Musk’s DOGE website has been defaced because anyone can edit it – Instead of using government servers, the DOGE website appears to pull from an insecure database.
Meta to link world with longest subsea cable – Meta, the parent company of Facebook and Instagram, confirmed plans Monday to build the world’s longest subsea cable that will circle the Earth and connect five continents.
Hundreds of Dutch medical records bought for pocket change at flea market – 15GB of sensitive files traced back to former software biz
How Russian Hackers Are Exploiting Signal ‘Linked Devices’ Feature for Real-Time Spying – Mandiant warns that multiple Russian APTs are abusing a nifty Signal Messenger feature to surreptitiously spy on encrypted conversations
CISA and FBI: Ghost ransomware breached orgs in 70 countries – CISA and the FBI said attackers deploying Ghost ransomware have breached victims from multiple industry sectors across over 70 countries, including critical infrastructure organizations.
US Army soldier pleads guilty to AT&T and Verizon hacks – Cameron John Wagenius pleaded guilty to hacking AT&T and Verizon and stealing a massive trove of phone records from the companies, according to court records filed on Wednesday.
Cisco Confirms Salt Typhoon Exploited CVE-2018-0171 to Target U.S. Telecom Networks – Cisco has confirmed that a Chinese threat actor known as Salt Typhoon gained access by likely abusing a known security flaw tracked as CVE-2018-0171, and by obtaining legitimate victim login credentials as part of a targeted campaign aimed at major U.S. telecommunications companies.
Cybercriminals Can Now Clone Any Brand’s Site in Minutes Using Darcula PhaaS v3 – The threat actors behind the Darcula phishing-as-a-service (PhaaS) platform appear to be readying a new version that allows prospective customers and cyber crooks to clone any brand’s legitimate website and create a phishing version, further bringing down the technical expertise required to pull off phishing attacks at scale.
How China Pinned University Cyberattacks on NSA Hackers – A researcher dives into Chinese reports attributing cyberattacks on Northwestern Polytechnical University to the NSA’s TAO division.
Thailand ready to welcome 7,000 trafficked scam call center victims back from Myanmar – It comes amid a major crackdown on the abusive industry that started during COVID

Podcasts

Smashing Security 405: A crypto con exchange, and soaring ticket scams

Weekly Cybersecurity Wrap-up 2/10/25

Each week I publish interesting articles and ways to improve your understanding of cybersecurity.

Projects

TryHackMe – Windows Powershell – Complete
TryHackMe – Linux Shells – In Progress

Videos

Articles

A US Treasury Threat Intelligence Analysis Designates DOGE Staff as ‘Insider Threat’ – An internal email reviewed by WIRED calls DOGE staff’s access to federal payments systems “the single greatest insider threat risk the Bureau of the Fiscal Service has ever faced.”
Hacker pleads guilty to SIM swap attack on US SEC X account – Today, an Alabama man pleaded guilty to hijacking the U.S. Securities and Exchange Commission (SEC) account on X in a January 2024 SIM swapping attack.
Toll booth bandits continue to scam via SMS messages – North American drivers are continuing to be barraged by waves of scam text messages, telling them that they owe money on unpaid tolls.
Arizona woman pleads guilty to running laptop farm for N. Korean IT workers, faces 9-year sentence – A U.S. citizen pleaded guilty, Tuesday to playing a role in a wide-ranging scheme that allowed multiple North Korean nationals to collect paychecks from more than 300 U.S. companies.
Data Leaks Happen Most Often in These States — Here’s Why – State-led data privacy laws and commitment to enforcement play a major factor in shoring up business data security, an analysis shows.
Indiana Man Sentenced to 20 Years in Prison for Hacking, $37 Million Crypto Theft – Evan Light was sentenced to 20 years in federal prison for hacking an investment holdings company and stealing $37 million in cryptocurrency.
Scammers clone Italian defence minister’s voice with AI in ransom scheme – Entrepreneurs in Italy were targeted by scammers posing as Defence Minister Guido Crosetto, asking for money to free kidnapped journalists.
Astaroth Phishing Kit Bypasses 2FA to Hijack Gmail and Microsoft Accounts – New Astaroth Phishing Kit bypasses 2FA (two-factor authentication) to steal Gmail, Yahoo and Microsoft login credentials using a reverse proxy, real-time credential capture, and session hijacking.
Scarlett Johansson warns of “1000-foot AI wave” following viral deepfake – Scarlett Johansson has had enough of non-consensual videos and images created using artificial intelligence (AI) and is urging legislators to clamp down on unauthorized AI usage.
RansomHub Becomes 2024’s Top Ransomware Group, Hitting 600+ Organizations Globally – The threat actors behind the RansomHub ransomware-as-a-service (RaaS) scheme have been observed leveraging now-patched security flaws in Microsoft Active Directory and the Netlogon protocol to escalate privileges and gain unauthorized access to a victim network’s domain controller as part of their post-compromise strategy.

Podcasts

Smashing Security 404: Podcast not found

Weekly Cybersecurity Wrap-up 2/3/25

Each week I publish interesting articles and ways to improve your understanding of cybersecurity.

Projects

TryHackMe – Windows Powershell – In Progress
Cryptohack – A free, fun platform for learning modern cryptography.

Videos

The Lazarus Heist – YouTube Playlist

Articles

US Justice Department sues to block HPE’s $14B acquisition of Juniper Networks – The U.S. Department of Justice has sued to block enterprise tech giant HPE from acquiring Juniper Networks, the networking firm, citing antitrust concerns.
Grubhub confirms data breach affecting customers and drivers – U.S. food delivery giant Grubhub says hackers accessed the personal details of customers and drivers after breaching its internal systems.
Chinese and Iranian Hackers Are Using U.S. AI Products to Bolster Cyberattacks – Hackers linked to China, Iran and other foreign governments are using new AI technology to bolster their cyberattacks against U.S. and global targets, according to U.S. officials and new security research.
Apple ordered to open encrypted user accounts globally to UK spying – The secret order would give the UK access to encrypted backups belonging to any user — not just Brits.
DeepSeek App Transmits Sensitive User and Device Data Without Encryption – A new audit of DeepSeek’s mobile app for the Apple iOS operating system has found glaring security issues, the foremost being that it sends sensitive data over the internet sans any encryption, exposing it to interception and manipulation attacks.
Apple missed screenshot-snooping malware in code that made it into the App Store, Kaspersky claims – OCR plugin great for extracting crypto-wallet secrets from galleries
Agencies Sound Alarm on Patient Monitors With Hardcoded Backdoor – CISA and the FDA are warning that Contec CMS8000 and Epsimed MN-120 patient monitors are open to meddling and data theft; Claroty Team82 flagged the vulnerability as an avoidable insecure design issue.
Netgear warns users to patch critical WiFi router vulnerabilities – Netgear has fixed two critical vulnerabilities affecting multiple WiFi router models and urged customers to update their devices to the latest firmware as soon as possible.

Podcasts

Smashing Security 402: Hackers get hacked, the British Museum IT shutdown, and social media kidnaps
Smashing Security 403: Coinbase crypto heists, QR codes, and ransomware in the classroom
Darknet Diaries EP 154: Hijacked Line

Weekly Cybersecurity Wrap-up 1/27/25

Each week I publish interesting articles and ways to improve your understanding of cybersecurity.

Projects

TryHackMe – Windows Command Line – Complete
TryHackMe – Windows Powershell – In Progress

Videos

Articles

UnitedHealth confirms 190 million Americans affected by Change Healthcare data breach – UnitedHealth has confirmed the ransomware attack on its Change Healthcare unit last February affected around 190 million people in America — nearly double previous estimates.
Salt Typhoon: An Analysis of Vulnerabilities Exploited by this State-Sponsored Actor – Salt Typhoon, a state-sponsored actor linked to the People’s Republic of China, has breached at least nine U.S.-based telecommunications companies with the intent to target high profile government and political figures. Tenable Research examines the tactics, techniques and procedures of this threat actor.
Volt Typhoon: U.S. Critical Infrastructure Targeted by State-Sponsored Actors – Volt Typhoon, a state-sponsored actor linked to the People’s Republic of China, has consistently targeted U.S. critical infrastructure with the intent to maintain persistent access. Tenable Research examines the tactics, techniques and procedures of this threat actor.
Millions of Subarus could be remotely unlocked, tracked due to security flaws – Flaws also allowed access to one year of location history.
British Museum says ex-contractor ‘shut down’ IT systems, wreaked havoc – Former freelancer cuffed a week after being dismissed by UK’s top visitor attraction
Apple chips can be hacked to leak secrets from Gmail, iCloud, and more – Side channel gives unauthenticated remote attackers access they should never have.
Mastercard’s multi-year DNS cut-and-paste nightmare – What is frightening about this mistake is not how much damage cyberthieves could have done, but how easy it is to make and how difficult it is to discover.
MGM agrees to pay $45 million to victims of 2019 data breach and 2023 ransomware attack – MGM Resorts International agreed to pay $45 million to settle multiple class action lawsuits related to a data breach in 2019 and a ransomware attack the company experienced in 2023.

Podcasts

Darknet Dairies – 153: Bike Index

Weekly Cybersecurity Wrap-up 1/20/25

Each week I publish interesting articles and ways to improve your understanding of cybersecurity.

Projects

TryHackMe – Windows Command Line – Complete
TryHackMe – Windows PowerShell – In Progress

Videos

Articles

Caught secretly selling car owners’ driving data, General Motors slapped with a hefty ban by Lina Khan’s FTC – General Motors reached a settlement with the U.S. Federal Trade Commission that will prohibit it from selling information on its customers’ driving habits without their knowledge and explicit consent for the next 20 years.
Ex-CIA Analyst Pleads Guilty to Sharing Top-Secret Data with Unauthorized Parties – According to court filings, Rahman is alleged to have retained without authorization two documents classified as Top Secret on or about October 17, 2024, and delivered it to multiple individuals who were not entitled to receive it.
FBI Warned Agents It Believes Phone Logs Hacked Last Year [Paywall] – FBI leaders have warned that they believe hackers who broke into AT&T Inc.’s system last year stole months of their agents’ call and text logs, setting off a race within the bureau to protect the identities of confidential informants, a document reviewed by Bloomberg News shows.
Treasury Levels Sanctions Tied to a Massive Hack of Telecom Companies and Breach of Its Own Network – The Treasury Department announced sanctions in connection with a massive Chinese hack of American telecommunications companies and a breach of its own computer network.
Bitbucket services “hard down” due to major worldwide outage – Bitbucket is investigating a massive outage affecting Atlassian Bitbucket Cloud customers worldwide, with the company saying its cloud services are “hard down.”
FortiGate config leaks: Victims’ email addresses published online – Experts warn not to take leaks lightly as years-long compromises could remain undetected
Cloudflare Blocked a Record-breaking 5.6 Tbps Ddos Attack – Cloudflare announced that it has blocked a record-breaking 5.6 terabit-per-second (Tbps) distributed denial-of-service (DDoS) attack.

Podcasts

Smashing Security 401: Hacks on the high seas, and how your home can be stolen under your nose

Weekly Cybersecurity Wrap-up 1/13/25

Each week I publish interesting articles and ways to improve your understanding of cybersecurity.

Projects

TryHackMe – Search Skills – Complete
TryHackMe – Windows Command Line – In Progress

Videos

Articles

Phishing texts trick Apple iMessage users into disabling protection – Cybercriminals are exploiting a trick to turn off Apple iMessage’s built-in phishing protection for a text and trick users into re-enabling disabled phishing links.
Proton worldwide outage caused by Kubernetes migration, software change – Swiss tech company Proton, which provides privacy-focused online services, says that a Thursday worldwide outage was caused by an ongoing infrastructure migration to Kubernetes and a software change that triggered an initial load spike.
Telefonica Breach Exposes Jira Tickets, Customer Data – The Hellcat ransomware group has stolen roughly 5,000 documents, potentially containing confidential information, from the telecom giant’s internal database.
Former Disney Employee Admits to Hacking Menu System to Change Allergy Information – As part of a plea deal, a former Disney employee has admitted to hacking the menus of restaurants at the resort.
Chinese cyber-spies peek over shoulder of officials probing real-estate deals near American military bases – Gee, wonder why Beijing is so keen on the – checks notes – Committee on Foreign Investment in the US
Leveraging A Generative AI Strategy To Mitigate Information Leakage – Data security in the digital space is a priority today as organizations bear an increased risk of information leakage. Sensitive data has become a primary target for cyber threats, making robust protection essential. In this context, generative AI has emerged as a powerful tool to address these challenges.
A breach of Gravy Analytics’ huge trove of location data threatens the privacy of millions – A hack and data breach at location data broker Gravy Analytics is threatening the privacy of millions of people around the world whose smartphone apps unwittingly revealed their location data collected by the data giant.
Scholastic suffers data breach exposing 8 million people, report says – Hacker says the theft was intended to serve as a lesson
The great Google Ads heist: criminals ransack advertiser accounts via fake Google ads – Online criminals are targeting individuals and businesses that advertise via Google Ads by phishing them for their credentials — ironically — via fraudulent Google ads.
Data From 15,000 Fortinet Firewalls Leaked by Hackers – Hackers have leaked 15,000 Fortinet firewall configurations, which were apparently obtained as a result of exploitation of CVE-2022–40684.
China’s Salt Typhoon spies spotted on US govt networks before telcos, CISA boss says – We are only seeing ‘the tip of the iceberg,’ Easterly warns

Podcasts

The FAIK Files – Holiday Special: AI Safety Update
Hacking Humans – Nice to meet you, I’m a scammer.

A Must-Read for Parents of Gen Z and Gen Alpha: “The Anxious Generation” by Jonathan Haidt

As a parent, it’s natural to be concerned about the impact of social media on our children. In recent years, we’ve seen an alarming rise in anxiety, depression, and other mental health issues among young people. That’s why I was excited to dive into “The Anxious Generation” by Jonathan Haidt, a thought-provoking book that sheds light on this critical issue.

I really enjoyed reading this book, which offers a comprehensive analysis of how social media is affecting our children’s lives and the world at large. As someone who values play-based childhoods and more independence for kids, I found myself nodding in agreement with Haidt’s arguments throughout the book. Although, I’m not always the best at executing these principles in my own children.

One of the most compelling aspects of “The Anxious Generation” is its accessibility. Written in an approachable tone, Haidt breaks down complex concepts into easy-to-understand language, making it a must-read for parents and caregivers alike. The author’s passion for this topic shines through on every page, inspiring readers to take action.

What I appreciated most about the book was how Haidt tackles tough topics like social media addiction, pornography, and the impact of technology on relationships. He offers practical advice for parents, educators, employers, and policymakers on how to mitigate these effects and promote healthier habits among young people.

As a parent of Gen Z or Alpha children, I highly recommend “The Anxious Generation” as an essential read. It’s not just a book – it’s a call to action. By speaking up and supporting the four foundational reforms outlined in the book, we can create a better future for our children. Haidt encourages readers to connect with others who share their values, creating a powerful movement that will inspire positive change.

If you’re looking for a thought-provoking read that will make you think about your role as a parent and how you can support your child’s well-being in the digital age, “The Anxious Generation” is an excellent choice. Sign up at www.afterbabel.com to access Haidt’s Substack posts on related topics and join the conversation.

Rating: 4.5/5 stars

I highly recommend this book to anyone concerned about the impact of social media on our children’s lives. It’s a must-read for parents, educators, policymakers, and anyone who wants to make a difference in creating a healthier digital landscape for future generations.