"Two California lawmakers introduced legislation that would ban federal immigration enforcement outside polling places, the latest maneuver in the state’s ongoing battles with the Trump administration over both immigration and elections administration":
https://www.politico.com/news/2026/02/20/california-bill-would-block-immigration-agents-near-polling-sites-00790490
#politics #ElectionSecurity #GoodIdea
#electionsecurity
Unredacted Tonight: Why The Joe Rogan-sphere Can't Figure Out Geopolitics!
#USpol #dedollarization #geopolitics #oil #venezuela #westbank #Iran #foreignpolicy #globalfinance #independentmedia #newsanalysis #Venezuela #Sudan #ElectionSecurity #Voting #Elections #geopolitics #petrodollar
https://www.youtube-nocookie.com/embed/iQVhMzREaeo
Pelosi Expresses Concern Over Election Integrity and Security
Nancy Pelosi is worried about election security and people's rights. She shared her thoughts before and after recent elections.
#ElectionSecurity, #NancyPelosi, #Democracy, #VoterRights, #USPolitics
Nancy Pelosi has shared her concerns about the safety of elections and basic rights. She spoke about worries that government power might be used wrongly and that people's freedoms could be hurt.
#ElectionSecurity, #NancyPelosi, #Democracy, #VoterRights, #USPolitics
House Passes SAVE America Act Amidst Debate on Voter Access
The House passed the SAVE America Act. It requires proof of citizenship and photo ID to vote. Some people worry this will stop eligible voters from voting.
#VotingRights, #ElectionSecurity, #USPolitics, #VoterID, #Citizenship
The House of Representatives has passed a new law called the SAVE America Act. This law says people must show proof they are a citizen and show a photo ID to vote. Supporters say it will stop cheating. Critics worry it will make it hard for many people to vote.
#VotingRights, #ElectionSecurity, #USPolitics, #VoterID, #Citizenship
SAVE America Act Proposes Stricter Voter Identification and Citizenship Verification
https://newsletter.tf/save-act-id-vote-citizenship-register/
The SAVE America Act requires photo ID to vote and proof of citizenship to register, aiming to improve election security but raising concerns about voter access.
#ElectionSecurity, #VotingRights, #USPolitics, #VoterID, #CitizenshipVerification
New Bill Wants ID to Vote and Proof of Citizenship to Register
A new bill in the U.S. Congress, called the SAVE America Act, proposes that voters must show photo ID and prove they are citizens to register. Supporters believe this will make elections safer. However, others are concerned it might make it harder for some eligible people to vote.
https://newsletter.tf/save-act-id-vote-citizenship-register/
#ElectionSecurity, #VotingRights, #USPolitics, #VoterID, #CitizenshipVerification
Voting machines are a brisk and effective means of tabulating votes, unlike error-prone humans counting paper ballots. Now comes the next—and only—logical and moral step to ensuring the freest and safest elections while keeping our votes secret and conspiracist bunk at bay: make them open-source.
https://www.technologyreview.com/2024/03/07/1089524/open-source-voting-machines-us-elections/
#electionDenial #electionIntegrity #elections #electionSafety #electionSecurity #electionTransparency #eVoting #openSource #publicScrutiny #votingRights #VotingWorks
LIVE: DHS’s Kristi Noem speaks on election security in Phoenix
U.S. Secretary of Homeland Security Kristi Noem holds a news conference in Phoenix, Arizona, on election security ahead of the 2026 midterms. #midterms #electionsecurity #KristiNoem #phoenix #homelandsecurity Keep up with the latest news from around the world: (
https://fllics.com/en/video/live-dhss-kristi-noem-speaks-on-election-security-in-phoenix/
Telangana DGP Promises Firm Action on Election Offenses
https://newsletter.tf/telangana-election-violence-action-feb11/
Telangana's police chief warns of serious trouble for anyone attacking election staff during local polls.
#TelanganaElections, #ElectionSecurity, #PoliceAction, #FairElections, #Telangana
Telangana Police Chief Says No to Election Violence
Telangana's Director General of Police has promised strong action against anyone who hurts or mistreats people working during the local elections. Security is being increased across the state to keep everyone safe.
https://newsletter.tf/telangana-election-violence-action-feb11/
#TelanganaElections, #ElectionSecurity, #PoliceAction, #FairElections, #Telangana
“If you put your faith in people, you’re going to be hurt,” Parikh said. “The only person I put my faith in is my Lord and Savior, Jesus Christ, right? So I’m not going to comment about anybody else. All I can tell you is, I’m in this fight.”
At that point, Parikh took a long pause. For a moment, it sounded as if he was crying.
#maga #histrionics #fascism #corruption #electionSecurity #trump
Swarms of AI bots can sway people’s beliefs – threatening democracy
#Tech #AI #AIBots #Democracy #Manipulation #Deception #CyberSecurity #TechEthics #Propaganda #BotSwarms #Disinformation #PublicOpinion #ElectionSecurity #AIRegulation #AlgorithmicControl
https://the-14.com/swarms-of-ai-bots-can-sway-peoples-beliefs-threatening-democracy/
A federal judge in Michigan, appointed by Trump, has blocked the Trump-era Justice Department’s attempt to access the state’s voter rolls, ruling that Michigan was within its rights to refuse sharing personal voter information. Judge Hala Jarbou dismissed the DOJ’s claims that such data was necessary to prevent ineligible voting and voter fraud, aligning with similar rulings in Oregon and California that rejected efforts to create a national voter database. These decisions reflect increasing judicial resistance to the DOJ’s efforts to gather detailed voter data ahead of the upcoming midterms, signaling legal hurdles for the administration’s broader push to compile comprehensive voter information. Learn more: https://www.nytimes.com/2026/02/10/us/politics/michigan-judge-voter-data.html?smid=nytcore-android-share #votingrights #ElectionSecurity #JusticeDepartment #VoterPrivacy #MidtermElections #LegalBattles
𝙏𝙝𝙧𝙚𝙖𝙩 𝙈𝙤𝙙𝙚𝙡: 𝘾𝙮𝙗𝙚𝙧𝙨𝙚𝙘𝙪𝙧𝙞𝙩𝙮
𝘧𝘰𝘳 Feb. 10th, 2026
𝘣𝘺 𝘪𝘯𝘥𝘦𝘱𝘦𝘯𝘥𝘦𝘯𝘵 𝘫𝘰𝘶𝘳𝘯𝘢𝘭𝘪𝘴𝘵 @violetblue
- #Discord alternatives (ranked) to its doomed new age-check policy after losing age-check data in a huge hack
- US states are scrambling for #electionsecurity solutions after #CISA abandons them
- Horrific reports of #AI surgery disasters
- Trauma tips for surviving 2026
- A rage check tool to see if you’re being deliberately provoked online
- How to check claims of extraterrestrial life
- Apparently US #redteams have poor standards
...and much more.
* 𝙏𝙝𝙧𝙚𝙖𝙩 𝙈𝙤𝙙𝙚𝙡 𝘪𝘴 𝘧𝘳𝘦𝘦 𝘵𝘰 𝘳𝘦𝘢𝘥 -- 𝘱𝘭𝘦𝘢𝘴𝘦 𝘩𝘦𝘭𝘱 𝘬𝘦𝘦𝘱 𝘪𝘵 𝘢𝘤𝘤𝘦𝘴𝘴𝘪𝘣𝘭𝘦 𝘵𝘰 𝘢𝘭𝘭 𝘣𝘺 𝘣𝘦𝘤𝘰𝘮𝘪𝘯𝘨 𝘢 𝘱𝘢𝘵𝘳𝘰𝘯, 𝘦𝘷𝘦𝘯 $1/𝘮𝘰𝘯𝘵𝘩 𝘮𝘢𝘬𝘦𝘴 𝘢 𝘥𝘪𝘧𝘧𝘦𝘳𝘦𝘯𝘤𝘦 *
https://www.patreon.com/posts/cybersecurity-10-150379364
#ThreatModel #ThreatModelCybersecurity #ThreatModelNewsletters #VioletBlue #infosec #cybersec #CovidIsNotOver
AI could play a key role in making elections in Nigeria more transparent and secure. Explore how technology can help combat election fraud. Full post here: https://aibase.ng/ai-opportunity/how-ai-can-be-used-to-combat-election-fraud-in-nigeria/
#AIBase #AIBaseNig #AI #ElectionSecurity #NigeriaTech #DigitalGovernance
https://aibase.ng/ai-opportunity/how-ai-can-be-used-to-combat-election-fraud-in-nigeria/
Morning, cyber pros! ☕ It's been a busy 24 hours with several critical vulnerabilities under active exploitation, new insights into nation-state tradecraft, and some important shifts in government cyber policy. Let's dive in:
Actively Exploited Vulnerabilities & Reconnaissance ⚠️
- Russian APT28 (Fancy Bear) is actively exploiting a recently patched Microsoft Office zero-day (CVE-2026-21509) in attacks against Ukrainian government entities and other EU organisations. They're using themed malicious DOC files to install COVENANT malware, and sometimes MiniDoor or PixyNetLoader. Patching immediately is crucial; if not, implement registry-based mitigations.
- A critical RCE flaw (CVE-2025-11953) in React Native's Metro development server is under active exploitation, delivering Rust-based malware to Windows and Linux dev systems. Attackers are using the /open-url HTTP endpoint for arbitrary OS command execution, often disabling Microsoft Defender first. With ~3,500 exposed servers, developers should patch to version 20.0.0 or later immediately.
- CISA has flagged a critical SolarWinds Web Help Desk untrusted data deserialisation RCE flaw (CVE-2025-40551) as actively exploited, mandating federal agencies patch within three days. This allows unauthenticated attackers remote command execution. Admins should update to Web Help Desk 2026.1 without delay, as these products are frequent targets.
- A widespread reconnaissance campaign is targeting Citrix NetScaler infrastructure, using over 63,000 residential proxies to scan for login panels and enumerate product versions. This activity, observed between January 28 and February 2, suggests pre-exploitation mapping for known Citrix ADC weaknesses. Monitor for specific user agents, unusual access to /epa/scripts/win/nsepa_setup.exe, and outdated browser fingerprints.
🤖 Bleeping Computer | https://www.bleepingcomputer.com/news/security/russian-hackers-exploit-recently-patched-microsoft-office-bug-in-attacks/
🗞️ The Record | https://therecord.media/russian-state-hackers-exploit-new-microsoft-flaw
🤖 Bleeping Computer | https://www.bleepingcomputer.com/news/security/hackers-use-critical-react-native-metro-bug-to-breach-dev-systems/
🕵🏼 The Register | https://go.theregister.com/feed/www.theregister.com/2026/02/03/critical_react_native_metro_server/
🤖 Bleeping Computer | https://www.bleepingcomputer.com/news/security/cisa-flags-critical-solarwinds-rce-flaw-as-actively-exploited/
🤖 Bleeping Computer | https://www.bleepingcomputer.com/news/security/wave-of-citrix-netscaler-scans-use-thousands-of-residential-proxies/
New Threat Research & Malware 🕵🏼
- Chinese state-linked APT group Lotus Blossom (aka Billbug) has been attributed with "moderate confidence" to the Notepad++ update hijacking. They exploited update infrastructure to deliver a new, sophisticated backdoor dubbed Chrysalis, using DLL sideloading, custom API hashing, and obfuscation.
- Users who downloaded suspicious Notepad++ updates between June and December 2025 should check for compromise and rotate credentials.
- A new GlassWorm malware campaign is targeting macOS systems via compromised OpenVSX extensions, stealing passwords, crypto-wallet data, and developer credentials. The threat actor compromised a legitimate developer's account to push malicious updates. Users of affected extensions should clean systems and rotate all secrets.
🕵🏼 The Register | https://go.theregister.com/feed/www.theregister.com/2026/02/02/notepad_hijacking_lotus_blossom/
📰 The Hacker News | https://thehackernews.com/2026/02/notepad-hosting-breach-attributed-to.html
🤖 Bleeping Computer | https://www.bleepingcomputer.com/news/security/new-glassworm-attack-targets-macos-via-compromised-openvsx-extensions/
Recent Cyber Attacks & Breaches 🚨
- Data storage giant Iron Mountain has confirmed a breach claimed by the Everest extortion gang, but states it was mostly limited to marketing materials. Attackers used a single compromised credential to access one folder on a public-facing file-sharing server, with no ransomware deployed or other systems breached.
- Separately, a new phishing scheme is harvesting Dropbox logins using multi-stage obfuscation, with fake PDF lures hosted on legitimate cloud services. The campaign is notable for its lack of conventional malware, focusing purely on credential theft and bypassing email authentication checks.
- This highlights the importance of strong credential management and user awareness, as sophisticated social engineering can bypass technical controls.
🤖 Bleeping Computer | https://www.bleepingcomputer.com/news/security/iron-mountain-data-breach-mostly-limited-to-marketing-materials/
🚨 Dark Reading | https://www.darkreading.com/cloud-security/attackers-harvest-dropbox-logins-fake-pdf-lures
Regulatory Issues & Changes ⚖️
- The UK's Office of Financial Sanctions Implementation (OFSI) has opened its first investigation into suspected breaches of the country's cyber sanctions regime, involving up to five financial services firms. This follows expanded monitoring and investment in crypto investigation tools.
- This underscores increased scrutiny on compliance with sanctions against state-backed and financially motivated cyber actors, with potential civil penalties up to £1 million or 50% of the breach value.
- Microsoft Azure Storage has officially stopped supporting TLS 1.0 and 1.1, with TLS 1.2 now the minimum requirement, effective February 3, 2026. Organisations still relying on these deprecated, less secure protocols for legacy systems connecting to Azure Storage will no longer be able to connect.
🗞️ The Record | https://therecord.media/uk-investing-first-suspected-breach-cyber-sanctions
🕵🏼 The Register | https://go.theregister.com/feed/www.theregister.com/2026/02/03/microsoft_tls_deprecations/
Government Cyber Policy & Staffing 🏛️
- The Trump administration's second term has seen CISA scale back its election security support, leading states to seek internal funding and resources. Cuts to CISA's budget and staff, combined with a lack of dedicated congressional funding, have left states feeling isolated.
- This shift necessitates states developing more self-reliant strategies for election cybersecurity, despite CISA's claims of continued support.
- National Cyber Director Sean Cairncross is advocating for reduced cybersecurity regulatory burdens on industry and increased cooperation, urging industry feedback on friction points. He also called for industry support to pass a 10-year extension of the Cybersecurity Information Sharing Act of 2015.
🤫 CyberScoop | https://cyberscoop.com/cisa-election-security-cutbacks-states-trump-administration/
🤫 CyberScoop | https://cyberscoop.com/sean-cairncross-industry-cut-cybersecurity-regulations-renew-cisa/
Everything Else 🌐
- The AI-powered personal assistant project OpenClaw (formerly Clawdbot/Moltbot) is being described as a "security dumpster fire" due to multiple high-impact vulnerabilities, including one-click RCE and command injection flaws. Hundreds of malicious "skills" have been found, some stealing cryptocurrency.
- Users are warned against running OpenClaw on their machines due to significant security risks and unexpectedly high API costs from inefficient operations.
- Polish authorities have arrested a 20-year-old man suspected of operating a multi-layered botnet to conduct DDoS attacks on "numerous popular websites," including those of strategic importance globally.
- Recent major cloud outages underscore the critical impact on identity systems, which act as "gatekeepers" for all modern applications and services. Traditional regional high availability is often insufficient, necessitating multi-cloud strategies or on-premises alternatives and graceful degradation planning for identity architectures.
🕵🏼 The Register | https://go.theregister.com/feed/www.theregister.com/2026/02/03/openclaw_security_problems/
🕵🏼 The Register | https://go.theregister.com/feed/www.theregister.com/2026/02/03/polish_cops_ddos_arrest/
📰 The Hacker News | https://thehackernews.com/2026/02/when-cloud-outages-ripple-across.html
#CyberSecurity #ThreatIntelligence #APT #Ransomware #Vulnerability #ZeroDay #RCE #SupplyChainAttack #Malware #InfoSec #IncidentResponse #CloudSecurity #ElectionSecurity #CyberPolicy #AI #DDoS
CNBC reports: Did DNI Tulsi Gabbard facilitate election interference? Sen. Mark Warner demands her testimony regarding her role in a Georgia FBI raid and a call she facilitated between agents and President Trump. This intensifies concerns about election interference ahead of the midterms.
https://www.cnbc.com/2026/02/03/gabbard-trump-georgia-election-fbi-warner.html #ElectionSecurity #DNI #Georgia
Client Info
Server: https://mastodon.social
Version: 2025.07
Repository: https://github.com/cyevgeniy/lmst