RSnake Report 20251012

Hello, and thanks for reading! It was a quiet week for once, though I did manage to go and watch the 30th anniversary of Hackers the movie with the Hak5 crew and got a chance to see the upcoming WiFi Pineapple Pager, which allows hackers to intercept wifi signals and do other nefarious things all in a very portable pager-style format. Expect to see these hitting the market soon. I had Darren Kitchen sign my soon-to-be antiquated design, which will primarily be used by people who are using their computer to attack and don’t care about the stealth or portability.

In Russian/Ukrainian News, an interesting point was made about the intense heat generated by these energetic explosions at Russian refineries. The theory is that this heat has compromised the structural integrity of the welding at the facilities, rendering them partially unusable. The claim is that extreme temperatures have disrupted the welds and metal structures essential for oil refining, suggesting that repairs may be virtually unfeasible due to the fundamental damage. I don’t know if that is true or not, but it may be, and even if not, it may still increase delays as the welds and structures need to be tested.

The largest oil and gas processing complex in Russia was hit. I was curious how long it would take for this one to get targeted, given that the combined output is the largest of any refinery. It’s actually three different plants, Novoil, UNPZ, and Ufaneftekhim. I don’t think the whole thing was significantly destroyed, but part of the plant production was halted due to the hit.

I think there is a lot more to be done against this plant to completely halt it, but it’s also noteworthy because it’s 1,400km away from Ukraine’s border. That’s pretty deep into Russia, and it's remarkable how these drones are able to penetrate so far into a nuclear power. The ubiquitous meme:

Ukraine is countering Russia's drone swarms with a new strategy involving mass-produced interceptor drones. "The Sting," developed by Wild Hornets, is a cost-effective solution at a very reasonable $2,100 per unit, boasting a 70% effectiveness rate and claims are that it has downed 600 Russian drones. Ukraine plans to deploy 1,000 of these interceptors daily, utilizing a saturation defense approach, which is significantly cheaper than using traditional missiles like the AIM-9X. That saturation defense is probably going to be the name of the game, and similar to what we have been seeing out of Israel, with layered air defense, ballistic interceptors, lasers, and EW.

After another attack on the Korobkovsky Gas Processing Plant and the Yefimovka dispatch station in Volgograd region, there was footage following a Ukrainian drone attack on a Feodosia oil depot that shows severe damage, with a storage tank melted and an ineffective fire-suppression system. This adds some credence to the idea that the heat is so intense it will not only melt weak metal welds but also entire structures.

Oil prices are a concern for the Kremlin as Saudi Arabia is set to hike production by 4x, dropping the price of oil even further and causing all sorts of economic issues for an already struggling Russia. I am curious how OPEC+ sees Russia, but clearl,y there isn’t as much alignment there as previously touted.

There is a theory that Ukraine may start doubling its efforts against Russia's electrical grid, as it could severely impact its logistics, as an estimated 70% of Russian locomotives rely on electricity. The reason this is especially interesting is that Russia is already in a huge energy crunch with a capacity shortage of 9%. Given that rail is the primary means of transport of military logistics, this is a good call, and it’s easier targeted in some ways than traditional means, due to the very long and exposed transmission lines, distributed transformers, and exposed electrical substations. Speaking of rail, the Russian steel sector is experiencing a deepening crisis, with significant declines in railway cargo volumes. Coking coal and ferrous metal shipments have dropped by 16.2% and 17% respectively over nine months.

A large fire at the Zavod Pripoev plant in Novosibirsk, which produces electronics and microcircuits for the defense industry. These circuits are largely used in military applications like drones, radios, and communication electronics, all in high demand.

A massive fire at the Ural Turbine Works in Yekaterinburg is another sign of the ongoing issues affecting Russian industrial facilities. The cause is still under review, but more power being hit is in Ukraine’s benefit.

There was a really telling video that is a sign of the future. We have seen flying drones hitting other flying drones, but this is the first time I have seen a flying drone hitting a ground-based combat robot. It happened near Pokrovsk, Ukraine's 32nd Mechanized Brigade successfully destroyed a Russian Kuryer land drone equipped with a grenade launcher. Skynet is getting closer, but it feels more like it will be a Skynet vs Skynet war.

I have seen quite a bit of an uptick in videos where thermal cameras are being used, and not just drones, but also on the arms of ground troops. Ukrainian UAVs from the 427th separate regiment are effectively using thermal imaging to target Russian assault groups. This too feels like a look into the future, where if you emit any heat at all, you’ll be targeted. Any sort of radiation is ultimately dangerous, and thermal radiation is just another example - while line of sight, it’s great for targeting.

Thales, a European manufacturer, has introduced the FZ123 warhead for the 70 mm missile, designed to counter Shahed-type drones. This new system, with a strike radius of up to 25 meters using small steel pellets, is already being deployed in Ukraine. These are similarly low-cost to the Sting, but faster and potentially lower cost, depending on how the guidance works. The real advantage is that these systems can be deployed on lightweight vehicles.

The U.S. has decided to supply Ukraine with BGM-109 Tomahawk cruise missiles, which have a range of 500-1,500 miles. President Trump has expressed concerns about how these missiles will be used and which Russian targets will be struck, implying that the US may want to continue to have some oversight over the targeting.

Somewhat questionable, but still interesting OSINT research indicates that Russia has no, yes, no tanks in decent condition remaining in storage, with 1656 in "poor" condition and 1231 in "worse" condition. Especially as Russia is starting to want to switch back to tank warfare techniques, after losing an additional quarter million casualties in the last big push, this is a really bad situation for them.

Russia's fuel crisis is exacerbated by years of neglected road maintenance, the onset of mud season, and a lack of gasoline, creating a perfect storm that is hurting the ability of certain regions to obtain fuel. If you watch the videos, I would guess these trucks are traveling between one and three miles per hour, when they would typically be traveling 50-70 miles per hour, road permitting. That’s somewhere between 1/70th and 3/50ths as fast as trucks would normally be moving fuel and equipment. That’s a huge hit to transport, and it didn’t even require direct intervention to achieve. It’s just a side effect of negligence.

In European News, Transnistria, a Russian-backed proxy state between Moldova and Ukraine, faces economic collapse due to a shortage of natural gas. European banks have rejected payments intended for gas costs, which were routed through alleged money-laundering firms in the UAE. The Cuciurgan power plant, reliant on free Russian gas, has been a financial burden on Moldova, but actions by the EU, Ukraine, and Moldova aim to dismantle the Russian-proxy regime.

Estonia has closed part of its border with Russia after spotting armed "little green men" engaging in suspicious activities. Estonian officials report that these groups are not border guards and pose a potentially significant threat. I was a little surprised to read this, as I assumed Estonia had already locked down its border, but it's good to know they are starting to take that border crossing much more seriously.

Germany has amended its Federal Police Act to expand the powers of the federal police in intercepting drones that threaten critical sites. The new measures include electromagnetic impulses, jamming, GPS interference, and physical shoot-downs. This is likely in response to the drones over the Munich airport at the tail end of Oktoberfest. We need similar legislation here in the United States, because otherwise, it’s very unclear what is allowed and is inviting a first strike.

In South East Asia News, in China, tens of thousands of young people are becoming homeless due to being blacklisted by the social credit system, Sesame Credit, which prevents them from using digital wallets like WeChat, thus hindering employment opportunities. China will likely deny all of this, but this is exactly what happens when the state controls allegiance to the regime. This should haunt everyone who cares about freedom of speech and freedom in general.

In other China news, there was a fascinating exchange between the two superpowers, as China has imposed new export controls on products containing rare earth materials, effective December 1st, effectively giving Beijing veto power over sales globally. Then, China has retaliated against U.S. trade policies by imposing "special port charges" on U.S. vessels, mirroring U.S. actions. The Trump administration responded to China's aggressive trade actions with plans to impose a 100% tariff on Chinese goods and export controls on critical software, effective November 1st, 2025. Then China quickly clarified that its new export controls on rare earths are not a ban, stating that applications meeting regulations will be approved.

I think the port charges will still be there, and expect more bureaucracy as they review applications, but for the moment, rare earths will flow. China's dominance in the rare earth market, particularly in magnets essential for various technologies, stems from its political will to tolerate environmental pollution. The U.S. is attempting to rebuild its supply chain, but this requires confronting the environmental and political challenges associated with mining these materials. Said simply, we need the political will to pollute. It sounds gross, but the alternative is far worse.

South Korea faces a disaster recovery nightmare after losing all government data due to storing all servers in one location without backups, after a fire wiped out the better part of a petabyte of data. This is a common error - storing all of your data in exactly one place with no way to back up the data.

In Middle East News, President Trump announced that Israel and Hamas have agreed to the first phase of a peace plan, which includes the release of all hostages and a withdrawal of Israeli troops to agreed lines. Despite reports of a ceasefire, Israeli tanks have been deployed on the Al-Rashid Coastal Road, preventing Palestinians from re-entering Gaza City. The IDF denied the ceasefire was in effect, stating it would only begin once approved by the Israeli cabinet.

In North American news, A massive explosion at the Accurate Energetic Systems plant in Tennessee has left 19 people feared deceased. The incident at the bomb factory, located 60 miles from Nashville, is under investigation as emergency services focus on supporting the affected families. They manufactured TNT, linear shaped charges, 15lb and 40lb demolition charges, and many other explosives.

In Tech News, ChatGPT now allows users to chat directly with apps. This potentially poses an existential threat to voice assistants like Siri by expanding the conversational capabilities of AI and giving users direct voice control over apps that previously weren’t accessible. They also introduced AgentKit, a competitor to n8n and Zapier, offering tools for building, deploying, and optimizing agentic workflows, including a customizable chat UI and safety screening features. I am not particularly in love with any of those cloud-hosted solutions, as I want to maintain control over my own workflow. However, most people won’t care about that and are okay with the tight integration and lock-in.

Researchers have developed a method for speech recognition using high-frequency mouse sensors, potentially opening new avenues for eavesdropping through everyday equipment that might not have any external microphone. Basically, if malware is running, it can listen to the conversations in the room based on the frequency it picks up. Pretty clever attack.

Discord faces a significant security breach after hackers compromised their Zendesk instance, threatening to leak 2.1 million users' age verification photos and personal identification documents. The Discord breach was exacerbated by the implementation of the UK's Online Safety Act, which some argue could have been challenged on constitutional grounds to protect user privacy. As if that isn’t bad enough, an insider threat may have facilitated the Discord breach, with reports of threat actors offering $500 USD to a Southeast Asian contract employee in exchange for access to internal systems. This straightforward blackmail scheme may be becoming a lot more prevalent, and it makes the insider threat a much more realistic attack vector than it has been in the past. These dollar amounts are so incredibly low, though… wow. 🤯 

Several popular VPN apps have been exposed for using hard-coded passwords that allow attackers to decrypt all traffic, undermining user privacy and security - the very thing that people want when they are using these apps. These VPNs, often marketed as privacy tools, have been found to collect location data despite claims to the contrary. It just goes to show that if you want a VPN, you should probably install your own on a VPS that you control. It’s a pain, but clearly, the alternative is that nation states and threat actors are seeing your traffic.

Okay, onto the articles!

China has expanded its restrictions on rare earth and permanent magnet exports to the US, tightening control over the supply chain, with potential implications for defense and semiconductor industries.

• The new export controls mark the first time China has applied the foreign direct product rule (FDPR), enabling the US to regulate the sale of foreign-made products that incorporate US technology or equipment.

• Foreign firms will now be required to obtain Chinese government approval to export magnets that contain even trace amounts of Chinese-origin rare earth materials or were produced using Chinese mining, processing, or magnet-making technologies.

[RSnake: The real problem is not that these minerals are rare; it’s that they are hard to extract and mine, often coupled with thorium, which currently we don’t have a great use for, until thorium reactors become in vogue again.]

Source: https://www.csis.org/analysis/chinas-new-rare-earth-and-magnet-restrictions-threaten-us-defense-supply-chains

A ceasefire and hostage release deal has been reached between Israel and Hamas, allowing for the planned release of hostages held by Hamas and a significant number of Palestinian prisoners. This comes after a prolonged conflict resulting in significant casualties on both sides, with the U.S. mediating the discussions and both parties preparing for the logistics of the exchange. Additionally, Palestinians in Gaza are beginning to return to their homes as Israeli forces partially withdraw following the ceasefire agreement.

• A ceasefire and hostage release deal has been established between Israel and Hamas.

• The conflict has resulted in high casualty numbers, prompting international mediation.

• Displaced Palestinians are starting to return to their homes as Israeli troops withdraw.

[RSnake: I am very concerned that Hamas will break this once they recover a bit, but for now it appears to be holding.]

Source: https://www.bbc.com/news/articles/cd727d2ne42o?at_medium=RSS&at_campaign=rss

An explosion at an ammunition plant in Tennessee has killed 16 people and injured four others, and authorities are searching for remains and investigating the cause of the blast.

• The explosion occurred at a facility that produces explosives and demolition charges for the US military and domestic blasting industry.

• The plant employs around 75 people across five production centers and a lab, and has received tens of millions of dollars in federal contracts since 2020.

[RSnake: Very sad. It’s a very dangerous business.]

Source: https://www.nytimes.com/2025/10/11/us/tennessee-munitions-plant-explosion-deaths.html

President Trump has announced a 100% tariff on all imports from China, escalating the ongoing trade conflict between the United States and China. Additionally, new export controls will be applied to critical software from the U.S. following China's recent restrictions on the export of rare earth minerals, crucial for the tech industry. This turbulence is causing significant declines in U.S. stock markets, particularly affecting tech companies.

• Trump's tariffs exceed previous tariffs imposed on Chinese imports.

• China's new export regulations on rare earth minerals pose challenges for U.S. tech companies.

[RSnake: It’s not clear that these tariffs will actually take hold or not, but we have to weigh decoupling with pushing our own industry to rebuild before that happens. Because there are no promises that we can hang our hats on with regard to China holding off the capturing of Taiwan that was previously scheduled for 2027.]

Source: https://techcrunch.com/?p=3056671

Russia has launched a significant drone assault on Ukraine's energy infrastructure, deploying 465 drones, which caused widespread power and water outages in Kyiv and resulted in civilian casualties. Concurrently, there's an increase in drone sightings over military facilities across Europe, suggesting that Russia is executing a coordinated hybrid campaign that may prepare Europe for potential future conflicts. As winter approaches, the escalation in aerial attacks and Ukraine's responses have raised tensions in the region.

• Russia's drone attack on Ukraine resulted in extensive damage to energy infrastructure and civilian casualties.

• In Europe, unidentified drones signaling a hybrid warfare strategy have prompted investigations into security breaches at military facilities.

[RSnake: Remember, winter is coming for both sides. Heat plants, power plants, and gas production all matter a lot to the average person during the winter months. It’s gonna be a cold one.]

Source: https://euromaidanpress.com/?p=365926

Hollywood stunt coordinator Erik Audé is exposing a private Facebook page where several members of the stunt community were publicly celebrating Charlie Kirk's assassination, with some calling for harm against conservatives. The fallout has led to a perceived civil war within the industry, with many leftists feeling emboldened and others speaking out against the harassment.

• Some members of the stunt community were publicly celebrating Charlie Kirk's assassination on social media, calling for harm against conservatives.

• The incident has led to a perceived civil war within the industry, with many leftists feeling emboldened and others speaking out against the harassment.

[RSnake: Technically, it’s legal to celebrate whatever you want, no matter what that says about you, so I have to protect that right, as much as I disagree with how they are using it. But it should come as no shock that the entertainment industry is infested with very radical progressives who, unfortunately, think that murdering unarmed people should be celebrated, when they don’t align politically.]

Source: https://www.dailywire.com/news/full-on-civil-war-stuntman-exposes-hollywood-crew-celebrating-charlie-kirks-murder

Global left-wing extremism is becoming increasingly connected to a network of NGOs, foreign financiers, and ideological operatives, known as 'Riot Inc.', which is fueling violence in cities across the US.

• ANTIFA is part of a larger network called "Riot Inc.", which is funded by foreign financiers and NGOs.

• The 'No Kings' protests have become a predictable cocktail of violence and political theater, with coordinated efforts to target police and federal buildings.

[RSnake: I was assured that they weren’t organized, and there was no organization to go after. Not that that should matter, but still, there obviously is a huge network of organizations and money funneling into Antifa, and Democrat funded organizations setting up and funding working groups to that end. It should come as no surprise since Antifa often discusses needing to “organize”.]

Source: https://www.zerohedge.com/political/antifas-mask-slips-trumps-roundtable-sends-shadow-ngo-network-behind-riot-inc-panic

The UK has secured a conviction in what is believed to be the world's largest cryptocurrency seizure, valued at more than £5.5 billion ($7.3 billion), and police have seized 61,000 Bitcoin worth hundreds of millions of pounds.

• A cryptocurrency scheme was conducted by Zhimin Qian, also known as Yadi Zhang, who defrauded over 128,000 victims in China between 2014 and 2017.

• The scheme was valued at more than £5.5 billion ($7.3 billion) and involved the promotion of Bitcoin as 'digital gold' in China.

[RSnake: There are a lot of scammers in Bitcoin, which is unfortunate, because I do think there is a strong need for a reliable and safe digital currency that doesn’t come with all of the rug-pulls and con artists.]

Source: https://www.bleepingcomputer.com/news/security/uk-convicts-bitcoin-queen-in-worlds-largest-cryptocurrency-seizure/

The US government has signed a national security directive labeling 'anti-Christian' and 'anti-American' perspectives as signs of radical left-wing violence, targeting Americans domestically through speech monitoring and surveillance.

• The Trump administration is reconfiguring the counter-terrorism system to target Americans domestically, focusing on political activities or speech to identify 'radicalism'.

• The directive introduces a new national approach aimed at 'disrupting' individuals and organizations that incite political violence, including those who support the removal of the US government.

[RSnake: I am worried about this one, as it could be used as a staging ground to limit speech, or, at a minimum, act as a chilling effect. That said, it may also bring some equilibrium to the wrong-speak doctrine we’ve been dealing with for the last decade or so.]

Source: https://fondtimes.com/2025/09/28/trumps-nspm-7-criminalizes-common-beliefs-as-terrorism-signs/

The H-1B visa program has seen a fee increase under the Trump administration, raising costs for companies looking to hire skilled foreign workers, particularly from India. This has led to fears among young Indians pursuing careers in the US that their pathways to employment are being closed off, while many are considering other countries for opportunities due to the increased barriers to entry into the American labor market.

• The fee for the H-1B visa has increased from approximately $2,000 to around $100,000, making it economically unviable for many companies.

• India has seen a 270% rise in the emigration of skilled professionals looking for job opportunities abroad, particularly in STEM fields.

[RSnake: I would not be surprised to see that Indian devs start looking harder at Europe and other asian countries.]

Source: https://www.aljazeera.com/features/2025/9/29/cruel-joke-how-indian-h-1b-dreams-are-crash-landing-after-trump-fee-hike?traffic_source=rss

The Taliban has confirmed attacks on Pakistani troops along the border, claiming significant casualties among the Pakistani military. In response, Pakistan has accused the Taliban of harboring terrorists and has indicated that it will retaliate to these actions, leading to heightened tensions and border closures between the two countries.

• The Taliban claimed responsibility for a series of attacks on Pakistani military personnel, resulting in potential casualties on both sides.

• Pakistan has accused the Taliban of sheltering terrorist groups that target Pakistan, complicating diplomatic relations.

• Border crossings between Afghanistan and Pakistan have been closed due to the escalating conflict, impacting trade and mobility.

[RSnake: I think this might end up escalating into a larger conflict.]

Source: https://www.bbc.com/news/articles/cgmzmn4971zo?at_medium=RSS&at_campaign=rss

Donald Trump plans a trip to Israel and Egypt to address political developments, particularly the peace deal between Israel and Hamas, which involves the return of hostages. The trip coincides with an international summit in Egypt attended by various world leaders, and Trump will return to Washington to honor the late Charlie Kirk posthumously with the Presidential Medal of Freedom.

• Trump's upcoming trip aims to facilitate the peace deal between Israel and Hamas.

• The international summit in Egypt will involve over 20 world leaders discussing the recent peace agreement.

[RSnake: He has been making a lot of headway in the region, so it would behoove him to continue that tour.]

Source: https://www.foxnews.com/politics/trump-plans-whirlwind-trip-israel-egypt-before-rushing-back-white-house-charlie-kirk-honor

Gold prices are reaching all-time highs as central banks increasingly devalue currency amid rising sovereign debts. This has led to a historical trend where investors prefer gold over fiat currencies due to inflation and currency debasement, signaling a shift away from the US dollar. Central banks are stockpiling gold, indicating a decline in trust for traditional monetary systems.

• Gold is experiencing record price increases as investors seek safer assets.

• Central banks are heavily acquiring gold, indicating a loss of confidence in fiat currency.

• The trend of currency devaluation is leading to a significant shift from the US dollar.

[RSnake: I heard the other day that the price of a US house has reached the same level in terms of quantity of gold since just after we moved off the gold standard. The only thing that is surprising about this to me is that it isn’t a smaller amount for a house, given that we keep printing money. Still, I think the real thing that is happening here is that housing supply is weak, and people expect a lot more complicated/expensive homes than in the late 70s. We didn’t even have HVAC when I was growing up - we opened the windows when it was hot, and burned wood in the wood-burning stove to stay warm in the winter. Imagine a modern American home having no HVAC now.]

Source: https://www.zerohedge.com/precious-metals/hidden-history-policy-theft-skyrocketing-gold

María Corina Machado, a Venezuelan opposition leader, was awarded the Nobel Peace Prize, drawing attention to her activism against Nicolás Maduro's regime. Despite her recognition, the political situation in Venezuela remains dire, with widespread repression and a lack of effective solutions for change. There are ongoing discussions about potential military intervention and regime change as options to address the crisis.

• María Corina Machado received the Nobel Peace Prize for her efforts in uniting the opposition against Nicolás Maduro's government.

• The political climate in Venezuela continues to be strained, with calls for possible intervention to resolve the ongoing repression and humanitarian crisis.

[RSnake: Good for her, except that he is still in power, which is a little strange, to be giving her a prize for being unsuccessful.]

Source: https://www.nytimes.com/2025/10/10/opinion/nobel-peace-prize-machado-maduro-venezuela.html

Germany is increasing its defense spending and developing a military-industrial complex to meet NATO requirements amidst ongoing geopolitical tensions. The country is seeking to enhance its defense capabilities through a combination of public and private funding, responding to security threats in Europe and a shifting global landscape.

• Germany is restructuring its defense spending policies to address NATO's demands for increased military investment.

• The government is leveraging private capital to bolster its military capabilities and support defense industry growth.

[RSnake: Good, Germany most of all has been lagging in this department, given their economics.]

Source: https://www.atlanticcouncil.org/?p=877478

Iran executed a man identified as Bahman Choubi-asl after convicting him of spying for Israel’s Mossad intelligence service, with the government alleging he provided sensitive information to Israeli officers during nine foreign trips and received financial rewards.

• Iran has executed at least 1,000 people so far this year, according to a rights group.

• Iran and Israel have been engaged in a long-running shadow war that escalated into direct confrontations this year, including Israeli airstrikes on Iranian targets in June.

[RSnake: I am sure some actual assets have been captured with those numbers, but imagine how many were innocent. This is one of the advantages of seeding that Israel had lots of people on the ground. Iran then needs to go after their own, and will make a lot of mistakes in that mole-hunt.]

Source: https://www.iranintl.com/en/202509299899

The U.S. Navy is relocating hypersonic-armed Zumwalt-class destroyers and Virginia-class submarines to Hawaii as part of a modernization effort at Joint Base Pearl Harbor Hickam. This strategic move is aimed at enhancing the Navy's capabilities in the Indo-Pacific region in response to potential military tensions, particularly with China. Significant infrastructure upgrades are underway to support the new vessels, which are expected to arrive by mid-2028.

• The U.S. Navy is preparing to base hypersonic-armed destroyers and submarines in Hawaii.

• Construction and modernization efforts are focused on enhancing Pearl Harbor's infrastructure for future naval capabilities.

[RSnake: We’ll need to start building out more Islands, too. I am surprised the US isn’t following suit with the Chinese and doing massive island build-ups in the Spratly Islands called the Great Wall of Sand.]

Source: https://www.navalnews.com/?p=78748

Apple has significantly expanded its bug bounty program, increasing the maximum reward for reporting zero-click remote code execution vulnerabilities to $2 million, making it the largest payout of any known bounty program. Other categories for reporting vulnerabilities have also seen increased payouts, and Apple plans to distribute secured iPhone devices to civil society organizations at risk of spyware attacks in 2026.

• Apple's bug bounty program now offers rewards up to $2 million for zero-click vulnerabilities.

• The company aims to incentivize researchers to discover and report security issues.

[RSnake: Given how valuable these are to the adversaries who want them, I am glad to see Apple stepping up the game here to encourage more researchers to help.]

Source: https://www.bleepingcomputer.com/news/security/apple-now-offers-2-million-for-zero-click-rce-vulnerabilities/

A Chinese court sentenced 11 members of the Ming family to death for running a criminal enterprise in Myanmar that involved telecommunications fraud, illegal casinos, and drug trafficking. This crackdown follows Myanmar's military being driven out of Shan State by insurgent groups, leading to China's increased enforcement against scam operations along its border, with many victims being coerced into labor in scam centers.

• The Ming family was involved in large-scale telecommunications fraud and operated scam centers in Myanmar.

• China's crackdown aims to signal a strong response to the organized crime affecting its border regions.

[RSnake: They probably didn’t help the CCP enough, because typically they do not care about criminal activities in other countries.]

Source: https://www.bbc.com/news/articles/c78nrx309kzo?at_medium=RSS&at_campaign=rss

Akira ransomware continues to breach MFA-protected SonicWall VPN accounts, and researchers suspect that threat actors are using previously stolen OTP seeds or exploiting zero-day flaws.

• Researchers found that Akira ransomware has successfully breached MFA-protected SonicWall SSL VPN accounts, even when one-time password (OTP) multi-factor authentication is enabled.

• Threat actors are using credentials and OTP seeds stolen during previous intrusions to regain access to corporate networks after security updates have been applied.

[RSnake: Why change when they don’t need to? Who is forcing them to shift? Until people start fixing the issues that lead to loss, they’re comfortable continuing until the gravy train runs out, and they only have to shift because they’ve successfully milked the victims who are vulnerable dry. Or, we can force them to shift by shifting our focus to what they are working on.]

Source: https://www.bleepingcomputer.com/news/security/akira-ransomware-breaching-mfa-protected-sonicwall-vpn-accounts/

Microsoft warns of a new 'Payroll Pirate' scam stealing employees' direct deposits as scammers bypass multi-factor authentication using adversary-in-the-middle tactics, allowing them to intercept credentials and change payroll configurations.

• The threat actor used realistic phishing emails targeting accounts at multiple universities to harvest credentials.

• Since March 2025, Microsoft has observed 11 successfully compromised accounts at three universities that were used to send phishing emails to nearly 6,000 email accounts across 25 universities.

[RSnake: Yes, this is going to be an interesting one. Basically, they hack in, change the payroll system to use their account instead of yours, and wait till payday, and get all the money routed to them. This is a super easy fix, with alerts to any changes to payroll, but I’m not sure how long that will take to implement.]

Source: https://arstechnica.com/security/2025/10/payroll-pirate-phishing-scam-that-takes-over-workday-accounts-steals-paychecks/

Funding and acquisition activity within the cybersecurity market is on the rise, with $3.9 billion invested over the past 12 weeks across 153 deals, marking a 19% increase from the previous year. Additionally, there have been 75 acquisitions during this period, a 32% increase compared to the same timeframe last year, indicating significant growth and interest in this sector, especially regarding identity security in AI interactions.

• Funding activity in cybersecurity reached $3.9 billion in 153 deals, a 19% increase compared to last year.

• 75 acquisitions in cybersecurity were completed, reflecting a 32% increase over the previous year.

[RSnake: Cyber is hot. My concern is where most of it is going. I see a lot of companies I’d never bet on crossing my desk.]

Source: https://www.returnonsecurity.com/p/security-funded-213

Claude Sonnet 4.5, a new AI coding model, has been released with significant enhancements in its reasoning and mathematical capabilities, making it the most powerful model for software development tasks. The upgrade includes a range of features aimed at improving user experience and performance in coding, architecture, and complex problem-solving across various industries. Additionally, measures have been implemented to enhance safety and alignment in its operations, aiming to reduce risks associated with AI behaviors.

• Claude Sonnet 4.5 is the most capable AI coding model available, showing substantial improvements in software development tasks.

• The release includes new features like checkpoints and improved terminal interfaces, boosting productivity and user experience.

• Claude Sonnet 4.5 addresses safety and alignment issues, enhancing its reliability in various applications.

[RSnake: They have such a huge moat for the moment. As long as the likes of Cursor continue to use them, they’ll get to train on all kinds of great code, user prompts, and feedback. Unlike most prompting, users are pretty happy or angry with the results, which makes it easy to train on, compared to more fluffy output like creative writing.]

Source: https://www.anthropic.com/news/claude-sonnet-4-5

Quantum computing is advancing from theoretical research to practical applications that could significantly disrupt various industries over the next decade. Its ability to solve complex problems rapidly offers a competitive edge in fields such as pharmaceuticals and finance, while simultaneously posing challenges to current cybersecurity measures. Organizations must proactively prepare for the transformative impacts of this technology on their operations and security protocols.

• Quantum computing leverages quantum bits to perform calculations that traditional computers cannot, potentially revolutionizing fields like drug discovery and financial modeling.

• As quantum computing evolves, it may render current encryption methods obsolete, necessitating immediate action from industries reliant on secure communications.

[RSnake: We shall see. I have been hearing this same story for 20+ years.]

Source: https://www.fastcompany.com/91418318/quantum-computing-is-the-next-ai-are-you-ready-for-it

OpenAI is significantly expanding its ChatGPT platform by integrating various applications and services, aiming to consolidate internet functionalities within the chatbot. They have also struck multi-billion dollar deals with chip manufacturers AMD and NVIDIA, investing heavily in GPU infrastructure to support their growing AI operations, a move which could impact the broader economy as demand for computing power surges. The recent growth of their user base has been meteoric, now serving over 800 million weekly users.

• OpenAI is integrating various applications into ChatGPT to make it a central hub for internet services.

• They are investing significantly in GPU infrastructure through multi-billion-dollar deals with AMD and NVIDIA.

[RSnake: These deals feel very strange. How they are still considered a non-profit is beyond me.]

Source: https://www.nytimes.com/2025/10/10/podcasts/hardfork-openai-devday-amd.html

Meta's Superintelligence Labs has published its first paper on an innovation called REFRAG, which aims to enhance the efficiency of retrieval-augmented generation (RAG) by reducing costs and latency in AI applications. This advancement could improve user experience and operational economics for businesses relying on AI models.

• Meta's REFRAG improves retrieval-augmented generation efficiency, reducing costs and latency.

• The innovation aims to enhance user experience and operational economics for AI-dependent applications.

[RSnake: Cool - this looks like it could be an interesting one to check out for those RAG devs out there.]

Source: https://paddedinputs.substack.com/p/meta-superintelligences-surprising

US President Trump triggered a wave of cross-market volatility by announcing additional tariffs on China and export controls on software, causing the largest liquidation event in crypto history with $19.31 billion in wiped-out positions.

• 1,000+ wallets on Hyperliquid were completely wiped out in the market crash — losing everything.

• The largest liquidation event in crypto history, with $19.31 billion in wiped-out positions, was triggered by President Trump's announcement of additional tariffs on China and export controls on software.

[RSnake: Speculative moving of money doesn’t count as wiped out - if they don’t liquidate their position, they should be fine. They’re only wiped out if they take the loss. This is one of those situations where HODL is a good model, unless it really is going to zero.]

Source: https://www.zerohedge.com/crypto/crypto-carnage-trump-tariff-tape-bomb-triggers-largest-liquidation-event-history

Concerns are rising in Silicon Valley regarding the potential overvaluation of AI companies, fueled by increasing investments and complex financing arrangements. Experts warn that a bubble may be forming, with implications that could extend beyond the tech sector and affect the broader economy if it bursts.

• Investments in AI companies are surging, raising questions about potential overvaluation.

• Experts are warning that an AI bubble could significantly impact the broader economy if it bursts.

[RSnake: Potential? Lol! Yes, let me assure you, they are overvalued. There are tons of interesting things to be done yet, and I am bullish on AI as a tech, but this is absolutely a bubble. More on the investments here.]

Source: https://www.bbc.com/news/articles/cz69qy760weo?at_medium=RSS&at_campaign=rss

Google has announced the Pixel 10 series of smartphones, featuring upgrades in camera technology, processing power, and battery life compared to previous models. The devices support advanced features like Qi2 wireless charging and AI-enabled photography tools, and they come with longer software support timelines. Additionally, the Pixel A-series devices face battery issues, prompting updates to prevent overheating, while users are encouraged to consider new models over older variants for better performance and support.

• The Pixel 10 series features enhanced camera technology, including a new 5X optical zoom lens and improved image processing.

• These phones come with advanced AI features and longer software update support, enhancing user experience.

• Some older Pixel A-series devices have reported battery issues, leading to updates that intentionally degrade performance to prevent overheating.

[RSnake: It could be 2x better, and I wouldn’t use it. Not when their model is still based on spying on their users.]

Source: https://www.wired.com/story/best-google-pixel-phone/

China's economy is struggling with a tech-driven growth model that has failed to translate into macroeconomic growth, leaving millions of people in poverty. The country's human capital shortfall, lack of connectivity to other critical sources of broad-based development, and misallocation of resources are major concerns.

• China’s tech success and macroeconomic malaise are linked. The system is tilted strongly in favor of industry and technology relative to households and consumers.

• The country’s human capital shortfall could leave hundreds of millions of people unable to capitalize on a modern economy.

• China needs to address the structural weaknesses in its economy, including unemployment insurance for rural workers and investing in human capital, to avoid further polarization between winners and losers in the domestic economy and with other countries.

[RSnake: Cute. This article almost reads like the CCP cares about hundreds of millions of its people living in poverty. They do not.]

Source: https://foreignpolicy.com/?p=1208505

Recent bank deregulation is expected to enable an additional $2.6 trillion in lending capacity on Wall Street. The automotive sector in the US is experiencing turmoil due to tariffs imposed by former President Trump.

• Bank deregulation allows for a significant increase in Wall Street lending capacity.

• The U.S. car sector faces challenges due to Trump's tariffs.

[RSnake: Which could be great, but it could also lead to another 2008 subprime crash.]

Source: https://www.ft.com/content/3780f953-b052-406c-b726-0a4b17acc95d

The S&P 500 index is currently showing high valuations compared to estimated profits and has become increasingly concentrated in a small number of companies. This scenario is reminiscent of the market conditions before the dot-com bubble in 2000, indicating potential risks for investors.

• The S&P 500's current valuation is high relative to its expected profits.

• The index's gains are focused on a limited number of companies, suggesting a concentration risk.

[RSnake: To some degree, this does make sense. There should be more consolidation in the market, and it’s inevitable.]

Source: https://www.marketwatch.com/story/why-your-s-p-500-index-fund-might-be-more-risky-than-the-internet-bubble-af1050e6?mod=mw_rss_topstories

Recent auctions in India have broken records, with sales reaching new heights as the market for South Asian art continues to expand. Factors such as a growing number of millionaire households, tax cuts on art, and increased interest from both local and diaspora collectors are driving this boom, despite a global decline in art sales. The Indian art market is projected to grow significantly, with investments in new institutions and galleries aiming to support emerging and historically marginalized artists.

• Record-breaking auction sales in India indicate a booming art market.

• The growth is driven by rising wealth and demand from both local and diaspora collectors.

• Investments in infrastructure and institutions aim to support emerging artists in the evolving landscape.

[RSnake: Art is a weird market. If you can get an artist under a new pseudonym to create a small amount of art and bid it up like crazy, suddenly the whole lot is worth a lot. Speculative pumping and dumping.]

Source: https://www.bbc.com/news/articles/cz69550vgqdo?at_medium=RSS&at_campaign=rss

Ford Motor Co. is reducing its lithium purchases from Australian producer Liontown Resources amid challenges in the electric vehicle supply chain. U.S. automakers, including Ford, are facing declining EV sales and increased market adjustments as a response to changing government policies and market conditions.

• Ford is halving its lithium volume from Liontown Resources to address a challenging EV market.

• The U.S. EV market is experiencing a downturn, with Ford projecting significant losses on electric vehicles.

[RSnake: Less exotic material science is a field that I think is wildly underfunded. Finding extremely cheap/renewable means to build things is the name of the game going forward.]

Source: https://www.supplychainbrain.com/articles/42643-ford-delays-lithium-supply-deal-as-ev-struggles-continue

Kalshi, a prediction market platform, has raised over $300 million at a valuation of $5 billion, reflecting an increase in its worth since its last funding round three months ago. The company has expanded its services to consumers in 140 countries and is projected to reach $50 billion in annual trading volume. Meanwhile, Polymarket has also seen a substantial valuation increase and is set to reenter the U.S. market after securing approval from the Commodity Futures Trading Commission.

• Kalshi has raised significant funding to enhance its prediction market platform.

• Polymarket is reentering the U.S. market after regulatory approval.

[RSnake: Wow, that’s a crazy high valuation. Good for them!]

Source: https://techcrunch.com/?p=3056559

GLP-1 medications are impacting healthcare costs, with prices ranging from $500 to $1,300 monthly, reshaping household finances for many users. While affluent households can absorb these expenses, lower-income families may struggle to access these treatments, leading to increased financial inequity in health outcomes. The changes brought by GLP-1s are prompting users to adjust their budgets and spending habits, signaling a fundamental shift in how health and finance interplay in everyday life.

• GLP-1 medications have a high monthly cost that influences personal finance decisions.

• The inequity in access to GLP-1s based on income levels is creating disparities in health outcomes.

• Users are altering their spending habits and lifestyles in response to the shift associated with GLP-1 usage.

[RSnake: Yet another reason to focus on diet and exercise!]

Source: https://www.fastcompany.com/91419882/glp-1s-are-reshaping-bodies-and-budgets

The Bureau of Labor Statistics will release the September consumer price index on October 24, despite a government shutdown. This report is essential for determining the cost-of-living adjustment for Social Security recipients and will precede a Federal Reserve decision on potential interest rate changes.

• The BLS has recalled staff to publish critical economic data during the government shutdown.

• The CPI report impacts Social Security payments and may influence Federal Reserve monetary policy.

[RSnake: Interesting. I am curious how this will play out. I suspect it’ll be bad. I keep hearing of more layoffs, on a small scale, and very few who are actively hiring.]

Source: https://www.zerohedge.com/markets/bls-publish-next-cpi-report-oct-24-despite-shutdown-just-days-fed-decision