Beaches and breaches

Welcome to this week's edition of the Threat Source newsletter. I took a two-week vacation (thanks to Bill for covering my author shift last week) and made the deliberate choice to leave my laptop behind. No emails, IMs, no IT at all. Thank you, European work culture! It was a complete break. Well, almost. The weather didn't always cooperate, so instead of freezing on a beach, I found myself catching up on TV — mostly news and a few series. But wherever I clicked, I just couldn't escape the daily dose of AI. What can we do about invasive mosquitos? Ask AI. Government doesn't move the needle? Ask AI. Want the weather forecast? AI, obviously. There are countless ads with people asking AI whether or not to wear a jacket "because it might rain." Even with your favorite TV shows, gone are the days when the hoodied hacker sits in front of a black terminal with green text running a dangerous (haha) ping or nmap. Now, they're writing lines like, "Did you try breaking the firewall with our latest AI algorithm, bro?" Coming back to work and catching up on our industry news, I almost expected AI to be dominating the headlines. But it wasn't, and neither was ransomware. Instead, they were all about breaches. Many — but not all — reports referenced compromised OAuth tokens linked to Salesloft's Drift integration, with a notable number of high-profile victims. Sure, this isn't a scientific or qualitative analysis (ransomware isn't disappearing anytime soon), but the reporting and the…Read More