Hospitals and Hormuz
Patch Tuesday dropped 167 CVEs and two live zero-days. Dutch hospitals are still offline after ChipSoft. Iran shut Hormuz again when the US refused to …
Recent Work
Blockades and Breaches
A Fortinet zero-day giving attackers full endpoint control. Trump’s naval blockade of Iran. An Easter ceasefire in Ukraine that didn’t …
MuddyWater Follow-Up: April 2026
A lot changed in four weeks. MuddyWater rebuilt their toolkit in Rust, started using AI to write malware, compromised US banks and airports, and …
The Easter Escalation
A browser zero-day hitting 3.5 billion users. A US fighter jet shot down over Iran. Russia stalling for the first time in years. And the Epstein …
One Month of Fire
The Iran war hits one month with Houthis entering the fight, Iran strikes Bahrain, and US deploys 3,500 marines. FBI Director Kash Patel’s …
The Admin Prompt
Microsoft blocked a registry hack that unlocks native NVMe on Windows 11. Every tech outlet responded the same way: download an unsigned binary from …
What We Do
Investigations
In-depth research into fraud, disclosure violations, and consumer harm. Evidence-based, publicly documented, filed with relevant authorities.
View investigationsSecurity Digest
Weekly threat intelligence and breach analysis. OSINT-driven, focused on Nordic region. Actionable insights for defenders.
Read the digestSignals
Short-form observations on emerging threats, regulatory developments, and industry patterns. Quick reads, timely intel.
View signals