She handed a repair tech her iPhone and then the worst happened — here's how to protect your data and yourself
THE SO WHAT
Handing a phone to a repair tech is now a data exfiltration event—one Best Buy employee AirDropping photos is the visible tip of a broad trust problem. Treat in-person repair like you’d treat a third-party SOC: enforce backups, device wipes, and temporary accounts before any hardware leaves your control.
READ THE SOURCE
MORE FROM THE WIRE
Deep & Emerging Tech'This is a sales tactic': Experts warn ransomware hackers will often lower their prices - with some giving discounts up to 96%
Ransomware is now a price-discovery market — a 96% discount means attackers are optimizing for conversion, not list price. If your playbook assumes 'we won’t pay,' you’re already in their model; the real work is hardening backups, segmentation, and rehearsed recovery so the “discount” is irrelevant.
Deep & Emerging TechFrance Adds €1.55 Billion for Quantum and Semiconductor Development
France just put another €1.55B behind quantum and semis — this is industrial policy, not research grants. If you’re building deep compute or quantum-adjacent tech in Europe, the funding and talent gravity just shifted toward French-backed ecosystems and their preferred standards.
Deep & Emerging TechGitHub hit with another major attack — Megalodon hits over 5,000 repos with malware-laden commits
Mass repo compromise via automated malware commits turns your supply chain into the attack surface—5,000+ poisoned repos means "git pull" is now a security event. Treat GitHub like production infra: enforce signed commits, lock down CI, and add automated diff scanning before anything hits main.
Deep & Emerging TechMegalodon cyberattack infects 5,500 GitHub open-source repositories with malware, researchers say
An attack that touches 5,500 open-source repos is a systemic risk, not a one-off breach—your dependency tree is now a probable infection vector. Freeze non-critical updates this week, run SBOM and malware scans across your stack, and stop treating open source as "free" until you’ve priced in security overhead.