
US and security allies warn Russian attacks on critical infrastructure are ramping up against 'poorly configured and vulnerable networking devices worldwide'
THE SO WHAT
Nation-state actors are now systematically sweeping for misconfigured edge devices in critical infrastructure—basic network hygiene has become geopolitical exposure, not just IT debt. Operators running OT or distributed sites should be inventorying and hardening routers and gateways this week, not next quarter.
READ THE SOURCE
MORE FROM THE WIRE
Deep & Emerging Tech'A single entry point can rapidly expand to greater enterprise impacts': Microsoft introduces changes to tackle ShinyHunters
Hardening OAuth visibility and governance in response to ShinyHunters underlines that third‑party app consent is now a primary enterprise attack surface, not a side channel. Security and IT teams should inventory OAuth‑connected apps this week and tighten approval flows before assuming Microsoft’s changes close the gap.
Deep & Emerging TechThe 'absolutely superb' Bambu Lab P2S we tested in our workshop just dropped in price
High‑end CoreXY printers dropping in price keeps pushing 3D printing from prototyping into small‑batch production territory. If you manage hardware or spare‑parts heavy businesses, it’s worth re‑running the math on in‑house printing versus outsourced fabrication at these new price points.
Deep & Emerging TechSamsung 990 SSD review: Good, but not great. Is AI to blame?
If SSDs are being tuned and priced for AI‑style bursty workloads—fast until the secondary cache is exhausted—general users may be paying AI premiums for worse sustained performance. Infra and desktop buyers should read beyond the “AI‑ready” label and match storage choices to their actual write patterns, not the marketing narrative.
Deep & Emerging TechMicrosoft’s fix for RoguePlanet has its own new disk space bug
A patch for a zero‑day that introduces a new disk‑space bug is a classic example of security fixes carrying operational risk. Ops teams should stage‑roll Defender and engine updates with monitoring, not auto‑approve them across fleets, even when the underlying vulnerability is severe.