The Washington Post experienced a cyberattack that impacted multiple employees, including journalists working on national security and economic policy. Experts highlight the growing threat to journalists from cyberattacks, which can often be conducted without their direct engagement, particularly through sophisticated methods employed by commercial surveillance vendors. Following the discovery of the breach, the newspaper reset login credentials for all staff as a precautionary measure. The identity of the attackers remains unknown, but the incident underscores the serious risks journalists face in the digital age.
"Attacks against journalists are a serious problem," says Roger Grimes, Data-Driven Defense Evangelist at KnowBe4.
In most cases, the journalist has to click on a rogue link and somehow get tricked into running the malware.
Many commercial surveillance vendors (CSVs) have many zero-days that require zero clicks by the targeted journalist.
When governments use CSVs, it’s harder to say do as I say but not as I do.
Collection
[
|
...
]