I’ve been thinking about trust lately. Not in the abstract philosophical sense, but in the “who do you hand your house keys to” sense. Which is unfortunate timing, because this week’s news suggests we’ve been handing our keys to some truly questionable characters.
The Protection Racket Made Digital
A DDoS protection firm got caught running the very botnet it claimed to defend against. The CEO’s excuse? They got breached. Investigators found the company’s own infrastructure was the command and control centre all along. It’s like hiring a locksmith who returns every Tuesday to rob you blind, then blames it on someone stealing his van. The beautiful simplicity of it almost deserves respect. Almost.
https://krebsonsecurity.com/2026/04/anti-ddos-firm-heaped-attacks-on-brazilian-isps/
When Your Middleman Plays Both Sides
A ransomware negotiator pleaded guilty to being a double agent. Took victim negotiation secrets, shared them with the attackers, collected a cut of the ransom. It’s entrepreneurial, I’ll give him that. Spotting a gap in the market and filling it with absolutely unconscionable behaviour. We’ve built an entire economy around digital extortion, complete with customer service and conflict of interest. Late stage capitalism really does find a way.
https://gizmodo.com/a-ransomware-negotiator-pleads-guilty-to-being-a-double-agent-2000749234
Geopolitical Supply Chain Theatre
US House panels are now investigating companies for using cheap Chinese AI models. Suddenly, when it’s political, everyone discovers supply chain risk. We’ve spent decades outsourcing everything from manufacturing to data processing, but AI models built in Beijing? That’s where we draw the line. Not saying the concerns aren’t valid. Just saying it’s convenient timing for an industry that’s spent years ignoring where anything actually comes from as long as it’s cheap.
When Government Gets Practical
The Netherlands looked at their reliance on Microsoft and said “nah, we’re good” before building their own GitHub alternative. This is what grown up technology policy looks like. Make a thing. Use the thing. Move on.
https://itsfoss.com/news/netherlands-forgejo-migration/
Bonus: The Chaos We Deserve
Someone in Yerevan (capital of Armenia, and yes I had to look that up) painted a donkey black and white, released it on a main road, and convinced an entire zoo their zebra had escaped. This has nothing to do with security (unless you count the people who dress up like security experts) and everything to do with why I still believe in humanity. If you can’t appreciate the artistry of a painted donkey causing citywide panic, I can’t help you.
The recurring theme this week seems to be that the people we trust to protect us are sometimes the exact people we need protection from. Which is either deeply cynical or just observant. I can never tell anymore.
Stay suspicious. Reply to this email if you’ve got stories or if you want me complain in real time in private (prices start from $5 per email).
Javvad Malik 