Rebalancing Retirement: How 401(k) Plans Exacerbate Inequality and What We Can Do About It Summary This article, authored by Quinn Curtis, Leo E. Strine, Jr., and David H. Webber and based on a recent working paper, argues that the current US 401(k) system magnifies wealth inequality despite generous tax subsidies (about 1.5% of GDP). The […]
The implications of crypto hacker attacks on financing new ventures Article Date: 29 May 2025 Article URL: https://www.tandfonline.com/doi/full/10.1080/00472778.2025.2503375?af=R Article Image: Cover image Summary This research article (Journal of Small Business Management) examines how major cryptocurrency heists affect the market efficiency and liquidity of Initial Coin Offerings (ICOs). Using a signalling theory framework, the authors apply […]
How Gray-Zone Hosting Companies Protect Data the US Wants Erased Summary Since early 2025, a spike in US-based clients — including abortion clinics, activist groups, independent newsrooms and whistleblower platforms — have sought refuge with so-called gray-zone hosting providers. Firms like FlokiNET and 1984 Hosting offer privacy-first services by combining anonymous sign-ups and payments, jurisdiction […]
From Common Practice to Differentiated Design: Turning Stock Prices into Performance Prizes in the S&P 500 Summary Ryan Colucci of Compensation Advisory Partners reviews how relative Total Shareholder Return (rTSR) remains the dominant long-term incentive for S&P 500 CEOs, present in 58% of PSU awards. The article explains key design choices — whether rTSR is […]
Why Threat Hunting Should Be Part of Every Security Program Summary Robert Lackey argues that threat hunting is an essential habit for mature security programmes because automated detection alone will miss many adversary activities. Threat hunting is framed as a mindset — a proactive, investigative approach that assumes something may already be wrong and seeks […]
UltraViolet Expands AppSec Capabilities With Black Duck’s Testing Business Summary UltraViolet Cyber has acquired the Application Security Testing (AST) services arm of Black Duck to broaden its unified security operations offering. The deal brings penetration testing, red teaming, threat modelling, cloud risk assessments and secure software development consulting into UltraViolet’s portfolio and will be integrated […]
Philippine AML Council launches casino probe amid flood project corruption scandal | AGB Summary The Philippine Anti‑Money Laundering Council (AMLC) has opened an investigation into casino transactions after reports that former Department of Public Works and Highways (DPWH) engineers allegedly channelled more than PHP1 billion through 13 casinos while overseeing dubious flood control projects in […]
Blast Radius of Salesloft Drift Attacks Remains Unclear Summary Between 8–18 August, threat actor UNC6395 exploited Salesloft’s Drift by stealing OAuth and refresh tokens from its Salesforce integration. The stolen tokens enabled lateral movement into customer Salesforce instances and resulted in numerous downstream disclosures from organisations such as Zscaler, Palo Alto Networks, Cloudflare, Proofpoint and […]
Czech Warning Highlights China Stealing User Data Summary The Czech Republic’s National Cyber and Information Security Agency (NÚKIB) issued a warning about products and services that transfer system and user data to the People’s Republic of China or are remotely administered from there. The advisory highlights risks that data routed to Chinese territories or entities […]
Phishing Empire Runs Undetected on Google, Cloudflare Summary Researchers at Deep Specter Research uncovered a multi-year, industrial-scale phishing-as-a-service (PhaaS) operation that ran largely unnoticed on public cloud infrastructure, primarily Google Cloud and Cloudflare. The campaign abused expired, high-trust domains and used cloaking techniques to present cloned, brand-authentic pages to search engines while serving malicious or […]
