- ByteSize
- Posts
- Phuket Around and Find Out, Tumblr's Big Move, and Microsoft Does MongoDB
Phuket Around and Find Out, Tumblr's Big Move, and Microsoft Does MongoDB
Cybercrime busts, military goggles, and why your VM is having a meltdown
Hey you – nice to see you again!
It's February 18th – and today marks a pivotal moment in history: Wikileaks.
On this day in 2010, WikiLeaks published its first Chelsea Manning-leaked document. The "Reykjavik13" cable barely made headlines, but it kicked off what would become one of the most significant dumps in history (the document kind, not the other… nevermind lol). That first cable about Iceland barely made headlines, but it started something much bigger – reshaping how we think about government transparency and accountability.
Now, let's dive into some stories that prove truth is – sometimes – wilder than fiction...
Hackers Learn Phuket Was Not the Move
Looking for a tropical getaway? Maybe don't pick Thailand.
…That is, if you're running a ransomware operation. Four members of the 8base ransomware gang just learned this lesson the hard way.
Operation "Phobos Aetor" (which sounds like something you'd yell while casting spells at Hogwarts) nabbed these cyber troublemakers in Phuket. The suspects, including Roman Berezhnoy and Egor Nikolaevich Glebov, were allegedly behind over 1,000 ransomware attacks worldwide, targeting everything from local governments to healthcare facilities.
The FBI previously warned about their Phobos ransomware targeting critical infrastructure across the US. Law enforcement seized 40+ pieces of evidence, including mobile phones, laptops, and digital wallets, plus took down more than 100 servers. They even managed to warn 400+ companies about incoming attacks, which is the cyber equivalent of essentially sending out a "sorry to ruin your evil plans" heads up text.
Pro tip: If you're going to run a global cybercrime operation, maybe don't say "phuket!" and do it from a touristy beach resort known for its cooperation with international law enforcement. That's like the world's dumbest criminal hideout – ever. Just saying.
Tumblr Finally Joins the Fediverse (While WordPress Does the Heavy Lifting)
Dig out your Hot Topic tees and black eyeliner – because Tumblr is back.
Yep, that's right. The platform that gave millennials endless GIF sets and taught us about both really questionable HTML design choices is finally joining the Fediverse. After teasing this move since 2022 (which in internet time is approximately forever), they're making it happen by... checks notes... letting WordPress do all the work.
By migrating to WordPress infrastructure, every Tumblr user will automatically get ActivityPub federation capabilities. It's like getting a free upgrade to first class because someone else built the entire airplane.
Automattic (Tumblr's parent company) is keeping quiet about the timeline, probably because moving half a billion blogs is like trying to doing construction on a library while people are still reading the books.
Microsoft Takes on MongoDB by Teaching PostgreSQL New Tricks
In today's episode of "Tech Giants Being Extra," Microsoft just dropped two PostgreSQL extensions that let it handle document-style data like MongoDB – and it's a bigger deal than it sounds. It's kind of the database equivalent of teaching your grandpa TikTok dances – unexpected, slightly awkward, but somehow it works.
The extensions – pg_documentdb_core and pg_documentdb_api (wow, so literal!) – essentially give PostgreSQL MongoDB-like powers while keeping its SQL street cred. Andrew Pavlo, Carnegie Mellon's database expert, told the Register that this is another sign that the line between document and relational databases is getting blurry.
How did MongoDB's take the copycat move? They basically said,"hmm…cute, but good luck with that," which is corporate speak for "we're not nervous, you're nervous."
And they're not wrong – bolting new features onto PostgreSQL is a bit like strapping a jet engine to a bicycle. Sure, it might work, but would you even want to ride it?
⚙️ Tool Time
We recommend ThreatModeler.
Imagine having a cybersecurity expert who never sleeps, doesn't charge consultant rates, and actually explains things without making you feel like you're in a bad episode of Mr. Robot. That's ThreatModeler.
Here's what makes it special:
Scans your systems faster than a caffeinated pentester shotgunning Red Bull
Explains fixes in actual human language without the "hire us for $500/hour" consultant pitches
Automates threat modeling across your entire infrastructure
Works with everything from shiny new cloud services to that one legacy server "Zyn-Spitting Dave" refuses to update
Why we're actually impressed:
Prioritizes real threats instead of crying wolf about every potential paper cut
No more alerts about vulnerabilities in systems you retired during the Obama administration
Integrates with your existing tools faster than developers abandon a JavaScript framework
Actually helps you fix problems instead of just pointing and laughing at them
But here's actually why we love it: You don't need a PhD in cybersecurity to use it. The interface is so intuitive. It's built for everyone from seasoned security pros to even that one intern who still thinks "admin123" is an acceptable password (you know who they are).
👨💻 Job Opportunities
This Chicago-based role wants someone to keep 650+ dental offices running smoother than a freshly polished molar. Bonus points if you can explain HIPAA compliance without putting people to sleep faster than nitrous oxide.
RAYUS is looking for their next diplomatic genius who can translate "tech speak" into "business speak" and vice versa. Think of it as being the IT world's version of C-3PO, but with better job security and less gold plating.
If you can orchestrate systems like Hans Zimmer arranges soundtracks and and manipulate Salesforce like Dr. Strange bends reality, this role needs you. Must understand both RingCentral and be willing to travel 10% of the time (sadly, not by opening portals).
🛩 Industry Moves
Microsoft Passes AR Goggle Hot Potato to Anduril
Microsoft just handed their $20 billion Army goggle project to defense tech startup Anduril, proving that sometimes the best way to handle a complicated government contract is to make it someone else's problem. The Integrated Visual Augmentation System (IVAS) project (think military HoloLens minus the motion sickness) is now Anduril's headache to manage.
Anduril's taking over production and future development, while Microsoft keeps the cloud and AI bits (presumably because teaching soldiers to shoot straight in augmented reality wasn't as fun as they thought it would be). It's like a tech industry version of a relay race, except the baton is worth billions and might occasionally make soldiers queasy.
North Korean Scammers Try to Bamboozle a Security Expert (It Goes About as Well as Expected)
Two scammers walked into a security company interview with deepfake faces and ChatGPT answers. This isn't the setup to a tech joke – it's an actual attempt to infiltrate a Silicon Valley startup.
A security engineer who literally builds anti-AI-vulnerability tools nearly got fooled by AI-powered job scammers. Dawid Moczadło, co-founder of Vidoc Security Lab, interviewed not one but TWO fake candidates using AI face-changing tech and ChatGPT to try infiltrating his company. It's like trying to rob a security expert's house while wearing a Halloween mask from Spirit Halloween.
The scammers, likely part of North Korea's $88 million IT worker con empire, brought their A game: perfect technical answers (thanks, ChatGPT!) and convincing LinkedIn profiles. These scammers were technically impressive enough that Moczadło actually considered hiring one of them before the video interview revealed their face was running on Windows 95 graphics. Oh, and claiming to be a software engineer from Serbia despite having a strong East Asian accent.
💽 Data Upload
Our Experts Exchange community is solving digital puzzles faster than you can say "have you tried turning it off and on again":
Well folks, that wraps up another week in tech where reality continues to be stranger than fiction. From hackers learning that beach resorts make terrible hideouts to cjob candidates from North Korea literally losing face, we just can't make this stuff up. Stay safe (and sane) out there!
Enjoyed the news? Discuss over on Experts Exchange.
Got news to share or topics you'd like us to cover? Send ‘em our way. We can’t wait to hear from you. Really.
And hey… psst… are you interested in sponsoring our newsletter and reaching a passionate, engaged community of IT professionals across the globe? Reach out here.