The hottest Security Substack posts right now

And their main takeaways
Category
Top U.S. Politics Topics

Five Interesting Things about the White House AI Action Plan

Interconnected 570 implied HN points 23 Jul 25
🇺🇸 U.S. Politics Security
  1. The White House AI Action Plan wants to boost open-source AI development in the U.S. by making GPU resources more accessible for universities and researchers. This could help America catch up with other countries that are ahead in open-source AI.
  2. The plan includes a strategy to export American AI technology to other countries, similar to a boxed product, making it easier for allied nations to adopt U.S. AI solutions. This aims to strengthen U.S. influence in tech on a global scale.
  3. There's a shift in attitude toward AI in regulated industries, encouraging companies to experiment with AI technologies more freely rather than waiting for strict regulations first. This 'try-first' approach echoes the innovative spirit of Silicon Valley.

Three Uncomfortable Truths About Bukele's Crackdown On Gangs

CrashOut by Ioan Grillo 1218 implied HN points 29 Aug 23
🌍 World Politics Security
  1. The crackdown on gangs in El Salvador led by President Bukele has been effective in reducing crime rates significantly.
  2. Despite criticism, Bukele's offensive is popular among the people of El Salvador due to the tangible benefits seen from the eradication of gang influence.
  3. The methods used in the crackdown, while successful, have been brutal, leading to concerns about human rights violations and the high number of individuals incarcerated.

What’s a Datacenter?

Technically 25 implied HN points 12 Feb 26
🕹 Technology Security
  1. Datacenters are the physical homes for thousands of servers that power everyday apps and critical services, so keeping them running reliably is essential.
  2. They’re tightly controlled, standardized facilities with strict access rules, dense racks of servers, and heavy cooling systems that create hot and cold aisles.
  3. Big datacenter investment is driving economic growth, but new projects often spark local opposition over environmental impact, utility strain, and property concerns.

Public records suggest name and luxury residence of CIA's Manila chief of station

All-Source Intelligence Fusion 549 implied HN points 23 Jul 25
🇺🇸 U.S. Politics Security
  1. Public records show that Peter Enzminger is the CIA's chief of station in Manila, staying at a luxury hotel called Raffles Makati. This suggests a high-profile role in U.S. intelligence.
  2. Enzminger previously served as Amman's CIA chief, using a cover as a Regional Affairs Officer. This indicates a history in key positions within the agency.
  3. The CIA has a practice of keeping officers’ identities under wraps while using diplomatic covers, highlighting the ongoing need for secrecy in intelligence work.

OSD 356: Time-to-effective-resistance

Open Source Defense 94 implied HN points 18 Dec 25
🌍 World Politics Security
  1. Mass shootings usually end once the attacker meets effective resistance, so the main driver of casualties is how long it takes for someone to stop them.
  2. A gun's rate of fire or technical lethality matters less than victims' helplessness and the delay before intervention, so limits like smaller magazines often don't change outcomes much.
  3. Widespread armed presence in public can make effective resistance arrive within seconds and sharply reduce harm, but unarmed bystander attempts to disarm attackers are very dangerous and highly situational.
Get a weekly roundup of the best Substack posts, by hacker news affinity:

Ledger Hacked & Is BTC ETF Approval "Sell The News?"

DeFi Education 799 implied HN points 15 Dec 23
🔮 Crypto Security
  1. The Ledger hack shows the risks involved with crypto and the importance of securing your assets. If you own a Ledger, it’s crucial to understand what to do next.
  2. The approval of Bitcoin ETFs might affect the market in significant ways, leading to potential buying or selling trends. Investors should keep an eye on how this news unfolds.
  3. There's a growing trend of risky on-chain investment funds, sometimes called Gambling-As-A-Service. People need to be cautious when engaging in these high-risk investments.

Issue #115

Infra Weekly Newsletter 22 implied HN points 12 Feb 26
🕹 Technology Security
  1. Agents need durable, versioned, replayable state so their behavior can be debugged, audited, and trusted in production; self-hosted state engines provide strong consistency and memory for that use case.
  2. Data infrastructure, not models, will be the real competitive advantage for agent-driven systems because agents create lots of tiny, ephemeral databases and demand fast, reusable access; winning databases will virtualize many logical tenants on shared infra, separate compute and storage, and shift pricing to usage-based models.
  3. Counting CVEs or relying only on CVSS is a shaky security strategy because both are noisy and lack context; build AppSec around threat modeling and contextual triage, and treat zero-CVE claims with skepticism since upstream timelines and metadata can hide real risk.

AI Roundup 150: Empire State Defiance

Artificial Ignorance 88 implied HN points 27 Dec 25
🕹 Technology Security
  1. New York passed the RAISE Act forcing big AI companies to publish safety protocols, report serious incidents quickly, and face stiff penalties. It directly challenges federal efforts and could make state rules the de facto industry standard.
  2. Nvidia struck a $20B licensing deal with Groq to gain low‑latency chip designs and talent, showing a playbook of absorbing specialized rivals instead of fighting them head‑on. That move fills a gap for fast inference workloads and helps Nvidia protect its market lead.
  3. Autonomous AI shopping agents threaten to cut retailers like Amazon out of customer relationships and margins, so Amazon is blocking bots, suing scrapers, and building its own agent tools. The technology is still early, giving Amazon a narrow window to influence how agentic commerce develops.

Henry Huiyao Wang: Why China-Canada trade and global cooperation are now ripe for progress

Pekingnology 52 implied HN points 20 Jan 26
🌍 World Politics Security
  1. China and Canada are moving to deepen practical economic and strategic ties, with tariff deals on electric vehicles and canola, an energy dialogue, security cooperation, and a renewed currency-swap arrangement.
  2. Both countries publicly recommit to multilateralism and plan to work together on UN and WTO reform and on plurilateral initiatives to support Global South development.
  3. A pragmatic "selective engagement" approach, backed by business interest and large diaspora links, creates a window to boost trade, investment, travel and people-to-people exchanges while balancing other partnerships.

Our Navy Needs More of the War, Less of the College

CDR Salamander 1100 implied HN points 04 May 23
🇺🇸 U.S. Politics Security
  1. Largest land war in Europe is happening, China surpassing the US in navy size, and Iran hijacking oil tankers are pressing issues.
  2. Naval War College's focus has shifted away from war to topics like gender and peace, raising questions about its alignment with naval priorities.
  3. The symposium at the Naval War College focused on gender issues, peace, and security, rather than warfighting and maritime challenges.

You Don't Know Who Your Users Are.

Permit.io’s Substack 159 implied HN points 06 Jun 24
🕹 Technology Security
  1. Different users need different access levels in apps. It's important to plan what each type of user should see and do.
  2. Internal users, like employees, also need access to applications but have different requirements than regular end users.
  3. It's crucial to have a balanced approach to permissions management. This means sharing responsibilities to avoid bottlenecks and inefficiency in the system.

The enemy within

Comment is Freed 112 implied HN points 10 Dec 25
🌍 World Politics Security
  1. The US National Security Strategy sides with nationalist 'Patriotic Parties' and raises alarms about demographic change, amounting to direct interference in European domestic politics.
  2. The NSS downplays Russia’s role as an aggressor in Ukraine and pushes for 'stabilising' relations and a quick peace without addressing justice, which could reward aggression and weaken European security.
  3. The document matters and must be taken seriously, but the administration is inconsistent and factional, so Europeans should judge actions over words and prepare for different possible US approaches.

A Crack in the Ice of Geopolitics: Greenland, Svalbard, Bornholm, Canada, the Digital Iron Curtain and Suez

Dr. Pippa's Pen & Podcast 42 implied HN points 21 Jan 26
🌍 World Politics Security
  1. Greenland is suddenly a high-stakes strategic prize, with the US pushing for greater control as part of bigger security bargains, while the Inuit insist on autonomy and resent being treated like a pawn.
  2. Western unity is fraying as several European countries and Canada cozy up to China or act independently, straining NATO cohesion and intelligence sharing and worrying the US about unreliable partners.
  3. Economic and tech coercion is rising — threats of tariffs and criticism of Europe’s reliance on Chinese-made tech hint at a coming 'digital iron curtain' and increased risk of trade and technology decoupling.

Browser Relay: When Your AI Assistant Gets Hands on Your Browser

Boring AppSec 30 implied HN points 26 Jan 26
🕹 Technology Security
  1. Browser Relay gives your AI real "hands" in your browser — it can navigate, click, run JS, and read any page including sites you’re logged into, which makes tasks like summarizing bookmarks seamless.
  2. That power brings real security risks: the AI can access cookies and session data (so it could read or act in logged-in accounts), and web content can try prompt-injection, so be very cautious about which tabs you attach.
  3. Self-hosting puts you in charge of security, so follow best practices like using a dedicated Chrome profile, keeping the control server on loopback or Tailscale only, using separate tokens, and using isolated managed profiles for untrusted scraping.

Ask us anything

Comment is Freed 24 implied HN points 06 Feb 26
🌍 World Politics Security
  1. Paying subscribers can submit questions in the comments or anonymously by email, and answers are posted the following week though not every question is guaranteed a reply.
  2. The newsletter focuses on current politics and international affairs — covering UK government crises and elections, US–Iran tensions, Trump-related developments, the war in Ukraine, and related interviews and analysis.
  3. Most posts are paywalled; a paid subscription (about £4.50/month or £45/year) supports the work, gives full access, and the newsletter publishes roughly three times a week to a large readership.

Iran has fallen*

Unreported Truths 55 implied HN points 13 Jan 26
🌍 World Politics Security
  1. The Iranian government has lost its legitimacy by using mass violence against unarmed protestors, making it effectively a "zombie" state that survives only by force.
  2. Nationwide protests met with brutal repression, internet blackouts, and graphic evidence of killings have produced thousands of deaths and a crisis whose short-term outcome depends on whether security leaders or foreign powers choose to intervene.
  3. Longstanding economic mismanagement, corruption, and prior security failures weakened the regime, and external actions that embarrassed or damaged its capabilities helped accelerate the current uprising.

Israel's Intel Failure

Diane Francis 719 implied HN points 07 Dec 23
🌍 World Politics Security
  1. Israel's intelligence missed major warnings about an attack from Hamas, despite receiving detailed information about their plans. Many red flags and alerts were ignored by the leadership.
  2. In September 2023, Ukraine's intelligence warned Israel that a group was preparing Hamas for an attack, but this information did not reach the right people.
  3. Even soldiers on the ground noticed suspicious activity and reported it, but their concerns were dismissed by their commanders, which contributed to the surprise attack.

2023 Weekly Discussion Thread #6: Wang Yi in Europe; US-China; Struggle 斗争; Bao Fan; Football and Semiconductors corruption

Sinocism 963 implied HN points 17 Feb 23
🌍 World Politics Security
  1. Consider the implications of the US-China balloon incident and potential Biden-Xi phone call or Blinken-Wang Yi meeting.
  2. Reflect on how the visit of US deputy assistant secretary of defense for China to Taiwan will be viewed by PRC policymakers.
  3. Analyze what Wang Yi may achieve at the Munich Security Conference and during his visit to Russia.

The Hegemonists' Irrational Fear

Eunomia 569 implied HN points 10 Jan 24
🌍 World Politics Security
  1. The U.S. has nothing to lose by stepping back from excessive global involvement.
  2. America can be secure without trying to dominate the world.
  3. The U.S. should shed irrational fears that drive its foreign policy decisions.

America's State Capture

Diane Francis 939 implied HN points 21 Sep 23
🇺🇸 U.S. Politics Security
  1. Political violence is rising in America, making public life more dangerous for officials. Many politicians, like Mitt Romney, now need personal security due to threats.
  2. The influence of private interests on government, called 'state capture,' is leading to corruption and intimidation in American politics. Politicians feel pressured to behave in ways that benefit these interests.
  3. Warnings from other countries about America's gun culture are increasing. Travelers are advised to be careful due to the high rate of gun violence.

Talking Iran with The Judge

John’s Substack 8 implied HN points 27 Feb 26
🌍 World Politics Security
  1. A guest on the 'Judging Freedom' show discussed U.S. misadventures and interventions around the globe.
  2. The conversation focused mainly on Iran and the risks associated with U.S. policy toward that country.
  3. There was a clear hope that President Trump will avoid initiating military action or "pulling the trigger" against Iran.

Channels, not Addresses

Philip’s Newsletter 31 implied HN points 28 Jan 26
🕹 Technology Security
  1. The internet's address-based model lets anyone send messages to you uninvited, which enables spam, DDoS, stalking, and will get much worse with persuasive AIs.
  2. Creating shared private channels between people makes messaging a pull-based, encrypted inbox you control, so others can't overwhelm you and you can stop contact by deleting the channel.
  3. Simple relays only store and forward encrypted channel messages, letting many devices and servers carry traffic without reading it, which makes messaging decentralized, censorship-resistant, and usable even offline.

Ukraine: Stalemate or Checkmate

Diane Francis 779 implied HN points 13 Nov 23
🌍 World Politics Security
  1. The war in Ukraine is currently stuck in a stalemate, and new technology from the West is needed to change that. Many believe Ukraine is losing, but they've actually done significant damage to Russia's military.
  2. Ukraine's counteroffensive slowed down due to delays in receiving promised military support from NATO, giving Russia a chance to prepare defenses.
  3. The recent conflict in Israel and Gaza is drawing attention and resources away from Ukraine, which could be part of Putin's strategy to gain an advantage in the war.

OpenClaw Use Cases Part 2: 50+ Real Ways People Are Running Their Lives (and Businesses) With It

The Product Channel By Sid Saladi 6 implied HN points 05 Mar 26
🕹 Technology Security
  1. Treat OpenClaw like a high-risk new employee: it has real security vulnerabilities (prompt injection and exposed installs), so use non-root accounts, dedicated integrations, human-approval gates, read-only skills to start, and run it in containers.
  2. OpenClaw is a persistent agent that connects a model, skills, and a chat interface to actually execute tasks, so you must do a one-time setup: install/host it, connect models, wire a chat client, install only needed skills, write a SOUL.md with hard limits, and schedule jobs.
  3. Bridging digital and physical life is a major use case — photo-based inventories, curriculum-to-lesson planners, custom kids’ content apps, and document/receipt scanners show how agents can reference real objects and run household or business workflows for you.

The Geopolitical Monopoly Board: Venezuela, Ukraine, Iran, Cuba, Greenland, Canada, Taiwan, Somalia, Minnesota and The Blob

Dr. Pippa's Pen & Podcast 45 implied HN points 14 Jan 26
🌍 World Politics Security
  1. Criminal networks in Latin America are increasingly moving into legitimate businesses, which could make it easier to earn money legally and help clean up regional economies.
  2. Exposed problems with Venezuelan voting systems are being used as evidence that outside actors manipulated elections, fueling claims that Western intervention shaped color revolutions and raising the risk of wider geopolitical conflict and resource-control moves.
  3. Allegations of large-scale fraud tied to Somali-run businesses in Minnesota claim billions were paid out and sent abroad, prompting federal investigations, political fallout, and broader concerns about systemic corruption and weakened trust in institutions.

Using Microsoft Intune to Implement and Manage Security

Rod’s Blog 535 implied HN points 12 Jan 24
🕹 Technology Security
  1. Microsoft Intune is a cloud-based service to manage and secure devices in an organization.
  2. You can use Intune to enroll devices, create and assign security policies, and enhance security with Microsoft Defender for Endpoint.
  3. Monitoring device security status and alerts in Intune and Defender for Endpoint allows for better protection of devices and data.

The Impact of AI on Social Media

Rod’s Blog 515 implied HN points 16 Jan 24
🕹 Technology Security
  1. Artificial intelligence is extensively used on social media platforms like Facebook, Twitter, Instagram, and TikTok to personalize content, analyze user data, and moderate harmful content.
  2. AI on social media can enhance user experience by helping discover relevant content, connect with similar individuals, and create a safer online environment.
  3. Despite its benefits, AI poses risks to user privacy, security, and trust by collecting and exploiting data, creating biases and misinformation, and reducing user control over algorithms.

OpenClaw/Moltbot/ClawdBot 101: The Complete Guide

The Product Channel By Sid Saladi 20 implied HN points 11 Feb 26
🕹 Technology Security
  1. OpenClaw is a local AI agent framework that runs on your machine, links to messaging apps, and can actually execute commands, scripts, browser actions, and file operations using an LLM backend.
  2. It went viral because of flashy demos and the Moltbook agent phenomenon, but much of the “AI society” hype was overstated and many high-profile examples were human-assisted or misleading.
  3. OpenClaw poses serious security and privacy risks since it has shell access and shipped with weak defaults, so you should use dedicated hardware/accounts, avoid exposing ports, enable Docker sandboxing, and follow strict credential and network hygiene.

Analyst reactions: How AI is reshaping engineering organizations

Engineering Enablement 11 implied HN points 18 Feb 26
🕹 Technology Security
  1. Hiring is shifting toward AI‑fluent roles like “AI Engineer,” and companies are putting much more emphasis on code quality because AI makes writing code easier but often produces sloppy output that reviewers must catch.
  2. Early, fragmented AI experiments are being centralized into platform-level models (AI Centers of Excellence or hub-and-spoke), so platform teams now own governance, orchestration, and making AI a standard developer tool.
  3. A new operational layer—LLMOps—is emerging to run models, ship integrations, and create reusable prompts, while human challenges like security training, unclear ROI, and uncontrolled developer experimentation remain the biggest risks.

Gaza checkpoint contractor is shell company of Wyoming-based 'generational wealth management' firm

All-Source Intelligence Fusion 1139 implied HN points 23 Jan 25
🇺🇸 U.S. Politics Security
  1. Safe Reach Solutions is a contractor for a Gaza checkpoint and is linked to a Wyoming-based wealth management firm called Two Ocean Trust. This connection raises questions about its legitimacy.
  2. The company operates as a shell, meaning it may not have a lot of transparency about its operations or leadership. Its website doesn't even list its legal name or any employees.
  3. Another contractor, UG Solutions, is run by a former U.S. Special Forces soldier. This adds a layer of military experience to the operations at the checkpoint.

Bernard-Henri Lévy: Europe Must Unite or Die

Common Sense with Bari Weiss 992 implied HN points 19 Feb 25
🌍 World Politics Security
  1. Europe needs to become more self-reliant since the U.S. can no longer be counted on for support. This means taking responsibility for their own security and not relying on American assistance.
  2. There's a sense of urgency for European nations to unite in response to challenges like the conflict in Ukraine. If they don't come together, they're likely to face further aggression from Russia.
  3. Currently, Europe lacks a solid plan for long-term security and support for Ukraine, which shows a weakness in their response to current threats. More decisive actions are needed to prepare for the future.

America's Most Successful Terrorist?

Bet On It 447 implied HN points 08 Jul 25
🇺🇸 U.S. Politics Security
  1. The TSA's shoe removal policy has cost Americans a lot of time, with estimates of about 15 billion minutes wasted over the years. That means countless hours lost for travelers.
  2. Richard Reid, known as the 'Shoe Bomber,' caused a massive response from security that had a much bigger impact on people's lives than his single terrorist act. His actions triggered a lifetime of inconvenience for air travelers.
  3. Ending this shoe removal rule means people can now travel more freely, as the harmful effects of the policy are finally being recognized and addressed.

Has Europe’s Islamist Threat Come to America?

Common Sense with Bari Weiss 1187 implied HN points 02 Jan 25
🇺🇸 U.S. Politics Security
  1. There were two suspected terror attacks on New Year's Day in America, raising concerns about violence similar to what Europe has experienced.
  2. A truck driver drove into a crowd in New Orleans, resulting in at least 15 deaths and many injuries.
  3. After the truck attack, the driver shot at police before being killed, and IEDs were also found nearby, indicating a planned attack.

Calif is hiring!

Thái | Hacker | Kỹ sư tin tặc 738 implied HN points 03 Nov 23
💼 Business Security
  1. Calif is a young firm on the verge of a big boom, working with top firms in AI, infrastructure, and products, and offering great work experiences.
  2. Calif is hiring excellent hackers to tackle important tech challenges and offers a unique opportunity to work in a company with a high standard reminiscent of Silicon Valley's early days.
  3. Calif has open positions for Offensive Security Engineer, Software Engineer, and Technical Project Manager, with a referral reward of USD 2,000 for successful hires.

An Interview With Brian Baker

ciamweekly 62 implied HN points 22 Dec 25
🕹 Technology Security
  1. CIAM helps teams move fast while managing risk by providing plug-and-play identity services so businesses can deploy strong security without building large security orgs.
  2. Usability is the biggest adoption barrier: simple, embedded sign-up/sign-in flows (think three fields, passkeys, device-aware MFA, no redirects/popups or CAPTCHAs) keep real users from abandoning.
  3. CIAM’s future is shifting from pure security to selling user knowledge and insights, with AI and increased regulation driving investment and new product opportunities.

The case for keeping Burkina Faso, Mali, and Niger within ECOWAS

An Africanist Perspective 356 implied HN points 24 Feb 24
🌍 World Politics Security
  1. Landlocked countries like Burkina Faso, Mali, and Niger depend heavily on coastal ECOWAS states for trade, and leaving ECOWAS could lead to economic and logistical challenges that may affect the movement of goods, people, and migrant workers.
  2. There is a historical precedent of military coups in the Sahel region that ECOWAS leaders need to consider when deciding how to handle the situation, including the need for constructive dialogue and understanding the motivations behind the putschists.
  3. The current crisis in ECOWAS highlights the challenges that African regional economic communities and the African Union will face as individual countries are pulled in different directions by global powers, emphasizing the need for regional unity and effective diplomacy.

Ethiopia needs a reliable seaport and a navy

An Africanist Perspective 732 implied HN points 03 Nov 23
🌍 World Politics Security
  1. Ethiopia needs a reliable seaport and navy to secure its economic future and overcome the costs associated with being landlocked.
  2. Access to a reliable seaport is crucial for Ethiopia's trade-driven output growth, industrialization, and agricultural exports.
  3. Considering historical and geopolitical challenges, building a navy is essential for Ethiopia to protect its economic interests, secure seaport treaties, and deter aggression from rivals.