Top 2024 Cyber Stories
Inside the War on Cybercrime: Cyber Journalism, Critical Infrastructure, and the Battle Over Influence – A Conversation with Chris Bing
In the latest episode of the Gula Tech Adventures video series, Ron Gula sat down with veteran cybersecurity journalist Chris Bing to unpack the biggest cybersecurity events of 2024 and explore the evolving role of cyber journalism. The interview followed a satirical animated short titled Cyber Journalism, where a reporter desperately seeks an interview with “Critical Infrastructure” before being threatened with reassignment to cover the RSA Conference—a tongue-in-cheek jab at how high-stakes and confusing the cyber beat can be.
But the real story is no joke. Bing, a respected voice in the cybersecurity press and a graduate of Johns Hopkins’ Intelligence and Cybersecurity Master’s program, took viewers on a tour of the most impactful breaches and themes of the year—from ransomware to election interference to how journalists vet intelligence.
From Local News to Cyber Watchdog
Chris Bing’s path to cybersecurity journalism wasn’t linear. With a political science background, Bing began reporting on local tech businesses, which in the D.C. region often means diving headfirst into defense and cybersecurity. Over time, this proximity evolved into in-depth coverage of complex cyber threats—many with geopolitical consequences.
One of Bing’s most groundbreaking investigations was “Project Raven,” which uncovered how former U.S. intelligence operatives had been working as offensive cyber contractors for the United Arab Emirates. This revelation wasn’t just a headline; it led to real changes in U.S. policy, including restrictions on former intelligence officials’ post-government work.
2024: A Banner Year for Breaches and Blowback
While Bing has covered high-profile stories like the takedown of REvil, 2024 delivered a fresh round of crises—and learning opportunities.
1. Change Healthcare Ransomware Attack
The year’s most significant ransomware attack hit a company few Americans had ever heard of—Change Healthcare. A quiet but critical player in the healthcare supply chain, Change processed health insurance claims for thousands of providers. The ransomware attack shut down its systems for weeks, disrupting payments and delaying patient care nationwide.
Small clinics were especially vulnerable, with some unable to process insurance claims and forced to eat the costs. While the government stepped in with emergency loans, the scale of the incident reignited the conversation around how prepared critical infrastructure really is—and what role regulators should play.
Bing emphasized a key lesson: “Everyone is someone else’s supply chain.” And in this case, Change was the entire industry’s.
2. The LockBit Ransomware Takedown
Another watershed moment was the dramatic takedown of LockBit, one of the most prolific ransomware groups operating out of Eastern Europe. Coordinated by the UK’s National Crime Agency with support from international partners, the operation included arrest warrants, infrastructure seizures, and even a public-facing doxxing campaign.
One of the most intriguing aspects was that law enforcement managed to obtain decryption keys, enabling victims to recover data. Bing speculated that this may have involved partnerships with cryptocurrency exchanges or even direct hacks of the criminals themselves—a modern twist on counterintelligence in cyberspace.
The LockBit story highlighted how the reputation economy in ransomware circles is real. Damaging a gang’s credibility can be as impactful as arresting its members.
3. Iranian Election Interference
In mid-2024, the U.S. intelligence community confirmed that Iranian threat actors (APT42) had engaged in a phishing campaign targeting both Trump and Biden campaign officials. Some staffers were compromised, allowing Iranian operatives to access confidential campaign communications.
Rather than dump the data on WikiLeaks-style platforms, the hackers posed as whistleblowers and tried to pitch stolen materials to journalists under fake personas. This was a callback to 2016’s Russian interference but with a twist—journalists in 2024 were more cautious.
Bing described how newsrooms now have much higher bars for publication: unless there’s undeniable proof of wrongdoing and independent verification, most are steering clear of manipulated leaks.
Journalism on the Cyber Frontlines
Bing’s unique position between cybersecurity practitioners and the general public gives him a perspective that few others possess. His job involves not just translating complex issues like supply chain attacks or spear phishing campaigns but also verifying sources in an age of disinformation and AI-generated manipulation.
He often receives sensitive leaks—sometimes useful, sometimes clearly false. Vetting sources is harder than ever. And when you're being pitched by someone claiming to be a whistleblower but who might actually be an Iranian intelligence operative, caution is the name of the game.
Bing also raised a difficult question: What happens when government and cloud providers cooperate behind closed doors to take down cybercriminals? How much of that should be public knowledge, and how much remains obscured for operational reasons? It’s a delicate dance between transparency, operational security, and legal jurisdiction.
Building Cyber Literacy, From Government to Journalists
While Bing has spent years reporting on cybersecurity for Reuters, he also recently completed a master's program at Johns Hopkins focused on intelligence and cybersecurity. The experience, he said, helped him better understand the technical and strategic complexities behind the stories he covers—while also sharpening his ability to spot misinformation.
It’s a reminder that even journalists need to “patch their knowledge,” as cyber risks and terminology evolve faster than ever.
Final Thoughts: What Should We Expect Next?
Bing predicts the tail end of 2024 may hold more surprises—especially in the run-up to the U.S. elections. While Assistant Director Jen Easterly and others have reassured the public that voting infrastructure is secure, perception hacks are still a threat. The distinction between disrupting ballots and disrupting trust in elections is crucial.
In the fight against disinformation, infrastructure insecurity, and international interference, the press remains a crucial battlefield. And journalists like Bing walk a fine line—between public awareness and national security, between curiosity and caution.
Want to Help?
If you’re a cybersecurity professional with a story to tell or data to share, Bing encourages outreach—especially through encrypted platforms like Signal. His goal is clear: help the public understand what’s really happening behind the firewall.
To connect with Chris Bing, reach out on X (@Bing_Chris), LinkedIn, or via email at christopher.bing@tr.com.
For more interviews like this one, visit Gula Tech Adventures on YouTube or subscribe to our channel. Let’s keep making cybersecurity understandable—and accountable.