I think Dan Goodin sometimes writes deep analysis of security attacks, although his recent articles len towards surface level news stories that you can find everywhere.