GDPR complaints filed against TikTok, Temu for sending user data to China - Non-profit privacy advocacy group "None of Your Business" (noyb) has filed six complaints against TikTok, AliExpress, SHEIN, Temu, WeChat, and Xiaomi, for unlawfully transferring European user's data to China and infringing European Union's general data protection regulation (GDPR).
TikTok getting ready to shut down in US on Sunday, report says - TikTok is preparing to completely shut off its app for US users on Sunday, which is when a federal ban on the platform could come into effect, The Information reports. Unless, of course, the Supreme Court blocks it.
CrowdStrike Insider Risk Services Defend Against the Threats Within - Insider threats are among the most elusive and damaging forms of cybersecurity risk. According to the Ponemon Institute, 71% of organizations experienced between 21 and 41 insider incidents in 2023, u[…]
Lazarus Group Targets Web3 Developers with Fake LinkedIn Profiles in Operation 99 - The North Korea-linked Lazarus Group has been attributed to a new cyber attack campaign dubbed Operation 99 that targeted software developers looking for freelance Web3 and cryptocurrency work to deliver malware. "The campaign begins with fake recruiters, posing on platforms like LinkedIn, luring developers...
VERT Threat Alert: January 2025 Patch Tuesday Analysis - Today’s VERT Alert addresses Microsoft’s January 2025 Security Updates. VERT is actively working on coverage for these vulnerabilities and expects to ship ASPL-1139 as soon as coverage is completed. In-The-Wild & Disclosed CVEs CVE-2025-21333 The first of three Hyper-V vulnerabilities this month is...
Smashing Security podcast #400: Hacker games, AI travel surveillance, and 25 years of IoT - The video game Path of Exile 2 suffers a security breach, we explore the issues of using predictive algorithms in travel surveillance systems, and the very worst IoT devices are put on show in Las Vegas. Oh, and has Elon Musk accidentally revealed he cheats at video games? All this and much more is discussed...
Researcher Uncovers Critical Flaws in Multiple Versions of Ivanti Endpoint Manager - Ivanti has rolled out security updates to address several security flaws impacting Avalanche, Application Control Engine, and Endpoint Manager (EPM), including four critical bugs that could lead to information disclosure. All the four critical security flaws, rated 9.8 out of 10.0 on the CVSS scale, are...
Cybertrucks donated to help LA fires: heroic act or poor marketing ploy? - Tesla Cybertruck deliveries have stalled in California as the electric vehicles are helping first responders and civilians during the LA wildfires. Some owners commend Musk’s heroic act, while others are calling it a marketing ploy.
Windows 10 KB5049981 update released with new BYOVD blocklist - Microsoft has released the KB5049981 cumulative update for Windows 10 22H2 and Windows 10 21H2, which contains an updated Kernel driver blocklist to prevent Bring Your Own Vulnerable Driver (BYOVD) attacks.
Ready to Simplify Trust Management? Join Free Webinar to See DigiCert ONE in Action - The digital world is exploding. IoT devices are multiplying like rabbits, certificates are piling up faster than you can count, and compliance requirements are tightening by the day. Keeping up with it all can feel like trying to juggle chainsaws while riding a unicycle. Traditional trust management?...
FTC sues GoDaddy for years of poor hosting security practices - The FTC will require web hosting giant GoDaddy to implement basic security protections, such as multi-factor authentication and HTTPS APIs, to settle charges that it failed to secure its hosting services against attacks since 2018.
The AI Fix #33: AI’s deliberate deceptions, and Elon’s “unhinged” mode - In episode 33 of The AI Fix, our hosts watch a robot fall over, ChatGPT demonstrates that it can't draw a watch face but it can fire a gun, a man without a traffic cone gets trapped in his Waymo taxi, Graham discovers what social robots are, and both hosts watch horrified as somebody rips a robot's face...
Microsoft: Happy 2025. Here’s 161 Security Updates - Microsoft today unleashed updates to plug a whopping 161 security vulnerabilities in Windows and related software, including three “zero-day” weaknesses that are already under active attack. Redmond’s inaugural Patch Tuesday of 2025 bundles more fixes than the company has shipped in one go since...