America House hearings this week about social media app TikTok did little to clarify lawmakers’ specific concerns about potential national security risks associated with the hugely popular app, but it did. vividly highlights the country’s lack of federal data privacy laws. WIRED also discovered that TikTok paid famous influencers on its platform to attend a rally in DC to support the service before the hearing.
Meanwhile, before the possibility of indictment of former US President Donald Trump is lurking in New York state, netizens are excited. create AI images of Trump being arrested, but there are ways to know that they are fake. WIRED checked increasingly aggressive and reckless tactics of Iranian government-backed hackers amid mass protests and unrest in the country. Citizen detectives around the world are using open source intelligence to separate fact from fiction in the Nord Stream pipeline sabotage mystery. And Vulnerabilities keep popping up in hugely popular cropping toolsdisplays a series of cropped images around the world where some or all of the original images can be restored.
Also, if you want know what it’s like to be investigated by the U.S. Secret Service—and how to avoid that particular pleasure—we have a full account.
And there’s much more. Each week, we compile security news that we don’t cover in depth ourselves. Click on the title to read the full story and stay safe while out there.
People living in the Indian state of Punjab have been struggling with internet shutdowns for days after police imposed a ban on connecting while searching for Sikh activist Amritpal Singh. Singh is a member of the Sikh Waris Punjab De movement and has recently evaded arrest. More than 100 of his supporters were arrested. Punjab’s 27 million residents face mobile data and SMS blocking and traffic filtering on certain websites and services. For example, the government appears to have blocked access to prominent Sikh Twitter accounts, including those of poet Rupi Kaur and the nonprofit United Sikhs. “Punjab Indian police continue to crack down on Waris Punjab De elements wanted on criminal charges,” the Punjab government said in a Facebook post. parcel in Monday. “Amritpal Singh is still a fugitive, and efforts are being made to apprehend him.” Protests have broken out in Punjab and around the world over law enforcement’s treatment of Sikh Waris Punjab De and internet shutdowns.
A vulnerability in file transfer software from Fortra known as GoAnywhere has been repeatedly exploited by the notorious Russia-based Clop ransomware group to target dozens or possibly more than a hundred victims in recent days. . The cybercriminal group has added multiple organization entries to its dark web, where Clop tries to blackmail victims by publishing samples of the data they have stolen and threatens to leak more if the hackers don’t. non-paying target. TechCrunch confirmed on Thursday that the City of Toronto was one of the victims of the sale. “Today, the City of Toronto confirmed that unauthorized access to City data occurred through a third-party vendor. Access is limited to files that cannot be processed through a secure third-party file transfer system,” officials said in a statement. details unexplored about issues with Fortra’s response to the vulnerability’s discovery.
Health Insurance Market Operator Washington DC DC Health Link violated earlier this month exposed the personal and sensitive data of tens of thousands of customers in the region, including from several US lawmakers and congressional staff. The information includes name, email address, date of birth, mailing address, Social Security number, and policy details. The DC Health Benefit Exchange admitted the breach on March 7th. The entity that requested recognition of the breach, who goes by the name “Denfur,” posted data samples from the attack to BreachForums. . Denfur later posted “Glory to Russia!” and that “the intended target is US politicians and members of the US government.” Denfur said: “My country is trying to do something good for the United States and for myself. or the group becomes a kind of bargaining chip. The current times bring uncertainty.”
The alleged “pompompurin” administrator of the popular cybercrime square BreachForums—the same website Denfur used against DC Health Link—was arrested in New York state earlier this month, but a New leader known as “Baphomet” has come out, claiming to have a plan to keep the foundation going. On Tuesday, however, Baphomet changed course, claiming that someone had gained access to the BreachForums backend and that law enforcement could now take control of privileged admin accounts. of pompompurins. “This will be my last update on Breached, as I have decided to turn it off,” Baphomet wrote. “I know this news won’t please anyone, but it’s the only safe decision for now as I confirm that the glowers can gain access to the Poms machine.”
