High profile TikTok accounts, including CNN, Sony, and—er—Paris Hilton have been targeted in a recent attack.
CNN was the first account takeover that made the news, with Semafor reporting that the account was down for several days after the incident. According to Forbes, the attack happens without the account owner needing to click on or open anything—known as a zero-click attack. All they need to do is open a DM. The account is then taken over and the user loses access.
Read more…
Source: Malwarebytes Labs
Related:
- Stargazers Ghost Network
July 24, 2024
Recently, Check Point Research observed threat actors using GitHub to achieve initial infections by utilizing new methods. Previously, GitHub was used to distribute malicious software directly, with a malicious script downloading either raw encrypted scripting code or malicious executables. Their tactics have now changed and evolved. Threat actors now operate a network of “Ghost” accounts that ...
- Elon Musk’s X accused of violating EU digital laws, Musk says EU offered illegal secret deal
July 13, 2024
Elon Musk’s X (Formerly Twitter) has been accused by the European Union (EU) of multiple violations of the Digital Services Act, which can potentially lead to hefty fines for the social media platform. One key violation includes allowing people to get a “checkmark” which was once reserved only for verified users. However, Musk wrote a post ...
- Asia’s SMS stealers: 1,000 bots and one study
July 11, 2024
Attackers have increasingly started using Telegram as a control server (C2). One example is the Lazy Koala group, which Positive Technologies researchers recently discovered and set out to study. While researching bots on Telegram, Positive Technologies team found that many are from Indonesia. The researchers were struck by the huge numbers of messages and victims, and ...
- Gay furry hackers strike massive cyber attack against US far-right Project 2025
July 10, 2024
A collective of self-described “Gay furry hackers” called SiegedSec managed to hack into the right-wing Heritage Foundation affiliated with Project 2025 in a massive cyber attack. The hackers released two gigabytes of data, including Heritage Foundation member names, email addresses, passwords, and usernames. SiegedSec claimed responsibility for the hack on Telegram, sharing that they breached online ...
- TikTok takes action against 20 million videos in Pakistan
July 8, 2024
Popular video-sharing platform TikTok on Monday issued its Community Guidelines Enforcement Report for the first quarter of the ongoing year, revealing that the company took action against more than 20 million videos. During the January-March period of 2024, the platform took action against 20,207,878 videos in Pakistan for breaching its Community Guidelines. TikTok’s community guidelines are ...
- Fictitious Law Firms Targeting Cryptocurrency Scam Victims Offering to Recover Funds
June 24, 2024
The Federal Bureau of Investigation (FBI) is issuing this announcement to inform the public of an emerging criminal tactic used to further defraud cryptocurrency scam victims. This PSA is an update to Alert Number I-081123-PSA, published on 08/11/2023, titled, “Increase in Companies Falsely Claiming an Ability to Recover Funds Lost in Cryptocurrency Investment Scams.” Using social ...