News – January 2025

January 7, 2025

InfoCert has had millions of its customers’ personal data stolen and put up for sale. A leading European certification authority and provider of digital identity services such as Italy’s SPID (Public Digital Identity System), InfoCert posted a public notice on its website detailing the data breach on December 27. However, the notice has since been taken ...

January 7, 2025

UN aviation agency ‘investigating’ security breach after hacker claims theft of personal data The International Civil Aviation Organization (ICAO), a United Nations agency that defines international operating standards for civil aviation, has confirmed it’s investigating a cybersecurity incident. In a statement published on Monday, ICAO said it is “actively investigating reports of a potential information security ...

January 7, 2025

Two security advisories have been released to address two vulnerabilities in Redis. Redis is a popular in-memory key-value database that persists on disk. CVE-2024-46981 is a ‘use after free’ vulnerability with a CVSSv3 score of 7.0. If exploited, an authenticated attacker could use a specially crafted Lua script to achieve remote code execution. CVE-2024-51741 is an ...

January 7, 2025

Social media giant Meta on Tuesday scrapped its U.S. fact-checking program for a community-based system similar to X and reduced the curbs on discussions around contentious topics such as immigration and gender identity. The move marks a reversal in Meta’s content moderation policy as CEO Mark Zuckerberg has long championed active content moderation despite criticism from ...

January 7, 2025

China has slammed a decision by the U.S. Treasury to sanction a Beijing-based cybersecurity company for its alleged role in multiple hacking incidents targeting critical U.S. infrastructure, while the Chinese cyber security agency complained Monday of attacks on Chinese networks. Asked about the sanctions against Beijing-based Integrity Technology Group, Chinese Foreign Ministry spokesperson Guo Jiakun said ...

January 7, 2025

Newly released data from messaging app Telegram reveals a sharp rise in the number of data demands it fulfilled over the past year for users’ data from requesting law enforcement agencies. The rise in fulfilled user requests comes months after French authorities arrested Telegram CEO Pavel Durov in August in part for the company’s longstanding refusal ...

January 7, 2025

What are you waiting for, Brussels? Elon Musk’s decision to host German far-right leader Alice Weidel in a livestream on X is sparking fury from European Union leaders and lawmakers, who on Monday urged Brussels to deploy its full legal might to rein in the billionaire tech magnate. In response, the European Commission said the SpaceX ...

January 6, 2025

In recent investigation into the EAGERBEE backdoor, kaspersky researchers found that it was being deployed at ISPs and governmental entities in the Middle East. The researchers analysis uncovered new components used in these attacks, including a novel service injector designed to inject the backdoor into a running service. Additionally, Kaspersky team discovered previously undocumented components (plugins) ...

January 5, 2025

The New Orleans terrorist attacker visited the Louisiana city twice in the weeks before the attack and recorded video of the area using Meta smart glasses, the FBI revealed Sunday. Shamsud-Din Jabbar, 42, stayed at a rental home in New Orleans at the end of October and again in November, just weeks prior to his attack ...

January 5, 2025

Hundreds of millions of web users have been warned about a new and dangerous cyber attack that doesn’t care what browser you use—as long as you click twice. Here’s everything you need to know about the double-clickjacking hack attack. Application security and client-side offensive exploit researcher Paulos Yibelo, with a long history of discovering vulnerabilities and ...