Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!
For the less technical
- TikTok, AliExpress, SHEIN & Co surrender Europeans’ data to authoritarian China
- Meta is blocking links to decentralized Instagram competitor Pixelfed
- Telegram shuts down Z-Library & Anna’s Archive channels over copyright infringement
- FBI forces Chinese malware to delete itself from thousands of US computers
- Russia’s largest platform for state procurement hit by cyberattack from pro-Ukraine group
- Latest Doom port runs inside a PDF document, but performance is limited
- Tetris has been crammed into a tiny 60KB PDF, works in any browser
For the more technical
- [VIDEO] BlinkenCity: Radio-controlling street lamps and power plants
- Under the cloak of UEFI Secure Boot: Introducing CVE-2024-7344
- Microsoft January 2025 Patch Tuesday
- FastHTTP used in new bruteforce campaign
- Millions of accounts vulnerable due to Google’s OAuth flaw
- Analyzing CVE-2024-44243, a macOS System Integrity Protection bypass through kernel extensions
- How cracks and installers bring malware to your device
- How a simple DNS misconfiguration enables malware delivery by a Russian botnet
- The great Google Ads heist: criminals ransack advertiser accounts via fake Google ads
- Deep dive into a Linux rootkit malware
- Gootloader inside out
- Meduza stealer analysis: A closer look at its techniques and attack vector
- Sneaky 2FA: exposing a new AiTM phishing-as-a-service
- Double-Tap campaign: Russia-nexus APT possibly related to APT28 conducts cyber espionage on Central Asia and Kazakhstan diplomatic relations
- Weaponized software targets Chinese-speaking organizations
Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.