Cybersecurity

Musk blames ‘major cyberattack’ for X outage, points to Ukraine

Elon Musk’s social media platform, X, experienced widespread disruptions on Monday, which the billionaire attributed to a major cyberattack.

Musk claimed the platform was targeted by an unusually powerful denial-of-service (DoS) attack, suggesting that a well-coordinated group or nation-state might be responsible. However, he offered no concrete evidence to support the claim, leaving cybersecurity experts sceptical.

Many pointed out that DoS attacks, which flood websites with excessive traffic to overwhelm their servers, are commonly executed by small groups or individuals with relatively limited resources.

Reports of outages spiked early in the day, with Downdetector tracking over 39,000 complaints from users in the US at the peak of the disruption. By the afternoon, the number had dwindled significantly, though intermittent service issues persisted for some.

According to an anonymous industry source, the attack consisted of multiple waves of rogue traffic bombarding X’s servers, beginning around 9:45 UTC.

While Musk later asserted in an interview with Fox Business that the cyberattack originated from Ukraine, the same industry source disputed this claim, stating that the bulk of the malicious traffic came from various locations, including the USA, Vietnam, and Brazil, with only a minimal amount from Ukraine.

Tracing the true origin of DoS attacks is notoriously tricky, as attackers often use proxy servers and botnets to disguise their locations.

Cybersecurity specialists have noted that assigning blame based solely on IP addresses can be misleading, as they rarely indicate the actual perpetrators. Despite Musk’s insistence on a Ukraine-based origin, no definitive proof has been presented to substantiate the claim.

Musk’s comments come amid his increasingly vocal criticisms of Ukraine’s ongoing war efforts against Russia, aligning with sentiments echoed by US President Donald Trump, whom he advises.

Over the weekend, Musk suggested that Ukraine’s battlefield operations would collapse without his Starlink satellite communication system, although he clarified that he had no intention of cutting off access.

The latest controversy surrounding X’s cyberattack has further fueled speculation about Musk’s political and strategic positioning in the ongoing geopolitical conflict.

For more information on these topics, visit diplomacy.edu.

Tusk warns against arrogance after US-Poland social media clash

Poland’s Prime Minister, Donald Tusk, has urged allies to show respect and avoid arrogance in a recent post on X, following a heated social media exchange between Polish and US officials. The remarks came after a disagreement over the role of Starlink satellites in Ukraine’s war effort. Radosław Sikorski, Poland‘s foreign minister, had suggested Ukraine may need an alternative to Starlink if its reliability becomes an issue. Poland funds the satellite service for Ukraine, which is crucial for military communications.

The dispute escalated when Marco Rubio, the US Secretary of State, accused Sikorski of being ungrateful, stating that ‘no one has made any threats about cutting Ukraine off from Starlink.’ Rubio emphasised the importance of Starlink in Ukraine’s success, saying the war could have been lost without it. Sikorski responded by thanking Rubio for reaffirming the collaboration between the US and Poland in providing the service.

The controversy deepened when Elon Musk, the founder of SpaceX, which operates Starlink, labelled Sikorski a “small man” and told him to ‘be quiet’ after the suggestion that Poland may seek alternatives. Musk reiterated his commitment to keeping Starlink operational in Ukraine, despite political disagreements, and denied using the service as a bargaining chip.

The ongoing debate highlights growing tensions surrounding the role of private companies in international conflict and the geopolitical importance of satellite technology. Meanwhile, the Franco-British operator Eutelsat saw a surge in stock prices, as speculation grows that it could potentially replace Starlink in providing services to Ukraine.

For more information on these topics, visit diplomacy.edu.

New York MTA partners with Google to detect track problems

The Metropolitan Transportation Authority (MTA) in New York City has partnered with Google Public Sector on a pilot program designed to detect track defects before they cause significant disruptions. Using Google Pixel smartphones retrofitted onto subway cars, the system captured millions of sensor readings, GPS locations, and hours of audio to identify potential problems. The project aimed to improve the efficiency of the MTA’s response to track issues, potentially saving time and money while reducing delays for passengers.

The AI-powered program, called TrackInspect, analyses the sounds and vibrations from the subway to pinpoint areas that could signal defects, such as loose rails or worn joints. Data collected during the pilot, which ran from September 2024 to January 2025, showed that the AI system successfully identified 92% of defect locations found by human inspectors. The system was trained using feedback from MTA inspectors, helping refine its ability to predict track issues.

While the pilot was considered a success, the future of the program remains uncertain due to financial concerns at the MTA. Despite this, the success of the project has sparked interest from other transit systems looking to adopt similar AI-driven technologies to improve infrastructure maintenance and reduce delays. The MTA is now exploring other technological partnerships to enhance its track monitoring and maintenance efforts.

For more information on these topics, visit diplomacy.edu.

NHS looks into Medefer data flaw after security concerns

NHS is investigating allegations that a software flaw at private medical services company Medefer left patient data vulnerable to hacking.

The flaw, discovered in November, affected Medefer’s internal patient record system in the UK, which handles 1,500 NHS referrals monthly.

A software engineer who found the issue believes the vulnerability may have existed for six years, but Medefer denies this claim, stating no data has been compromised.

The engineer discovered that unprotected application programming interfaces (APIs) could have allowed outsiders to access sensitive patient information.

While Medefer has insisted that there is no evidence of any breach, they have commissioned an external security agency to review their systems. The agency confirmed that no breach was found, and the company asserts that the flaw was fixed within 48 hours of being discovered.

Cybersecurity experts have raised concerns about the potential risks posed by the flaw, emphasising that a proper investigation should have been conducted immediately.

Medefer reported the issue to the Information Commissioner’s Office (ICO) and the Care Quality Commission (CQC), both of which found no further action necessary. However, experts suggest that a more thorough response could have been beneficial given the sensitive nature of the data involved.

For more information on these topics, visit diplomacy.edu.

X faces major outage in the US and UK

Social media platform X is experiencing widespread outages in the US and the UK, with thousands of users reporting issues, according to outage tracking website Downdetector.

Reports indicate over 21,000 incidents in the US and more than 10,800 in the UK, suggesting significant disruptions.

Downdetector, which gathers status reports from various sources, noted that the actual number of affected users may be higher.

Many have turned to other platforms to discuss the outage, but X has not yet responded to requests for comment.

The cause of the disruption remains unclear, and there is no official timeline for when full service will be restored. Users continue to face difficulties accessing the platform, impacting communication and social media activity globally.

For more information on these topics, visit diplomacy.edu.

Trump eyes TikTok sale: Four buyers in play

US President Donald Trump confirmed on Sunday that his administration is actively negotiating with four parties interested in purchasing TikTok, the immensely popular Chinese-owned social media platform.

Trump’s comments come amid continued uncertainty about TikTok’s future in the US, following security concerns that prompted legislation mandating its sale or facing a ban.

Speaking to reporters aboard Air Force One, Trump expressed optimism about the potential deal, suggesting all four prospective buyers offered strong options.

Though Trump did not disclose specifics about the parties involved, recent reports indicate significant interest, notably from prominent businessman Frank McCourt, former owner of the Los Angeles Dodgers.

Analysts estimate TikTok’s value could reach up to $50 billion, making it one of the most lucrative tech deals in recent years.

The uncertainty around TikTok began escalating when the new law targeting the platform took effect on 19 January, requiring ByteDance, TikTok’s parent company, to divest the business due to national security concerns.

President Trump subsequently delayed enforcement of the law by signing an executive order granting a 75-day extension, providing additional time to facilitate a sale.

So far, neither TikTok nor ByteDance have publicly commented on Trump’s latest statements or the ongoing negotiations.

Meanwhile, the app’s tens of millions of American users continue to watch closely, hoping their favourite platform survives the political and economic storm surrounding it.

Stay up to date with the latest news on TikTok developments!

Japan to prioritise domestic cybersecurity solutions

Japan has announced plans to prioritise the use of domestic software for cybersecurity purposes, as part of an initiative to reduce the country’s reliance on foreign products in this critical sector.

The government intends to offer subsidies and support technology standards that will encourage the growth of the local cybersecurity industry. However, this move is also a part of the government’s broader efforts to enhance cyber defence and strengthen national security.

As of 2021, Japanese domestic companies were responsible for around 40% of the nation’s cybersecurity countermeasure products. For newer products, this share has significantly decreased, with domestic offerings accounting for less than 10% of the latest cybersecurity technologies.

The move reflects Japan’s increasing focus on cybersecurity as a national priority, particularly in the face of rising global cyber threats. By fostering a stronger domestic cybersecurity ecosystem, Japan aims to enhance its resilience against cyberattacks.

Experts, however, warned that that restricting foreign products could limit access to cutting-edge technologies, making the domestic industry potentially less competitive in terms of features, capabilities, or performance. This could hinder the effectiveness of cybersecurity defenses.

To support this transition, the government plans to offer financial incentives and collaborate with local technology providers to establish standardized solutions that meet both national and international security requirements.

These efforts are part of a broader strategy to ensure that Japan’s critical infrastructure and businesses are better protected in the digital age.

For more information on these topics, visit diplomacy.edu.

CISA reaffirms its commitment to monitor Russian cyber threats

The Cybersecurity and Infrastructure Security Agency (CISA) has refused recent reports suggesting a shift in its approach to addressing cyber threats from Russia.

The Guardian published an article citing anonymous sources who claimed CISA analysts had been instructed not to report on Russian cyber threats, and that a Russia-related project was halted.

In response, CISA issued a statement, affirming its continued commitment to defending US critical infrastructure against all cyber threats, including those from Russia, and asserting that any claims of a change in strategy were inaccurate.

However, this story coincided with the news about a temporary order from Defense Secretary Pete Hegseth for US Cyber Command to halt all planning related to Russia, though the order did not apply to the National Security Agency.

Further reports from the Washington Post and New York Times indicated that this directive may be related to diplomatic efforts by President Donald Trump to engage Russia in negotiations about the war in Ukraine.

Russia, however, was absent in a recent speech by a senior State Department official on critical infrastructure cyber threats within the UN Open-Ended Working Group (OEWG).

For more information on these topics, visit diplomacy.edu.

UK Government removes encryption guidance after calls for iCloud backdoor access

The UK government has removed encryption advice from its official web pages, shortly after requesting backdoor access to encrypted data stored on Apple’s iCloud service.

The change was noticed by security expert Alec Muffett, who highlighted in a blog post that the National Cyber Security Centre (NCSC) no longer recommends encryption for high-risk individuals.

Previously, the NCSC had advised the use of encryption tools such as Apple’s Advanced Data Protection (ADP) for secure iCloud backups, which provide end-to-end encryption to ensure only the user has access to their data.

However, the webpage now redirects to a different page with no mention of encryption, instead recommending Apple’s Lockdown Mode—a security feature designed to limit access to certain phone functions.

Muffett pointed out that the original advice is no longer available on government sites, though it can still be accessed via the Wayback Machine.

This development follows reports that the UK government requested Apple to build a backdoor to access encrypted iCloud data.

In response, Apple removed the ADP feature for new users in the UK and stated that existing users would eventually need to disable it. Apple is reportedly challenging the UK’s data access order in the Investigatory Powers Tribunal (IPT).

For more information on these topics, visit diplomacy.edu.

Indonesia approves Apple’s local content certificates

Indonesia has granted local content certificates for 20 Apple products, including the iPhone 16 after the company met requirements for locally-made components.

Apple still needs further approvals from the communications and trade ministries before it can officially sell the devices in the country.

The certification follows Apple’s recent pledge to invest over $300 million in Indonesia, including funding component manufacturing plants and a research and development centre.

Last year, the country had banned iPhone 16 sales due to non-compliance with local content rules.

Industry ministry spokesperson Febri Hendri Antoni Arief confirmed that Apple received certificates for 11 phone models and nine tablets.

However, negotiations had been ‘tricky’, according to Indonesia’s industry minister. Apple remains outside the top five smartphone brands in Indonesia, according to research firm Canalyst.

For more information on these topics, visit diplomacy.edu.

Diplo chatbot can make mistakes. Consider checking important information.