Italy is exploring a potential agreement with Elon Musk’s Starlink to provide secure satellite communications for government and defence officials. The proposed five-year deal, worth €1.5 billion, would enable encrypted communications in high-risk areas. An Italian representative for Musk’s aerospace businesses stated that the country would retain full control over its data while using the technology.
Opposition parties have criticised the project, questioning whether a company owned by the US billionaire should handle sensitive Italian communications. Prime Minister Giorgia Meloni, who has faced scrutiny over her ties with Musk, dismissed concerns, insisting that discussions about the deal began before her government took office in 2022.
Starlink, a subsidiary of SpaceX, operates 6,700 satellites in low-Earth orbit and is a dominant player in global satellite communications. While the Italian government evaluates the deal, officials maintain that national interests and data security would remain protected.
Unacast has informed Norwegian authorities of a data breach involving its subsidiary Gravy Analytics. The announcement was revealed in a notice published by Norwegian broadcaster NRK.
The breach involved a compromised web server using a misappropriated key, with some stolen files potentially containing personal data. Unacast’s legal representatives, BakerHostetler, confirmed the breach was discovered on 4 January, though the exact timing remains under investigation.
Repeated attempts to reach Unacast and its legal team for comment have gone unanswered. Norway’s data protection authority also could not be reached for further statements after business hours on Friday.
Chinese state-sponsored hackers, identified as the Salt Typhoon group, have breached multiple US telecommunications companies, including AT&T, Verizon, Charter Communications, and T-Mobile. These cyber-espionage operations exploited vulnerabilities in network devices from vendors such as Fortinet and Cisco Systems.
US National Security Adviser Jake Sullivan has stated that the United States has taken steps in response to these intrusions, sending clear messages to China about the consequences of disrupting American critical infrastructure.
The breaches have raised significant concerns about national security and the resilience of US critical infrastructure against sophisticated cyber threats. While companies like AT&T and Verizon have reported that their networks are now secure and are collaborating with law enforcement, the extent and impact of these breaches continue to be scrutinised.
China has denied involvement in these cyber activities, accusing the United States of disseminating disinformation. Nonetheless, the revelations have intensified discussions about the need for enhanced cybersecurity measures to protect sensitive communications and infrastructure from state-sponsored cyber espionage.
Litecoin’s X social media account fell victim to hackers on 11 January, briefly promoting a fake Litecoin token on the Solana network. The fraudulent post included a contract address and scam link but was deleted after Litecoin regained control of the account. According to the Litecoin team, the breach occurred due to a compromised delegated account, which has since been removed.
This incident highlights a troubling trend of account hacks on X, with scammers exploiting high-profile accounts to promote fake tokens and phishing links. Victims in recent months include EigenLayer, Wiz Khalifa, the Cardano Foundation, and Yat Siu, co-founder of Animoca Brands. Each hack involved fraudulent campaigns, some generating significant trading volumes before being uncovered.
As scams on social media platforms rise, users are urged to exercise caution and verify information before engaging with any token promotions.
OpenSea users are facing increased risks after over 7 million email addresses were exposed in a data breach dating back to 2022. The breach occurred when an employee of Customer.io, OpenSea’s email delivery partner, mishandled user data, sharing email addresses with an unauthorised third party. This data includes the emails of major figures in the crypto world, raising concerns about potential phishing attacks and scams.
Blockchain security expert 23pds highlighted the growing threat, warning that the leaked information had been circulated multiple times before becoming public. OpenSea had previously alerted users about phishing risks following the breach, advising them to be cautious with email links and attachments.
Phishing scams targeting OpenSea users have been a persistent issue, with attackers using fake websites and fraudulent email campaigns to exploit vulnerabilities. One such scam in January 2024 promised exclusive access to an NFT event, only to direct victims to a malicious site designed to steal funds and wallet information.
Experts continue to advise users to stay vigilant, verify email sources, enable two-factor authentication, and never share sensitive wallet details to protect themselves from ongoing phishing threats.
Education technology provider PowerSchool has suffered a major data breach, exposing the personal information of millions of students and teachers. Hackers gained access to its systems by exploiting stolen credentials, using a tool within the company’s PowerSource support portal to export sensitive data.
The stolen records include names, addresses, and potentially more sensitive details such as Social Security numbers and medical information in the US and Canada. PowerSchool, which manages academic records for over 60 million K-12 students, assured customers that not all users were affected. However, the breach has left schools scrambling to assess the damage.
PowerSchool insists the hack wasn’t due to a flaw in its software but was a result of unauthorised access using legitimate credentials. The company has engaged cybersecurity experts to investigate and taken steps to improve security, including deactivating compromised accounts and strengthening password controls.
Critics argue that PowerSchool was slow to inform customers, potentially putting students, parents, and educators at greater risk of identity theft. While PowerSchool is offering affected users credit monitoring and identity protection services, the incident has sparked calls for stricter regulations on data security in the education sector.
The US Supreme Court on Friday appeared inclined to uphold a law requiring a sale or ban of TikTok in the United States by January 19, citing national security risks tied to its Chinese parent company, ByteDance. Justices questioned TikTok’s potential role in enabling the Chinese government to collect data on its 170 million American users and influence public opinion covertly. Chief Justice John Roberts and others expressed concerns about China’s potential to exploit the platform, while also probing implications for free speech protections under the First Amendment.
The law, passed with bipartisan support and signed by outgoing President Joe Biden, has been challenged by TikTok, ByteDance, and app users who argue it infringes on free speech. TikTok’s lawyer, Noel Francisco, warned that without a resolution or extension by President-elect Donald Trump, the platform would likely shut down on January 19. Francisco emphasised TikTok’s role as a key platform for expression and called for at least a temporary halt to the law.
Liberal and conservative justices alike acknowledged the tension between national security and constitutional rights. Justice Elena Kagan raised historical parallels to Cold War-era restrictions, while Justice Brett Kavanaugh highlighted the long-term risks of data collection. Solicitor General Elizabeth Prelogar, representing the Biden administration, argued that TikTok’s foreign ownership poses a grave threat, enabling covert manipulation and espionage. She defended Congress’s right to act in the interest of national security.
With global trade tensions and fears of digital surveillance mounting, the Supreme Court’s decision will have wide-ranging implications for technology, free speech, and US-China relations. The court is now considering whether to grant a temporary stay, providing Trump’s incoming administration an opportunity to address the issue politically.
President Joe Biden is preparing to introduce a new executive order aimed at strengthening cybersecurity standards for federal agencies and contractors. The proposed measures address growing threats from Chinese-linked cyber operations and criminal cyberattacks, which have targeted critical infrastructure, government emails, and major telecom firms. Under the draft order, contractors must adhere to stricter secure software development practices and provide documentation to be verified by the Cybersecurity and Infrastructure Security Agency (CISA).
The order highlights vulnerabilities exposed by recent cyber incidents, including the May 2023 breach of US government email accounts, attributed to Chinese hackers. New guidelines will also focus on securing access tokens and cryptographic keys, which were exploited during the attack. Contractors whose security practices fail to meet standards may face legal consequences, with referrals to the attorney general for further action.
While experts like Tom Kellermann of Contrast Security support the initiative, some criticise the timeline as insufficient given the immediate threats posed by adversaries like China and Russia. Brandon Wales of SentinelOne views the order as a continuation of efforts across the past two administrations, emphasising the need to enhance existing cybersecurity frameworks while addressing a broad range of threats.
The order underscores Biden’s commitment to cybersecurity as a pressing national security issue. It comes amid escalating concerns about foreign cyber operations and aims to solidify protections for critical US systems before the transition to new leadership.
Indian cryptocurrency exchange Mudrex has temporarily suspended crypto withdrawals, prompting a backlash from its users. The move, announced on 11 January is set to last until 28 January as the platform undergoes a compliance framework upgrade. According to co-founder and CEO Edul Patel, the suspension is necessary to prevent misuse by bad actors, with Patel emphasising the importance of a secure infrastructure in the crypto space.
Mudrex, one of the few Indian exchanges to allow crypto withdrawals, has faced criticism from the community. Trader Vivan Live urged users to withdraw their funds immediately, suggesting the platform’s motives were dubious. Another user, Aakash Athawasya, claimed that Mudrex never truly offered crypto withdrawals, accusing the platform of offering “price exposure” instead of ownership. Despite the criticism, Mudrex reported a significant surge in its user base and trading volume in recent months.
Meanwhile, India’s regulatory environment continues to impact exchanges, with Bybit announcing a temporary suspension of its services in the country due to evolving regulations. On a more positive note, CoinDCX, another Indian exchange, has launched crypto withdrawals, allowing users to withdraw crypto in exchange for disabling Indian rupee deposits.
Authorities in Thailand have confiscated 996 Bitcoin mining rigs in Chon Buri province, accusing operators of illegally tapping into the power grid. The raid, conducted on 8 January in the Phanat Nikhom district, targeted JIT Co., a digital asset trading firm that allegedly tampered with power meters to avoid electricity charges. Losses to local providers are estimated in the hundreds of millions of baht.
Despite solar panels being present on the site, investigators revealed they were not connected to the equipment, which relies on immense computing power to mine Bitcoin. Thai officials highlighted the heavy energy demands of mining, which can cost hundreds of thousands of baht per Bitcoin, compared to the typical household electricity bill of 750 baht.
The case underscores the growing global challenge of managing crypto mining’s resource demands. Thai regulators reiterated the need to safeguard public utilities as they continue investigating the scheme and identifying additional parties involved.
