The US Justice Department has removed malware from over 4,200 computers worldwide in an operation targeting a hacking group linked to the Chinese government. The malware, known as ‘PlugX,’ was used to steal information and compromise systems across the United States, Europe, and Asia. Investigators identified the cybercriminals behind the attack as ‘Mustang Panda’ and ‘Twill Typhoon,’ groups believed to have received financial support from China.
Court documents filed in the US District Court for the Eastern District of Pennsylvania allege that the Chinese government paid Mustang Panda to develop PlugX. The malware has been active since at least 2014 and was used not only to target governments and businesses but also Chinese political dissidents. Officials described the operation as a critical step in neutralising cyber threats backed by foreign states.
Authorities emphasised the growing risks posed by state-sponsored hacking groups and their ability to infiltrate global networks. The Justice Department remains committed to dismantling cyber threats and preventing adversaries from exploiting sensitive information. The scale of the attack highlights the persistent threat of cyber espionage and the need for international cooperation in addressing cybersecurity challenges.
The US Supreme Court will hear a challenge on Wednesday regarding a Texas law that mandates adult websites verify the age of users before granting access to potentially harmful material. The law, which is part of a broader trend across Republican-led states, requires users to submit personal information proving they are at least 18 years old to access pornographic content. The case raises significant First Amendment concerns, as adult entertainment industry groups argue that the law unlawfully restricts free speech and exposes users to risks such as identity theft and data breaches.
The challengers, including the American Civil Liberties Union and the Free Speech Coalition, contend that alternative methods like content-filtering software could better protect minors without infringing on adults’ rights to access non-obscene material. Texas, however, defends the law, citing concerns over the ease with which minors can access explicit content online.
This case is significant because it will test the balance between state efforts to protect minors from explicit content and the constitutional rights of adults to access protected expression. If the Supreme Court upholds the law, it could set a precedent for similar age-verification measures across the US.
Google’s NotebookLM, an AI-driven podcast platform, recently faced a surprising issue: its virtual hosts sounded irritated when users interrupted them. The problem emerged after the launch of an interactive feature allowing users to “call in” and ask questions during AI-generated discussions. Users reported that the hosts would sometimes make snippy comments like ‘I was getting to that,’ creating an oddly confrontational experience.
To address the issue, Google’s team implemented a ‘friendliness tuning’ process. They revised the prompts used to guide the AI hosts, studying how human speakers handle interruptions more politely. The adjustment was announced with a light-hearted post on the platform’s social media.
The change seems to be working. In tests, the AI hosts now react to interruptions with polite curiosity rather than frustration. NotebookLM’s refined approach highlights the importance of human-like interaction in AI products, ensuring users feel more engaged and welcomed in conversations.
Indonesia plans to implement interim guidelines to protect children on social media as it works toward creating a law to establish a minimum age for users, a senior communications ministry official announced on Wednesday. The move follows discussions between Communications Minister Meutya Hafid and President Prabowo Subianto, aiming to address concerns about online safety for children.
The proposed law will mirror recent regulations in Australia, which banned children under 16 from accessing social media platforms like Instagram, Facebook, and TikTok, penalising tech companies that fail to comply. In the meantime, Indonesia will issue regulations requiring platforms to follow child protection guidelines, focusing on shielding children from harmful content while still allowing access to some degree.
Public opinion on the initiative is divided. While parents like Nurmayanti support stricter controls to reduce exposure to harmful material, human rights advocates, including Anis Hidayah, urge caution to ensure children’s access to information is not unduly restricted. A recent survey revealed nearly half of Indonesian children under 12 use the internet, with many accessing social media platforms such as Facebook, Instagram, and TikTok.
This regulatory push reflects Indonesia’s broader efforts to balance digital innovation with safeguarding younger users in its rapidly growing online landscape
The US government has officially labelled the extreme right-wing ‘Terrorgram’ network as a terrorist organisation, citing its promotion of violent white supremacist attacks. The group operates mainly on the Telegram platform and has been linked to attacks across the globe, including shootings and planned assaults on critical infrastructure.
The move, announced by the State Department, includes sanctions against three of the network’s leaders based in Brazil, Croatia, and South Africa. The designation freezes any US-based assets belonging to the group and bans Americans from engaging with its members. Officials say the collective has provided detailed guidance for attacks on minorities and government officials, calling for a race war.
US authorities have been ramping up efforts to combat domestic extremism under President Biden, who launched the country’s first national strategy on countering domestic terrorism in 2021. Britain has already taken similar steps, outlawing the Terrorgram collective in April last year.
This crackdown follows criminal charges brought against two alleged leaders of the group, accused of using Telegram to incite violence against Black, Jewish, LGBTQ, and immigrant communities. Authorities stress that dismantling such online hate groups is essential to prevent further extremist attacks.
Indonesia is preparing to introduce regulations setting a minimum age for social media users, aiming to shield children from potential online risks, according to Communications Minister Meutya Hafid. The announcement follows Australia’s recent ban on social media access for children under 16, which imposes penalties on platforms like Meta’s Facebook and Instagram, as well as TikTok, for non-compliance.
While the specific age limit for Indonesia remains undecided, Minister Hafid stated that President Prabowo Subianto supports the initiative, emphasising the importance of child protection in the digital space. The move highlights concerns about young users’ exposure to inappropriate content and data privacy risks.
Indonesia, with a population of approximately 280 million, has significant internet usage. A recent survey found internet penetration at 79.5%, with nearly half of children under 12 accessing the web, often using platforms like Facebook, Instagram, and TikTok. Among “Gen Z” users aged 12 to 27, internet penetration reached 87%. The proposed regulation reflects growing global efforts to prioritise child safety online.
Britain’s antitrust regulator, the Competition and Markets Authority (CMA), has launched an investigation into Google’s search operations to assess their impact on consumers, businesses, and competition. With Google handling 90% of UK online searches and supporting over 200,000 businesses through advertising, the CMA aims to ensure fair competition and innovation in search services, said CMA chief Sarah Cardell.
The probe will evaluate whether Google’s dominant position restricts market entry and innovation, as well as whether it provides preferential treatment to its own services. The CMA will also investigate the company’s extensive collection and use of consumer data, including its role in AI services. The findings, expected within nine months, could lead to measures such as requiring Google to share data with rivals or giving publishers more control over their content.
Google has defended its role, stating that its search services foster innovation and help UK businesses grow. The company pledged to work constructively with the CMA to create rules that benefit both businesses and users. The investigation follows similar scrutiny in the US, where prosecutors have pushed for major reforms to curb Google’s dominance in online search.
Unacast has informed Norwegian authorities of a data breach involving its subsidiary Gravy Analytics. The announcement was revealed in a notice published by Norwegian broadcaster NRK.
The breach involved a compromised web server using a misappropriated key, with some stolen files potentially containing personal data. Unacast’s legal representatives, BakerHostetler, confirmed the breach was discovered on 4 January, though the exact timing remains under investigation.
Repeated attempts to reach Unacast and its legal team for comment have gone unanswered. Norway’s data protection authority also could not be reached for further statements after business hours on Friday.
Chinese state-sponsored hackers, identified as the Salt Typhoon group, have breached multiple US telecommunications companies, including AT&T, Verizon, Charter Communications, and T-Mobile. These cyber-espionage operations exploited vulnerabilities in network devices from vendors such as Fortinet and Cisco Systems.
US National Security Adviser Jake Sullivan has stated that the United States has taken steps in response to these intrusions, sending clear messages to China about the consequences of disrupting American critical infrastructure.
The breaches have raised significant concerns about national security and the resilience of US critical infrastructure against sophisticated cyber threats. While companies like AT&T and Verizon have reported that their networks are now secure and are collaborating with law enforcement, the extent and impact of these breaches continue to be scrutinised.
China has denied involvement in these cyber activities, accusing the United States of disseminating disinformation. Nonetheless, the revelations have intensified discussions about the need for enhanced cybersecurity measures to protect sensitive communications and infrastructure from state-sponsored cyber espionage.
OpenSea users are facing increased risks after over 7 million email addresses were exposed in a data breach dating back to 2022. The breach occurred when an employee of Customer.io, OpenSea’s email delivery partner, mishandled user data, sharing email addresses with an unauthorised third party. This data includes the emails of major figures in the crypto world, raising concerns about potential phishing attacks and scams.
Blockchain security expert 23pds highlighted the growing threat, warning that the leaked information had been circulated multiple times before becoming public. OpenSea had previously alerted users about phishing risks following the breach, advising them to be cautious with email links and attachments.
Phishing scams targeting OpenSea users have been a persistent issue, with attackers using fake websites and fraudulent email campaigns to exploit vulnerabilities. One such scam in January 2024 promised exclusive access to an NFT event, only to direct victims to a malicious site designed to steal funds and wallet information.
Experts continue to advise users to stay vigilant, verify email sources, enable two-factor authentication, and never share sensitive wallet details to protect themselves from ongoing phishing threats.
