The Internet Archive, a prominent online repository of web pages, faced significant disruptions on Thursday after a major cyberattack that exposed user data. Brewster Kahle, the organisation’s founder, reported a series of distributed denial-of-service (DDoS) attacks that began earlier in the week, leading to the defacement of its website and the breach of usernames, emails, and passwords for millions of users. Although the data has not been corrupted, the attack has raised concerns about cybersecurity vulnerabilities, especially with the upcoming US presidential election on November 5.
The hackers, a group claiming to be pro-Palestinian called ‘SN_BLACKMETA,’ targeted the Internet Archive, accusing it of being connected to US government support for Israel. They reportedly posted a defacing message on the site, which informed users that 31 million accounts had been breached. The site ‘Have I Been Pwned’ later confirmed the stolen records, adding credibility to the hackers’ claims.
Brewster Kahle, founder of the Internet Archive, announced that the organisation is actively working to restore services and strengthen security measures following a major cyberattack. Established in 1996, the nonprofit is renowned for its Wayback Machine, which archives web pages and serves as a critical resource for researchers and journalists. This incident underscores the increasing risks of cyberattacks, particularly for organisations dedicated to preserving information and fostering an open internet.
OpenAI reports cybercriminals are increasingly using its AI models to generate fake content aimed at influencing elections. The startup has neutralised over 20 attempts this year, including accounts producing articles on the US elections. Several accounts from Rwanda were banned in July for similar activities related to elections in that country.
The company confirmed that none of these attempts succeeded in generating viral engagement or reaching sustainable audiences. However, the use of AI in election interference remains a growing concern, especially as the US approaches its presidential elections. The US Department of Homeland Security also warns of foreign nations attempting to spread misinformation using AI tools.
As OpenAI strengthens its global position, the rise in election manipulation efforts underscores the critical need for heightened vigilance. The company recently completed a $6.6 billion funding round, further securing its status as one of the most valuable private firms.
ChatGPT continues to see rapid growth, boasting 250 million weekly active users since launching in November 2022, emphasising the platform’s widespread influence.
A recent Microsoft support scam nearly cost a Washington DC couple $14,000 after they lost access to their email. Searching Google for help, they unknowingly called a scammer posing as a legitimate technician. The scammer claimed there was suspicious activity on their account and used scare tactics to convince them to give remote access to their computer.
The situation escalated when the scammer claimed a crooked bank employee was involved in leaking information. He suggested setting up a sting operation to catch the suspect. The couple, sensing something was off, cut off contact before any financial loss occurred.
Fake Microsoft support pages often appear in search results, luring users into thinking they’re contacting real customer service. Scammers then use panic-inducing language to access sensitive information. Victims like Bob unknowingly grant access, putting personal and financial data at risk.
To avoid falling victim to such scams, users should rely only on official Microsoft contact details. Verifying sources, installing strong antivirus software, and recognising red flags can prevent these sophisticated attacks.
In 2019, Irish authorities seized $380 million worth of Bitcoin from convicted drug dealer Clifton Collins, who had accumulated the funds through his cannabis business. However, the Irish Criminal Assets Bureau has been unable to access the digital currency because Collins lost the access codes, which were written on a piece of paper stored in a fishing rod case. The case was lost following a break-in at one of his properties, leaving the authorities unable to unlock the 12 wallets containing the funds.
Originally valued at $58 million, the Bitcoin has significantly increased in value due to market growth, but remains inaccessible. Despite ongoing efforts, the digital keys have not been recovered. Authorities hope that future technological developments could provide a way to unlock the funds.
Meanwhile, Ireland is strengthening its cooperation with EU countries to ensure unified enforcement of cryptocurrency regulations under the Markets in Crypto-Assets Regulation (MiCA).
The FBI has successfully orchestrated a crypto sting operation using a token it created to investigate market manipulation. The NexFundAI Token, launched on the Ethereum blockchain, was part of the operation that led to the indictment of 18 individuals and entities for their involvement in fraudulent activities.
The investigation uncovered a sophisticated scheme involving pump-and-dump operations and wash trading, which artificially inflated token prices. Over $25 million worth of cryptocurrency was seized, and several trading bots responsible for manipulating markets across 60 different tokens were shut down.
This operation, known as “Operation Token Mirrors,” is seen as a warning to crypto investors about the risks of market manipulation. Authorities, including the FBI and SEC, are continuing to investigate those involved in fraudulent crypto schemes.
German cartel authorities have closed their investigation into Meta’s data practices following extensive negotiations that led to the US tech giant agreeing to address regulatory concerns. Meta, the owner of Facebook and Instagram, has committed to implementing several measures to change how user data is collected and processed on its platforms, the officials announced on Thursday.
According to Andreas Mundt, the president of the German Federal Cartel Office, one of the most significant changes is that users of Facebook will no longer be required to consent to the unrestricted collection and association of data to their user accounts. This new approach ensures that data not generated through Facebook’s services cannot be automatically linked to a user’s account without specific consent. The decision marks a significant step in limiting the scope of Meta’s data collection and improving user privacy in Germany.
The investigation into Meta was part of a larger initiative by European regulators to closely examine and regulate the data practices of major tech firms. Meta’s cooperation with German authorities highlights its readiness to comply with regulatory standards and could set a precedent for similar cases across Europe. The agreed changes aim to enhance privacy protections for users and increase transparency in how tech platforms manage and utilise personal data.
Internet Initiative Japan Inc. (IIJ) and JSC Uzbektelecom have forged a significant collaboration to strengthen network security services in Uzbekistan and throughout the Central Asian region. Central to this partnership is the integration of IIJ Safous, a sophisticated zero-trust access service that IIJ will provide to empower Uzbektelecom to launch its own security offerings.
The initiative builds upon a previous partnership established through the Telecommunication Infrastructure Development Project awarded in January 2023, which includes prominent players such as Toyota Tsusho, NEC Corporation, and NTT Communication Corporation. Together, they aim to address the growing demand for enhanced cybersecurity solutions in a rapidly evolving digital landscape.
That collaboration aligns closely with Uzbekistan’s ‘Digital Uzbekistan 2030‘ strategy, which aims to enhance the country’s digital infrastructure while highlighting the importance of cybersecurity. As the ICT market continues to expand, the partnership between IIJ and Uzbektelecom is set to foster innovations in managed security services and cloud solutions.
With the outsourcing services sector projected to grow by an annual rate of 12.53% from 2024 to 2029, this initiative strengthens Uzbekistan’s digital security landscape. It also serves as a model for similar partnerships that drive regional digital transformation.
India‘s largest health insurer, Star Health, is investigating allegations that its Chief Information Security Officer (CISO), Amarjeet Khanuja, was involved in a data breach linked to a hacker named xenZen. The hacker, who used Telegram chatbots and websites to distribute customers’ medical records and personal data, claimed that Khanuja ‘sold all this data to me.’ Star Health stated that Khanuja is cooperating with the investigation, which has so far found no evidence of his involvement.
Star Health has initiated legal proceedings against Telegram and the hacker known as xenZen after reports surfaced that the hacker exploited the platform’s chatbots to leak customer data and created websites for easier access. The company stressed that it was a victim of a targeted cyberattack, resulting in unauthorised access to specific information. Independent cybersecurity experts are currently conducting a forensic investigation, and Star Health is collaborating closely with authorities. According to the company’s preliminary assessment, there is no evidence of widespread data compromise, and sensitive customer information is reported to be secure.
A Tamil Nadu court has issued a temporary injunction requiring Telegram and the hacker xenZen to block any chatbots or websites in India that share leaked data. Telegram, which is under heightened scrutiny for its platform’s role in illegal activities, has not yet commented on the lawsuit. In contrast, the hacker has expressed a willingness to participate in the court hearings online. Although Telegram had previously removed flagged chatbots, xenZen’s website remains operational, enabling users to access samples of policy-related data with just a click. In response, Star Health has called on all platforms and users to take swift action to prevent further data exposure.
Fortum, Finland’s largest power utility, is dealing with a wave of cyber threats and security incidents targeting its energy facilities, CEO Markus Rauramo revealed. The utility, which manages hydro, wind, solar, nuclear, and combined heat and power plants, faces daily denial-of-service attacks, disruptions to satellite communications, drone sightings, and suspicious individuals around its sites. Fortum has sought assistance from Finnish authorities to investigate the incidents, which have also impacted its operations in Sweden.
Finnish and Swedish intelligence services have declined to comment on the cyber attacks or identify any potential perpetrators. Fortum’s head of security, Jari Stenius, noted an uptick in the frequency of such incidents but emphasised that their impact on operations has been minimal so far. To strengthen its defences, the company has enforced strict access controls, employed private security, set up backup systems, and conducted regular drills with authorities.
The Finnish National Bureau of Investigation (KRP) confirmed that police are currently conducting several investigations into activities near critical infrastructure sites.
Mexico has become the focal point for cybercrime in Latin America, accounting for over 50% of all reported cyber threats in the region during the first half of 2024, according to a study by cybersecurity firm Fortinet. With 31 billion cybercrime attempts, hackers are taking advantage of Mexico’s strategic ties with the US and booming industries like logistics and manufacturing, which are being targeted for larger ransom payouts.
Fortinet’s report highlighted how cybercriminals are using advanced tools, such as AI, to streamline attacks and focus on specific sectors for maximum impact. The rapid shift of production closer to the US, known as nearshoring, has made Mexico’s electronics and automotive industries prime targets. Despite a slight dip in attack numbers compared to last year, the overall threat level remains significant.
Experts, including Fortinet executives, emphasised the need for Mexico to strengthen its cybersecurity laws. While President Claudia Sheinbaum has pledged to establish a cybersecurity and AI center, there has been no mention of legal measures yet. Cybersecurity professionals warn that urgent action is needed as Mexico’s role in global supply chains continues to grow.
