NEW: A court in India has ordered the block Proton Mail across the whole country as part of a case where a local design firm received obscene emails. As of this writing, Proton Mail is still working, based on our tests. Story by @Jagmeet Singh

TechCrunch

Indian court orders blocking of Proton Mail | TechCrunch

The ruling, which has yet to take effect, was ordered under India's online blocking laws.

NEW: Last year, there were 34 recorded zero-days being exploited in real-world attacks, which were attributed to specific groups. Of those, 23 were attributed to government-backed hackers, including spyware makers, which shows that governments are the main users of zero-days. And while those got caught, Google's [@_clem1](

bird.makeup - User

) told us that spyware makers “are investing more resources in operational security to prevent their capabilities being exposed and to not end up in the news.” Full story:

TechCrunch

Government hackers are leading the use of attributed zero-days, Google says | TechCrunch

Governments like China and North Korea, along with spyware makers, used the most recorded zero-days in 2024.

NEW: Citizen Lab found that hackers targeted Uyghurs in exile with Windows spyware disguised as a Uyghur language text editor. People were alerted by Google of potentially having been targeted by "government-backed attacks."

TechCrunch

Citizen Lab says exiled Uyghur leaders targeted with Windows spyware | TechCrunch

The researchers said the attackers behind the campaign had "deep understanding of the target community."

NEW: In a hearing last week, an NSO Group lawyer said that Mexico, Saudi Arabia, and Uzbekistan were among the governments responsible for a 2019 hacking campaign against WhatsApp users. This is the first time representatives of the spyware maker admit who its customers are, after years of refusing to do that.

TechCrunch

NSO lawyer names Mexico, Saudi Arabia, and Uzbekistan as spyware customers accused of 2019 WhatsApp hacks | TechCrunch

This is the first time representatives for the spyware maker have publicly named its government customers.

NEW: The notorious image board 4chan has been hacked. Site has been intermittently down for hours, and hackers have published screenshots of site's backend, alleged source code, and list of moderators and "janitors." One janitor told us they are "confident" data is "all real."

TechCrunch

Notorious image board 4chan hacked and internal data leaked | TechCrunch

The infamous website was taken down and working intermittently, while hackers leaked alleged data like moderators email addresses, and source code.

NEW: A recently published court document shows the locations of WhatsApp victims targeted with NSO Group's spyware. The document lists 1,223 victims in 51 countries, including Mexico, India, Morocco, United Kingdom, United States, Spain, Hungary, Netherlands, etc. This targeting was over a span of around two months in 2019, according to WhatsApp's lawsuit against NSO Group.

TechCrunch

Court document reveals locations of WhatsApp victims targeted by NSO spyware | TechCrunch

The list of 1,223 victims in 51 countries hints at the “true scale of the spyware problem,” per one researcher.

Wanna earn up to $100,000 a month? Perhaps doing crime? For obscure reasons? This is your opportunity. Don't miss out on this bizarre hacking campaign, which is currently looking for recruits here on Twitter. 🤔 🤔 🤔

TechCrunch

Someone is trying to recruit security researchers in bizarre hacking campaign  | TechCrunch

An obscure wannabe hacker's tantalizing (and clearly sketchy) job offer has some security researchers asking, why?

NEW: Oracle is apparently dealing with two separate breaches — one affecting Oracle Cloud, and one Oracle Health — but the company refuses to say what's actually going on. Both public and employees are confused at this point, as there is little transparency. Here's a recap of what's happening.

TechCrunch

Oracle under fire for its handling of separate security incidents | TechCrunch

Oracle has denied at least one breach, despite evidence to the contrary, as it begins notifying healthcare customers of a separate patient data bre...

NEW: Valve removed a video game from Steam after users reported that its free demo was actually an infostealer malware. Very similar thing happened last month with another video game laced with malware.

TechCrunch

Valve removes video game listing suspected of being malware | TechCrunch

Valve removed a video game called Sniper: Phantom's Resolution from Steam after users reported that its free demo contained malware.

The official website of zero-day broker Zerodium has been updated in December of last year. There are no price lists nor any information anymore, just an email and a PGP public key. 🤔 If you know what's happening there...let me know.

ZERODIUM - The Premium Exploit Acquisition Platform

ZERODIUM is the leading exploit acquisition platform for premium zero-days and advanced cybersecurity research. Our platform allows security resear...