A headline-grabbing international lawsuit has cast some doubt on the security of WhatsApp chats, with claims that parent company Meta is not providing true end-to-end encryption and retains the ability to access user conversations internally.
Senior Correspondent at CPO Magazine
Scott Ikeda is a technology futurist and writer for more than 15 years. He travels extensively throughout Asia and writes about the impact of technology on the communities he visits. Over the last 5 years, Scott has grown increasingly focused on the future landscape of big data, surveillance, cybersecurity and the right to privacy.
The big threat posed by this attack on Zendesk support systems is that the bogus message is seen as originating from the impersonated company's servers, giving it a leg up on penetrating automated spam and security filters.
By and large, the companies that Epic is suing seemed to be seeking medical data to sell to attorneys looking to establish mass tort cases involving many patients suffering similar injuries or conditions. In total the companies accessed 300,000 medical records under these alleged false pretenses.
The official word from Meta, via its main Instagram account, is that an "issue" that allowed third parties to request password resets for "some people" was fixed on January 11 and that users could safely ignore the strange password reset messages. They also reassured users that there is no new data breach.
An audit report reveals the Truebit crypto hack was caused by a relatively simple overflow vulnerability, one that allowed an attacker to abscond with the equivalent of $26 million from the Truebit Protocol.
Backed by funding of £210 million, the UK's new Government Cyber Action Plan aims to improve both cyber defenses for and ease of access to the nation's public services.
An Android app leak indicates that plans for ChatGPT ads are at least in the works. The 1.2025.329 beta version's code lists references to over a dozen APIs that appear to explicitly be about serving ads.
A new warning documents an ongoing campaign by Chinese hackers making use of the sophisticated BRICKSTORM malware to target public sector organizations and IT companies for long-term espionage purposes. The average dwell time for these documented breaches is a little over a year.
The secret order, issued in late November, would have made India’s security app a mandatory inclusion on all new devices from smartphone makers within 90 days. Smartphone makers would have also been required to push it to older devices that are still supported via a security update.
The FBI has issued a warning about a spike in financial account takeover crimes, after fielding over 5,100 complaints thus far in 2025. Attackers are commonly impersonating bank staff and mocking up replicas of financial institution websites to obtain credentials, and in some cases are ensnaring victims via legitimate-seeming search engine ads.










