New Hak5 Video: Cybersecurity and Hacking Updates
In the latest video from the @hak5 channel, Ali Diamond discusses several critical topics in cybersecurity and hacking. The first issue addressed is the ban on the use of software from the Russian company Kaspersky in the United States and Australia. In September 2024, the United States officially banned the use of Kaspersky products and services, requiring all companies using these software solutions to terminate their relationships with Kaspersky. Australia, a member of the Five Eyes alliance, also announced a similar ban for government entities, mandating the removal of all Kaspersky products and services by April 2025. This decision is driven by risk and threat analyses, highlighting the potential dangers of foreign interference, espionage, and sabotage. Another major topic is the order issued by the British government in January 2025, requiring Apple to create a backdoor for iCloud. This unprecedented decision in a major democracy forces Apple to remove the Advanced Data Protection (ADP) option for users in the United Kingdom. ADP, which must be manually activated by users, provides end-to-end encryption for iCloud data, ensuring that only users can decrypt their data on trusted devices. Apple has expressed disappointment with this decision, emphasizing the importance of end-to-end encryption for user data security. The video also covers a new tactic used by threat actors aligned with the Russian state to compromise accounts on the secure messaging app Signal. This attack exploits Signal's device linking feature, which allows users to add a new device by scanning a QR code. Threat actors use phishing sites to lure targets into scanning a malicious QR code, which registers their account on the attacker's device. This method is particularly dangerous because it is difficult to detect and can go unnoticed for long periods. Google Threat Intelligence Group warns that this technique could also be used against WhatsApp and Telegram users. Finally, Ali Diamond encourages viewers to use end-to-end encrypted messaging apps like Signal to protect their communications. He also emphasizes the importance of staying vigilant against phishing attacks and carefully verifying websites before scanning QR codes. For more details, watch the full video at the following address: https://www.youtube.com/watch?v=MCNkgIb38F0