Source URL: https://www.theregister.com/2025/02/10/infosec_in_brief/
Source: The Register
Title: DeepSeek’s iOS app is a security nightmare, and that’s before you consider its TikTok links
Feedly Summary: PLUS: Spanish cops think they’ve bagged NATO hacker; HPE warns staff of data breach; Lazy Facebook phishing, and more!
Infosec In Brief DeepSeek’s iOS app is a security nightmare that you should delete ASAP, according to researchers at mobile app infosec platform vendor NowSecure.…
AI Summary and Description: Yes
Summary: The text provides a comprehensive overview of current cybersecurity threats and vulnerabilities, particularly related to mobile apps, data breaches, and phishing campaigns. Critical insights are relevant for professionals in the fields of security, privacy, and compliance, especially regarding the implications of foreign data handling and the rising trend of cyberattacks targeting government and corporate entities.
Detailed Description: The content highlights multiple significant issues in cybersecurity, including vulnerable applications, data breaches, and the use of phishing campaigns. Below are the major points of concern for security professionals:
– **DeepSeek App Security Flaws**:
– The iOS app DeepSeek has been flagged as a security risk due to its poor handling of user data.
– Issues include:
– Data transmission in plaintext
– Use of outdated encryption methods
– Hardcoded encryption keys and insecure storage of credentials
– Fingerprinting of users
– Data transmission to China, raising privacy and national security alarms.
– There is an ongoing legislative move (No DeepSeek on Government Devices Act) to ban its use on government devices due to its links to the Chinese government.
– **Hewlett Packard Enterprise Incident**:
– HPE reported a data breach potentially affecting personnel information from their cloud email system.
– This incident was linked to a nation-state threat actor, Cozy Bear, known for its cyber espionage activities.
– **Exploitation of Critical Vulnerabilities**:
– A series of high-risk vulnerabilities were identified, such as:
– CVE-2024-21413 in Microsoft Outlook with CVSS rating of 9.8 for remote code execution.
– Several vulnerabilities in Apache OFBiz, Sophos XG Firewall, and PRTG Network Monitor are currently under active exploitation.
– **Spanish Cybersecurity Arrest**:
– An alleged hacker, known as Natohub, was arrested for targeting high-profile entities like NATO and the US Army, emphasizing the persistent threat of cybercriminal activities even from individuals.
– **UK Engineering Firm Cyber Incident**:
– IMI plc admitted unauthorized access to their systems without clarifying details, showcasing challenges companies face when dealing with cyber incidents.
– **Phishing Campaign Leveraging Salesforce**:
– A phishing scheme using Salesforce as a facade to conduct Facebook-related scams is on the rise, demonstrating the need for constant vigilance in email security and recognizing legitimate communications.
Overall, the provided text underscores emerging trends in cybersecurity threats, the necessity for rigorous data handling practices, and the importance of legislative measures to combat breaches influenced by foreign actors. Security professionals must prioritize awareness and response strategies in light of these evolving challenges.