This privacy digest highlights critical threats including social engineering attacks via credit card scams originating from China, and the need for X users to re-enroll 2FA keys. Also covered are the EU’s AI strategy, Android malware mimicking human typing, and the exploitation of Chrome zero-day vulnerabilities by Italian spyware vendors. Stay informed to protect your data and systems.
Top 5 Critical Privacy Alerts
- Social Engineering Credit Card Details: Criminal gangs in China are scamming people out of credit card information via texts, amassing over $1 billion. Read more
- X: Re-enroll 2FA Security Keys: Users must re-enroll their security keys/passkeys for 2FA by Nov 10 or be locked out. Read more
- New Herodotus Android Malware: This malware family mimics human typing to evade detection by security software. Read more
- BiDi Swap URL Phishing: Attackers are using bidirectional text to make fake URLs look real, exploiting a browser flaw. Read more
- Italian Spyware Chrome Zero-Day: An Italian spyware vendor is linked to Chrome zero-day attacks via Operation ForumTroll. Read more
Privacy Laws & Regulations
- European Commission AI Strategy: The EU aims to accelerate AI adoption across sectors with a comprehensive policy framework. Read more
- US Law & Medical Debt Reporting: Federal law overrides state bans on medical debt reporting, according to the CFPB. Read more
- UN Cyber Crime Treaty: Despite privacy concerns, a UN cyber crime treaty wins support from 72 nations. Read more
