⚠️🚨 STOP Using Social Media Platform Hootsite

👉 They Partnered with ICE 👈

"A Hootsuite employee mentioned geolocation, saying the company could drill down to street-level data."
Note: There are Four articles in this post including a Bypass Paywall to the Globe and Mail

"While Hootsuite is based in Canada, it has hundreds of employees globally, including CEO Irina Novoselsky who is based in N.Y City. The company serves major brands like Adobe and Ikea and more .."

h/t @tod
#Luxembourg #Talkwalker
#Canada #USA #Resist #SocialMedia
#Hootsite #FB #TikTok #Threads #YouTube #Twitter #WhatsApp #Bluesky
#Pintrest #CyberSecurity #AI

https://www.theglobeandmail.com/business/article-hootsuite-canada-vancouver-ice-social-media-contract/

You will also want to read this link👇

https://www.rswebsols.com/news/canadian-news-luxembourgs-ai-technology-for-social-media-monitoring-to-support-ice/

Bypass paywall : Globe and Mail Article https://removepaywalls.com/https://www.theglobeandmail.com/business/article-hootsuite-canada-vancouver-ice-social-media-contract/

Link to Hootsite website: https://www.hootsuite.com/platform/integrations

The last 5 days have been a bit wild for the GCVE.eu initiative.

What started as steady work suddenly picked up real momentum:

• The public GCVE.eu database instance - https://db.gcve.eu/ - caught the attention of the media, sparking discussions well beyond our usual circles

• We published updates to the GCVE KEV Assertion Standard Format (BCP-07), refining how known-exploited information can be asserted and shared

• Vulnerability-Lookup 2.21.0 was released, bringing improvements aligned with the GCVE ecosystem

• We received a lot of valuable feedback especially on the specs, the tooling, and the overall direction

• New GNAs joined the GCVE directory, and new contributors stepped in to help shape both the specifications and the software

Seeing this level of engagement, critique, and contribution in such a short time is incredibly motivating. It reinforces why an open, decentralized, and collaborative approach to vulnerability identification and sharing matters.

Huge thanks to everyone who tested, commented, challenged assumptions, wrote code, improved text, or simply helped spread the word. This is very much a community effort and it’s only getting started. 💙

#GCVE #OpenSource #VulnerabilityManagement #CyberSecurity #Standards #Community

Don't hesitate to follow us at GCVE-EU - @gcve

@circl

GCVE BCP - https://gcve.eu/bcp/
GCVE DB - https://db.gcve.eu/recent
Vulnerability-Lookup - https://github.com/vulnerability-lookup/vulnerability-lookup

The last 5 days have been a bit wild for the GCVE.eu initiative.

What started as steady work suddenly picked up real momentum:

• The public GCVE.eu database instance - https://db.gcve.eu/ - caught the attention of the media, sparking discussions well beyond our usual circles

• We published updates to the GCVE KEV Assertion Standard Format (BCP-07), refining how known-exploited information can be asserted and shared

• Vulnerability-Lookup 2.21.0 was released, bringing improvements aligned with the GCVE ecosystem

• We received a lot of valuable feedback especially on the specs, the tooling, and the overall direction

• New GNAs joined the GCVE directory, and new contributors stepped in to help shape both the specifications and the software

Seeing this level of engagement, critique, and contribution in such a short time is incredibly motivating. It reinforces why an open, decentralized, and collaborative approach to vulnerability identification and sharing matters.

Huge thanks to everyone who tested, commented, challenged assumptions, wrote code, improved text, or simply helped spread the word. This is very much a community effort and it’s only getting started. 💙

#GCVE #OpenSource #VulnerabilityManagement #CyberSecurity #Standards #Community

Don't hesitate to follow us at GCVE-EU - @gcve

@circl

GCVE BCP - https://gcve.eu/bcp/
GCVE DB - https://db.gcve.eu/recent
Vulnerability-Lookup - https://github.com/vulnerability-lookup/vulnerability-lookup

🪤 Linux Snap Users Warned as Attackers Push Malware Through Old Trusted Apps

｢ For more than a year, Pope and other security professionals have documented a persistent campaign of malicious snaps impersonating cryptocurrency wallet applications. These fake apps typically mimic well-known projects such as Exodus, Ledger Live, or Trust Wallet, prompting users to enter wallet recovery phrases, which are then transmitted to attackers ｣

https://linuxiac.com/linux-snap-users-warned-as-attackers-push-malware-through-old-trusted-apps/

#ubuntu #snapcraft #cybersecurity

RE: https://ioc.exchange/@matthew_d_green/115944768357713048

Your encrypted data, along with how secure the encryption, does not mean shit when the encryption key got handed to the authorities.

#microsoft #cybersecurity #tech

RE: https://ioc.exchange/@matthew_d_green/115944768357713048

Your encrypted data, along with how secure the encryption, does not mean shit when the encryption key got handed to the authorities.

#microsoft #cybersecurity #tech

Microsoft Mishandling Example.com

https://tinyapps.org/blog/microsoft-mishandling-example-com.html

#HackerNews #Microsoft #Mishandling #Example.com #Microsoft #News #Tech #Issues #Cybersecurity

This “dream wish list for criminals” includes millions of Gmail, Facebook, banking logins, and more. The researcher who discovered it suspects they were collected using infostealing malware.

🪤 Linux Snap Users Warned as Attackers Push Malware Through Old Trusted Apps

｢ For more than a year, Pope and other security professionals have documented a persistent campaign of malicious snaps impersonating cryptocurrency wallet applications. These fake apps typically mimic well-known projects such as Exodus, Ledger Live, or Trust Wallet, prompting users to enter wallet recovery phrases, which are then transmitted to attackers ｣

https://linuxiac.com/linux-snap-users-warned-as-attackers-push-malware-through-old-trusted-apps/

#ubuntu #snapcraft #cybersecurity

This “dream wish list for criminals” includes millions of Gmail, Facebook, banking logins, and more. The researcher who discovered it suspects they were collected using infostealing malware.

Proton Spam and the AI Consent Problem

https://dbushell.com/2026/01/22/proton-spam/

#HackerNews #ProtonSpam #AIConsent #ProblemTechNews #CyberSecurity #FutureOfAI

Extracting a UART Password via SPI Flash Instruction Tracing

https://zuernerd.github.io/blog/2026/01/07/switch-password.html

#HackerNews #UART #SPI #Flash #Password #Extraction #InstructionTracing #Cybersecurity #EmbeddedSystems

Es ist wohl die erste staatliche Ransomware-Zahlung in nennenswerter Höhe - und nun wird versucht, sie zu verschleiern. Ich habe Staatstheater, Ministerium, Staatsanwaltschaft und LKA gefragt. Die ersten beiden beteuern, dass sie nicht gezahlt haben. Die letzten beiden wollen nichts dazu sagen. Und ein externer IT-Fachmann sagt, er habe die Zahlung auf Bitten des LKA geleistet, „weil der Staat nicht zahlen darf.“
Hier ein Geschenklink zu meinem Text:

https://www.zeit.de/digital/datenschutz/2026-01/digitale-erpressung-staatstheater-stuttgart-cyberkriminalitaet-prozess?freebie=a4cb3747
#cybersecurity

Es ist wohl die erste staatliche Ransomware-Zahlung in nennenswerter Höhe - und nun wird versucht, sie zu verschleiern. Ich habe Staatstheater, Ministerium, Staatsanwaltschaft und LKA gefragt. Die ersten beiden beteuern, dass sie nicht gezahlt haben. Die letzten beiden wollen nichts dazu sagen. Und ein externer IT-Fachmann sagt, er habe die Zahlung auf Bitten des LKA geleistet, „weil der Staat nicht zahlen darf.“
Hier ein Geschenklink zu meinem Text:

https://www.zeit.de/digital/datenschutz/2026-01/digitale-erpressung-staatstheater-stuttgart-cyberkriminalitaet-prozess?freebie=a4cb3747
#cybersecurity