ICE Gains Access to Controversial Spyware

The Trump administration has overturned a prior executive order, allowing Immigration and Customs Enforcement (ICE) to obtain Paragon spyware tools. Paragon, an Israeli firm likened to the NSO Group, provides capabilities to remotely infiltrate phones and extract messages. WhatsApp previously identified Paragon’s software being used against journalists and activists in Europe, prompting Italian authorities to cancel a contract with the company. The policy shift reflects a broader push to equip US immigration enforcement with powerful digital surveillance tools.

Widespread Data Breach Targets Tech Companies

A hack that began in August targeting Salesloft’s “Drift” AI chatbot has rippled across the tech sector. Attackers exploited compromised OAuth tokens linked to Drift’s integration with Salesforce, extracting large volumes of data from corporate Salesforce instances. More than 700 companies, including Cloudflare, Palo Alto Networks, Spycloud, and Zscaler, reported stolen customer information. Salesloft responded by pausing its Salesforce integration and taking Drift offline to reinforce security, while the breach continues to be investigated.

Failed SEAL Team 6 Mission in North Korea

In 2019, SEAL Team 6 was dispatched on a covert amphibious operation to plant an electronic surveillance device on North Korean soil. The team reached the shoreline via mini‑submarines launched from a nuclear submarine, but confusion over a nearby boat led them to fire on the vessel, killing its occupants—likely civilians gathering shellfish. The mission was aborted, and the Trump administration did not brief congressional oversight committees about the incident, highlighting gaps in transparency for high‑risk intelligence operations.

Phishing Training Shows Minimal Impact

A study of 20,000 employees at UC San Diego Health measured the effectiveness of simulated phishing training. Results showed only a 1.7 percent reduction in failure rates compared to employees who received no training. Most participants spent less than a minute on the training material, and even those who completed a question‑and‑answer segment were only 19 percent less likely to fall for subsequent phishing attempts. The findings suggest that reliance on human vigilance alone is insufficient for robust phishing defense.

World’s Largest Illegal Sports‑Streaming Site Shut Down

Authorities, in coordination with the Alliance for Creativity and Entertainment, dismantled Streameast, the largest illegal sports‑streaming platform. Operating 80 domains that collectively attracted over 1.6 billion visits annually, Streameast streamed premier soccer, NFL, NBA, NHL, and MLB events. Egyptian law enforcement arrested two men on copyright infringement charges and uncovered a shell company used to launder approximately $6.2 million in advertising revenue over 15 years. The takedown marks a significant victory against large‑scale digital piracy.

Used: News Factory APP - news discovery and automation - ChatGPT for Business