iTWire TV 160x1200notfunny

iTWire TV 160x1200notfunny

iTWire TV 705x108notfunny

Friday, 07 June 2024 15:00

TikTok exploited: Multiple high profile accounts targeted in cyber attack

By Patrick Tiquet
Patrick Tiquet, VP of Security and Compliance, Keeper Security Patrick Tiquet, VP of Security and Compliance, Keeper Security

GUEST OPINION by Patrick Tiquet, VP of Security and Compliance, Keeper Security: The recent malware attacks leveraging direct messages on TikTok can have potentially severe consequences.

Social media giant TikTok had reported a security breach this week, compromising multiple high-profile accounts, including Paris Hilton, CNN, and Sony. The malware was transmitted via direct messages, and have the ability to remove access from the original owners. At the moment, the nature of attack and mitigation measures by TikTok remains unclear.

"Users’ personal and financial information are at risk, accounts may be compromised and malware can continue to spread, leading to identity theft and significant reputational damage for celebrities, brands and even everyday users of the platform. If the malware gains control of users' devices, the potential for cyber crimes escalates dramatically.

"Anyone can be a victim of a hack. While celebrities and other high-profile individuals are targeted for their status, cybercriminals often target low-hanging fruit en masse. The path of least resistance consists of easily guessed passwords, weak or non-existent Multi-Factor Authentication (MFA) and social engineering schemes that use phishing and malicious links.

"Phishing can be launched through any medium, using urgency and fear to prompt immediate action. Ensuring that URLs match the authentic website is key. A password manager can automatically identify when a site’s URL doesn't match what’s in the password vault, providing critical protection against phishing scams.

"These high-profile breaches highlight the critical need for enhanced security by both the platform and its users. Users should avoid clicking unknown links and ensure they are using strong, unique passwords on every online account. We recommend passwords of at least 16 characters, using a random combination of numbers, uppercase and lowercase letters and symbols.

"Besides using strong passwords, MFA provides an additional layer of security that can help prevent most breaches. If a cybercriminal successfully guesses your username and password, MFA requires a second form of authentication to log in. If you receive an MFA notification without attempting to log in, decline access and promptly update your credentials. A secure password manager can help create, store, fill and manage your passwords and MFA options."

A monitoring service such as BreachWatch® is also critical:

"It can alert you in real-time if your credentials or private information appear on the dark web. The dark web contains over 20 billion stolen usernames and passwords from public data breaches, which cybercriminals buy and sell to execute attacks.

"Being able to take swift action to protect your identity and online accounts is crucial, and dark web monitoring allows users to change their credentials immediately, preventing potential breaches."

Read 1043 times

Please join our community here and become a VIP.

Subscribe to ITWIRE UPDATE Newsletter here
JOIN our iTWireTV our YouTube Community here

IDC WHITE PAPER: The Business Value of Aiven Data Cloud Solutions

According to IDC, Aiven enables your teams to perform more efficiently, reduce direct infrastructure costs, and provide improved database performance, agility and scalability.

Find out how Aiven makes teams 48% more efficient, allowing staff to focus on high-value activities that drive real business results:

340% 3-year ROI – break even in 5 months (average)

37% lower 3-year cost of operations

78% reduction in staff time for database deployments

Download the IDC White Paper now



It's all about Webinars.

Marketing budgets are now focused on Webinars combined with Lead Generation.

If you wish to promote a Webinar we recommend at least a 3 to 4 week campaign prior to your event.

The iTWire campaign will include extensive adverts on our News Site and prominent Newsletter promotion and Promotional News & Editorial. Plus a video interview of the key speaker on iTWire TV which will be used in Promotional Posts on the iTWire Home Page.

Now we are coming out of Lockdown iTWire will be focussed to assisting with your webinars and campaigns and assistance via part payments and extended terms, a Webinar Business Booster Pack and other supportive programs. We can also create your adverts and written content plus coordinate your video interview.

We look forward to discussing your campaign goals with you. Please click the button below.


Share News tips for the iTWire Journalists? Your tip will be anonymous

Subscribe to Newsletter

*  Enter the security code shown:





Guest Opinion



Channel News