Originally reported by Security Affairs, The Record
TL;DR
Iran experienced a near-total internet blackout during Israeli and U.S. strikes, while researchers discovered the Aeternum botnet using Polygon blockchain smart contracts for command and control. Apple's iPhone and iPad became the first consumer devices approved for NATO classified use.
Iran's near-total internet blackout during active military strikes represents critical infrastructure disruption with geopolitical implications. This level of nationwide communication disruption falls under critical severity.
Iran experienced a severe nationwide internet disruption as Israel and the United States conducted military strikes against the country, according to NetBlocks monitoring data. The independent internet monitor reported network data indicating a near-total blackout across Iranian infrastructure.
The timing correlation between the strikes and communication infrastructure disruption highlights the critical role of internet connectivity during geopolitical tensions. Such widespread blackouts can impact civilian communications, emergency services, and economic activity beyond military targets.
Qrator Labs researchers uncovered Aeternum, a sophisticated botnet that operates its command-and-control infrastructure through smart contracts on the Polygon blockchain. This approach represents a significant evolution in botnet architecture, making traditional takedown methods ineffective.
By decentralizing its C2 operations through blockchain technology, Aeternum avoids the single points of failure that typically allow law enforcement to disrupt botnets. The use of smart contracts for command distribution creates a persistent infrastructure that cannot be easily seized or shut down through conventional means.
Microsoft Defender researchers discovered threat actors distributing trojanized gaming utilities (Xeno.exe variants) through browsers and chat platforms to deploy remote access trojans. The campaign employs sophisticated evasion techniques including PowerShell execution, living-off-the-land binaries (LOLBins), and Windows Defender bypass methods.
The targeting of gaming communities represents a growing trend where attackers exploit the trust relationships within specialized user communities. The malware's use of legitimate system tools for persistence and evasion demonstrates the continued evolution of post-exploitation techniques.
Apple's iPhone and iPad became the first consumer devices to receive NATO approval for handling classified information at the 'RESTRICTED' level. The devices are now officially listed in the NATO Information Assurance Product Catalogue (NIAPC), enabling military personnel to use them for secure communications.
This certification represents a significant milestone for consumer device security, as NATO's approval process requires rigorous evaluation of hardware and software security controls. The classification allows these devices to handle sensitive but unclassified information within NATO member organizations.
Samsung modified its Automatic Content Recognition (ACR) privacy practices after Texas filed lawsuits against five major smart TV manufacturers in December. The legal action targeted Samsung, Sony, LG, Hisense, and TCL Technology for allegedly collecting ACR data without proper consumer disclosure and consent.
The lawsuit highlights growing regulatory scrutiny of data collection practices in connected devices, particularly regarding user awareness and consent mechanisms for automated content analysis.
Instagram announced plans to alert parents in the U.S., U.K., Australia, and Canada when children repeatedly search for self-harm or suicide-related content. The notification system represents an expansion of platform safety measures targeting vulnerable users.
Concurrently, EU lawmakers proposed requiring parental consent for social media access for users under 16, with a complete prohibition for children under 13. These regulatory proposals reflect increasing government concern about social media's impact on youth mental health and development.
Originally reported by Security Affairs, The Record