Oracle’s bid calls for access to TikTok’s source code The news comes to sources speaking to Bloomberg, and would see Oracle also getting access to any updates to source code as part of being named TikTok’s trusted technology partner in…

ByteDance chooses Oracle’s bid to become TikTok’s trusted technology partner Oracle confirmed that its bid for TikTok was selected, paving the way to become the platform’s “trusted technology platform.” The deal will reportedly not be structured as an outright sale.…

Portland passes bans on facial recognition technology The move comes from a unanimous vote by the Portland, Oregon City Council on two facial recognition tech bans. The first would ban the public use of the technology by city bureaus, including…

Visa discovers new skimming malware The company’s Payment Fraud Disruption unit discovered the Baka skimmer back in February, ultimately finding seven severs distributing the malware. Baka’s attack vector is similar to other skimming malware, with data exfiltration using image requests…

Facebook formally codifies policy on third-party vulnerabilities The change was published in a blog post, and Facebook says that when third-party critical bugs or security vulnerabilities are found, it will give developers 21 days to respond and 90 days to…

Apple accidentally notarized malware on macOS The malware was initially discovered by college student Peter Dantini and passed on to security researcher Patrick Wardle. The campaign was distributing the “Shlayer” adware, and its unclear how the malware got past Apples…

You can teach a Qbot new tricks The banking trojan Qbot was initially discovered in 2008, but a new report from Check Point Research finds that it has become a “swiss-army knife” of malware, continuously developed to expand its capabilities.…

Application Guard for Office is now in public preview Microsoft released Application Guard for Office in public preview. This automatically opens files from untrusted sources in a secure container that is isolated from the device through hardware-based virtualization, and automatically…

Guardicore Labs discovers a previously unknown botnet Security researchers at Guardicore Labs announced the discovery of what they believe to be a previously undiscovered botnet. Dubbed FritzFrog, the botnet uses propriety code to infect SSH servers with in-memory payloads, then…

Trend Micro finds Mac malware in Xcode projects Researchers at Trend Micro published a report detailing malware found in Apple’s Xcode IDE. The XCSSET malware family can use two zero day vulnerabilities found in Safari. The first exploits a flaw…