Google has patched a privilege escalation vulnerability in its Cloud Run service, which could have allowed malicious actors to access container images and inject malicious code. The vulnerability, codenamed ImageRunner, allows attackers to modify a service and deploy a new revision, potentially exposing sensitive or proprietary images. Google has now ensured that users or service accounts creating or updating a Cloud Run resource have explicit permission to access the container images.
Amazon has submitted a bid to acquire all of TikTok, as the app faces an April 5 deadline to sell its Chinese ownership or face a US ban. However, the deal talks are not taking Amazon's bid seriously. President Trump is scheduled to meet with officials to discuss the app's fate. Andreessen Horowitz is in talks to invest in TikTok as part of an Oracle-led bid, while Blackstone is considering joining ByteDance's non-Chinese shareholders to provide fresh capital for the US operations.
PayPal has expanded its cryptocurrency offerings by adding support for Solana (SOL) and Chainlink (LINK) for customers in the U.S. and its territories. This addition enhances PayPal's crypto portfolio, which already includes Bitcoin, Ethereum, Litecoin, Bitcoin Cash, and its own stablecoin, PYUSD.
Recent actions by the U.S. administration under President Donald Trump, including imposing new tariffs and strengthening ties with Taiwan, have escalated tensions with China. Analysts suggest these moves diminish prospects for a China-U.S. summit and may lead to increased confrontations between the two nations.
Artificial intelligence models have outperformed traditional weather forecasting methods in predicting wildfires. By incorporating detailed fuel data, AI improved forecast accuracy by 30% and reduced false positives, offering a promising tool for early wildfire detection and prevention.
In Q1 2025, 17,954 open-source malware packages were identified, more than doubling from the same period last year. Data exfiltration malware accounted for 56% of these threats, highlighting a growing concern over sensitive information being compromised through malicious open-source components.
Netflix has expanded its language options on TV interfaces to cater to its growing international audience. With nearly a third of its viewership coming from non-English speaking regions, this update aims to make Netflix's global catalog more accessible and user-friendly.
The Department of Telecommunications (DoT) has disconnected 1.75 lakh Direct Inward Dialing (DID)/landline telephone numbers involved in unauthorized promotional and illegal activities. The move is part of DoT's efforts to combat spam calls and cyber fraud. Investigations found that many spam calls originate from telecom identifiers misusing PRIs, Lease Lines, Internet Lease Lines, SIP, and IPLC. TSPs are advised to comply with Unified License conditions and report misuse of telecom resources in cybercrime and fraud.
Oracle has reported a second cybersecurity breach in the last month, with an unidentified person attempting to sell stolen data online. The company has informed clients that the Federal Bureau of Investigation and cybersecurity firm CrowdStrike Holdings are investigating the incident. Oracle has also acknowledged that the system has not been in use for eight years, and the stolen data includes Oracle customer log-in credentials from as recently as 2024.
Amazon is set to launch the first 27 satellites of its Project Kuiper on April 9, aiming to establish a global broadband internet service to compete with SpaceX's Starlink. The satellites will orbit at approximately 630 km above Earth, providing low-latency, high-speed internet access worldwide. Amazon plans over 3,200 satellites and intends to begin service later in 2025.