Fast Company hackers sent out obscene push notifications to Apple News users

Fast Company readers who subscribe to updates from the business publication via Apple News have received a couple of obscene push notifications with racial slurs on Tuesday night. The messages caught a lot of users off guard — they truly could induce a spit take if you weren’t expecting them — and people took to Twitter to post screenshots. In a statement, Fast Company has told Engadget that its Apple News account was hacked and was used to send “obscene and racist” push notifications.” It added that the breach was related to another hack that happened on Sunday afternoon and that it has gone as far as shutting down the whole FastCompany.com domain for now.

The publication said:

“Fast Company’s content management system account was hacked on Tuesday evening. As a result, two obscene and racist push notifications were sent to our followers in Apple News about a minute apart. The messages are vile and are not in line with the content and ethos of Fast Company. We are investigating the situation and have shut down FastCompany.com until the situation has been resolved. Tuesday’s hack follows an apparently related hack of FastCompany.com that occurred on Sunday afternoon, when similar language appeared on the site’s home page and other pages. We shut down the site that afternoon and restored it about two hours later. Fast Company regrets that such abhorrent language appeared on our platforms and in Apple News, and we apologize to anyone who saw it before it was taken down.”

Apple has addressed the situation in tweet, confirming that the website has been hacked and that it has suspended Fast Company’s account:

At the moment, Fast Company’s website loads a “404 Not Found” page. Before it was taken down, though, the bad actors managed to post a message detailing how they were able to infiltrate the publication, along with a link to a forum where stolen databases are made available for other users. They said that Fast Company had a default password for WordPress that was much too easy to crack and used it for a bunch of accounts, including one for an administrator. From there, they were able to grab authentication tokens, Apple News API keys, among other access information. The authentication keys, in turn, gave them the power to grab the names, email addresses and IPs of a bunch of employees.

A user called “Thrax” posted in the forum they linked on the publication’s website, announcing that they were releasing a database containing 6,737 employee records. These include employees’ emails, password hashes for some of them and unpublished drafts, among other information. They weren’t able to get their hands on customer records, though, most likely because they’re kept in a separate database.

Update 09/27/22 11:43PM ET: Edited the post to add Fast Company’s new and more detailed statement.

Meta dismantles a China-based network of fake accounts ahead of the midterms

Meta has taken down a network of fake accounts from China that targeted the United States with memes and posts about “hot button” political issues ahead of the midterm elections.The company said the fake accounts were discovered before they amassed a large following or attracted meaningful engagement, but that the operation was significant due to its timing and because of the topics the accounts posted about.

The network consisted of 81 Facebook accounts, eight Facebook Pages, two Instagram accounts and a single Facebook Group. Just 20 accounts followed at least one of the Pages and the group had about 250 members, according to Meta.

The fake accounts posted in four different “clusters” of activity, Meta said, beginning with Chinese-language content “about geopolitical issues, criticizing the US.” The next cluster graduated to memes and posts in English, while subsequent clusters created Facebook Pages and hashtags that also circulated on Twitter. In addition to the US, some clusters also targeted posts to people in the Czech Republic.

During a call with reporters, Meta’s Global Threat Intelligence Lead Ben Nimmo said the people behind the accounts “made a number of mistakes” that allowed Meta to catch them more easily, such as only posting during working hours in China. At the same time, Nimmo said the network represented a “new direction for Chinese influence operations” because the accounts posed as both liberals and conservatives, advocating for both sides on issues like gun control and abortion rights.

“It’s like they were using these hot button issues to try and find an entry point into American discourse,” Nimmo said. “It is an important new direction to be aware of.” The accounts also shared memes about President Joe Biden, Florida Senator Marco Rubio, Utah Senator Mitt Romney and House Speaker Nancy Pelosi, according to Meta.

Meta also shared details about a much larger network of fake accounts from Russia, which it described as the “most complex Russian-origin operation that we’ve disrupted since the beginning of the war in Ukraine.” The company identified more than 1,600 Facebook accounts and 700 Facebook Pages associated with the effort, which drew more than 5,000 followers.

The network used the accounts to boost a series of fake websites that impersonated legitimate news outlets and European organizations. They targeted people in Germany, France, Italy, Ukraine and the United Kingdom, and posted in several languages.

“They would post original articles that criticized Ukraine and Ukrainian refugees, praised Russia and argued that Western sanctions on Russia would backfire,” Meta writes in its report. “They would then promote these articles and also original memes and YouTube videos across many internet services, including Facebook, Instagram, Telegram, Twitter, petitions websites Change[.]org and Avaaz[.]com, and even LiveJournal.”

Meta notes that “on a few occasions” the posts from these fake accounts were “amplified by Russian embassies in Europe and Asia” though it didn’t find direct links between the embassy accounts and the network. For both the Russia and China-based networks, Meta said it was unable to attribute the fake accounts to specific individuals or groups within the countries.

The takedowns come as Meta and itspeers are ramping up security and anti-misinformation efforts to prepare for the midterm elections in the fall. For Meta, that means largely using the same strategy it employed in the 2020 presidential election: a combination of highlighting authoritative information and resources, while relying on labels and third-party fact checkers to tamp down false and unverified info.

Meta tests easier account switching between Facebook and Instagram

Meta is testing two features that integrate Facebook and Instagram more closely together. On Monday, the company began rolling out a new interface on Android, iOS and on the web for switching between accounts. Provided you’ve added your Facebook and In…

Watch Netflix’s Tudum fan event here at 1PM ET

Netflix will host the second installment of its Tudum global fan event today. The stream will feature news, trailers and clips from more than 120 shows, movies, specials, documentaries and games. You’ll be able to watch the event, which starts at 1PM ET, below. Netflix will also stream the event on its Twitter, Twitch and Facebook channels, as well as its YouTube channels around the world.

Among many, many other projects, Tudum will feature an update on season three of The Witcher, details on prequel series The Witcher: Blood Origin, an appearance from the Squid Game cast and a Stranger Things blooper reel. In addition, Tudum will include news on The Crown, trailers for new seasons of Outer Banks and Manifest, a first peek at Jennifer Lopez’s movie The Mother and an exclusive clip from Rian Johnson’s follow-up to Knives Out, Glass Onion. There will also be a look at the Netflix version of Oxenfree — the company bought developer Night School Studio last year

This could be an important event for Netflix, which has had a fairly rough year. Its subscriber numbers dropped for the first time — it lost around 1.2 million subscribers in the first six months of 2022. Netflix has raised prices in several territories in recent months and it has a cheaper, ad-supported tier on the way. To both keep current subscribers on board and bring in newcomers, Netflix has to get folks excited about what it has to offer. Events like Tudum can help with that.

Kiwi Farms says someone hacked its website

Kiwi Farms, a forum that’s long been accused of fostering targeted online and real-world harassment campaigns, says that someone hacked its proxy service and website. As noted by cybersecurity researcher Kevin Beaumont, it told users in a Telegram message that all avatars had been changed to the logo of another website (said to be another purported “free speech” forum) and that “each node on the forum index was deleted one at a time.”

While Kiwi Farms apparently has backups and none of the forum data has been permanently deleted, users’ personal information may have been compromised. Founder Joshua Moon told users to assume that their email and password information has been obtained, as well as the IP address of any device they’ve used to access Kiwi Farms in the last month.

“I do not know for sure if any user information was leaked. In my access logs, they attempted to download all user records at once,” Moon wrote in a statement on the Kiwi Farms website. “This caused an error and no output was returned. I shut everything off soon after. If they scraped information through some other mechanism, I cannot say with any confidence either way.”

The hacker is said to have used an injected script to gather data from users’ systems. Moon said they accessed his admin account as a result of this method. Moon added that he would restore the site from a backup, but noted that the process (as well as reviewing Kiwi Farms’ security procedures) would take some time. However, he noted on Telegram today that he had to leave for a week to deal with a family emergency. Some Kiwi Farms users are turning on Moon over the incident.

Earlier this month, Kiwi Farms was effectively forced off of the open web following an effort to take down the forum. Streamer and political commentator Clara “Keffals” Sorrenti, a prominent target of a harassment campaign that allegedly stemmed from the website, started the movement to bring down Kiwi Farms. While Moon was later able to bring the forum back online through other means.

Cloudflare, a DDoS protection company, kicked Kiwi Farms off its service due to a significant increase in targeted threats originating on the site. That seems to have played a role in this weekend’s hack. “Cloudflare not only provided DDoS protection, they also accounted for many popular exploits like this,” Moon wrote. 

Flickr adds a virtual photography category as more games embrace photo modes

Flickr is adding a new virtual photography category to help users find and categorize images they capture in their favorite video games. Previously, the platform only offered three content categories: photos, illustration and art, and screenshots. The …

Twitter starts rolling out podcasts to Blue subscribers

Twitter has begun rolling out its redesigned Spaces tab. Starting today, Twitter Blue members on iOS can check out the new interface element through the subscription’s early access Labs feature. The tab brings together live and recorded Spaces, and eve…