TikTok U.S. joint venture under September 2025 executive order
Public Sector Action
Summary
Hide ▲
Show ▼
The U.S.-backed TikTok USDS Joint Venture LLC now lets TikTok keep operating in the U.S., changing ownership and security oversight for a platform used by over 200 million Americans and 7.5 million businesses. The venture was formed under a September 2025 Executive Order, with ByteDance selling its majority stake to majority-American investors while keeping 19.9% ownership. Oracle's secure U.S. cloud environment will protect user data and support the recommendation algorithm, which is being retrained for U.S. users. The new framework also extends to CapCut and Lemon8, and adds transparency reporting, third-party certifications, and controls aligned to NIST CSF, NIST 800-53, ISO 27001, and CISA requirements.
Related Happenings
Cl0p Oracle E-Business Suite zero-day extortion campaign
Campaign
First: 02.03.2026 15:53
Last: 02.03.2026 15:53
Sources 1
About this happening:
The **Cl0p ransomware and extortion group** is running an **Oracle E-Business Suite** extortion campaign that used **zero-day vulnerabilities** to access data from **more than 100...
Cl0p Oracle E-Business Suite zero-day extortion campaign
CampaignAbout this happening: The **Cl0p ransomware and extortion group** is running an **Oracle E-Business Suite** extortion campaign that used **zero-day vulnerabilities** to access data from **more than 100...
Cybersecurity investment and M&A surge
Industry Action
First: 24.02.2026 15:04
Last: 24.02.2026 15:04
Sources 1
About this happening:
**Cybersecurity investment** hit record levels in 2025 as capital flooded **AI-native security** and dealmaking reshaped the sector. **$119 billion** went into cybersecurity busin...
Cybersecurity investment and M&A surge
Industry ActionAbout this happening: **Cybersecurity investment** hit record levels in 2025 as capital flooded **AI-native security** and dealmaking reshaped the sector. **$119 billion** went into cybersecurity busin...
CISA releases PQC product categories list
Public Sector Action
First: 23.01.2026 14:00
Last: 23.01.2026 14:00
Sources 1
About this happening:
On January 23, 2026, CISA released an initial list of product categories for technologies that use post-quantum cryptography (PQC) standards. The resource is intended to help orga...
CISA releases PQC product categories list
Public Sector ActionAbout this happening: On January 23, 2026, CISA released an initial list of product categories for technologies that use post-quantum cryptography (PQC) standards. The resource is intended to help orga...
Latest development: 26.01.2026 18:15
CISA published an initial list of hardware and software product categories that support or are expected to support post-quantum cryptography (PQC) standards, following Executive Order 14306 issued on June 6 2025 and compiled with the National Security Agency (NSA). The guidance covers cloud services, collaboration and web software, endpoint security, and networking hardware and software, while additional categories such as identity and access management (IAM) systems and enterprise security software are still transitioning; organizations are told to prioritize PQC-capable products for future procurements, and automated cryptographic discovery tools plus OT and IoT devices are outside the current scope.
Irish Data Protection Commission €530m penalty against TikTok on Sanction for transferring user data to China in breach of the GDPR's international data transfer restrictions
Regulatory/Legal Action
First: 22.01.2026 12:35
Last: 22.01.2026 12:35
Sources 1
About this happening:
The **Irish Data Protection Commission** imposed a **€530m GDPR fine** on **TikTok**, escalating enforcement over **cross-border data transfers** and **user-data protection**. The...
Irish Data Protection Commission €530m penalty against TikTok on Sanction for transferring user data to China in breach of the GDPR's international data transfer restrictions
Regulatory/Legal ActionAbout this happening: The **Irish Data Protection Commission** imposed a **€530m GDPR fine** on **TikTok**, escalating enforcement over **cross-border data transfers** and **user-data protection**. The...
ShinyHunters Salesforce extortion campaign against global companies in 2025
Campaign
First: 15.01.2026 17:45
Last: 15.01.2026 17:45
Sources 1
About this happening:
The **ShinyHunters** campaign now includes a **Qantas** breach disclosed after the airline found a **June 30, 2025** intrusion in a **third-party platform** used by one customer s...
ShinyHunters Salesforce extortion campaign against global companies in 2025
CampaignAbout this happening: The **ShinyHunters** campaign now includes a **Qantas** breach disclosed after the airline found a **June 30, 2025** intrusion in a **third-party platform** used by one customer s...
Timeline
-
23.01.2026 13:30 3 articles · 4mo ago
TikTok announces U.S. joint venture under executive-order safeguards
Initial DisclosureTikTok announced TikTok USDS Joint Venture LLC to keep the video-sharing service operating in the U.S. under the September 2025 executive-order framework, with ByteDance reducing its stake to 19.9% and majority-American investors taking control. The arrangement places U.S. user data in Oracle's secure U.S. cloud environment, secures the recommendation algorithm with Oracle's cloud infrastructure, extends safeguards to CapCut, Lemon8, and other U.S. apps and websites, and adds data privacy, cybersecurity, transparency reporting, and third-party certification requirements aligned to NIST CSF, NIST 800-53, ISO 27001, and CISA requirements.
Show sources
- TikTok Forms U.S. Joint Venture to Continue Operations Under 2025 Executive Order — thehackernews.com — 23.01.2026 13:30
- TikTok Forms U.S. Joint Venture to Continue Operations Under 2025 Executive Order — thehackernews.com — 23.01.2026 13:30
- US investors to take over TikTok operations in the country — www.bleepingcomputer.com — 26.09.2025 20:01