As part of an investigation into people involved in the pro-independence movement in Catalonia, the Spanish police obtained information from the encrypted services Wire and Proton, which helped the authorities identify a pseudonymous activist, according to court documents obtained by…
Tag: Security News | TechCrunch
US Patent and Trademark Office confirms another leak of filers’ address data
The federal government agency responsible for granting patents and trademarks is alerting thousands of filers whose private addresses were exposed following a second data spill in as many years. The U.S. Patent and Trademark Office (USPTO) said in an email…
Brandywine Realty Trust says data stolen in ransomware attack
U.S. realty trust giant Brandywine Realty Trust has confirmed a cyberattack that resulted in the theft of data from its network. In a filing with regulators on Tuesday, the Philadelphia-based Brandywine described the cybersecurity incident as unauthorized access and the…
What we learned from the indictment of LockBit’s mastermind
On Tuesday, U.S. and U.K. authorities revealed that the mastermind behind LockBit, one of the most prolific and damaging ransomware groups in history, is a 31-year-old Russian named Dmitry Yuryevich Khoroshev, aka “LockbitSupp.” As it’s customary in these types of…
US, UK police identify and charge Russian leader of LockBit ransomware gang
The identity of the leader of one of the most infamous ransomware groups in history has finally been revealed. On Tuesday, a coalition of law enforcement led by the U.K.’s National Crime Agency announced that Russian national, Dmitry Yuryevich Khoroshev,…
Wiz raises $1B at a $12B valuation to expand its cloud security platform through acquisitions
Wiz, the buzzy startup building an all-in-one cloud security platform, is on an acquisition march to expand its business quickly en route to an IPO. Now, it has closed a major round of funding of $1 billion to help on…
Akamai confirms acquisition of Noname for $450M
A couple of weeks ago, TechCrunch broke the news that Akamai was in discussions to acquire Noname Security, a specialist in API security, for around $500 million. Today the deal is official, albeit at a lower price. Akamai has confirmed…
Police resurrect LockBit’s site and troll the ransomware gang
An international coalition of police agencies have resurrected the dark web site of the notorious LockBit ransomware gang, which they had seized earlier this year, teasing new revelations about the group. On Sunday, what was once LockBit’s official dark net…
Police resurrect Lockbit’s site and troll the ransomware gang
An international coalition of police agencies have resurrected the dark web site of the notorious LockBit ransomware gang, which they had seized earlier this year, teasing new revelations about the group. On Sunday, what was once LockBit’s official darknet site…
UnitedHealth data breach should be a wake-up call for the UK and NHS
The ransomware attack that has engulfed U.S. health insurance giant UnitedHealth Group and its tech subsidiary Change Healthcare is a data privacy nightmare for millions of U.S. patients, with CEO Andrew Witty confirming this week that it may impact as…
UnitedHealth data breach should be a wakeup call for the UK and NHS
The ransomware attack that has engulfed U.S. health insurance giant UnitedHealth Group and its tech subsidiary Change Healthcare is a data privacy nightmare for millions of U.S. patients, with CEO Andrew Witty confirming this week that it may impact as…
EU plan to force messaging apps to scan for CSAM risks millions of false positives, experts warn
A controversial push by European Union lawmakers to legally require messaging platforms to scan citizens’ private communications for child sexual abuse material (CSAM) could lead to millions of false positives per day, hundreds of security and privacy experts warned in…
Google expands passkey support to its Advanced Protection Program ahead of the US presidential election
Ahead of the U.S. presidential election, Google is bringing passkey support to its Advanced Protection Program (APP), which is used by people who are at high risk of targeted attacks, such as campaign workers, candidates, journalists, human rights workers, and…
Digital fraud detection startup BioCatch hits $1.3B valuation as Permira buys majority stake
Digital fraud detection company BioCatch has a new majority shareholder in the form of U.K private equity firm Permira. © 2024 TechCrunch. All rights reserved. For personal use only. This article has been indexed from Security News | TechCrunch Read…
UnitedHealthcare CEO says ‘maybe a third’ of US citizens were affected by recent hack
Two months after hackers broke into Change Healthcare systems stealing and then encrypting company data, it’s still unclear how many Americans were impacted by the cyberattack. Last month, Andrew Witty, the CEO of Change Healthcare’s parent company UnitedHealth Group, said…
United HealthCare CEO says ‘maybe a third’ of US citizens were affected by recent hack
Two months after hackers broke into Change Healthcare systems stealing and then encrypting company data, it’s still unclear how many Americans were impacted by the cyberattack. Last month, Andrew Witty, the CEO of Change Healthcare’s parent company UnitedHealth Group, said…
United HealthCare CEO says ‘maybe a third’ of U.S. citizens were affected by recent hack
Two months after hackers broke into Change Healthcare systems stealing and then encrypting company data, it’s still unclear how many Americans were impacted by the cyberattack. Last month, Andrew Witty, the CEO of Change Healthcare’s parent company UnitedHealth Group, said…
UnitedHealth CEO tells Senate all systems now have multi-factor authentication after hack
UnitedHealth Group chief executive officer Andrew Witty told senators on Wednesday that the company has now enabled multi-factor authentication on all the company’s systems exposed to the internet in response to the recent cyberattack against its subsidiary Change Healthcare. The…
Belgium’s Aikido lands $17M Series A for its ‘no BS’ security platform aimed at developers
Developers have a problem. It used to be the case that only large enterprises needed to worry themselves with security, but today, every startup is capable of holding huge amounts of customer data. That means developers across the board have…
US fines telcos $200M for sharing customer location data without consent
The U.S. Federal Communications Commission said on Monday that it is fining the four U.S. major wireless carriers around $200 million in total for “illegally” sharing and selling customers’ real-time location data without their consent. AT&T’s fine is more than…
SafeBase taps AI to automate software security reviews
Security review automation platform SafeBase has raised new cash from investors including Zoom’s corporate VC arm. © 2024 TechCrunch. All rights reserved. For personal use only. This article has been indexed from Security News | TechCrunch Read the original article:…
Change Healthcare hackers broke in using stolen credentials — and no MFA, says UHG CEO
UnitedHealth’s CEO said in congressional testimony that the portal used by the hackers to break into Change Healthcare was not protected with a basic security feature. © 2024 TechCrunch. All rights reserved. For personal use only. This article has been…
Despite complaints, Apple hasn’t yet removed an obviously fake app pretending to be RockAuto
Apple’s App Store isn’t always as trustworthy as the company claims. The latest example comes from RockAuto, an auto parts dealer popular with home mechanics and other DIYers, which is upset that a fake app masquerading as its official app…
Thoma Bravo to take UK cybersecurity company Darktrace private in $5B deal
Darktrace is set to go private in a deal that values the U.K.-based cybersecurity giant at around $5 billion. A newly-formed entity called Luke Bidco Ltd, formed by private equity giant Thoma Bravo, has tabled an all-cash bid of £6.20…
Rubrik’s shares end trading up almost 16% on the company’s public debut
This share price gives Rubrik a fully diluted valuation of $6.6 billion, up 88% from its last primary valuation of $3.5 billion in 2019. © 2024 TechCrunch. All rights reserved. For personal use only. This article has been indexed from…
Health insurance giant Kaiser will notify millions of a data breach after sharing patients’ data with advertisers
Kaiser, one of the largest healthcare organizations in the United States, said it was notifying 13.4 million members of a data breach earlier in April. © 2024 TechCrunch. All rights reserved. For personal use only. This article has been indexed…
Health insurance giant Kaiser notifies millions of a data breach
Kaiser, one of the largest healthcare organizations in the United States, said it was notifying 13.4 million members of a data breach earlier in April. © 2024 TechCrunch. All rights reserved. For personal use only. This article has been indexed…
Rubrik’s shares climb 20% in its public debut
This share price gives Rubrik a fully diluted valuation of $6.6 billion, up 88% from its last primary valuation of $3.5 billion in 2019. © 2024 TechCrunch. All rights reserved. For personal use only. This article has been indexed from…
Ex-NSA hacker and ex-Apple researcher launch startup to protect Apple devices
Two veteran security experts are launching a startup that aims to help other makers of cybersecurity products to up their game in protecting Apple devices. Their startup is called DoubleYou, the name taken from the initials of its co-founder, Patrick…
India’s ICICI Bank exposed thousands of credit cards to ‘wrong’ users
ICICI Bank, one of India’s top private banks, exposed the sensitive data of thousands of new credit cards to customers who were not their intended recipients. The Mumbai-based bank confirmed to TechCrunch Thursday that its digital channels “erroneously mapped” about…
Security bugs in popular phone-tracking app iSharing exposed users’ precise locations
The location-sharing app iSharing, which has 35 million users, fixed vulnerabilities that exposed users’ personal information and precise location data. © 2024 TechCrunch. All rights reserved. For personal use only. This article has been indexed from Security News | TechCrunch…
Security bugs in a popular phone-tracking app exposed users’ precise locations
The location-sharing app iSharing, which has 35 million users, fixed vulnerabilities that exposed users’ personal information and precise location data. © 2024 TechCrunch. All rights reserved. For personal use only. This article has been indexed from Security News | TechCrunch…
Tines taps $50M to expand its workflow automation beyond security teams
Automation continues to be a major theme in the enterprise — underscored not least by the rise of AI as a tool to help fix some of the more routine, resource-intensive and fragmented aspects of how security and other IT…
UnitedHealth says Change hackers stole health data on ‘substantial proportion of people in America’
The health tech giant processes 15 billion health transactions a year, and handles health information for about half of all Americans. © 2024 TechCrunch. All rights reserved. For personal use only. This article has been indexed from Security News |…
US government says security flaw in Chirp Systems’ app lets anyone remotely control smart home locks
CISA said Chirp Systems ignored the federal agency and the reporting security researcher. © 2024 TechCrunch. All rights reserved. For personal use only. This article has been indexed from Security News | TechCrunch Read the original article: US government says…
Lawmakers vote to reauthorize US spying law that critics say expands government surveillance
House and Senate lawmakers passed a bill reauthorizing the controversial Section 702 powers under FISA, which allows U.S. spy agencies to conduct warrantless searches of Americans’ communications. © 2024 TechCrunch. All rights reserved. For personal use only. This article has…
Your Android phone could have stalkerware — here’s how to remove it
This simple guide helps you identify and remove common consumer-grade spyware apps from your Android phone. © 2024 TechCrunch. All rights reserved. For personal use only. This article has been indexed from Security News | TechCrunch Read the original article:…
Lacework, last valued at $8.3B, is in talks to sell for just $150M to $200M, say sources
Consolidation continues apace in the world of security. Sources tell us that Lacework — a cloud security startup that was valued at $8.3 billion post-money in its last funding round — is in talks to be acquired by another security…
Lacework, last valued at $8.3B, is in talks to sell for just $150M to $300M, say sources
Consolidation continues apace in the world of security. Sources tell us that Lacework — a cloud security startup that was valued at $8.3 billion post-money in its last funding round — is in talks to be acquired by another security…
Wiz is in talks to buy Lacework for $150-200M; security firm was last valued at $8.3B
Consolidation continues apace in the world of security. Sources tell us that Lacework — a cloud security startup that was valued at $8.3 billion post-money in its last funding round — is in talks to be acquired by another security…
Hackers are threatening to publish a huge stolen sanctions and financial crimes watchlist
The hackers say they have stolen 5.3 million records from the World-Check database, used by companies and banks for screening potential customers. © 2024 TechCrunch. All rights reserved. For personal use only. This article has been indexed from Security News…
Cape dials up $61M from A16Z + more for mobile service that doesn’t use personal data
AT&T’s recent mega customer data breach — 74 million accounts impacted — laid bare how much data carriers have on their users, and also that the data is there for the hacking. Today, a startup called Cape — based out…
Apex Legends hacker says game developers patched exploit used on streamers
Last month, a hacker wreaked havoc during an esports tournament of the popular shooter game Apex Legends, hacking two well-known streamers mid-game to make it look like they were using cheats. A month later, it seems like the hacking saga…
Palo Alto Networks’ firewall bug under attack brings fresh havoc to thousands of companies
Organizations are urged to patch their Palo Alto firewalls after researchers discover evidence of malicious exploitation dating back to late-March. © 2024 TechCrunch. All rights reserved. For personal use only. This article has been indexed from Security News | TechCrunch…
Vorlon is trying to stop the next big API breach
Application programming interfaces, or APIs as they’re commonly known, are the bedrock of everything we do online. APIs allow two things on the internet to talk with each other, including connected devices or phone apps. But the enormous growth of…
A crypto wallet maker’s warning about an iMessage bug sounds like a false alarm
A crypto wallet maker claimed this week that hackers may be targeting people with an iMessage “zero-day” exploit — but all signs point to an exaggerated threat, if not a downright scam. Trust Wallet’s official X (previously Twitter) account wrote…
Evolution Equity Partners raises $1.1B for new cybersecurity and AI fund
Evolution Equity Partners, a growth capital firm based in NYC, has raised $1.1 billion for a new cyber- and AI-focused fund. © 2024 TechCrunch. All rights reserved. For personal use only. This article has been indexed from Security News |…
Omni Hotels says customers’ personal data stolen in ransomware attack
A ransomware gang called Daixin has taken credit for the breach, and claimed to steal millions of customer records dating back to 2017. © 2024 TechCrunch. All rights reserved. For personal use only. This article has been indexed from Security…
Change Healthcare stolen patient data leaked by ransomware gang
This is the second group to demand a ransom payment from Change Healthcare to prevent the release of stolen patient data in as many months. © 2024 TechCrunch. All rights reserved. For personal use only. This article has been indexed…
A ransomware gang is leaking Change Healthcare’s stolen patient data
This is the second group to demand a ransom payment from Change Healthcare to prevent the release of stolen patient data in as many months. © 2024 TechCrunch. All rights reserved. For personal use only. This article has been indexed…
Government spyware is another reason to use an ad blocker
Spyware makers are reportedly working on targeting individuals with stealthy data-stealing malware using online banner ads. © 2024 TechCrunch. All rights reserved. For personal use only. This article has been indexed from Security News | TechCrunch Read the original article:…
Security engineer jailed for 3 years for $12M crypto hacks
Shakeeb Ahmed, a cybersecurity engineer convicted of stealing around $12 million in crypto, was sentenced on Friday to three years in prison. In a press release, the U.S. Attorney for the Southern District of New York announced the sentence. Ahmed…
Roku says 576,000 user accounts hacked after second security incident
Roku said it discovered malicious hackers compromised more than half a million user accounts while investigating an earlier spate of account hacks. © 2024 TechCrunch. All rights reserved. For personal use only. This article has been indexed from Security News…
How Ukraine’s cyber police fights back against Russia’s hackers
On February 24, 2022, Russian forces invaded Ukraine. Since then, life in the country has changed for everyone. For the Ukrainian forces who had to defend their country, for the regular citizens who had to withstand invading forces and constant…
US think tank Heritage Foundation hit by cyberattack
Founded in 1973, the Washington DC-based Heritage Foundation and supports and lobbies on conservative issues. © 2024 TechCrunch. All rights reserved. For personal use only. This article has been indexed from Security News | TechCrunch Read the original article: US…
US says Russian hackers stole federal government emails during Microsoft cyberattack
CISA said the latest theft of government email — blamed on Russian government hackers — presents “a grave and unacceptable risk” to U.S. federal agencies. © 2024 TechCrunch. All rights reserved. For personal use only. This article has been indexed…
US government urges Sisense customers to reset credentials after hack
The U.S. government’s cybersecurity agency said it was responding to a “recent compromise” of the data analytics giant, which provides business intelligence to critical infrastructure. © 2024 TechCrunch. All rights reserved. For personal use only. This article has been indexed…
Meta will auto-blur nudity in Instagram DMs in latest teen safety step
Meta has announced it’s testing new features on Instagram intended to help safeguard young people from unwanted nudity or sextortion scams. This includes a feature called Nudity Protection in DMs, which automatically blurs images detected as containing nudity. The tech…
Simbian brings AI to existing security tools
Simbian is a cybersecurity platform that effectively controls other cybersecurity platforms as well as security apps and tooling. © 2024 TechCrunch. All rights reserved. For personal use only. This article has been indexed from Security News | TechCrunch Read the…
Apple alerts users in 92 nations to mercenary spyware attacks
Apple sent threat notifications to iPhone users in 92 countries on Wednesday, warning them that may have been targeted by mercenary spyware attacks. The company sent the alerts to individuals in 92 nations at 12pm Pacific Time Wednesday. It did…
Apple alerts users in 92 nations to mercenary attacks in new warning
Apple sent threat notifications to iPhone users in 92 countries on Wednesday, warning them that may have been targeted by mercenary spyware attacks. The company sent the alerts to individuals in 92 nations at 12pm Pacific Time on Wednesday. The iPhone-maker…
AT&T notifies regulators after customer data breach
The legally required disclosure came a week after AT&T confirmed a cache containing millions of customers’ data that leaked online was genuine. © 2024 TechCrunch. All rights reserved. For personal use only. This article has been indexed from Security News…
Proton picks up Standard Notes to deepen its pro-privacy portfolio
By adding Standard Notes to its portfolio of apps, Proton will deepen its reach with an engaged community of pro-privacy users. © 2024 TechCrunch. All rights reserved. For personal use only. This article has been indexed from Security News |…
Microsoft employees exposed internal passwords in security lapse
X adds support for passkeys globally on iOS
Ransomware gang’s new extortion trick? Calling the front desk
Google injects generative AI into its cloud security tools
Chrome Enterprise goes Premium with new security and management features
AI data security startup Cyera confirms $300M raise at a $1.4B valuation
Sprinto raises $20M to bring automation to security compliance management
Targus says cyberattack is causing operational outage
Targus says cyberattack causing operational outage
Hackers stole 340,000 Social Security numbers from government consulting firm
Indian audio giant BoAt says it’s investigating suspected customer data breach
Price of zero-day exploits rises as companies harden products against hackers
Indian government’s cloud spilled citizens’ personal data online for years
The Indian government has finally resolved a years-long cybersecurity issue that exposed reams of sensitive data about its citizens. A security researcher exclusively told TechCrunch he found at least hundreds of documents containing citizens’ personal information — including Aadhaar numbers,…
Open source foundations unite on common standards for EU’s Cyber Resilience Act
Seven open source foundations are coming together to create common specifications and standards for Europe’s Cyber Resilience Act (CRA), regulation adopted by the European Parliament last month. The Apache Software Foundation, Blender Foundation, Eclipse Foundation, OpenSSL Software Foundation, PHP Foundation, Python…
Rubrik’s IPO filing hints at thawing public markets for tech companies
Rubrik initially presents as a moderately growing software business with net losses that stretched to $354 million in its most recent fiscal year. © 2024 TechCrunch. All rights reserved. For personal use only. This article has been indexed from Security…
Open source foundations unite on common standards for EU’s Cybersecurity Resilience Act
Seven open source foundations are coming together to create common specifications and standards for Europe’s Cyber Resilience Act (CRA), regulation adopted by the European Parliament last month. The Apache Software Foundation, Blender Foundation, Eclipse Foundation, OpenSSL Software Foundation, PHP Foundation, Python…
TechCrunch Minute: AT&T data breach prompts millions of passcodes to be reset
Death, taxes, and regular, terrifying cybersecurity leaks. Those are the facts of life, as the latest AT&T data breach is teaching us yet again. A TechCrunch investigation into leaked customer data from the American telco giant has led to AT&T…
‘Reverse’ searches: The sneaky ways that police tap tech companies for your private data
Reverse searches cast a digital dragnet over a tech company’s store of user data to catch the information that police are looking for. © 2024 TechCrunch. All rights reserved. For personal use only. This article has been indexed from Security…
AT&T resets account passcodes after millions of customer records leak online
Security researcher told TechCrunch that leaked AT&T customer data contained encrypted account passcodes that can be easily unscrambled. © 2024 TechCrunch. All rights reserved. For personal use only. This article has been indexed from Security News | TechCrunch Read the…
Activision investigating password-stealing malware targeting game players
Video game giant Activision is investigating a hacking campaign that’s targeting players with the goal of stealing their credentials, TechCrunch has learned. At this point, the hackers’ specific goals — apart from stealing passwords for various types of accounts —…
US offers $10M to help catch Change Healthcare hackers
The government’s reward for information now extends to ALPHV’s affiliates, which claimed responsibility for a massive weeks-long healthcare cyberattack. © 2024 TechCrunch. All rights reserved. For personal use only. This article has been indexed from Security News | TechCrunch Read…
Coro, building cybersecurity for SMBs, locks down $100M at a $750M valuation
Enterprises and other large organizations have long been a lucrative and obvious target for cybercriminals, but in recent years — thanks to more sophisticated breach techniques and the rise of AI — small and medium businesses are now also very…
StealthMole raises $7M Series A for its AI-powered dark web intelligence platform
StealthMole, an AI-powered dark web intelligence startup that specializes in monitoring cyber threats and detecting cybercrime, announced Thursday that it has raised a $7 million Series A funding round. The Singapore-headquartered startup with an R&D office in South Korea will…
Facebook snooped on users’ Snapchat traffic in secret project, documents reveal
In 2016, Facebook launched a secret project designed to intercept and decrypt the network traffic between people using Snapchat’s app and its servers. The goal was to understand users’ behavior and help Facebook compete with Snapchat, according to newly unsealed…
AI is a data problem — Cyera is raising up to $300M on a $1.5B valuation to secure it
A cybersecurity startup called Cyera is betting that the next big challenge in enterprise data protection will be AI, and it’s raising a big round of funding as demand picks up for it. The company — which builds AI-enhanced tools…
AI is a data problem. Cyera is raising up to $300M on a $1.5B valuation to secure it
A cybersecurity startup called Cyera is betting that the next big challenge in enterprise data protection will be AI, and it’s raising a big round of funding as demand picks up for it. The company — which builds AI-enhanced tools…
AI is a data problem. Now Cyera is raising up to $300M on a $1.5B valuation to secure it
A cybersecurity startup called Cyera is betting that the next big challenge in enterprise data protection will be AI, and it’s raising a big round of funding as demand picks up for it. The company — which builds AI-enhanced tools…
AI is a data problem. Now Cyera is raising up to $300M on a $1.5B valuation, to secure it
A cybersecurity startup called Cyera is betting that the next big challenge in enterprise data protection will be AI, and it’s raising a big round of funding as demand picks up for it. The company — which builds AI-enhanced tools…
UK blames China for massive breach of voter data
It’s the first time the United Kingdom has attributed the massive breach of millions of citizens’ voter data since the cyberattack was first disclosed in 2023. © 2024 TechCrunch. All rights reserved. For personal use only. This article has been…
AT&T won’t say how its customers’ data spilled online
Customers say leaked AT&T customer data — names, addresses, phone numbers and Social Security numbers — is accurate. © 2024 TechCrunch. All rights reserved. For personal use only. This article has been indexed from Security News | TechCrunch Read the…
Investors’ pledge to fight spyware undercut by past investments in US malware maker
On Monday, the Biden administration announced that six new countries had joined an international coalition to fight the proliferation of commercial spyware, sold by companies such as NSO Group or Intellexa. Now, some investors have announced that they too are…
DOJ calls Apple’s privacy justifications an ‘elastic shield’ for financial gains
The U.S. Department of Justice sued Apple Thursday over monopolistic practices. The complaint accuses Apple of moulding its privacy and security practices in ways that benefits the company financially. One quote particularly jumps out where the DOJ calls Apple’s privacy…
DOT to investigate data security and privacy practices of top US airlines
The U.S. Department of Transportation announced its first industry-wide review of data security and privacy policies across the largest U.S. airlines. The DOT said in a press release Thursday that the review will examine whether U.S. airline giants are properly…
Users say Glassdoor added real names to user profiles without their consent
One user said Glassdoor pulled her full name from an email and added it to her profile. Another user said it wasn’t clear how Glassdoor got his data. © 2024 TechCrunch. All rights reserved. For personal use only. This article…
GitHub’s latest AI tool can automatically fix code vulnerabilities
It’s a bad day for bugs. Earlier today, Sentry announced its AI Autofix feature for debugging production code and now, a few hours later, GitHub is launching the first beta of its code scanning autofix feature for finding and fixing…
Apex Legends hacker said he hacked tournament games ‘for fun’
On Sunday, the world of video games was shaken by a hacking and cheating scandal. During a competitive esports tournament of Apex Legends, a free-to-play shooter video game played by hundreds of thousands of players daily, hackers appeared to insert…
GitHub’s latest AI tool that can automatically fix code vulnerabilities
It’s a bad day for bugs. Earlier today, Sentry announced its AI Autofix feature for debugging production code and now, a few hours later, GitHub is launching the first beta of its code scanning autofix feature for finding and fixing…