Tag: Security News | TechCrunch

North Korean state-backed hackers are distributing a malicious version of a legitimate application developed by CyberLink, a Taiwanese software maker, to target downstream customers. Microsoft’s Threat Intelligence team said on Wednesday North Korean hackers had compromised CyberLink to distribute a…

Read more →

Fidelity National Financial, or FNF, a Fortune 500 company that provides title insurance and settlement services for the mortgage and real estate industries, announced on Tuesday that it was the victim of a “cybersecurity incident that impacted certain FNF systems..”…

Read more →

While many employers emphasize problem-solving skills in job descriptions, the ability to think outside the box is imperative in cybersecurity. © 2023 TechCrunch. All rights reserved. For personal use only. This article has been indexed from Security News | TechCrunch…

Read more →

On October 7, Hamas launched an unprecedented terrorist attack on Israel, killing more than 1,200 people with hundreds taken hostage. The attack prompted a deadly response from the Israel Defense Forces, which has reportedly left more than 10,000 people dead…

Read more →

The Ukrainian government has fired two of its most senior cybersecurity officials following accusations of alleged embezzlement. Yurii Shchyhol, head of Ukraine’s Ukraine’s State Special Communications Service of Ukraine, or SSSCIP, and his deputy Victor Zhora (pictured), who served as…

Read more →

The British Library, the national library of the United Kingdom and one of the world’s largest libraries, has confirmed that a ransomware attack led to the theft of internal data. In late October, the British Library first disclosed it was…

Read more →

Hackers accessed the personal data of more than a million people by exploiting a security vulnerability in a file transfer tool used by Welltok, the healthcare platform owned by Virgin Pulse. Welltok, a Denver-based patient engagement company that works with…

Read more →

More than two million people across the United States will receive notice that their personal and sensitive health information was stolen earlier this year during a cyberattack at Postmeds, the parent company of online pharmacy startup Truepill. For some of…

Read more →

Ballistic Ventures, a venture capital firm dedicated to funding and incubating cybersecurity startups, is looking to raise as much as $300 million for a new fund, according to a regulatory filing. The San Francisco-based VC firm Wednesday filed with the…

Read more →

In May this year, Alexis Hancock’s daughter got a children’s tablet for her birthday. Being a security researcher, Hancock was immediately worried. “I looked at it kind of sideways because I’ve never heard of Dragon Touch,” Hancock told TechCrunch, referring…

Read more →

Samsung has admitted that hackers accessed the personal data of U.K.-based customers during a year-long breach of its systems. In a statement to TechCrunch, Samsung spokesperson Chelsea Simpson, representing the company via a third-party agency, said Samsung was “recently alerted…

Read more →

Close to nine million patients had highly sensitive personal and health information stolen during a cyberattack on a U.S. medical transcription service earlier this year, representing one of the worst medical related data breaches in recent times. The medical transcription…

Read more →

The U.S. government says Royal, one of the most active ransomware gangs in recent years, is preparing to rebrand or spinoff with a new name, Blacksuit. In an update this week to a previously published joint advisory about the Royal…

Read more →

In an acknowledgement that cracking the home robotics market is hard, Amazon is bringing its Astro robot to a decidedly more corporate audience. The company today announced Astro for Business, which repurposes Astro as a security robot for small- and…

Read more →

Truepill, a digital health startup that provides pharmacy fulfillment services for healthcare organizations, has confirmed that hackers accessed the personal data of more than 2.3 million patients. In a data breach notice published on its website, the company says Postmeds,…

Read more →

Security researchers say hackers are mass-exploiting a critical-rated vulnerability in Citrix NetScaler systems to launch crippling cyberattacks against big-name organizations worldwide. These cyberattacks have so far included aerospace giant Boeing; the world’s biggest bank, ICBC; one of the world’s largest…

Read more →

Michigan-based McLaren Health Care has confirmed that the sensitive personal and health information of 2.2 million patients was compromised during a cyberattack earlier this year. A ransomware gang later took credit for the cyberattack. In a new data breach notice…

Read more →

The government of Maine has confirmed over a million individuals had personal information stolen in a data breach earlier this year by a Russia-linked ransomware gang. In a statement published Thursday, the Maine government said hackers exploited a vulnerability in…

Read more →

The government of Maine has confirmed over a million state residents had personal information stolen in a data breach earlier this year by a Russia-backed ransomware gang. In a statement published Thursday, the Maine government said hackers exploited a vulnerability…

Read more →

Mr. Cooper, the mortgage and loan giant with more than four million customers, has confirmed customer data was compromised during a recent cyberattack. In an updated notice on its website published Thursday, Mr. Cooper said that it was “still investigating…

Read more →

Software maker SysAid is warning customers that hackers linked to a notorious ransomware gang are exploiting a newly discovered vulnerability in its widely used IT service automation software. SysAid chief technology officer Sasha Shapirov confirmed in a blog post Wednesday…

Read more →

End-to-end encrypted messaging app, Signal, is getting closer to launching a much anticipated feature that will allow users to share only a username in order to connect with other users, rather than having to reveal the phone number linked to…

Read more →

OpenAI has confirmed that a DDoS (distributed denial-of-service) attack is behind “periodic outages” affecting ChatGPT and its developer tools. ChatGPT, OpenAI’s AI-powered chatbot, has been experiencing sporadic outages for the past 24 hours. Users who attempted to access the service…

Read more →

The UK’s newly empowered Internet content regulator has published the first set of draft Codes of Practice under the Online Safety Act (OSA) which became law late last month. More codes will follow but this first set — which is focused…

Read more →

Sumo Logic, a U.S.-based cloud data analytics and log analysis company, is urging users to reset API keys after discovering a security breach. In a security notice published this week, Sumo Logic confirmed it had discovered evidence of a potential…

Read more →

The App Defense Alliance (ADA), an initiative set up by Google back in 2019 to combat malicious Android apps infiltrating the Play app store, has joined the Joint Development Foundation (JDF), a Linux Foundation project focused on helping organizations working…

Read more →

DNA testing and genealogy companies are stepping up user account security by mandating the use of two-factor authentication, following the theft of millions of user records from DNA genetic testing giant 23andMe. Ancestry, MyHeritage, and 23andMe have begun notifying customers…

Read more →

U.S.-based cybersecurity giant Malwarebytes today launched ThreatDown, a new brand that encompasses its business software portfolio and B2B-focused unit, the company confirmed to TechCrunch. Earlier this year, Malwarebytes let go of approximately 100 employees as part of a wider plan to…

Read more →

A security researcher said he discovered millions of Chinese citizen identity numbers spilling online after an e-commerce store left its database exposed to the internet. Viktor Markopoulos, a security researcher working for CloudDefense.ai, said he found the database belonging to…

Read more →

The U.S. government has sanctioned a Russian national for allegedly laundering millions of dollars worth of victim ransom payments on behalf of individuals linked to the notorious Ryuk ransomware group. According to an announcement from the U.S. Treasury’s Office of…

Read more →

Palo Alto Networks has just confirmed one more major piece of security startup M&A out of Israel: it has acquired Talon Cyber Security, a specialist in building enterprise browsers for securing distributed workforces sources. Source say the deal is valued…

Read more →

Android’s in-built security engine Google Play Protect has a new feature that conducts a real-time analysis of an Android app’s code and blocks it from installing the app if it’s considered potentially harmful. Google announced in October the new real-time…

Read more →

Your favorite messaging and calling app could reveal your IP address to the person on the other end of a call. And that, essentially, is because most chat apps default to using peer-to-peer connections — meaning you and the person…

Read more →

Mortgage and loan giant Mr. Cooper says a “cybersecurity incident” earlier this week was the cause of an ongoing outage, adding that the company is “working to resolve the issue.” The Texas-based company said in a statement on its website that…

Read more →

Earlier this year, the U.S. government imposed sanctions against Russian national Mikhail Matveev, an FBI most-wanted cybercriminal, who authorities accuse of being a “prolific ransomware affiliate” involved in cyberattacks in the United States and overseas. Authorities say Matveev played a…

Read more →

Aerospace giant Boeing has confirmed that it is dealing with a “cyber incident,” days after the company was listed on the leak site of the LockBit ransomware gang. In a statement given to TechCrunch, Boeing spokesperson Jim Prolux confirmed that…

Read more →

Generative AI is pervading just about every industry already, whether we like it or not, and cybersecurity is no exception. The possibility of AI-accelerated malware development and autonomous attacks should alarm any sysadmin even at this early stage. Wraithwatch is…

Read more →

While the number of cybersecurity funding deals reached a high point in 2022, that doesn’t mean that the sector’s tapped out — far from it. According to Statista, there were 148 deals in Q2 2023 worth a combined $1.6 billion.…

Read more →

Two U.S. lawmakers have asked retail giant Costco why it continues to sell surveillance equipment made by Lorex, despite warnings of cybersecurity risks and links to human rights abuses. The bipartisan letter dated October 31, sent by Rep. Christopher Smith…

Read more →

Australian software giant Atlassian has warned of a critical security flaw that could lead to “significant data loss” for customers, just weeks after state-backed hackers targeted its products. In an advisory this week, the company urged customers to patch against…

Read more →

In just a few weeks, Group-IB will be celebrating its twentieth birthday. It’s a momentous occasion for the controversy-marred threat intelligence company, which helps organizations and governments investigate cyberattacks and online fraud. And Group-IB is planning to celebrate in style.…

Read more →

Security researchers say they have observed what they believe is a takedown of the notorious Mozi botnet that infiltrated more than a million Internet of Things devices worldwide. In research shared with TechCrunch ahead of publication on Tuesday, researchers at…

Read more →

The decline in VC funding for cybersecurity startups might finally be reversing course after months of discouraging trend lines. Recently, Crunchbase reported that cybersecurity startups raised nearly $1.9 billion through 153 deals in Q3 — a 12% increase from the…

Read more →

In September, MGM Resorts was hit by a devastating ransomware attack, downing operations at some of its most iconic casino hotels in Las Vegas, including the Bellagio, Mandalay Bay and the Cosmopolitan. Guests were forced to wait hours to check…

Read more →

The U.S. government and dozens of foreign allies have pledged never to pay ransom demands in a bid to discourage financially motivated hackers and ransomware gangs profiteering from cyberattacks. The joint pledge was announced during the third annual meeting of…

Read more →

The U.S. Securities and Exchange Commission has charged SolarWinds and its top cybersecurity executive Timothy Brown with fraud and internal control failures for allegedly misleading investors about the company’s cybersecurity practices prior to a cyberattack launched by Russian hackers in…

Read more →

We reported in September that Palo Alto was getting ready to make yet more security acquisitions out of Israel, specifically of Dig Security and Talon. Today, some confirmation of one of those has arrived: the U.S. security giant said it…

Read more →

Apple has warned over a half dozen Indian politicians, other members of political parties and journalists of their iPhones being targets of state-sponsored attacks, these people said Tuesday, in a remarkable turn of events and charges just months before the…

Read more →

Apple has warned at least six Indian politicians and other members of political parties and one journalist of their iPhones being targets of state-sponsored attacks, these people said Tuesday. Shashi Tharoor of the opposition Congress party, Mahua Moitra, a national…

Read more →

After a weekend of almost complete internet blackout, connectivity in Gaza has been partially restored. On Friday, internet monitoring firms and experts reported that access to the internet had significantly degraded in the Palestinian enclave. The local internet service NetStream…

Read more →

The maker of the popular optimization app CCleaner has confirmed hackers stole a trove of personal information about its paid customers following a data breach in May. In an email sent to customers, Gen Digital, the multinational software company that…

Read more →

Apple has fixed a years-old vulnerability in its iPhone and iPad software that undermined a privacy feature since it first debuted. Back in 2020, Apple announced a new feature in iOS 14 that would prevent nearby wireless routers and access…

Read more →

As the conflict between Israel and Hamas reaches its third week, internet connectivity in Gaza is getting worse. On Thursday, internet monitoring firm NetBlocks wrote on X, formerly Twitter, that the Palestinian internet service provider NetStream “has collapsed days after…

Read more →