Government spyware is another reason to use an ad blocker
Ad blockers might seem like an unlikely defense in the fight against spyware, but new reporting casts fresh light on how spyware makers are weaponizing online ads to allow governments…
API startup Noname Security nears $500M deal to sell itself to Akamai
Noname Security, a cybersecurity startup that protects APIs, is in advanced talks with Akamai Technologies to sell itself for $500 million, according to a person familiar with the deal. Noname…
Security engineer jailed for 3 years for $12M crypto hacks
Shakeeb Ahmed, a cybersecurity engineer convicted of stealing around $12 million in crypto, was sentenced on Friday to three years in prison. In a press release, the U.S. Attorney for…
Roku says 576,000 user accounts hacked after second security incident
Streaming giant Roku has confirmed a second security incident in as many months, with hackers this time able to compromise more than half a million Roku user accounts. In a…
How Ukraine’s cyber police fights back against Russia’s hackers
On February 24, 2022, Russian forces invaded Ukraine. Since then, life in the country has changed for everyone. For the Ukrainian forces who had to defend their country, for the…
US think tank Heritage Foundation hit by cyberattack
Conservative think tank The Heritage Foundation said on Friday that it experienced a cyberattack earlier this week. A person with knowledge of the cyberattack told TechCrunch that efforts at Heritage…
US says Russian hackers stole federal government emails during Microsoft cyberattack
U.S. Cybersecurity and Infrastructure Security Agency (CISA) has confirmed that Russian government-backed hackers stole emails from several U.S. federal agencies as a result of an ongoing cyberattack at Microsoft. In…
AT&T notifies regulators after customer data breach
AT&T has begun notifying U.S. state authorities and regulators of a security incident after confirming that millions of customer records posted online last month were authentic. In a legally required…
Microsoft employees exposed internal passwords in security lapse
Microsoft has resolved a security lapse that exposed internal company files and credentials to the open internet. Security researchers Can Yoleri, Murat Özfidan and Egemen Koçhisarlı with SOCRadar, a cybersecurity…
Ransomware gang’s new extortion trick? Calling the front desk
When a hacker called the company that his gang claimed to breach, he felt the same way that most of us feel when calling the front desk: frustrated. The phone…
Multiverse, the apprenticeship unicorn, acquires Searchlight to put a focus on AI
Multiverse, the U.K. unicorn that builds apprenticeship programs for people to learn technology skills while on the job, has made an acquisition as it aims to skill up itself. The…
Targus says cyberattack causing operational outage
Mobile gadget and bag maker Targus says it is experiencing a “temporary interruption” to its business operations following a cyberattack on Friday. In a notice with regulators on Monday, Targus’…
Now at the top of the App Store, The Eclipse App is a great companion for Monday’s solar eclipse
A well-designed app designed to optimize your viewing of the total solar eclipse on Tuesday has surged to the top of the App Store. With 140,000+ lifetime downloads across iOS…
Hackers stole 340,000 Social Security numbers from government consulting firm
U.S. consulting firm Greylock McKinnon Associates (GMA) disclosed a data breach in which hackers stole as many as 341,650 Social Security numbers. The data breach was disclosed on Friday on…
Price of zero-day exploits rises as companies harden products against hackers
Tools that allow government hackers to break into iPhones and Android phones, popular software like the Chrome and Safari browsers, and chat apps like WhatsApp and iMessage, are now worth…
Indian government’s cloud spilled citizens’ personal data online for years
The Indian government has finally resolved a years-long cybersecurity issue that exposed reams of sensitive data about its citizens. A security researcher exclusively told TechCrunch he found at least hundreds…
AT&T resets account passcodes after millions of customer records leak online
Phone giant AT&T has reset millions of customer account passcodes after a huge cache of data containing AT&T customer records was dumped online earlier this month, TechCrunch has exclusively learned.…
Activision investigating password-stealing malware targeting game players
Video game giant Activision is investigating a hacking campaign that’s targeting players with the goal of stealing their credentials, TechCrunch has learned. At this point, the hackers’ specific goals —…
US offers $10M to help catch Change Healthcare hackers
The U.S. government said it is extending its reward seeking information on key leadership of the ALPHV/BlackCat cybercrime gang to its affiliate members, one of which last month took credit…
Coro, building cybersecurity for SMBs, locks down $100M at a $750M valuation
Enterprises and other large organizations have long been a lucrative and obvious target for cybercriminals, but in recent years — thanks to more sophisticated breach techniques and the rise of…
StealthMole raises $7M Series A for its AI-powered dark web intelligence platform
StealthMole, an AI-powered dark web intelligence startup that specializes in monitoring cyber threats and detecting cybercrime, announced Thursday that it has raised a $7 million Series A funding round. The…
Facebook snooped on users’ Snapchat traffic in secret project, documents reveal
In 2016, Facebook launched a secret project designed to intercept and decrypt the network traffic between people using Snapchat’s app and its servers. The goal was to understand users’ behavior…
AI is a data problem. Now Cyera is raising up to $300M on a $1.5B valuation to secure it
A cybersecurity startup called Cyera is betting that the next big challenge in enterprise data protection will be AI, and it’s raising a big round of funding as demand picks…
UK blames China for massive breach of voter data
The U.K. government has blamed China for a 2021 cyberattack that compromised the personal information of millions of U.K. voters. In a statement to lawmakers in Parliament on Monday, U.K.…
AT&T won’t say how its customers’ data spilled online
Three years after a hacker first teased an alleged massive theft of AT&T customer data, a breach seller this week dumped the full dataset online. It contains the personal information…
Investors’ pledge to fight spyware undercut by past investments in US malware maker
On Monday, the Biden administration announced that six new countries had joined an international coalition to fight the proliferation of commercial spyware, sold by companies such as NSO Group or…
DOT to investigate data security and privacy practices of top US airlines
The U.S. Department of Transportation announced its first industry-wide review of data security and privacy policies across the largest U.S. airlines. The DOT said in a press release Thursday that…
Users say Glassdoor added real names to user profiles without their consent
Users of the popular site Glassdoor, which lets anyone anonymously sign up to review companies they have worked for, say Glassdoor collected and added their names to their user profiles…
Pokemon resets some users passwords after hacking attempts
The Pokemon Company said it detected hacking attempts against some of its users and reset those user account passwords. Last week, an alert was visible on Pokemon’s official support website,…
Mintlify says customer GitHub tokens exposed in data breach
Documentation startup Mintlify says dozens of customers had GitHub tokens exposed in a data breach at the start of the month and publicly disclosed last week. Mintlify helps developers create…
How to verify a data breach
Over the years TechCrunch has extensively covered data breaches. In fact, some of our most-read stories have come from reporting on huge data breaches, such as revealing shoddy security practices…
Zscaler buys Avalor to bring more AI into its security tools
Zscaler, a cloud security company with headquarters in San Jose, California, has acquired cybersecurity startup Avalor 26 months after its founding, reportedly for $310 million in cash and equity. In a…
A bug in an Irish government website that exposed COVID-19 vaccination records took two years to publicly disclose
The Irish government fixed a vulnerability two years ago in its national COVID-19 vaccination portal that exposed the vaccination records of around a million residents. But details of the vulnerability…
Four things we learned when US spy chiefs testified to Congress
Cyberattacks, regional conflict, weapons of mass destruction, terrorism, commercial spyware, AI, misinformation, disinformation, deepfakes and TikTok. These are just some of the top perceived threats that the United States faces,…
As Change Healthcare’s outage drags on, fears grow that patient data could be released
A cyberattack at U.S. health tech giant Change Healthcare has ground much of the U.S. healthcare system to a halt for the second week in a row. Hospitals have been…
X’s new calling feature hurts your privacy — here’s how to switch it off
In his quest to turn a simple and functioning Twitter app into X, the everything app that doesn’t do anything very well, Elon Musk launched audio and video calling on…
A leaky database spilled 2FA codes for the world’s tech giants
A technology company that routes millions of SMS text messages across the world has secured an exposed database that was spilling one-time security codes that may have granted users’ access…
A government watchdog hacked a US federal agency to stress-test its cloud security
A U.S. government watchdog stole more than one gigabyte of seemingly sensitive personal data from the cloud systems of the U.S. Department of the Interior. The good news: The data…
Popular video doorbells can be easily hijacked, researchers find
Several internet-connected doorbell cameras have a security flaw that allows hackers to take over the camera by just holding down a button, among other issues, according to research by Consumer…
Anycubic users say their 3D printers were hacked to warn of a security flaw
Image Credits: Anycubic Anycubic customers are reporting that their 3D printers have been hacked and now display a message warning of an alleged security flaw in the company’s systems. Numerous…