Carly Page
Reporter, Cybersecurity
The Latest from Carly Page
Legal powerhouse Proskauer exposed clients’ confidential M&A data
A security lapse saw Proskauer Rose, an international law firm headquartered in New York City, expose sensitive client data for more than six months, TechCrunch has learned. A person with knowledge of
FBI seizes Genesis Market, a notorious hacker marketplace for stolen logins
U.S. and international law enforcement agencies have seized Genesis Market, a notorious hacker marketplace used to acquire compromised credentials and digital browser fingerprints. The FBI announced t
Western Digital says hackers stole data in ‘network security’ breach
Data storage giant Western Digital has confirmed that hackers exfiltrated data from its systems during a “network security incident” last week. The California-based company said in a state
There’s a new supply chain attack targeting customers of a phone system with 12 million users
Multiple security firms have sounded the alarm about an active supply chain attack that’s using a trojanized version of 3CX’s widely used voice and video-calling client to target downstream cu
Silence gets you nowhere in a data breach
An important lesson in how not to respond to a breach, courtesy of LastPass and Fortra.
Hackers used spyware made in Spain to target users in the UAE, Google says
In November 2022, Google revealed the existence of a then-unknown spyware vendor called Variston. Now, Google researchers say they have seen hackers use Variston’s tools in the United Arab Emirates.
Children’s data feared stolen in Fortra ransomware attack
The fallout from Fortra’s mass ransomware attack continues to widen as the hackers claim a new victim: a children’s virtual mental health care startup. In a data breach disclosure filed with t
Fortra told breached companies their data was safe
Software maker Fortra told its corporate customers that their data was safe — even when it wasn’t — following a ransomware attack on its systems, TechCrunch has learned. As we have been repo
New victims come forward after mass-ransomware attack
The number of victims affected by a mass-ransomware attack, caused by a bug in a popular data transfer tool used by businesses around the world, continues to grow as another organization tells TechCru
Ferrari says ransomware attack exposed customers’ personal data
Italian supercar manufacturer Ferrari said customers’ personal information was compromised in a ransomware attack.
Nation state hackers exploited years-old bug to breach a US federal agency
The U.S. government has warned that multiple cybercriminal gangs, including a nation state-backed hacking group, exploited a four-year-old software vulnerability in order to compromise a U.S. federal
Dish customers kept in the dark as ransomware fallout continues
Dish customers are still looking for answers two weeks after the U.S. satellite television giant was hit by a ransomware attack. In a public filing published on February 28, Dish confirmed that ransom
Security giant Rubrik says hackers used Fortra zero-day to steal internal data
Silicon Valley–based data security company Rubrik has come forward as the latest victim of the Fortra GoAnywhere zero-day vulnerability, which has been linked to hacks targeting a hospital chain and
Ring won’t say if it was hacked after ransomware gang claims attack
A notorious ransomware gang is threatening to leak data allegedly involving Amazon-owned video surveillance company Ring. On Monday, the ransomware group ALPHV listed the video doorbell maker Ring as
Web of lies: Web3 isn’t the security fix-all you think it is
Web3 promises greater resilience and security than Web 2.0, but it’s already creating a new playground for opportunistic cybercriminals.
SEC charges Blackbaud for failing to disclose ‘full impact’ of ransomware attack
Software house Blackbaud has agreed to pay $3 million to settle charges related to a May 2020 ransomware attack that exposed customers’ bank account data, the U.S Security and Exchange Commission sa
Twitter’s privacy-preserving Tor service goes dark
Twitter’s Tor service, a version of the site that could be accessed even in countries where the social network is banned, has gone dark after the company failed to renew its certificate. The certifi
Police arrest suspected members of prolific DoppelPaymer ransomware gang
An international law enforcement operation has led to the arrests of suspected core members of the prolific DoppelPaymer ransomware operation. German and Ukrainian police, working with law enforcement
US government warns Royal ransomware is targeting critical infrastructure
The U.S. government is sounding the alarm about the Royal ransomware operation, which it says has targeted numerous critical infrastructure sectors across the United States. In a joint advisory releas
Hatch Bank says hackers used Fortra bug to steal 140,000 customer Social Security numbers
Hatch Bank, a digital-first bank that provides infrastructure for fintech companies offering their own brand credit cards, confirmed hackers exploited a zero-day vulnerability in the company’s i