computer security | TechCrunch

What the CHIPS and Science Act means for the future of the semiconductor industry

Sep 22, 2022 Simon Butler

A look at how the CHIPS Act and Executive Order 14028 relate, what they mean for semiconductor firms and why the highs and lows of American semiconductor manufacturing boil down to one thing: Security

Microsoft patches a new zero-day affecting all versions of Windows

Sep 14, 2022 Carly Page

Microsoft has released security fixes for a zero-day vulnerability affecting all supported versions of Windows that has been exploited in real-world attacks. The zero-day bug, tracked as CVE-2022-3796

Dope Security emerges from stealth to shake up the SWG market

Sep 14, 2022 Carly Page

San Francisco-based cybersecurity startup Dope Security has launched from stealth with $4 million in funding to modernize the secure web gateway market. A secure web gateway, or SWG, is a network secu

Cyrebro, a specialist in cloud-based security ops centers, locks down $40M

Sep 14, 2022 Ingrid Lunden

The cloud, and the growing number of assets that are held and used within cloud services, have become a major focus in cybersecurity over the years. Today, a startup that’s leveraging the cloud

What we learned when Twitter whistleblower Mudge testified to Congress

Sep 13, 2022 Zack Whittaker

A ticking bomb of security vulnerabilities. Covering up security failures. Duping regulators and misleading lawmakers. These are just some of the allegations when Twitter’s ex-security lead turn

Apple releases iOS and macOS fixes to patch a new zero-day under attack

Sep 13, 2022 Carly Page

Apple has released another round of security updates to address vulnerabilities in iOS and macOS, including a new zero-day flaw that is being actively exploited by attackers. The zero-day flaw, track

North Korea’s Lazarus hackers are exploiting Log4j flaw to hack US energy companies

Sep 08, 2022 Carly Page

Security researchers have linked a new cyber espionage campaign targeting U.S., Canadian and Japanese energy providers to the North Korean state-sponsored Lazarus hacking group. Threat intelligence co

Cymulate snaps up $70M to help cybersecurity teams stress test their networks with attack simulations

Sep 06, 2022 Ingrid Lunden

The cost of cybercrime has been growing at an alarming rate of 15% per year, projected to reach $10.5 trillion by 2025. To cope with the challenges that this poses, organizations are turning to a grow

Samsung says customer data stolen in July data breach

Sep 02, 2022 Zack Whittaker, Carly Page

Electronics giant Samsung has confirmed a data breach affecting customers’ personal information. In a brief notice, Samsung said it discovered the security incident in late-July and that an &#82

US issues rare security alert as Montenegro battles ongoing ransomware attack

Aug 31, 2022 Carly Page

The U.S. Embassy in Montenegro has warned Americans that an ongoing ransomware attack in the country could cause widespread disruption to key public services and government services. The ransomware at

UK mobile and broadband carriers face fines of $117K/day, or 10% of sales, if they fail to follow new cybersecurity rules

Aug 30, 2022 Ingrid Lunden

More than three years in the making, the U.K. government today announced a new, sweeping set of rules it will be imposing on broadband and mobile carriers to tighten up their network security against

Twilio says breach also compromised Authy two-factor app users

Aug 26, 2022 Carly Page

U.S. messaging giant Twilio has confirmed hackers also compromised the accounts of some Authy users as part of a wider breach of Twilio’s systems. Authy is Twilio’s two-factor authentication (

Twilio hackers breached over 130 organizations during months-long hacking spree

Aug 25, 2022 Carly Page

The hackers that breached Twilio earlier this month also compromised more than 130 organizations during their hacking spree that netted the credentials of close to 10,000 employees. Twilio’s rec

Twitter faces privacy scrutiny from EU watchdogs after Mudge report

Aug 24, 2022 Natasha Lomas

The explosive Twitter whistleblower complaint that was made public yesterday — detailing a raft of damning allegations across security, privacy and data protection issues (among others) by Twitt

Plex warns users to reset passwords after data breach

Aug 24, 2022 Zack Whittaker

Streaming media platform Plex has confirmed a data breach and is warning users to change their passwords. Plex said it discovered the compromise on Tuesday and found the intruder had accessed “a

Twitter whistleblower says platform was unable to guard against insider threats on January 6

Aug 23, 2022 Sarah Perez

Among the many damning allegations in the newly released Twitter whistleblower complaint, is the disquieting revelation that Twitter was unable to seal its production environment to guard against any

Ex-security chief accuses Twitter of cybersecurity mismanagement in an explosive whistleblower complaint

Aug 23, 2022 Carly Page

Twitter’s former head of security, Peiter “Mudge” Zatko, has accused his former employer of cybersecurity negligence in an explosive whistleblower complaint first obtained by CNN and The Washing

LockBit ransomware group downed by DDoS after claiming Entrust breach

Aug 22, 2022 Carly Page

The LockBit ransomware gang is claiming responsibility for the July cyberattack against cybersecurity giant Entrust, but with a twist — the group is also accusing its latest victim of a counterattac

What you might have missed at Black Hat and Def Con 2022

Aug 15, 2022 Carly Page

Hackers, researchers, cybersecurity companies and government officials descended on Las Vegas last week for Black Hat and Def Con, a cybersecurity double-bill that’s collectively referred to as “h

US unmasks alleged Conti ransomware operative, offers $10M for intel

Aug 12, 2022 Carly Page

The U.S. government said it will offer up to $10 million for information related to five people believed to be high-ranking members of the notorious Russia-backed Conti ransomware gang. The reward is