cybersecurity
Russian ‘WhisperGate’ hackers are using new data-stealing malware to target Ukraine
Security researchers say they have recently observed a Russian hacking crew who were behind the destructive WhisperGate malware cyberattacks, targeting Ukrainian entities with a new information-steali
‘Tracers in the Dark’ shows how cops go after crypto-criminals
“That was the only path through this darkness,” says U.S. prosecutor Zia Faruqui. “The darker the darknet gets, the way that you shine the light is following the money.” In “Tracers in t
TechCrunch+ roundup: Generative AI for proptech, cloud vendor shopping, cybersecurity fairy tales
Generative AI reminds me of ball bearings: the technology is relatively inexpensive, highly adaptable and a proven way to reduce friction.
Riot prepares your team against highly sophisticated cyberattacks
French startup Riot has raised a $12 million Series A round to iterate on its all-in-one cybersecurity awareness platform for businesses and their employees. The startup originally focused on fake phi
A new Linux variant of Clop ransomware has major flaws, researchers say
Security researchers have observed the prolific Clop ransomware operation targeting Linux systems for the first time. The good news is that the flawed encryption used by the new variant means it’
Cybersecurity teams, beware: The defender’s dilemma is a lie
The idea that attackers have all the advantages and that defenders must be passive and wait for something to respond to is practically an axiom of cybersecurity. It is also a lie.
Hackers exploiting two-year-old VMware flaw to launch large-scale ransomware campaign
Cybercriminals are actively exploiting a two-year-old VMware vulnerability as part of a ransomware campaign targeting thousands of organizations worldwide. Reports emerged over the weekend that VMware
New York attorney general orders stalkerware maker to notify hacked victims
A New York-based spyware maker has agreed to notify the individuals whose phones were compromised by its mobile surveillance software, following a deal with the New York attorney general’s offic
‘0ktapus’ hackers are back and targeting tech and gaming companies, says leaked report
The hackers who reportedly hit more than 130 organizations last year and stole the credentials of almost 10,000 employees are still targeting several tech and video game companies, according to a repo
Financial software firm Ion Group battles LockBit ransomware attack
Ion Group, a Dublin-based software company that helps financial institutions automate their critical business processes, has been hit by a ransomware attack that forced several European and U.S. banks
Google Fi hack victim had Coinbase, 2FA app hijacked by hackers
On January 1, a technologist who goes by the nickname regexer received an email saying he had successfully reset his account at the crypto exchange Coinbase. Unfortunately — and worryingly — he ha
FTC slaps $1.5M fine on GoodRx for sharing users’ health data with Facebook and Google
Online pharmacy GoodRx has agreed to pay $1.5 million in civil penalties for years of sharing the health information of consumers with third parties like Facebook, Google and Criteo for advertising pu
Russia is blocking encrypted email startup Skiff
The Russian government has blocked another encrypted email provider, according to a Russian digital rights organization and the email provider. Last Wednesday, Roskomsvoboda, which describes itself as
Hacker finds bug that allowed anyone to bypass Facebook 2FA
A bug in a new centralized system that Meta created for users to manage their logins for Facebook and Instagram could have allowed malicious hackers to switch off an account’s two-factor protect
How US police use digital data to prosecute abortions
In late April, police in Nebraska received a tip saying 17-year-old Celeste Burgess had given birth to a stillborn baby and buried the body. Officers soon learned that her mother, Jessica Burgess, and
US announces it seized Hive ransomware gang’s leak sites and decryption keys
The infrastructure behind Hive, one of the most prolific ransomware operations, has been seized by law enforcement agencies in the United States and Europe. Hive saw its dark web portal seized as part
US federal agencies hacked using legitimate remote desktop tools
The U.S. government’s cybersecurity agency has warned that criminal financially motivated hackers compromised federal agencies using legitimate remote desktop software. CISA said in a joint advisory
A network of knockoff apparel stores exposed 330,000 customer credit cards
If you recently made a purchase from an overseas online store selling knockoff clothes and goods, there’s a chance your credit card number and personal information were exposed. Since January 6,
Riot Games hack could help cheaters
Last week, the video game giant Riot Games revealed that hackers had compromised its “development environment” — where the company stores its source code — with a social engineering attack. Wh
LastPass owner GoTo says hackers stole customers’ backups
LastPass’ parent company GoTo — formerly LogMeIn — has confirmed that cybercriminals stole customers’ encrypted backups during a recent breach of its systems. The breach was first confirme