data security

23andMe data theft prompts DNA testing companies to switch on 2FA by default

DNA testing and genealogy companies are stepping up user account security by mandating the use of two-factor authentication, following the theft of millions of user records from DNA genetic testing gi

Indian state government fixes website bug that revealed Aadhaar numbers and fingerprints

A security researcher says a bug on an Indian state government website inadvertently revealed documents containing residents’ Aadhaar numbers, identity cards and copies of their fingerprints. Th

India’s national logistics portal exposed sensitive personal data, trade records

India’s state-owned logistics portal has fixed misconfigurations and vulnerabilities that exposed sensitive personal data and various state and private trade records. Called the National Logisti

Security researcher warns of chilling effect after feds search phone at airport

A U.S. security researcher is warning of a chilling effect after he was detained on arrival at a U.S. airport, his phone was searched and he was ordered to testify to a grand jury, only to have prosec

With Beijing’s green light, mobility unicorns Zeekr and WeRide inch closer to US IPOs

Six months ago, China’s securities authority announced a set of new rules to facilitate overseas IPOs of Chinese companies, allowing Beijing to tighten its grip on businesses seeking to sell sha

Symmetry raises $18M to bolster organizations’ data security programs

As organizations embrace cloud services — and are forced to confront changing regulations and data use standards — their ability to maintain control of data security frequently becomes str

Israel cybersecurity agency says no breach after senior official self-infects home PC with malware

Israel’s National Cybersecurity Directorate said there was “no breach” of its network after passwords belonging to a senior agency official were stolen from their home computer earli

Bangladesh government takes down exposed citizens’ data

The Bangladeshi government on Sunday took down citizens’ sensitive data that it had left exposed online. On Friday, TechCrunch reported that a website belonging to the government of Bangladesh was l

US Patent and Trademark Office notifies filers of years-long data leak

The federal government agency responsible for granting patents and trademarks has confirmed it inadvertently exposed about 61,000 filers’ private addresses in a years-long data spill. The U.S. P

Ransomware gang lists first victims of MOVEit mass-hacks, including US banks and universities

Clop, the ransomware gang responsible for exploiting a critical security vulnerability in a popular corporate file transfer tool, has begun listing victims of the mass-hacks, including a number of U.S

Shell Recharge security lapse exposed EV drivers’ data

Oil giant Shell said it is investigating after a security researcher found an exposed internal database spilling the personal information of drivers who use the company’s electric vehicle chargi

Toyota confirms another years-long data leak, this time exposing at least 260,000 car owners

Two weeks ago, Toyota said it exposed the data of more than two million customers to the internet for a decade. Today, the automotive giant said it recently discovered the data of another 260,000 car

Apple releases first ‘rapid’ security fixes for iPhones, iPads and Macs

Apple on Monday released its first batch of publicly available “rapid security” patches, aimed at quickly fixing security vulnerabilities that are under active exploitation or pose signifi

Throne fixes security bug that exposed creators’ private home addresses

A recently fixed security bug at a popular platform for supporting creators shows how even privacy-focused platforms can put creators’ private information at risk. Throne, founded in 2021, bills

Kids tech camp iD Tech still silent weeks after data breach

Parents are still looking for answers weeks after hackers stole the personal data of thousands of users from kids’ tech coding camp iD Tech, with some fearing that their children’s data wa

Telehealth startup Cerebral shared millions of patients’ data with advertisers

Cerebral has revealed it shared the private health information, including mental health assessments, of more than 3.1 million patients in the United States with advertisers and social media giants lik

Indian startup Yes Madam exposed sensitive data of customers and gig workers

Indian at-home salon platform Yes Madam exposed the sensitive data of its customers and gig workers due to a server-side misconfiguration. Noida-based Yes Madam operates in more than 30 cities in the

A network of knockoff apparel stores exposed 330,000 customer credit cards

If you recently made a purchase from an overseas online store selling knockoff clothes and goods, there’s a chance your credit card number and personal information were exposed. Since January 6,

Top 3 riskiest misconfigurations on the Salesforce platform

Point-and-click security settings on low- or no-code platforms can be extremely powerful, but with great power comes great responsibility.

AstraZeneca password lapse exposed patient data

Pharmaceutical giant AstraZeneca has blamed “user error” for leaving a list of credentials online for more than a year that exposed access to sensitive patient data. Mossab Hussein, chief
Load More