security

Equifax slapped with UK’s maximum penalty over 2017 data breach

Credit rating giant Equifax has been issued with the maximum possible penalty by the UK’s data protection agency for last year’s massive data breach. Albeit, the fine is only £500,000 bec

State Department confirms data breach exposed employee data

The State Department has confirmed a data breach affecting an unknown number of employees. A spokesperson told TechCrunch that the breach affected “less than 1 percent” of unclassified emp

Facebook expands bug bounty program to include third-party apps and websites

Facebook announced this morning it’s expanding its bug bounty program – which pays researchers who find security vulnerabilities within its platform – to now include issues found in

Cryptocurrency mining attacks using leaked NSA hacking tools are still highly active a year later

It’s been over a year since highly classified exploits built by the National Security Agency were stolen and published online. One of the tools, dubbed EternalBlue, can covertly break into almos

FINRA takes down an unregistered cryptocurrency security

FINRA, the non-profit organization that tasks itself with policing the securities industry, is charging Timothy Tilton Ayre of Agawam, Mass. with fraud and unlawful distribution of unregistered crypto

British Airways breach caused by credit card skimming malware, researchers say

A security firm says credit card skimming malware installed by hackers on British Airways’ website a few months ago was to blame for a data breach of over 380,000 credit cards. Payments through

Tor Project launches official mobile browser for Android

Tor Project, the group behind the anonymous Tor browser, has released an alpha version of its own anonymous browser for Android. Following this release, Orfox, the longstanding Tor Project-approved

British Airways customer data stolen in data breach

British Airways has confirmed a data breach. The London-based airline, the largest in the UK, did not disclose much about the breach, only that hackers stole customer data from its website, ba.com. In

US Treasury sanctions North Korea over Sony hack and WannaCry attack

The U.S. government has issued sanctions against a North Korean individual and an entity over historical cyberattacks, which wreaked billions of dollars in damages. In a statement, the U.S. Treasury n

Fido Alliance adds a biometrics certification program to help fight spoofing

In a move aimed at upping standards across biometric user verification systems, the industry consortium, Fido Alliance, has launched a certification program for biometrics systems. “The goal

TSA to expand 3D carry-on baggage screening to reduce security wait times

The Transportation Security Agency will expand its 3D carry-on luggage scanning program it originally launched in more than a dozen airports this July. The agency originally estimated the program wou

Watchdog says 2020 Census systems are riddled with security flaws

With a census just two years away, the Census Bureau has a cybersecurity problem. That’s a key takeaway from the congressional watchdog, the Government Accountability Office, which oversees the

Firefox will soon start blocking trackers by default

Mozilla today announced that its Firefox browser will soon by default automatically block all attempts at cross-site tracking. There are three parts to this strategy. Starting with version 63, which i

Air Canada confirms mobile app data breach

Air Canada has confirmed a data breach on its mobile app, which the airline said may affect 20,000 people — or 1 percent — of its 1.7 million app users. The company said it had “detected unu

T-Mobile quietly reveals uptick in government data demands

T-Mobile has revealed an uptick in the number of demands for data it receives from the government. The cellular giant quietly posted its 2017 transparency report on August 14, revealing a 12 percent i

Weak passwords let a hacker access internal Sprint staff portal

It’s not been a great week for cell carriers. EE was hit with two security bugs and T-Mobile admitted a data breach. Now, Sprint is the latest phone giant to admit a security lapse, TechCrunch

UK phone giant EE hit by another security lapse

For the second time this week, U.K. phone giant EE has fixed a security lapse, which allowed a security researcher to gain access to an internal site. The researcher, who goes by the pseudonym Six, fo

T-Mobile says hackers stole customer data in data breach

T-Mobile has confirmed hackers breached its systems. The cell giant, currently merging with Sprint, said in a statement that hackers customer stole names, billing zip codes, phone numbers, email addr

Australia bans Huawei and ZTE from supplying technology for its 5G network

Australia has blocked Huawei and ZTE from providing equipment for its 5G network, which is set to launch commercially next year. In a tweet, Huawei stated that the Australian government told the compa

‘Legacy system’ exposed Black Hat 2018 attendees’ contact information

A “legacy system” was to blame for exposing the contact information of attendees of this year’s Black Hat security conference. Colorado-based pen tester and security researcher who g
Load More