Latest from Zack Whittaker
The vulnerabilities allowed one security researcher to peek inside the leak sites without having to log in.
The home security company says attackers accessed databases containing customer home addresses, email addresses, and phone numbers.
UK data watchdog to fine NHS vendor Advanced for security failures prior to LockBit ransomware attack
The ICO issued the provisional fine in “failing to implement appropriate security measures prior to the attack.”
Students that use school devices managed by Mobile Guardian have been unable to access their files for days following a cyberattack.
Featured Article
How the theft of 40M UK voter register records was entirely preventable
A scathing rebuke by the U.K. data protection watchdog reveals what led to the compromise of tens of millions of U.K. voters’ information.
The pharma giant won’t say how many patients were affected by its February data breach. A count by TechCrunch confirms that over a million people are affected.
HealthEquity said the March data breach included personal information and protected health data on millions of people.
U.S. airports are rolling out facial recognition to scan travelers’ faces before boarding their flights. Americans, at least, can opt out.
Critics have long argued that wararantless device searches at the U.S. border are unconstitutional and violate the Fourth Amendment.
Featured Article
Data breach exposes US spyware maker behind Windows, Mac, Android and Chromebook malware
Exclusive: The Minnesota-based spyware maker Spytech snooped on thousands of devices before it was hacked earlier this year.
CISA confirmed the CrowdStrike outage was not caused by a cyberattack, but urged caution as malicious hackers exploit the situation.
What we know about CrowdStrike’s update fail that’s causing global outages and travel chaos
Here’s everything you need to know so far about the global outages caused by CrowdStrike’s buggy software update.
Featured Article
USPS shared customer postal addresses with Meta, LinkedIn and Snap
The U.S. Postal Service confirmed it took action to “remediate” the data sharing following a TechCrunch investigation.
Featured Article
The biggest data breaches in 2024: 1 billion stolen records and rising
Some of the largest, most damaging breaches of 2024 already account for over a billion stolen records.
The Russia-based security software maker said its U.S. business is “no longer viable” following a U.S. Commerce Department sales ban.
Featured Article
AT&T says criminals stole phone records of ‘nearly all’ customers in new data breach
The stolen data includes 110 million AT&T customer phone numbers, calling and text records, and some location-related data.
Featured Article
Data breach exposes millions of mSpy spyware customers
A huge batch of mSpy customer service emails dating back to 2014 were stolen in a May data breach.
The remote access giant linked the cyberattack to government-backed hackers working for Russian intelligence, known as APT29.
US charges Russian civilian for allegedly helping GRU spies target Ukrainian government systems with data-destroying malware
U.S. prosecutors say the WhisperGate cyberattack was designed to “sow concern” among Ukrainian civil society ahead of Russia’s invasion.
Car dealerships and auto shops around the U.S. enter a second week of disruption following cyberattacks at software maker CDK.
Featured Article
Change Healthcare confirms ransomware hackers stole medical records on a ‘substantial proportion’ of Americans
The February ransomware attack on UHG-owned Change Healthcare stands as one of the largest-ever known digital thefts of U.S. medical records.
CDK said it “does not have an estimated time frame” for recovery, as car dealerships and auto shops face continued outages.
TechCrunch has learned that the arrested hacker is the alleged leader of the group that masterminded the Twilio hacks in 2022.
The security firm said the attacks targeting Snowflake customers is “ongoing,” suggesting the number of affected companies may rise.
Featured Article
What Snowflake isn’t saying about its customer data breaches
As another Snowflake customer confirms a data breach, the cloud data company says its position “remains unchanged.”
Snowflake is the latest company in a string of high-profile security incidents and sizable data breaches caused by the lack of MFA.
Featured Article
Live Nation confirms Ticketmaster was hacked, says personal information stolen in data breach
Live Nation says its Ticketmaster subsidiary was hacked. A hacker claims to be selling 560 million customer records.
Check Point is the latest security vendor to fix a vulnerability in its technology, which it sells to companies to protect their networks.
The spyware maker’s founder, Bryan Fleming, said pcTattletale is “out of business and completely done,” following a data breach.
pcTattletale’s website was briefly defaced and contained links containing files from the spyware maker’s servers, before going offline.