Apple argues sideloading threatens security, while users demand more choice. With global market pressure rising, will iOS open up to third-party apps?
Category: Security
Asia Pacific, Global Security News, Security
CISOs müssen OT-Risiken stärker adressieren
Da Angriffe auf OT-Bereiche zunehmen, sollten CISOs einen Exposure-Management-Ansatz verfolgen. Summit Art Creations – Shutterstock.com Die Bedrohungen gegen die Betriebstechnik (Operational Technology, OT) der kritischen Infrastruktur (KRITIS) verschärfen sich kontinuierlich. China baut offensive Komponenten in amerikanische Militär- und Unternehmensnetzwerke ein. Zudem haben chinesische Hacker Telekommunikationsunternehmen und Internetdienstleister infiltriert, um Zivilisten auszuspionieren. Seit etlichen Jahren, also…
Crypto, CryptoCurrency, Cybercrime, Cybersecurity, Global Security News, International, money laundering, Security
Long Arm of the Law Comes for Russian Crypto: Why Secret Service Seized Garantex
Authorities say Garantex has processed more than $96 billion in transactions since it launched in 2019.
Global Security News, Security
X hit by ‘massive cyberattack’ amid Dark Storm’s DDoS claims
The Dark Storm hacktivist group claims to be behind DDoS attacks causing multiple X worldwide outages on Monday, leading the company to enable DDoS protections from Cloudflare. […]
Cybersecurity, data breach, Global IT News, Global Security News, hacking, powerschool, Security
What PowerSchool won’t say about its data breach affecting millions of students
New details have emerged about PowerSchool’s data breach — but here’s what PowerSchool still isn’t saying. © 2024 TechCrunch. All rights reserved. For personal use only.
Global Security News, Security
US govt says Americans lost record $12.5 billion to fraud in 2024
The U.S. Federal Trade Commission (FTC) said today that Americans lost a record $12.5 billion to fraud last year, a 25% increase over the previous year. […]
Global Security News, Security
FTC will send $25.5 million to victims of tech support scams
Later this week, the Federal Trade Commission (FTC) will start distributing over $25.5 million in refunds to those misled by tech support companies Restoro and Reimage’s scare tactics. […]
cyber security, esp32, Exploits, Global Security News, Hardware, internet of things, IoT Security, microcontroller, Mobile Security, Mobility, Research, Security, supply chain, tarlogic, vulnerability, wifi
Billions of Devices at Risk of Hacking & Impersonation Due to Hidden Commands
Researchers warn these commands could be exploited to manipulate memory, impersonate devices, and bypass security controls.
Crypto, CryptoCurrency, Garantex, Global IT News, Global Security News, money laundering, Russia, Secret Service, Security
Following takedown operation, Garantex invites customers to ‘face-to-face’ Moscow meeting
Russian crypto exchange Garantex has yet to directly address the international law enforcement operation that resulted in the seizure of its domains, and criminal charges against two of its administrators. © 2024 TechCrunch. All rights reserved. For personal use only.
Global Security News, Legal, Security
Swiss critical sector faces new 24-hour cyberattack reporting rule
Switzerland’s National Cybersecurity Centre (NCSC) has announced a new reporting obligation for critical infrastructure organizations in the country, requiring them to report cyberattacks to the agency within 24 hours of their discovery. […]
Global Security News, Security
Google paid $12 million in bug bounties last year to security researchers
Google paid almost $12 million in bug bounty rewards to 660 security researchers who reported security bugs through the company’s Vulnerability Reward Program (VRP) in 2024. […]
Global Security News, Security
Quantum leap: Passwords in the new era of computing security
Quantum computing threatens to break traditional encryption, putting sensitive data at risk. Learn more from Specops Software about the risks of quantum computing and how to prepare for them. […]
Global Security News, Security
Was toxische CISOs anrichten
Lipik Stock Media – shutterstock.com Für Keith, einen erfahrenen Cybersecurity-Profi aus New York City in seinen 40ern, gab es mehr als einen Grund, seinen Job hinzuwerfen – und vor allem seinen CISO hinter sich zu lassen. Dieser hatte den Security-Profi so unnachgiebig gepiesakt, bis dieser am Ende jede seiner E-Mails vierfach überprüfte, bevor er sie abschickte. Keith…
CISA, cyber security, cyber threat, Cybersecurity, Data Privacy, Data Security, Digital Privacy, Episodes, Firefox Privacy, Global Security News, Government & Policy, Information Security, infosec, internet privacy, mozilla, online security, Podcast, Podcasts, privacy, privacy rights, Putin, Russia, Russian Cyber Threat, Security, Security Bloggers Network, Tech Talk, Technology, Technology News, Trump, Trump Administration, US Cyber Command, Weekly Edition
Trump Administration and the Russian Cyber Threat, Firefox Privacy Changes
In this episode, we discuss whether the Trump administration ordered the U.S. Cyber Command and CISA to stand down on the Russian cyber threat. We also touch on the Canadian tariff situation with insights from Scott Wright. Additionally, we discuss the recent changes to Firefox’s privacy policy and what it means for user data. **…
Global Security News, Security
US cities warn of wave of unpaid parking phishing texts
US cities are warning of an ongoing mobile phishing campaign pretending to be texts from the city’s parking violation departments about unpaid parking invoices, that if unpaid, will incur an additional $35 fine per day. […]
Global Security News, Security
Developer guilty of using kill switch to sabotage employer’s systems
A software developer has been found guilty of sabotaging his ex-employer’s systems by running custom malware and installing a “kill switch” after being demoted at the company. […]
Global Security News, Hardware, Security
Undocumented backdoor found in Bluetooth chip used by a billion devices
The ubiquitous ESP32 microchip made by Chinese manufacturer Espressif and used by over 1 billion units as of 2023 contains an undocumented backdoor that could be leveraged for attacks. […]
Global Security News, Security
YouTubers extorted via copyright strikes to spread malware
Cybercriminals are sending bogus copyright claims to YouTubers to coerce them into promoting malware and cryptocurrency miners on their videos. […]
CryptoCurrency, Global Security News, Security
US seizes $23 million in crypto stolen via password manager breach
U.S. authorities have seized over $23 million in cryptocurrency linked to the theft of $150 million from a Ripple crypto wallet in January 2024. Investigators believe hackers who breached LastPass in 2022 were behind the attack. […]
Exploits, Global Security News, Security
Unpatched Edimax IP camera flaw actively exploited in botnet attacks
A critical command injection vulnerability impacting the Edimax IC-7100 IP camera is currently being exploited by botnet malware to compromise devices. […]
cyber security, Cybersecurity, DEI, fair hiring, gender, Global Security News, isc2, IT Policies, report, Security, Tech Industry
Women in Cyber Security on the Rise, But Facing More Layoffs and Budget Cuts Than Men
In 2024, women accounted for 22% of global security teams on average, compared to 17% in 2023, according to ISC2.
Global Security News, Security
Employee charged with stealing unreleased movies, sharing them online
A Memphis man was arrested and charged with stealing DVDs and Blu-ray discs of unreleased movies and sharing ripped digital copies online before their release. […]
Crypto, Garantex, Global IT News, Global Security News, money laundering, Ransomware, Russia, sanctions, Security, US Department of Justice
US charges admins of Garantex for allegedly facilitating crypto money laundering for terrorists and hackers
The administrators of Garantex, Aleksej Besciokov and Aleksandr Mira Serda, allegedly knew their crypto exchange was used to launder money, according to U.S. prosecutors. © 2024 TechCrunch. All rights reserved. For personal use only.
cyberattack, Cybersecurity, data breach, Global IT News, Global Security News, ntt communications, Security
Japanese telco giant NTT Com says hackers accessed details of almost 18,000 organizations
Unidentified hackers breached NTT Com’s network to steal personal information of employees at thousands of corporate customers © 2024 TechCrunch. All rights reserved. For personal use only.
Global Security News, North America, Security
US charges Garantex admins with money laundering, sanctions violations
The administrators of the Russian Garantex crypto-exchange have been charged in the United States with facilitating money laundering for criminal organizations and violating sanctions. […]
Global Security News, Security
Data breach at Japanese telecom giant NTT hits 18,000 companies
Japanese telecommunication services provider NTT Communications Corporation (NTT) is warning almost 18,000 corporate customers that their information was compromised during a cybersecurity incident. […]
Global Security News, Microsoft, Security
Microsoft: North Korean hackers join Qilin ransomware gang
Microsoft says a North Korean hacking group tracked as Moonstone Sleet has deployed Qilin ransomware payloads in a limited number of attacks. […]
Global IT News, Global Security News, Ransomware, scammer, Security
FBI says scammers are targeting US executives with fake BianLian ransom notes
The FBI is warning that scammers are impersonating the BianLian ransomware gang using fake ransom notes sent to U.S. corporate executives. The fake ransom notes, first reported by U.S. cybersecurity company GuidePoint Security, claim that hackers have gained access to an organization’s network to steal sensitive data, and threaten to publish the stolen data unless…
Global Security News, Security
BSI veröffentlicht neue Sicherheitsanforderungen für Datenbanksysteme
Die neuen BSI-Anforderungen gelten sowohl für relationale als auch NoSQL-Datenbanksysteme und berücksichtigen alle Betriebsarten. shutterstock – nitpicker Das Bundesamt für Sicherheit in der Informationstechnik (BSI) hat die Version 1.0 seiner Eckpunkte der IT-Sicherheitsanforderungen für Datenbanksysteme veröffentlicht. Die Dokumente basieren BSI-Angaben zufolge auf einer umfassenden Analyse verschiedener Typen von Datenbankmanagementsystemen. Schwerpunkt: Security by Default Ein zentrales…
AI, Anthropic, Global IT News, Global Security News, Security
Anthropic’s Claude Code tool had a bug that ‘bricked’ some systems
The problematic code changed file permissions that broke some systems, users say. © 2024 TechCrunch. All rights reserved. For personal use only.
Cybersecurity, data breach, First Amendment, Global IT News, Global Security News, journalist, Legal, press freedoms, Security, uk
Hacked health firm HCRG demanded journalist ‘take down’ data breach reporting, citing UK court order
DataBreaches.net declined to comply, citing a lack of jurisdiction. © 2024 TechCrunch. All rights reserved. For personal use only.
Global Security News, Microsoft, Security
Microsoft says malvertising campaign impacted 1 million PCs
Microsoft has taken down an undisclosed number of GitHub repositories used in a massive malvertising campaign that impacted almost one million devices worldwide. […]
Global Security News, Security
Ransomware gang encrypted network from a webcam to bypass EDR
The Akira ransomware gang was spotted using an unsecured webcam to launch encryption attacks on a victim’s network, effectively circumventing Endpoint Detection and Response (EDR), which was blocking the encryptor in Windows. […]
Crypto, fbi, Garantex, Global IT News, Global Security News, Russia, sanctions, Secret Service, Security
Russian crypto exchange Garantex seized by law enforcement operation
An international coalition of law enforcement agencies seized the official website of Garantex, which has previously been sanctioned by the U.S. and E.U. governments. © 2024 TechCrunch. All rights reserved. For personal use only.
CryptoCurrency, Global Security News, Security
US seizes domain of Garantex crypto exchange used by ransomware gangs
The U.S. Secret Service has seized the domain of the sanctioned Russian cryptocurrency exchange Garantex in collaboration with the Department of Justice’s Criminal Division, the FBI, and Europol. […]
Global Security News, Security
Cybercrime ‘crew’ stole $635,000 in Taylor Swift concert tickets
New York prosecutors say that two people working at a third-party contractor for the StubHub online ticket marketplace made $635,000 after almost 1,000 concert tickets and reselling them online. […]
CryptoCurrency, Global Security News, Security
Ethereum private key stealer on PyPI downloaded over 1,000 times
A malicious Python Package Index (PyPI) package named “set-utils” has been stealing Ethereum private keys through intercepted wallet creation functions and exfiltrating them via the Polygon blockchain. […]
china, Department of Justice, fbi, Global Security News, Government, Hackers, hacking, Security, usa
DoJ Busts Alleged Global Hacking-for-Hire Network of ‘Cyber Mercenaries’
Targets included the U.S. Treasury Department, journalists, and religious organisations, and the attacks intended to steal data and suppress free speech.
Cybersecurity, Enterprise, Global IT News, Global Security News, industrial security, Industry, M&A, otorio, Security
Armis buys Otorio for $120M to beef up cybersecurity in physical spaces
More consolidation is playing out in the security industry as platform players scoop up technology to give them deeper expertise in growing business areas. On Thursday, Armis, a $4.2 billion specialist in cyber exposure management, said it would be acquiring Otorio, a specialist in securing industrial and physical environments. Terms of the deal are not…
Exploits, Global Security News, Security
Over 37,000 VMware ESXi servers vulnerable to ongoing attacks
Over 37,000 internet-exposed VMware ESXi instances are vulnerable to CVE-2025-22224, a critical out-of-bounds write flaw that is actively exploited in the wild. […]
Global Security News, Security
Free vCISO Course: Turning MSPs and MSSPs into Cybersecurity Powerhouses
The vCISO Academy is a free learning platform to equip service providers with training needed to build and expand their vCISO offerings. Learn more from Cynomi on how the Academy helps you launch or expand your vCISO services. […]
Global Security News, Google, Security
Malicious Chrome extensions can spoof password managers in new attack
A newly devised “polymorphic” attack allows malicious Chrome extensions to morph into browser extensions, including password managers, crypto wallets, and banking apps, to steal sensitive information. […]
blockchain, CryptoCurrency, cryptography, Developer, ethereum, Global Security News, Innovation, nft, Security, TR Academy, Training
Save 70% on a Course Showing You How to Invest in Crypto
In this online training course, learn about NFTs, blockchain, decentralized apps, and more.
AI, AI agents, Fundraising, Global IT News, Global Security News, monzy merza, Security, splunk
Crogl, armed with $30M, takes the wraps off a new AI ‘Iron Man suit’ for security analysts
AI agents are marching across the world of IT, and on Thursday a startup called Crogl is debuting its contribution to the field: an autonomous assistant for cybersecurity researchers to help them analyse thousands of daily network alerts to find and fix actual security incidents. The assistant — described by Crogl’s CEO and co-founder Monzy…
Apple, Cybersecurity, encryption, Global IT News, Global Security News, Government & Policy, Security
UK quietly scrubs encryption advice from government websites
The UK is no longer recommending the use of encryption for at-risk groups following its iCloud backdoor demands © 2024 TechCrunch. All rights reserved. For personal use only.
Global Security News, Mobile, Security, Software
Open-source tool ‘Rayhunter’ helps users detect Stingray attacks
The Electronic Frontier Foundation (EFF) has released a free, open-source tool named Rayhunter that is designed to detect cell-site simulators (CSS), also known as IMSI catchers or Stingrays. […]
Cybersecurity, Global IT News, Global Security News, NSO Group, privacy, Security, spain, Spyware, surveillance
Catalan court says NSO Group executives can be charged in spyware investigation
The ruling said that a lower court can charge two NSO Group co-founders and a former executive of two affiliate companies for the alleged hacking of a lawyer. © 2024 TechCrunch. All rights reserved. For personal use only.
Cloud, Global Security News, Security
Silk Typhoon hackers now target IT supply chains to breach networks
Microsoft warns that Chinese cyber-espionage threat group ‘Silk Typhoon’ has shifted its tactics, now targeting remote management tools and cloud services in supply chain attacks that give them access to downstream customers. […]
Cybersecurity, Global IT News, Global Security News, national security, National Security Agency, Security, Trump Administration, us government
Former NSA official says federal worker cuts will have ‘devastating impact’ on cyber and national security
Former top U.S. cybersecurity official Rob Joyce told lawmakers on Wednesday that cuts to federal probationary employees will have a “devastating impact” on U.S. national security. Joyce, who was the director of cybersecurity for the National Security Agency until retiring in 2024, was providing testimony to the U.S. House Committee on the Chinese Communist Party,…
Global Security News, Security
US charges Chinese hackers linked to critical infrastructure breaches
The US Justice Department has charged Chinese state security officers along with APT27 and i-Soon hackers for network breaches and cyberattacks that have targeted victims globally since 2011. […]
Apple, Big Data, Cloud, Cloud Security, Data Privacy, Global Security News, Government, iCloud, International, privacy, Security, tribunal, uk, United Kingdom
Apple Taking Legal Action Against UK Over Backdoor Demands
Apple told TechRepublic it is “gravely disappointed” to remove Advanced Data Protection in the U.K., as it fights government demands for an iCloud backdoor.
china, Cybersecurity, Global IT News, Global Security News, hacking, Security, silk typhoon, us government
Justice Department charges Chinese hackers-for-hire linked to Treasury breach
The individuals are accused of hacking over 100 U.S. organizations over the course of a decade © 2024 TechCrunch. All rights reserved. For personal use only.
Global Security News, Google, Security
BadBox malware disrupted on 500K infected Android devices
The BadBox Android malware botnet has been disrupted again by removing 24 malicious apps from Google Play and sinkholing communications for half a million infected devices. […]
Global Security News, Security
YouTube warns of AI-generated video of its CEO used in phishing attacks
YouTube warns that scammers are using an AI-generated video featuring the company’s CEO in phishing attacks to steal creators’ credentials. […]
Global Security News, Security
Look up: The new frontier of cyberthreats is in the sky
With increased unidentified drone sightings worldwide, some are concerned they pose a cybersecurity risk. Learn more from Acronis about these risks and a real attack on a Taiwan drone manufacturer. […]
Cybersecurity, Exploits, Global Security News, Ransomware, Security, vmware
Broadcom urges VMware customers to patch ‘emergency’ zero-day bugs under active exploitation
Security experts warn of ‘huge impact’ of actively exploited hypervisor flaws that allow sandbox escape © 2024 TechCrunch. All rights reserved. For personal use only.
Cybersecurity, Global IT News, Global Security News, intelligence, Security, Ukraine, us government
CIA director says US has paused sharing intelligence with Ukraine
The confirmation of the pause on intelligence sharing follows a heated exchange between the U.S. and Ukrainian presidents © 2024 TechCrunch. All rights reserved. For personal use only.
Global Security News, Security
Toronto Zoo shares update on last year’s ransomware attack
The Toronto Zoo, the largest zoo in Canada, has provided more information about the data stolen during a ransomware attack in January 2024. […]
Global IT News, Global Security News, Government & Policy, In Brief, privacy, Security
Apple is challenging U.K.’s iCloud encryption backdoor order
Apple is challenging a U.K. Government data access order in the Investigatory Powers Tribunal (IPT), the Financial Times reports. The order targeted iCloud backups that are protected by end-to-end encryption. Last month, press leaks revealed the existence of the January order asking Apple to build a backdoor in iCloud’s encrypted backups. U.K. officials are exercising…
Global Security News, North America, Security
Fake BianLian ransom notes mailed to US CEOs in postal mail scam
Scammers are impersonating the BianLian ransomware gang in fake ransom notes sent to US companies via snail mail through the United States Postal Service. […]
Global Security News, Google, Google Chrome, internet browsers, mozilla firefox, privacy, Security, Software
Google Cuts Off uBlock Origin on Chrome as Firefox Stands Firm on Ad Blockers
The problem started with Manifest V3, Chrome’s new extension specification, which is supposed to improve privacy.
Exploits, Global Security News, Security
Microsoft Teams tactics, malware connect Black Basta, Cactus ransomware
New research has uncovered further links between the Black Basta and Cactus ransomware gangs, with members of both groups utilizing the same social engineering attacks and the BackConnect proxy malware for post-exploitation access to corporate networks. […]
Global Security News, Security
New Eleven11bot botnet infects 86,000 devices for DDoS attacks
A new botnet malware named ‘Eleven11bot’ has infected over 86,000 IoT devices, primarily security cameras and network video recorders (NVRs), to conduct DDoS attacks. […]
Bitcoin, Crypto, CryptoCurrency, ethereum, fbi, Global IT News, Global Security News, Hackers, North Korea, Security
Hackers launder most of Bybit’s stolen crypto worth $1.4 billion
Experts note that this is just the first step for the alleged North Korean hackers to profit from the historic heist. © 2024 TechCrunch. All rights reserved. For personal use only.
Global Security News, Security
Cisco warns of Webex for BroadWorks flaw exposing credentials
Cisco warned customers today of a vulnerability in Webex for BroadWorks that could let unauthenticated attackers access credentials remotely. […]
Global Security News, Google, Mobile, Security
Google expands Android AI scam detection to more Pixel devices
Google has announced an increased rollout of new AI-powered scam detection features on Android to help protect users from increasingly sophisticated phone and text social engineering scams. […]
Global Security News, Security
New polyglot malware hits aviation, satellite communication firms
A previously undocumented polyglot malware is being deployed in attacks against aviation, satellite communication, and critical transportation organizations in the United Arab Emirates. […]
Global Security News, Security
Polish Space Agency offline as it recovers from cyberattack
The Polish Space Agency (POLSA) has been offline since it disconnected its systems from the Internet over the weekend to contain a breach of its IT infrastructure. […]
Global Security News, Security
Hunters International ransomware claims attack on Tata Technologies
The Hunters International ransomware gang has claimed responsibility for a January cyberattack attack on Tata Technologies, stating they stole 1.4TB of data from the company. […]
cyberattack, Cybersecurity, Global IT News, Global Security News, hacking, Security, Space
Polish space agency says it’s investigating a cyberattack
Poland’s space agency (POLSA) says it is working to restore services following a cybersecurity incident. POLSA, the Polish government agency responsible for the country’s space activities, said in a post on X that it had “immediately disconnected” its network from the internet after detecting the cyberattack on Sunday. POLSA’s website remains offline at the time…
Exploits, Global Security News, Microsoft, Security
Broadcom fixes three VMware zero-days exploited in attacks
Broadcom warned customers today about three VMware zero-days, tagged as exploited in attacks and reported by the Microsoft Threat Intelligence Center. […]
Cloud Security, Global Security News, keepass, password manager, Security
How to Use KeePass: Step-by-Step Guide
KeePass is a popular and free password management tool. Learn about the benefits and techniques to get the most of out of it.
Global Security News, Security
Google fixes Android zero-day exploited by Serbian authorities
Google has released patches for 43 vulnerabilities in Android’s March 2025 security update, including two zero-days. Serbian authorities have used one of the zero-days to unlock confiscated devices. […]
Big Data, Firefox, Global Security News, mozilla, privacy, Security, Web Browsers
Mozilla Revises Firefox Terms of Use After Inflaming Users Over Data Usage
In response to users’ feedback about the Firefox Terms of Use, Mozilla updated some of the language about data usage. Mozilla also updated its Privacy FAQ.
Global Security News, Security
Rubrik rotates authentication keys after log server breach
Rubrik disclosed last month that one of its servers hosting log files was breached, causing the company to rotate potentially leaked authentication keys. […]
Global Security News, Government, Security
DHS says CISA will not stop monitoring Russian cyber threats
The US Cybersecurity and Infrastructure Security Agency says that media reports about it being directed to no longer follow or report on Russian cyber activity are untrue, and its mission remains unchanged. […]
Cybersecurity, data breach, Exclusive, Global IT News, Global Security News, Lee Enterprises, local newspapers, Security
Lee Enterprises ransomware attack hits freelance and contractor payments
The ransomware attack is affecting Lee’s ability to pay outside vendors, including freelancers and contractors, TechCrunch has learned. © 2024 TechCrunch. All rights reserved. For personal use only.
Exploits, Global Security News, Microsoft, Security
CISA tags Windows, Cisco vulnerabilities as actively exploited
CISA has warned US federal agencies to secure their systems against attacks exploiting vulnerabilities in Cisco and Windows systems. […]
Exploits, Global Security News, Security
New ClickFix attack deploys Havoc C2 via Microsoft Sharepoint
A newly uncovered ClickFix phishing campaign is tricking victims into executing malicious PowerShell commands that deploy the Havok post-exploitation framework for remote access to compromised devices. […]
Global Security News, Security
UK watchdog probes TikTok and Reddit over child privacy concerns
On Monday, the United Kingdom’s privacy watchdog announced that it is investigating TikTok, Reddit, and Imgur because of privacy concerns about how they are processing children’s data. […]
Cybersecurity, Global IT News, Global Security News, hacking, Russia, Security, us government
US said to halt offensive cyber operations against Russia
The reported policy shift comes as the U.S. government signals a change in its threat assessment of Russia © 2024 TechCrunch. All rights reserved. For personal use only.
Apple, Cybersecurity, end-to-end encryption, Global IT News, Global Security News, Microsoft, Security, Skype
As Skype shuts down, its legacy is end-to-end encryption for the masses
iMessage, Signal, and WhatsApp have made E2EE the default for messaging, but Skype paved the way decades ago. © 2024 TechCrunch. All rights reserved. For personal use only.
Apple, Canada, CISA, cyber security, cyber threat, Cybersecurity, Data Privacy, Data Security, Digital Privacy, doge, encryption, Encryption Backdoor, Endpoint, Episodes, Global Security News, Government, Impact, Incompetence, Information Security, infosec, Jokes, national security, phishing, Podcast, Podcasts, privacy, SBN News, Security, Security Bloggers Network, Technology, Trump, uk, Weekly Edition
Cybersecurity Impact of DOGE, Apple’s Stand Against Encryption Backdoors
In this episode, Kevin and Tom discuss current events including the latest developments with DOGE and the significant changes happening at the Cybersecurity and Infrastructure Security Agency (CISA). They also touch on Apple’s decision to refuse creating backdoors for encryption, setting a new precedent in digital security. Tune in for an insightful discussion on the…
Apple, Canada, CISA, cyber security, cyber threat, Cybersecurity, Data Privacy, Data Security, Digital Privacy, doge, encryption, Encryption Backdoor, Endpoint, Episodes, Global Security News, Government, Impact, Incompetence, Information Security, infosec, Jokes, national security, phishing, Podcast, Podcasts, privacy, SBN News, Security, Security Bloggers Network, Technology, Trump, uk, Weekly Edition
Cybersecurity Impact of DOGE, Apple’s Stand Against Encryption Backdoors
In this episode, Kevin and Tom discuss current events including the latest developments with DOGE and the significant changes happening at the Cybersecurity and Infrastructure Security Agency (CISA). They also touch on Apple’s decision to refuse creating backdoors for encryption, setting a new precedent in digital security. Tune in for an insightful discussion on the…
Global Security News, Security
Nearly 12,000 API keys and passwords found in AI training dataset
Close to 12,000 valid secrets that include API keys and passwords have been found in the Common Crawl dataset used for training multiple artificial intelligence models. […]
Global Security News, Security
Ransomware gangs exploit Paragon Partition Manager bug in BYOVD attacks
Microsoft had discovered five Paragon Partition Manager BioNTdrv.sys driver flaws, with one used by ransomware gangs in zero-day attacks to gain SYSTEM privileges in Windows. […]
CryptoCurrency, Global Security News, Legal, Security
U.S. recovers $31 million stolen in 2021 Uranium Finance hack
U.S. authorities recovered $31 million in cryptocurrency stolen in 2021 cyberattacks on Uranium Finance, a Binance Smart Chain-based DeFi protocol. […]
Amnesty International, Cellebrite, Global IT News, Global Security News, Google, hacking, Security, Serbia, Spyware, zero days
Researchers uncover unknown Android flaws used to hack into a student’s phone
Amnesty International said that Google fixed previously unknown flaws in Android that allowed authorities to unlock phones using forensic tools. On Friday, Amnesty International published a report detailing a chain of three zero-day vulnerabilities developed by phone-unlocking company Cellebrite, which its researchers found after investigating the hack of a student protester’s phone in Serbia. The…
Global Security News, Security
Qilin ransomware claims attack at Lee Enterprises, leaks stolen data
The Qilin ransomware gang has claimed responsibility for the attack at Lee Enterprises that disrupted operations on February 3, leaking samples of data they claim was stolen from the company. […]
Global Security News, Security
Police arrests suspects tied to AI-generated CSAM distribution ring
Law enforcement agencies from 19 countries have arrested 25 suspects linked to a criminal ring that was distributing child sexual abuse material (CSAM) generated using artificial intelligence (AI). […]
Exploits, Global Security News, Google, Mobile, Security
Serbian police used Cellebrite zero-day hack to unlock Android phones
Serbian authorities have reportedly used an Android zero-day exploit chain developed by Cellebrite to unlock the device of a student activist in the country and attempt to install spyware. […]
Cybersecurity, data breach, Global IT News, Global Security News, Security
The biggest data breaches of 2025 — so far
School student records. Federal government data. Health records and more. Expect an unprecedented year for data breaches. © 2024 TechCrunch. All rights reserved. For personal use only.
Emerging Tech, Global Security News, Security
Is your enterprise ‘cyber resilient’? Probably not. Here’s how other boards fixed that
In the escalating battle against cyberthreats, most businesses pour more security resources into prevention and detection: Keep attackers at bay, and if (er, when) a breach occurs, respond to it faster. While that focus has merit, another strategy is gaining traction. With attacks becoming all but inevitable, more boards and business leaders want more focus…
china, cyberattack, Cybersecurity, Exploits, Global Security News, Security
Belgium investigating alleged cyberattack on intelligence agency by China-linked hackers
The hackers reportedly exploited a flaw in US cybersecurity firm Barracuda’s software to access VSSE’s email server © 2024 TechCrunch. All rights reserved. For personal use only.
Global Security News, Hardware, Security
New Vo1d botnet variant infects 1.6 million Android TVs worldwide
A new variant of the Vo1d malware botnet has infected 1,590,299 Android TV devices across 226 countries, recruiting devices as part of anonymous proxy server networks. […]
Global Security News, Hardware, Security
Vo1d malware botnet grows to 1.6 million Android TVs worldwide
A new variant of the Vo1d malware botnet has grown to 1,590,299 infected Android TV devices across 226 countries, recruiting devices as part of anonymous proxy server networks. […]
Global Security News, Legal, Security
Privacy tech firms warn France’s encryption and VPN laws threaten privacy
Privacy-focused email provider Tuta (previously Tutanota) and the VPN Trust Initiative (VTI) are raising concerns over proposed laws in France set to backdoor encrypted messaging systems and restrict internet access. […]
Android, Apple, Exclusive, Global IT News, Global Security News, Have I Been Pwned, iPad, iPhone, Security, Spyware, stalkerware
Spyzie stalkerware is spying on thousands of Android and iPhone users
Another little-known phone monitoring outfit has quietly amassed half a million customers, whose email addresses are now in Have I Been Pwned. © 2024 TechCrunch. All rights reserved. For personal use only.
Global Security News, Security
Over 49,000 misconfigured building access systems exposed online
Researchers discovered 49,000 misconfigured and exposed Access Management Systems (AMS) across multiple industries and countries, which could compromise privacy and physical security in critical sectors. […]
Fundraising, Global IT News, Global Security News, Security
Archipelo comes out of stealth with $12M funding to secure human and AI-driven code
When it comes to AI software, you can build something clever, but that’s not always the same as building something that is secure. With so much software now getting written by AI, having a window into its security can be a challenge. That’s the premise of Archipelo, a San Francisco-based cybersecurity startup that is today…