The personal information of almost half a million people is now in the hands of hackers after a security breach of a company used by some of the world’s best known hotel brands. Read more in my article on the Hot for Security blog.
Category: data breach
Cybersecurity, data breach, Global IT News, Global Security News, powerschool, Security
Toronto school district says 40 years of student data stolen in PowerSchool breach
Canada’s largest school board says hackers may have accessed some 40 years’ worth of student data during the recent PowerSchool breach. In a letter sent to parents this week, the Toronto District School Board (TDSB) said that the data breach affected all students enrolled in the district between September 1985 and December 2024. The school…
Cybersecurity, data breach, Enterprise, Global IT News, Global Security News, hacking, HPE, Security
HPE investigating security breach after hacker claims theft of sensitive data
A well-known hacker claims to have stolen source code and user data from the enterprise IT giant © 2024 TechCrunch. All rights reserved. For personal use only.
AT&T, cyberattacks, Cybersecurity, data breach, Global IT News, Global Security News, Government & Policy, Security, Snowflake, us government, Verizon
DOJ confirms arrested US Army soldier is linked to AT&T and Verizon hacks
The alleged hacker claimed to have access to huge amounts of call records, including VP Kamala Harris and President Trump. © 2024 TechCrunch. All rights reserved. For personal use only.
Cybersecurity, data breach, EdTech, Global IT News, Global Security News, Hackers, hacking, infosec, K-12, powerschool, Security
How victims of PowerSchool’s data breach helped each other investigate ‘massive’ hack
School workers say they resorted to crowdsourcing help among each other following PowerSchool’s breach, fueled by solidarity and the slow response from PowerSchool. © 2024 TechCrunch. All rights reserved. For personal use only.
cyberattack, Cybersecurity, data breach, education, Exclusive, Global IT News, Global Security News, powerschool, Security, TC
Malware stole internal PowerSchool passwords from engineer’s hacked computer
The theft of a PowerSchool engineer’s passwords prior to the breach raises further doubts about the company’s security practices. © 2024 TechCrunch. All rights reserved. For personal use only.
Cleo, Clop, Cybersecurity, data breach, Global IT News, Global Security News, Ransomware, Security
Clop ransomware gang names dozens of victims hit by Cleo mass-hack, but several firms dispute breaches
The Russia-linked ransomware group is threatening to leak data stolen from almost 60 Cleo Software customers if ransoms aren’t paid © 2024 TechCrunch. All rights reserved. For personal use only.
AI, Apple Safari, data breach, Data loss, Elon Musk, Firefox, Global Security News, Google Chrome, Operating Systems, Podcast, privacy, Smashing Security, surveillance, video game
Smashing Security podcast #400: Hacker games, AI travel surveillance, and 25 years of IoT
The video game Path of Exile 2 suffers a security breach, we explore the issues of using predictive algorithms in travel surveillance systems, and the very worst IoT devices are put on show in Las Vegas. Oh, and has Elon Musk accidentally revealed he cheats at video games? All this and much more is discussed…
Cybersecurity, data breach, Exclusive, extortion, Global IT News, Global Security News, powerschool, Security
PowerSchool data breach victims say hackers stole ‘all’ historical student and teacher data
A trove of information on current and former students and teachers was accessed during the December cyberattack, sources say © 2024 TechCrunch. All rights reserved. For personal use only.
Cybersecurity, data breach, Exclusive, Global IT News, Global Security News, HIPAA, Security, UnitedHealth Group, UnitedHealthcare
UnitedHealth hid its Change Healthcare data breach notice for months
The ransomware attack on Change Healthcare affected over 100 million Americans, the health giant told regulators. © 2024 TechCrunch. All rights reserved. For personal use only.
Cloud Security, Cybersecurity, data breach, Data Privacy, Data Security, Featured, Global Security News, Identity & Access, Industry Spotlight, Network Security, News, powerschool, Ransomware, School security, Security Awareness, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, Threats & Breaches
Hackers Attack PowerSchool, Expose K-12 Teacher and Student Data
Giant education software provider PowerSchool reported that hackers using compromised credentials access a database and stole student and teacher data in an attack that the company said was not ransomware, though a ransom apparently was paid. Affected K-12 school districts are scrambling to alert parents and staffs. The post Hackers Attack PowerSchool, Expose K-12 Teacher…
cannabis, Cybersecurity, data breach, Global IT News, Global Security News, Ransomware, Security
Cannabis company Stiiizy says hackers accessed customers’ ID documents
A ransomware gang took credit for the breach, claiming to have stolen over 400,000 government-issued identity documents from customers. © 2024 TechCrunch. All rights reserved. For personal use only.
data breach, Data loss, Global Security News, Guest blog, malware, Ransomware
Space Bears ransomware: what you need to know
The Space Bears ransomware gang stands out from the crowd by presenting itself better than many legitimate companies, with corporate stock images and a professional-looking leak site. Read more in my article on the Tripwire State of Security blog.
Cybersecurity, data breach, Exclusive, Global IT News, Global Security News, powerschool, Security
PowerSchool says hackers stole students’ sensitive data, including Social Security numbers, in data breach
In an FAQ obtained by TechCrunch, PowerSchool confirms it negotiated with the threat actors responsible for the breach. © 2024 TechCrunch. All rights reserved. For personal use only.
data breach, Data loss, Global Security News, Guest blog, United Nations
United Nations aviation agency hacked, recruitment database plundered
The ICAO, the UN aviation agency tasked with keeping our skies safe, just got hacked… again. This time, a hacker is offering to sell the personal data of 42,000 job applicants. Read more in my article on the Hot for Security blog.
Cloud Security, Cybersecurity, data breach, Data Privacy, Data Security, Endpoint, Featured, Global Security News, Green Bay Packers, Industry Spotlight, malware, Mobile Security, Network Security, News, Security Boulevard (Original), skimming malware, Social - Facebook, Social - LinkedIn, Social - X, Spotlight, stolen data, Threat Intelligence, Threats & Breaches, YouTube
Green Bay Packers Retail Site Hacked, Data of 8,500 Customers Exposed
The data of more than 8,500 customers were exposed during an attack on the Green Bay Packers online retail website in which the hackers were able to bypass security measure and install malicious code, steal customers’ names, addresses, and credit card information. The post Green Bay Packers Retail Site Hacked, Data of 8,500 Customers Exposed…
cyberattack, data breach, Global IT News, Global Security News, russia-ukraine war, Security
Ukrainian hackers take credit for hacking Russian ISP that wiped out servers and caused internet outages
The Russian ISP blamed the Ukrainian hackers for causing a “complete failure” across its internet infrastructure. © 2024 TechCrunch. All rights reserved. For personal use only.
Bain Capital, Cybersecurity, data breach, Global IT News, Global Security News, powerschool, Security
Edtech giant PowerSchool says hackers accessed personal data of students and teachers
The Bain Capital-owned edtech giant says hackers accessed its customer support portal using a “compromised credential.” © 2024 TechCrunch. All rights reserved. For personal use only.
Casio, Cybersecurity, data breach, Global IT News, Global Security News, Ransomware, Security
Casio says hackers stole personal data of 8,500 people during October ransomware attack
The Japanese electronics giant says it did not negotiate with the hackers responsible for the attack. © 2024 TechCrunch. All rights reserved. For personal use only.
Cybersecurity, data breach, Global IT News, Global Security News, hacking, icao, Security
UN aviation agency confirms hacker breached recruitment database to access thousands of records
ICAO says compromised data includes job applicants’ names, email addresses and employment history © 2024 TechCrunch. All rights reserved. For personal use only.
Cybersecurity, data breach, Global IT News, Global Security News, Security
UN aviation agency ‘investigating’ security breach after hacker claims theft of personal data
ICAO says the incident was allegedly linked to a hacker ‘known for targeting international organizations’ © 2024 TechCrunch. All rights reserved. For personal use only.
cyberattack, Cybersecurity, data breach, Global Security News, North America, Security, T-Mobile
Washington sues T-Mobile over 2021 data breach that spilled 79 million customer records
The 2021 breach affected at least 2 million Washington state residents, and tens of millions more customers around the United States. © 2024 TechCrunch. All rights reserved. For personal use only.
china, Cybersecurity, data breach, Global IT News, Global Security News, Security, us government, us treasury
Chinese government hackers reportedly targeted US Treasury’s sanctions office during December cyberattack
Chinese government hackers targeted the U.S. Treasury’s highly sensitive sanctions office during a December cyberattack, according to reports. According to The Washington Post, the state-sponsored hackers targeted the Office of Foreign Assets Control (OFAC), a government department that imposes economic and trade sanctions against countries and individuals, to potentially access information on Chinese organizations that…
23andMe, Change Healthcare, cyberattacks, Cybersecurity, data breach, Global IT News, Global Security News, Security, Snowflake Computing
These were the badly handled data breaches of 2024
Blaming victims, months of silence, and suing security researchers all featured in cybersecurity in 2024. © 2024 TechCrunch. All rights reserved. For personal use only.
23andMe, Change Healthcare, cyberattacks, Cybersecurity, data breach, Global IT News, Global Security News, Security, Snowflake Computing
These were the badly handled data breaches of 2024
Blaming victims, months of silence, and suing security researchers all featured in cybersecurity in 2024. © 2024 TechCrunch. All rights reserved. For personal use only.
cyberattacks, Cybersecurity, data breach, Evergreen, Global IT News, Global Security News, Security
The TechCrunch Cyber Glossary
This glossary includes the most common terms and expressions TechCrunch uses in our security reporting, and explanations of how — and why — we use them. © 2024 TechCrunch. All rights reserved. For personal use only.
Best of 2024, class action lawsuit, data breach, Global Security News, National Public Data
Best of 2024: National Public Data Sued for Hack that Exposed Data of 2.9 Billion People
National Public Data, a background check company that collects sensitive personal information, is facing a class-action legal complaint for allowing the data from 2.9 billion people to be stolen in a breach and later sold on the dark web for millions of dollars. The post Best of 2024: National Public Data Sued for Hack that…
Cybersecurity, data breach, Global IT News, Global Security News, Healthcare, Ransomware, Security
Ransomware attack on health giant Ascension hits 5.6 million patients
The cyberattack on Ascension ranks as the third-largest healthcare-related breach of 2024. © 2024 TechCrunch. All rights reserved. For personal use only.
Cybersecurity, data breach, Exclusive, Global IT News, Global Security News, location tracking, Security
Tracker firm Hapn spilling names of thousands of GPS tracking customers
A security researcher found customer names and workplace affiliations spilling directly from Hapn’s servers. © 2024 TechCrunch. All rights reserved. For personal use only.
Change Healthcare, Cybersecurity, data breach, Global IT News, Global Security News, Ransomware, Security, UnitedHealth
Nebraska sues Change Healthcare over security failings that led to medical data breach of over 100 million Americans
New details emerged about the Change Healthcare ransomware attack in Nebraska’s complaint. © 2024 TechCrunch. All rights reserved. For personal use only.
Cybersecurity, data breach, Global IT News, Global Security News, Ransomware, Security
Texas medical school says hackers stole sensitive health data of 1.4 million individuals
The university’s incident website blocks search engines from listing the site, making it more difficult for affected individuals to find the website in search results. © 2024 TechCrunch. All rights reserved. For personal use only.
Cloud Security, Cybersecurity, data breach, Data Privacy, Data Security, deloitte, Featured, Global Security News, Identity & Access, Incident Response, Industry Spotlight, malware, Network Security, News, Ransomware, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Social Engineering, Spotlight, State Government Breach, Threat Intelligence, Threats & Breaches
Rhode Island Benefits and Services Systems Hit by Ransomware
Hackers likely stole personal information such names, addresses, and SSNs in a ransomware attack on Rhode Island’s human services systems and are threatening to release the data as state and federal officials and Deloitte scrambling to mitigate the data breach. The post Rhode Island Benefits and Services Systems Hit by Ransomware appeared first on Security…
data breach, Data loss, Global Security News, Guest blog, Law & order, pii, rydox
Rydox cybercrime marketplace seixed by law enforcement, suspected admins arrested
Rydox, an online marketplace used by cybercriminals to sell hacked personal information and tools to commit fraud, has been seized in an international law enforcement operation and its suspected administrators arrested. Read more in my article on the Hot for Security blog.
data breach, Data loss, Global Security News, Guest blog, Krispy Kreme, malware, North America, Ransomware
Doughnut orders disrupted! Krispy Kreme suffers hack attack
Krispy Kreme, the dispenser of delectable doughnuts, says that it suffered a cyber attack at the end of last month which saw its IT systems compromised and has disrupted online orders in parts of the United States. Read more in my article on the Hot for Security blog.
2FA, data breach, Data loss, Global Security News, Instagram, Law & order, Podcast, Smashing Security, Snowflake
Smashing Security podcast #397: Snowflake hackers, and under the influence
A Canadian man is arrested in relation to the Snowflake hacks from earlier this year – after a cybersecurity researcher managed to track his identity, and a cryptocurrency-trading Instagram influencer is in trouble with the law. All this and more is discussed in the latest edition of the “Smashing Security” podcast by cybersecurity veterans Graham…
AI, data breach, Data loss, Global Security News, Guest blog, Operating Systems, privacy
AI chatbot startup WotNot leaks 346,000 files, including passports and medical records
Wotnot, An Indian AI startup that helps businesses build custom chatbots, has leaked almost 350,000 sensitive files after the data was left unsecured on the web. Read more in my article on the Hot for Security blog.
CryptoCurrency, data breach, Data loss, Global Security News, Guest blog, North Korea
North Korean hackers masquerade as remote IT workers and venture capitalists to steal crypto and secrets
In itslust for stealing cryptocurrency and sensitive information, North Korean hackers are disguising themselves as remote IT workers, recruiters, and even venture capitalists. Read more in my article on the Hot for Security blog.
data breach, Data loss, Global Security News, Guest blog, hospital, INC Ransom, malware, Ransomware
No guarantees of payday for ransomware gang that claims to have hacked children’s hospital
What is the point of INC Ransom’s attack on Alder Hey? They are not likely to be paid, and the attack on a children’s hospital only increases the chances that they will one day find their collars felt by law enforcement. Read more in my article on the Hot for Security blog.
data breach, Data loss, Global Security News, Guest blog, Microsoft, NHS, Power Pages, privacy
Data leaks from websites built on Microsoft Power Pages, including 1.1 million NHS records
A security researcher has blamed misconfigured implementations of Microsoft Power Pages for a slew of data breaches from web portals – including the leak of 1.1 million NHS employee records. Read more in my article on the Hot for Security blog.
data breach, Data loss, Global Security News, Guest blog, privacy
FlipaClip animation app data breach exposes details of almost 900,000 users
Flipaclip, an animation creation app that is particularly popular with youngsters, has exposed the details of over 890,000 users. Read more in my article on the Hot for Security blog.