Roman Berezhnoy and Egor Nikolaevich Glebov are alleged to have extorted over US $16 million in ransom payments using the Phobos ransomware, impacting over 1000 organisations in the United States. Read more in my article on the Hot for Security blog.
Category: data breach
data breach, Data loss, Global Security News, Guest blog, Laptop, Law & order, North Korea, remote working, Security threats
US woman faces years in federal prison for running laptop farm for N Korean IT workers
Christian Marie Chapman, of Litchfield Park, Arizona, helped generate over US $17 million for North Korea after over 300 US companies unwittingly hired staff believing them to be US citizens. Read more in my article on the Hot for Security blog.
AI, Artificial Intelligence, data breach, Data loss, Global Security News, Law & order, malware, Podcast, Ransomware, sim swap, Smashing Security, Twitter
Smashing Security podcast #404: Podcast not found
The story of how hackers managed to compromise the US Government’s official SEC Twitter account to boost the price of Bitcoins, AI isn’t helping reduce the rife conspiracy theories inside classrooms, and is the funeral bell tolling for ransomware? All this and more is discussed in the latest edition of the “Smashing Security” podcast by…
cyberattack, Cybersecurity, data breach, Global IT News, Global Security News, Lee Enterprises, local newspapers, Security
Media giant Lee Enterprises confirms cyberattack as news outlets report ongoing disruption
The newspaper owner said it was determining what data, if any, was stolen. © 2024 TechCrunch. All rights reserved. For personal use only.
Cybersecurity, data breach, Department of Government Efficiency, Elon Musk, Global IT News, Global Security News, Security, us government
The biggest breach of US government data is under way
Elon Musk’s DOGE has taken control and accessed large swathes of Americans’ private information held by the U.S. federal government. © 2024 TechCrunch. All rights reserved. For personal use only.
data breach, Data loss, Global Security News, Guest blog, Taliban
Secret Taliban records published online after hackers breach computer systems
The Taliban government of Afghanistan is reeling after unidentified hackers successfully carried out a massive cyber attack against its computer systems and published over 50GB of stolen documents and files online. Read more in my article on the Hot for Security blog.
Cybersecurity, data breach, Global IT News, Global Security News, Hewlett-Packard Enterprise, Microsoft, Russia, Security
HPE begins notifying data breach victims after Russian government hack
Hackers with Russian foreign intelligence were blamed for the breach, which also targeted Microsoft. © 2024 TechCrunch. All rights reserved. For personal use only.
Cybersecurity, data breach, Department of Government Efficiency, Elon Musk, Global IT News, Global Security News, Security
Coalition of US states to file lawsuit after Musk’s DOGE gains access to Americans’ personal data
The states plan to file the lawsuit in defense of Americans’ “right to privacy.” © 2024 TechCrunch. All rights reserved. For personal use only.
data breach, Data loss, Global Security News, Guest blog, law, Ransomware
Data breaches at UK law firms are on the rise, research reveals
British legal professionals have seen a “significant surge” in data breaches, according to new research from NetDocuments, a firm that provides a cloud-based content management platform for the legal sector. Read more in my article on the Tripwire State of Security blog.
Cybersecurity, data breach, Global IT News, Global Security News, powerschool, scoop, Security
PowerSchool data breach affected 16,000 students in the UK
The edtech giant has begun notifying individuals outside of the US and Canada affected by the breach © 2024 TechCrunch. All rights reserved. For personal use only.
ad blocking, Coinbase, data breach, Data loss, Global Security News, malware, Podcast, powerschool, QR code, Ransomware, Smashing Security, VPN
Smashing Security podcast #403: Coinbase crypto heists, QR codes, and ransomware in the classroom
In episode 403 of “Smashing Security” we dive into the mystery of $65 million vanishing from Coinbase users faster than J-Lo slipped into Graham’s DMs, Geoff gives a poor grade for PowerSchool’s security, and Carole takes a curious look at QR codes. All this and more is discussed in the latest edition of the “Smashing…
Cybersecurity, data breach, Department of Government Efficiency, Elon Musk, Global IT News, Global Security News, Security, us government
The biggest breach of US government data is under way
Elon Musk’s DOGE has taken control and accessed large swathes of Americans’ private information held by the U.S. federal government. © 2024 TechCrunch. All rights reserved. For personal use only.
Cybersecurity, data breach, Global IT News, Global Security News, grubhub, Security
Grubhub confirms data breach affecting customers and drivers
U.S. food delivery giant Grubhub says hackers accessed the personal details of customers and drivers after breaching its internal systems. Grubhub is a popular food-ordering and delivery platform with over 375,000 merchants and 200,000 delivery providers using its platform in more than 4,000 U.S. cities. New York-based Wonder Group acquired the company last fall in…
Bain Capital, Cybersecurity, data breach, Global IT News, Global Security News, hacking, powerschool, Security
What PowerSchool won’t say about its data breach affecting millions of students
The hack has the potential to be one of the biggest of the year, but the edtech giant is refusing to answer important questions © 2024 TechCrunch. All rights reserved. For personal use only.
cyberattacks, Cybersecurity, data breach, Evergreen, Global IT News, Global Security News, Security
The TechCrunch Cyber Glossary
This glossary includes the most common terms and expressions TechCrunch uses in our security reporting, and explanations of how — and why — we use them. © 2024 TechCrunch. All rights reserved. For personal use only.
Cybersecurity, data breach, Global IT News, Global Security News, Security
US nonprofit healthcare provider says hackers stole medical and personal data of 1M+ patients
Community Health Center (CHC), a Connecticut-based nonprofit healthcare provider, has confirmed that hackers accessed the sensitive data of more than a million patients. In a filing with Maine’s attorney general on Thursday, CHC said it detected suspicious activity on its network on 2 January and determined that a “skilled criminal hacker” had accessed its network…
Cybersecurity, data breach, Global IT News, Global Security News, MGM Resorts breach, Ransomware, Security
MGM Resorts settles lawsuits after millions of customer records stolen in data breaches
A court filing says 37 million MGM customers had personal data stolen in the cyberattacks. © 2024 TechCrunch. All rights reserved. For personal use only.
@TechFieldDay, @TheFuturumGroup, AI, Analytics & Intelligence, Consumer behavior analysis, Cybersecurity, data breach, data protection regulation, Data Security, Global Security News, Governance, Risk & Compliance, Meta, Regulatory Compliance, Social - Facebook, Social - LinkedIn, Social - X
Our Digital Footprints are Breadcrumbs for Mapping our Personal Behavior
The Government Accountability Office states that customers are usually unaware of the potential privacy risks and biases that arise from use of personal information. The post Our Digital Footprints are Breadcrumbs for Mapping our Personal Behavior appeared first on Security Boulevard.
Cybersecurity, data breach, Global IT News, Global Security News, powerschool, Security
PowerSchool begins notifying students and teachers after massive data breach
The edtech giant is notifying state attorneys general about the breach but won’t say how many individuals have been affected © 2024 TechCrunch. All rights reserved. For personal use only.
Cybersecurity, data breach, Global IT News, Global Security News, hacking, Security, TalkTalk
TalkTalk investigating data breach after hacker claims theft of customer data
A hacker claims to be selling the data of 18.8 million TalkTalk customers, but the telecoms giant says this figure is ‘significantly overstated’ © 2024 TechCrunch. All rights reserved. For personal use only.
cyberattack, Cybersecurity, data breach, Exclusive, Global IT News, Global Security News, Ransomware, Security, UnitedHealth
UnitedHealth confirms 190 million Americans affected by Change Healthcare data breach
The number of individuals confirmed to be affected by the data breach is almost double the company’s previous estimate. © 2024 TechCrunch. All rights reserved. For personal use only.
data breach, Data loss, Global Security News, Guest blog, law, Law & order, Turkey
Be careful what you say about data leaks in Turkey, new law could mean prison for reporting hacks
The Turkish government is proposing a controversial new cybersecurity law that could make it a criminal act to report on data breaches. But might it stifle journalism and free speech? Read more in my article on the Tripwire State of Security blog.
Bain Capital, Cybersecurity, data breach, Global IT News, Global Security News, hacking, powerschool, Security
What PowerSchool isn’t saying about its ‘massive’ student data breach
The hack has the potential to be one of the biggest of the year, but the edtech giant is refusing to answer important questions © 2024 TechCrunch. All rights reserved. For personal use only.
Bain Capital, Cybersecurity, data breach, Global IT News, Global Security News, hacking, powerschool, Security
What PowerSchool isn’t saying about its ‘massive’ student data breach
The hack has the potential to be one of the biggest of the year, but the edtech giant is refusing to answer important questions © 2024 TechCrunch. All rights reserved. For personal use only.
Bain Capital, Cybersecurity, data breach, Global IT News, Global Security News, hacking, powerschool, Security
What PowerSchool isn’t saying about its ‘massive’ student data breach
The hack has the potential to be one of the biggest of the year, but the edtech giant is refusing to answer important questions © 2024 TechCrunch. All rights reserved. For personal use only.
Bain Capital, Cybersecurity, data breach, Global IT News, Global Security News, hacking, powerschool, Security
What PowerSchool isn’t saying about its ‘massive’ student data breach
The hack has the potential to be one of the biggest of the year, but the edtech giant is refusing to answer important questions © 2024 TechCrunch. All rights reserved. For personal use only.
data breach, Data loss, Global Security News, Guest blog, Hotel
Half a million hotel guests at risk after hackers accessed sensitive data
The personal information of almost half a million people is now in the hands of hackers after a security breach of a company used by some of the world’s best known hotel brands. Read more in my article on the Hot for Security blog.
Cybersecurity, data breach, Global IT News, Global Security News, powerschool, Security
Toronto school district says 40 years of student data stolen in PowerSchool breach
Canada’s largest school board says hackers may have accessed some 40 years’ worth of student data during the recent PowerSchool breach. In a letter sent to parents this week, the Toronto District School Board (TDSB) said that the data breach affected all students enrolled in the district between September 1985 and December 2024. The school…
Cybersecurity, data breach, Enterprise, Global IT News, Global Security News, hacking, HPE, Security
HPE investigating security breach after hacker claims theft of sensitive data
A well-known hacker claims to have stolen source code and user data from the enterprise IT giant © 2024 TechCrunch. All rights reserved. For personal use only.
AT&T, cyberattacks, Cybersecurity, data breach, Global IT News, Global Security News, Government & Policy, Security, Snowflake, us government, Verizon
DOJ confirms arrested US Army soldier is linked to AT&T and Verizon hacks
The alleged hacker claimed to have access to huge amounts of call records, including VP Kamala Harris and President Trump. © 2024 TechCrunch. All rights reserved. For personal use only.
Cybersecurity, data breach, EdTech, Global IT News, Global Security News, Hackers, hacking, infosec, K-12, powerschool, Security
How victims of PowerSchool’s data breach helped each other investigate ‘massive’ hack
School workers say they resorted to crowdsourcing help among each other following PowerSchool’s breach, fueled by solidarity and the slow response from PowerSchool. © 2024 TechCrunch. All rights reserved. For personal use only.
cyberattack, Cybersecurity, data breach, education, Exclusive, Global IT News, Global Security News, powerschool, Security, TC
Malware stole internal PowerSchool passwords from engineer’s hacked computer
The theft of a PowerSchool engineer’s passwords prior to the breach raises further doubts about the company’s security practices. © 2024 TechCrunch. All rights reserved. For personal use only.
Cleo, Clop, Cybersecurity, data breach, Global IT News, Global Security News, Ransomware, Security
Clop ransomware gang names dozens of victims hit by Cleo mass-hack, but several firms dispute breaches
The Russia-linked ransomware group is threatening to leak data stolen from almost 60 Cleo Software customers if ransoms aren’t paid © 2024 TechCrunch. All rights reserved. For personal use only.
AI, Apple Safari, data breach, Data loss, Elon Musk, Firefox, Global Security News, Google Chrome, Operating Systems, Podcast, privacy, Smashing Security, surveillance, video game
Smashing Security podcast #400: Hacker games, AI travel surveillance, and 25 years of IoT
The video game Path of Exile 2 suffers a security breach, we explore the issues of using predictive algorithms in travel surveillance systems, and the very worst IoT devices are put on show in Las Vegas. Oh, and has Elon Musk accidentally revealed he cheats at video games? All this and much more is discussed…
Cybersecurity, data breach, Exclusive, extortion, Global IT News, Global Security News, powerschool, Security
PowerSchool data breach victims say hackers stole ‘all’ historical student and teacher data
A trove of information on current and former students and teachers was accessed during the December cyberattack, sources say © 2024 TechCrunch. All rights reserved. For personal use only.
Cybersecurity, data breach, Exclusive, Global IT News, Global Security News, HIPAA, Security, UnitedHealth Group, UnitedHealthcare
UnitedHealth hid its Change Healthcare data breach notice for months
The ransomware attack on Change Healthcare affected over 100 million Americans, the health giant told regulators. © 2024 TechCrunch. All rights reserved. For personal use only.
Cloud Security, Cybersecurity, data breach, Data Privacy, Data Security, Featured, Global Security News, Identity & Access, Industry Spotlight, Network Security, News, powerschool, Ransomware, School security, Security Awareness, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, Threats & Breaches
Hackers Attack PowerSchool, Expose K-12 Teacher and Student Data
Giant education software provider PowerSchool reported that hackers using compromised credentials access a database and stole student and teacher data in an attack that the company said was not ransomware, though a ransom apparently was paid. Affected K-12 school districts are scrambling to alert parents and staffs. The post Hackers Attack PowerSchool, Expose K-12 Teacher…
cannabis, Cybersecurity, data breach, Global IT News, Global Security News, Ransomware, Security
Cannabis company Stiiizy says hackers accessed customers’ ID documents
A ransomware gang took credit for the breach, claiming to have stolen over 400,000 government-issued identity documents from customers. © 2024 TechCrunch. All rights reserved. For personal use only.
data breach, Data loss, Global Security News, Guest blog, malware, Ransomware
Space Bears ransomware: what you need to know
The Space Bears ransomware gang stands out from the crowd by presenting itself better than many legitimate companies, with corporate stock images and a professional-looking leak site. Read more in my article on the Tripwire State of Security blog.
Cybersecurity, data breach, Exclusive, Global IT News, Global Security News, powerschool, Security
PowerSchool says hackers stole students’ sensitive data, including Social Security numbers, in data breach
In an FAQ obtained by TechCrunch, PowerSchool confirms it negotiated with the threat actors responsible for the breach. © 2024 TechCrunch. All rights reserved. For personal use only.
data breach, Data loss, Global Security News, Guest blog, United Nations
United Nations aviation agency hacked, recruitment database plundered
The ICAO, the UN aviation agency tasked with keeping our skies safe, just got hacked… again. This time, a hacker is offering to sell the personal data of 42,000 job applicants. Read more in my article on the Hot for Security blog.
Cloud Security, Cybersecurity, data breach, Data Privacy, Data Security, Endpoint, Featured, Global Security News, Green Bay Packers, Industry Spotlight, malware, Mobile Security, Network Security, News, Security Boulevard (Original), skimming malware, Social - Facebook, Social - LinkedIn, Social - X, Spotlight, stolen data, Threat Intelligence, Threats & Breaches, YouTube
Green Bay Packers Retail Site Hacked, Data of 8,500 Customers Exposed
The data of more than 8,500 customers were exposed during an attack on the Green Bay Packers online retail website in which the hackers were able to bypass security measure and install malicious code, steal customers’ names, addresses, and credit card information. The post Green Bay Packers Retail Site Hacked, Data of 8,500 Customers Exposed…
cyberattack, data breach, Global IT News, Global Security News, russia-ukraine war, Security
Ukrainian hackers take credit for hacking Russian ISP that wiped out servers and caused internet outages
The Russian ISP blamed the Ukrainian hackers for causing a “complete failure” across its internet infrastructure. © 2024 TechCrunch. All rights reserved. For personal use only.
Bain Capital, Cybersecurity, data breach, Global IT News, Global Security News, powerschool, Security
Edtech giant PowerSchool says hackers accessed personal data of students and teachers
The Bain Capital-owned edtech giant says hackers accessed its customer support portal using a “compromised credential.” © 2024 TechCrunch. All rights reserved. For personal use only.
Casio, Cybersecurity, data breach, Global IT News, Global Security News, Ransomware, Security
Casio says hackers stole personal data of 8,500 people during October ransomware attack
The Japanese electronics giant says it did not negotiate with the hackers responsible for the attack. © 2024 TechCrunch. All rights reserved. For personal use only.
Cybersecurity, data breach, Global IT News, Global Security News, hacking, icao, Security
UN aviation agency confirms hacker breached recruitment database to access thousands of records
ICAO says compromised data includes job applicants’ names, email addresses and employment history © 2024 TechCrunch. All rights reserved. For personal use only.
Cybersecurity, data breach, Global IT News, Global Security News, Security
UN aviation agency ‘investigating’ security breach after hacker claims theft of personal data
ICAO says the incident was allegedly linked to a hacker ‘known for targeting international organizations’ © 2024 TechCrunch. All rights reserved. For personal use only.
cyberattack, Cybersecurity, data breach, Global Security News, North America, Security, T-Mobile
Washington sues T-Mobile over 2021 data breach that spilled 79 million customer records
The 2021 breach affected at least 2 million Washington state residents, and tens of millions more customers around the United States. © 2024 TechCrunch. All rights reserved. For personal use only.
china, Cybersecurity, data breach, Global IT News, Global Security News, Security, us government, us treasury
Chinese government hackers reportedly targeted US Treasury’s sanctions office during December cyberattack
Chinese government hackers targeted the U.S. Treasury’s highly sensitive sanctions office during a December cyberattack, according to reports. According to The Washington Post, the state-sponsored hackers targeted the Office of Foreign Assets Control (OFAC), a government department that imposes economic and trade sanctions against countries and individuals, to potentially access information on Chinese organizations that…
23andMe, Change Healthcare, cyberattacks, Cybersecurity, data breach, Global IT News, Global Security News, Security, Snowflake Computing
These were the badly handled data breaches of 2024
Blaming victims, months of silence, and suing security researchers all featured in cybersecurity in 2024. © 2024 TechCrunch. All rights reserved. For personal use only.
23andMe, Change Healthcare, cyberattacks, Cybersecurity, data breach, Global IT News, Global Security News, Security, Snowflake Computing
These were the badly handled data breaches of 2024
Blaming victims, months of silence, and suing security researchers all featured in cybersecurity in 2024. © 2024 TechCrunch. All rights reserved. For personal use only.
cyberattacks, Cybersecurity, data breach, Evergreen, Global IT News, Global Security News, Security
The TechCrunch Cyber Glossary
This glossary includes the most common terms and expressions TechCrunch uses in our security reporting, and explanations of how — and why — we use them. © 2024 TechCrunch. All rights reserved. For personal use only.
Best of 2024, class action lawsuit, data breach, Global Security News, National Public Data
Best of 2024: National Public Data Sued for Hack that Exposed Data of 2.9 Billion People
National Public Data, a background check company that collects sensitive personal information, is facing a class-action legal complaint for allowing the data from 2.9 billion people to be stolen in a breach and later sold on the dark web for millions of dollars. The post Best of 2024: National Public Data Sued for Hack that…
Cybersecurity, data breach, Global IT News, Global Security News, Healthcare, Ransomware, Security
Ransomware attack on health giant Ascension hits 5.6 million patients
The cyberattack on Ascension ranks as the third-largest healthcare-related breach of 2024. © 2024 TechCrunch. All rights reserved. For personal use only.
Cybersecurity, data breach, Exclusive, Global IT News, Global Security News, location tracking, Security
Tracker firm Hapn spilling names of thousands of GPS tracking customers
A security researcher found customer names and workplace affiliations spilling directly from Hapn’s servers. © 2024 TechCrunch. All rights reserved. For personal use only.
Change Healthcare, Cybersecurity, data breach, Global IT News, Global Security News, Ransomware, Security, UnitedHealth
Nebraska sues Change Healthcare over security failings that led to medical data breach of over 100 million Americans
New details emerged about the Change Healthcare ransomware attack in Nebraska’s complaint. © 2024 TechCrunch. All rights reserved. For personal use only.
Cybersecurity, data breach, Global IT News, Global Security News, Ransomware, Security
Texas medical school says hackers stole sensitive health data of 1.4 million individuals
The university’s incident website blocks search engines from listing the site, making it more difficult for affected individuals to find the website in search results. © 2024 TechCrunch. All rights reserved. For personal use only.
Cloud Security, Cybersecurity, data breach, Data Privacy, Data Security, deloitte, Featured, Global Security News, Identity & Access, Incident Response, Industry Spotlight, malware, Network Security, News, Ransomware, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Social Engineering, Spotlight, State Government Breach, Threat Intelligence, Threats & Breaches
Rhode Island Benefits and Services Systems Hit by Ransomware
Hackers likely stole personal information such names, addresses, and SSNs in a ransomware attack on Rhode Island’s human services systems and are threatening to release the data as state and federal officials and Deloitte scrambling to mitigate the data breach. The post Rhode Island Benefits and Services Systems Hit by Ransomware appeared first on Security…
data breach, Data loss, Global Security News, Guest blog, Law & order, pii, rydox
Rydox cybercrime marketplace seixed by law enforcement, suspected admins arrested
Rydox, an online marketplace used by cybercriminals to sell hacked personal information and tools to commit fraud, has been seized in an international law enforcement operation and its suspected administrators arrested. Read more in my article on the Hot for Security blog.
data breach, Data loss, Global Security News, Guest blog, Krispy Kreme, malware, North America, Ransomware
Doughnut orders disrupted! Krispy Kreme suffers hack attack
Krispy Kreme, the dispenser of delectable doughnuts, says that it suffered a cyber attack at the end of last month which saw its IT systems compromised and has disrupted online orders in parts of the United States. Read more in my article on the Hot for Security blog.
2FA, data breach, Data loss, Global Security News, Instagram, Law & order, Podcast, Smashing Security, Snowflake
Smashing Security podcast #397: Snowflake hackers, and under the influence
A Canadian man is arrested in relation to the Snowflake hacks from earlier this year – after a cybersecurity researcher managed to track his identity, and a cryptocurrency-trading Instagram influencer is in trouble with the law. All this and more is discussed in the latest edition of the “Smashing Security” podcast by cybersecurity veterans Graham…
AI, data breach, Data loss, Global Security News, Guest blog, Operating Systems, privacy
AI chatbot startup WotNot leaks 346,000 files, including passports and medical records
Wotnot, An Indian AI startup that helps businesses build custom chatbots, has leaked almost 350,000 sensitive files after the data was left unsecured on the web. Read more in my article on the Hot for Security blog.
CryptoCurrency, data breach, Data loss, Global Security News, Guest blog, North Korea
North Korean hackers masquerade as remote IT workers and venture capitalists to steal crypto and secrets
In itslust for stealing cryptocurrency and sensitive information, North Korean hackers are disguising themselves as remote IT workers, recruiters, and even venture capitalists. Read more in my article on the Hot for Security blog.
data breach, Data loss, Global Security News, Guest blog, hospital, INC Ransom, malware, Ransomware
No guarantees of payday for ransomware gang that claims to have hacked children’s hospital
What is the point of INC Ransom’s attack on Alder Hey? They are not likely to be paid, and the attack on a children’s hospital only increases the chances that they will one day find their collars felt by law enforcement. Read more in my article on the Hot for Security blog.
data breach, Data loss, Global Security News, Guest blog, Microsoft, NHS, Power Pages, privacy
Data leaks from websites built on Microsoft Power Pages, including 1.1 million NHS records
A security researcher has blamed misconfigured implementations of Microsoft Power Pages for a slew of data breaches from web portals – including the leak of 1.1 million NHS employee records. Read more in my article on the Hot for Security blog.
data breach, Data loss, Global Security News, Guest blog, privacy
FlipaClip animation app data breach exposes details of almost 900,000 users
Flipaclip, an animation creation app that is particularly popular with youngsters, has exposed the details of over 890,000 users. Read more in my article on the Hot for Security blog.