Valve removed a video game from its online store Steam after users reported that a free demo for the game was installing malware on their computers. The game was called Sniper: Phantom’s Resolution, and promised to give players “realistic [first-person shooter] mechanics, dynamic storytelling, and high-stakes missions,” according to an archive of its Steam page. […]
Valve removes video game demo suspected of being malware Read More »
Operation Zero, a company that acquires and sells zero-days exclusively to the Russian government and local Russian companies, announced on Thursday that it’s looking for exploits for the popular messaging app Telegram, and is willing to offer up to $4 million for them. The exploit broker is offering up to $500,000 for a “one-click” remote
Russian zero-day seller is offering up to $4 million for Telegram exploits Read More »
A federal judge on Thursday issued an order blocking Elon Musk’s Department of Government Efficiency from accessing systems at the Social Security Administration (SSA) that store the personal information of millions of Americans. In the Thursday ruling, U.S. District Judge Ellen Hollander in Maryland accused DOGE of being “essentially engaged in a fishing expedition” in
The North Korean government is reportedly establishing a new hacking group within the intelligence agency Reconnaissance General Bureau (RGB). Daily NK, a news outlet that focuses on North Korea, reported last week that the new hacking unit, called Research Center 227, will focus on research to develop “offensive hacking technologies and programs,” citing a source
North Korea launches new unit with a focus on AI hacking, per report Read More »
Hackers are ramping up their attempts to exploit a trio of year-old ServiceNow vulnerabilities to break into unpatched company instances, security researchers warned this week. Threat intelligence startup GreyNoise said in a blog post on Tuesday that it had observed a “notable resurgence of in-the-wild activity” targeting the three ServiceNow vulnerabilities, tracked as CVE-2024-4879, CVE-2024-5178,
Wiz’s $32 billion all-cash acquisition by Google parent Alphabet promises a colossal payday for the cybersecurity startup’s early-stage investors. The deal is a big win for Sequoia, one of the best-known VC firms, which stands to make $3 billion, about 25x the money it invested in the company, Bloomberg reported. Despite substantial returns for Sequoia’s
How a $6M bet on Wiz turned into a massive 200x return for one early backer Read More »
There is a whole shady industry for people who want to monitor and spy on their families. Multiple app makers market their software — sometimes referred to as stalkerware — to jealous partners who can use these apps to access their victims’ phones remotely. Yet, despite how sensitive this data is, an increasing number of
Hacked, leaked, exposed: Why you should never use stalkerware apps Read More »
A consumer-grade spyware operation called SpyX was hit by a data breach last year, TechCrunch has learned. The breach reveals that SpyX and two other related mobile apps had records on almost two million people at the time of the breach, including thousands of Apple users. The data breach dates back to June 2024 but
The Pennsylvania State Education Association (PSEA), a labor union representing educators across the state, says hackers stole the sensitive personal information of more than half a million of its members. PSEA is the largest organization for educators in Pennsylvania, representing current and former teachers, counselors, health care workers, and school social workers. In a filing
US teachers’ union says hackers stole sensitive personal data on over 500,000 members Read More »
Mobile networks continue to be a major target for cybersecurity breaches, and Chinese hacking group Salt Typhoon‘s persistent attacks on multiple carriers are only the latest known examples. The mobile carrier startup Cape is taking a novel approach to addressing the problem: it has built a service it says can provide a more secure, private
