Security

CrowdStrike fires ‘suspicious insider’ who passed information to hackers

Security /

Cybersecurity giant CrowdStrike has confirmed firing a “suspicious insider” last month who allegedly fed information about the company to a notorious hacking group. A hacking collective known as Scattered Lapsus$ Hunters published screenshots late Thursday and Friday morning in a public Telegram channel that allegedly showed insider access to CrowdStrike systems. The screenshots, which TechCrunch […]

CrowdStrike fires ‘suspicious insider’ who passed information to hackers Read More »

Google says hackers stole data from 200 companies following Gainsight breach

Security /

Google has confirmed that hackers have stolen the Salesforce-stored data of more than 200 companies in a large-scale supply chain hack. On Thursday, Salesforce disclosed a breach of “certain customers’ Salesforce data” — without naming affected companies — that was stolen via apps published by Gainsight, which provides a customer support platform to other companies.  

Google says hackers stole data from 200 companies following Gainsight breach Read More »

Salesforce says some of its customers’ data was accessed after Gainsight breach

Security /

Salesforce said on Wednesday that it’s investigating a breach of “certain customers’ Salesforce data” that was compromised through apps published by Gainsight, a company that sells a platform for other companies to manage their customers.  In a notice published late Wednesday, Salesforce said the hacks involve “Gainsight-published applications connected to Salesforce, which are installed and

Salesforce says some of its customers’ data was accessed after Gainsight breach Read More »

How the classic anime ‘Ghost in the Shell’ predicted the future of cybersecurity 30 years ago

Security /

The year is 2030. An “infamous mystery hacker” known as the Puppet Master is wreaking havoc on the internet, breaking into the so-called cyber-brains of several humans as well as “every terminal on the network.” As it turns out, the Puppet Master is a creation of Japan’s Ministry of Foreign Affairs.   In other words, the

How the classic anime ‘Ghost in the Shell’ predicted the future of cybersecurity 30 years ago Read More »

US, UK, and Australia sanction Russian ‘bulletproof’ web host used in ransomware attacks

Security /

The governments of the United States, United Kingdom, and Australia have sanctioned a Russian “bulletproof” web hosting company and several of its related firms for allegedly being used to launch ransomware attacks against U.S. victims and critical infrastructure.  In a statement Wednesday, the U.S. Treasury said it imposed coordinated sanctions on the Russia-based web host

US, UK, and Australia sanction Russian ‘bulletproof’ web host used in ransomware attacks Read More »

DoorDash confirms data breach impacting users’ phone numbers and physical addresses

Security /

DoorDash disclosed a data breach that exposed the personal information of an unspecified number of users, which included names, email addresses, phone numbers, and physical addresses. Despite the fact that hackers stole phone numbers and physical addresses, DoorDash said that “no sensitive information was accessed by the unauthorized third party and we have no indication

DoorDash confirms data breach impacting users’ phone numbers and physical addresses Read More »

Surveillance tech provider Protei was hacked, its data stolen and its website defaced

Security /

A Russian telecom company that develops technology to allow phone and internet companies to conduct web surveillance and censorship was hacked, had its website defaced, and had data stolen from its servers, TechCrunch has learned. Founded in Russia, Protei makes telecommunications systems for phone and internet providers across dozens of countries, including Bahrain, Italy, Kazakhstan,

Surveillance tech provider Protei was hacked, its data stolen and its website defaced Read More »

Five people plead guilty to helping North Koreans infiltrate US companies as ‘remote IT workers’

Security /

Five people have pleaded guilty to helping North Koreans defraud U.S. companies by posing as remote IT workers, the U.S. Department of Justice announced on Friday. The five people are accused of working as “facilitators” who helped North Koreans get jobs by providing their own real identities, or false and stolen identities of more than

Five people plead guilty to helping North Koreans infiltrate US companies as ‘remote IT workers’ Read More »

Police take down three cybercrime operations in latest round of ‘whack-a-mole’

Security /

An international coalition of law enforcement agencies coordinated by Europol targeted and took down three cybercrime operations in its latest round of what authorities call “Operation Endgame.” In a press release, Europol said that the police operation targeted the infostealing malware Rhadamanthys, a botnet called Elysium, and the remote access trojan VenomRAT. The authorities say

Police take down three cybercrime operations in latest round of ‘whack-a-mole’ Read More »

CISA warns federal agencies to patch flawed Cisco firewalls amid ‘active exploitation’ across the US government

Security /

U.S. cybersecurity agency CISA says federal government departments are not sufficiently patching to protect against an active hacking campaign targeting Cisco firewalls. In an updated advisory published Wednesday, CISA said that it was currently “tracking active exploitation” of two security flaws in Cisco’s Adaptive Security Appliance (ASA) software, which powers a range of enterprise grade

CISA warns federal agencies to patch flawed Cisco firewalls amid ‘active exploitation’ across the US government Read More »