Security

Can an ‘ethical’ spyware maker justify providing its tech to ICE?

Paragon, an Israeli spyware company that claims to operate as an “ethical” surveillance vendor, faced scrutiny when earlier this year Italy was caught using Paragon’s tools to spy on the phones of two journalists. Paragon responded by cutting Italy off from its surveillance products, becoming the first spyware company to ever publicly name one of […]

Can an ‘ethical’ spyware maker justify providing its tech to ICE? Read More »

CISA warns hackers are actively exploiting critical ‘Citrix Bleed 2’ security flaw

U.S. cybersecurity agency CISA says hackers are actively exploiting a critical-rated security flaw in a widely used Citrix product, and has given other federal government departments just one day to patch their systems. Security researchers have dubbed the bug “Citrix Bleed 2” for its similarity to a 2023 security flaw in Citrix NetScaler, a networking

CISA warns hackers are actively exploiting critical ‘Citrix Bleed 2’ security flaw Read More »

AI chatbot’s simple ‘123456’ password risked exposing personal data of millions of McDonald’s job applicants

Security researchers found that they could access the personal information of 64 million people who had applied for a job at McDonald’s, in large part by logging into the company’s AI job hiring chatbot with the username and password “123456.” Ian Carroll and Sam Curry wrote in a blog post that “during a cursory security

AI chatbot’s simple ‘123456’ password risked exposing personal data of millions of McDonald’s job applicants Read More »

French police arrest Russian basketball player accused of ransomware: report

French authorities have arrested a Russian professional basketball player who is accused of being a member of a ransomware gang, according to newswire Agence France-Presse.  Daniil Kasatkin plays for MBA Moscow, a team that is part of the VTB United League, which comprises mostly Russian clubs as well as one team from Belarus and Kazakhstan.

French police arrest Russian basketball player accused of ransomware: report Read More »

Authorities arrest four hackers linked to UK retail hacking spree

U.K. authorities confirmed on Thursday they had arrested four individuals for allegedly carrying out a series of hacks earlier this year targeting the British retail sector, including Marks & Spencer, Harrods, and the Co-op. The National Crime Agency said a woman aged 20, two men aged 19, and a youth aged 17, were arrested on

Authorities arrest four hackers linked to UK retail hacking spree Read More »

Jack Dorsey says his ‘secure’ new Bitchat app has not been tested for security

On Sunday, Block CEO and Twitter co-founder Jack Dorsey launched an open source chat app called Bitchat, promising to deliver “secure” and “private” messaging without a centralized infrastructure. The app relies on Bluetooth and end-to-end encryption, unlike traditional messaging apps that rely on the internet. By being decentralized, Bitchat has potential for being a secure

Jack Dorsey says his ‘secure’ new Bitchat app has not been tested for security Read More »

US government confirms arrest of Chinese national accused of stealing COVID research and mass-hacking email servers

The U.S. Justice Department has confirmed the arrest of Chinese national Xu Zewei, an alleged prolific contract hacker who carried out cyberattacks for China. Xu was arrested in Italy at the request of U.S. prosecutors. Xu and another Chinese national Zhang Yu, who remains at large, are accused in a nine-charge indictment of “hacking and

US government confirms arrest of Chinese national accused of stealing COVID research and mass-hacking email servers Read More »

Activision took down Call of Duty game after PC players hacked, says source

Games giant Activision took down “Call of Duty: WWII” due to hackers exploiting a flaw in a specific PC version of the game, which led to several players getting their computers hacked, TechCrunch has learned.  Last week, Activision announced that it brought offline the Microsoft Store version of “Call of Duty: WWII,” a 2017 first-person

Activision took down Call of Duty game after PC players hacked, says source Read More »

Marks & Spencer chair refuses to say if retailer paid hackers after ransomware attack

The chairman of U.K. retail giant Marks & Spencer declined to tell a panel of lawmakers whether the company paid a hacking group following a ransomware attack earlier this year.   “We’ve said that we are not discussing any of the details of our interaction with the threat actor,” said chairman Archie Norman, referring to the

Marks & Spencer chair refuses to say if retailer paid hackers after ransomware attack Read More »