Security

US teachers’ union says hackers stole sensitive personal data on over 500,000 members

Security /

The Pennsylvania State Education Association (PSEA), a labor union representing educators across the state, says hackers stole the sensitive personal information of more than half a million of its members.  PSEA is the largest organization for educators in Pennsylvania, representing current and former teachers, counselors, health care workers, and school social workers. In a filing […]

US teachers’ union says hackers stole sensitive personal data on over 500,000 members Read More »

Cape opens $99/month beta of its privacy-first mobile plan, inks Proton deal, raises $30M

Security /

Mobile networks continue to be a major target for cybersecurity breaches, and Chinese hacking group Salt Typhoon‘s persistent attacks on multiple carriers are only the latest known examples.  The mobile carrier startup Cape is taking a novel approach to addressing the problem: it has built a service it says can provide a more secure, private

Cape opens $99/month beta of its privacy-first mobile plan, inks Proton deal, raises $30M Read More »

Researchers name several countries as potential Paragon spyware customers

Security /

The governments of Australia, Canada, Cyprus, Denmark, Israel, and Singapore are likely customers of Israeli spyware maker Paragon Solutions, according to a new technical report by a renowned digital security lab. On Wednesday, The Citizen Lab, a group of academics and security researchers housed at the University of Toronto that has investigated the spyware industry

Researchers name several countries as potential Paragon spyware customers Read More »

Here’s why Google pitched its $32B Wiz acquisition as ‘multicloud’

Security /

Tuesday’s big news that Google is acquiring security startup Wiz for a record-breaking $32 billion comes with a very big qualifier. Google says it will position Wiz as a “multicloud” offering, meaning Wiz will not be a Google-only shop.  The reality is that Google had no choice but to do this, and a closer look

Here’s why Google pitched its $32B Wiz acquisition as ‘multicloud’ Read More »

CISA scrambles to contact fired employees after court rules layoffs ‘unlawful’

Security /

The U.S. government’s cybersecurity agency is scrambling to contact more than 130 former employees after a federal court ruled that the Trump administration must reinstate workers it “unlawfully” fired. U.S. District Judge James Bredar last week ordered the Trump administration to reinstate employees laid off across a number of U.S. government agencies, including the Department

CISA scrambles to contact fired employees after court rules layoffs ‘unlawful’ Read More »

Texas man faces prison for activating ‘kill switch’ on former employer’s network

Security /

Texas software developer Davis Lu faces up to 10 years in prison after a federal jury convicted him of “causing intentional damage” to his former employer’s network. According to the Justice Department, Lu, 55, began sabotaging his employer’s systems after a 2018 corporate restructuring left Lu with reduced responsibilities and system access.  Lu is accused

Texas man faces prison for activating ‘kill switch’ on former employer’s network Read More »

Hackers are exploiting Fortinet firewall bugs to plant ransomware

Security /

Security researchers have observed hackers linked to the notorious LockBit gang exploiting a pair of Fortinet firewall vulnerabilities to deploy ransomware on several company networks.  In a report published last week, security researchers at Forescout Research said a group it’s tracking dubbed “Mora_001” is exploiting the Fortinet firewalls, which sit on the edge of a

Hackers are exploiting Fortinet firewall bugs to plant ransomware Read More »

DOGE staffer violated Treasury rules by emailing unencrypted personal data

Security /

A staffer working for the Department of Government Efficiency (DOGE) broke Treasury policies by sending an email containing unencrypted personal information, according to testimony from a senior government cybersecurity official in a federal lawsuit. Marko Elez, a DOGE staffer working at the U.S. Treasury, emailed a spreadsheet with unencrypted personally identifiable information to two Trump administration

DOGE staffer violated Treasury rules by emailing unencrypted personal data Read More »

UK’s internet watchdog puts storage and file-sharing services on watch over CSAM

Security /

As duties under the U.K.’s Online Safety Act (OSA) related to tackling illegal content came into force Monday, the internet watchdog, Ofcom, said it has launched a new enforcement program focused on online storage and file-sharing services. The regulator said its evidence shows that file-sharing and file-storage services are “particularly susceptible” to being used for

UK’s internet watchdog puts storage and file-sharing services on watch over CSAM Read More »

European tech industry coalition calls for ‘radical action’ on digital sovereignty — starting with buying local

Security /

A broad coalition drawn from across the ranks of Europe’s tech industry is calling for “radical action” from European Union lawmakers to shrink reliance on foreign-owned digital infrastructure and services to bolster the bloc’s economic prospects, resilience, and security in increasingly fraught geopolitical times. In an open letter to European Commission president, Ursula von der

European tech industry coalition calls for ‘radical action’ on digital sovereignty — starting with buying local Read More »