Security

US government sanctions tech company involved in cyber scams

Security /

The U.S. government imposed sanctions on FUNNULL, a company accused of providing infrastructure for cybercriminals running so-called “pig butchering” crypto scams that have led to $200 million in losses for Americans victims.  On Thursday, the Treasury’s Office of Foreign Assets Control announced the sanctions, saying FUNNULL is “linked to the majority of virtual currency investment […]

US government sanctions tech company involved in cyber scams Read More »

A decade in, bootstrapped Thinkst Canary reaches $20M in ARR without VC funding

Security /

This month, cybersecurity company Thinkst will mark its 10th anniversary since the launch of its now-flagship product, Canary. The company debuted Canary after seeing companies spend millions of dollars on cybersecurity products, yet were still taking months or longer to realize that they had been breached. Thinkst believed it could make a digital tripwire product

A decade in, bootstrapped Thinkst Canary reaches $20M in ARR without VC funding Read More »

Victoria’s Secret hit by outages as it battles security incident

Security /

Fashion retail giant Victoria’s Secret said it is addressing a “security incident,” as its website and online orders face ongoing disruption.  Victoria’s Secret posted the brief statement on its website Wednesday. The company’s outages began earlier on Monday, as users have reported not being able to access Victoria’s Secret’s website. “We immediately enacted our response

Victoria’s Secret hit by outages as it battles security incident Read More »

Data broker giant LexisNexis says breach exposed personal information of over 364,000 people

Security /

LexisNexis Risk Solutions, a data broker that collects and uses consumers’ personal data to help its paying corporate customers detect possible risk and fraud, has disclosed a data breach affecting more than 364,000 people.  The company said in a filing with Maine’s attorney general that the breach, dating back to December 25, 2024, allowed a

Data broker giant LexisNexis says breach exposed personal information of over 364,000 people Read More »

Naukri exposed recruiter email addresses, researcher says

Security /

Naukri.com, a popular Indian employment website, has fixed a bug that exposed the email addresses of recruiters using its platform to search and hire talent online. The issue, discovered by security researcher Lohith Gowda, affected the API that Naukri used on its Android and iOS apps. The API exposed the email addresses of recruiters visiting

Naukri exposed recruiter email addresses, researcher says Read More »

Apple CEO reportedly urged Texas’ governor to ditch online child safety bill

Security /

Apple CEO Tim Cook reportedly called Texas Gov. Greg Abbott to make changes to or veto a newly passed law in the state that would require the company to verify the ages of device owners, according to The Wall Street Journal. Abbott has yet to sign the bill. But Apple, alongside Google, has been working

Apple CEO reportedly urged Texas’ governor to ditch online child safety bill Read More »

Mysterious hacking group Careto was run by the Spanish government, sources say

Security /

More than a decade ago, researchers at antivirus company Kaspersky identified suspicious internet traffic of what they thought was a known government-backed group, based on similar targeting and its phishing techniques. Soon, the researchers realized they had found a much more advanced hacking operation that was targeting the Cuban government, among others. Eventually the researchers

Mysterious hacking group Careto was run by the Spanish government, sources say Read More »

Microsoft says Lumma password stealer malware found on 394,000 Windows PCs

Security /

Microsoft and law enforcement have announced a court-authorized takedown of Lumma, a prolific info-stealer malware operation found on more than 394,000 Windows PCs globally, mostly in Brazil, Europe, and the United States. The tech giant took civil action to ask a federal court to seize 2,300 domains that served as the malware’s network of command

Microsoft says Lumma password stealer malware found on 394,000 Windows PCs Read More »

Wyden: AT&T, T-Mobile, and Verizon weren’t notifying senators of surveillance requests

Security /

Sen. Ron Wyden sent a letter to fellow Senators on Wednesday, revealing that three major U.S. cellphone carriers did not have provisions to notify lawmakers about government surveillance requests, despite a contractual requirement to do so.  In the letter, Wyden, a Democrat and longstanding member of the Senate Intelligence Committee, said that an investigation by

Wyden: AT&T, T-Mobile, and Verizon weren’t notifying senators of surveillance requests Read More »

US student agrees to plead guilty to hack affecting tens of millions of students

Security /

A Massachusetts student has agreed to plead guilty to federal charges relating to hacking and extorting one of the largest U.S. education tech companies, prosecutors confirmed Tuesday.  Matthew D. Lane, 19, is accused of using stolen login credentials to access the network of an unnamed software company, which serves schools across North America and elsewhere,

US student agrees to plead guilty to hack affecting tens of millions of students Read More »