Security

Healthcare company WebTPA discloses breach affecting 2.5 million people

Security /

A Texas-based company that provides health insurance and benefit plans disclosed a data breach affecting almost 2.5 million people, some of whom had their Social Security number stolen. WebTPA said in a data breach notice published earlier this month that the company detected “evidence of suspicious activity” on December 28, 2023, which prompted the company […]

Healthcare company WebTPA discloses breach affecting 2.5 million people Read More »

Hacker claims theft of India’s Samco account data

Security /

A hacker claims to be selling user records associated with Indian online brokerage firm Samco Securities, one of the widely-used platforms offering discount broking trading accounts for the country’s stock exchanges. The pseudonymous hacker listed the data allegedly breached from Samco on a known cybercrime forum, which they are selling for an undisclosed amount. TechCrunch

Hacker claims theft of India’s Samco account data Read More »

Ireland privacy watchdog confirms Dell data breach investigation

Security /

A top European privacy watchdog is investigating following the recent breaches of Dell customers’ personal information, TechCrunch has learned.  Ireland’s Data Protection Commission (DPC) deputy commissioner Graham Doyle confirmed to TechCrunch that the DPC has received “a breach notification on this matter” — referring to Dell — which is “currently under assessment.” Asked to elaborate,

Ireland privacy watchdog confirms Dell data breach investigation Read More »

Thoma Bravo’s LogRhythm merges with Exabeam in more cybersecurity consolidation

Security /

Private equity giant Thoma Bravo has announced that its security information and event management (SIEM) company LogRhythm will be merging with Exabeam, a rival cybersecurity company backed by the likes of Cisco and Lightspeed Venture Partners. SIEM is the business of using real-time data gleaned from servers, network devices, and applications to flag abnormal activity

Thoma Bravo’s LogRhythm merges with Exabeam in more cybersecurity consolidation Read More »

FBI seizes hacking forum BreachForums — again

Security /

The FBI along with a coalition of international law enforcement agencies seized the notorious cybercrime forum BreachForums on Wednesday.  For years, BreachForums has been a popular English-language forum for hackers and cybercriminals who wanted to advertise, sell and trade stolen data. Just recently, a threat actor advertised Dell customers’ personal information and data stolen from

FBI seizes hacking forum BreachForums — again Read More »

Google adds live threat detection and screen-sharing protection to Android

Security /

On the second day of the Google I/O 2024 conference, Google said on Wednesday that it is adding new security and privacy protections to Android, including on-device live threat detection to catch malicious apps, new safeguards for screen sharing and better security against cell site simulators. The company said it is increasing the on-device capability

Google adds live threat detection and screen-sharing protection to Android Read More »

Threat actor scraped Dell support tickets, including customer phone numbers

Security /

The person who claimed to have stolen the physical addresses of 49 million Dell customers appears to have taken more data from a different Dell portal, TechCrunch has learned. The newly compromised data includes names, phone numbers and email addresses of Dell customers. This personal data is contained in customer “service reports,” which also include

Threat actor scraped Dell support tickets, including customer phone numbers Read More »

‘Got that boomer!’: How cyber-criminals steal one-time passcodes for SIM swap attacks and raiding bank accounts

Security /

The incoming phone call flashes on a victim’s phone. It may only last a few seconds, but can end with the victim handing over codes that give cybercriminals the ability to hijack their online accounts or drain their crypto and digital wallets. “This is the PayPal security team here. We’ve detected some unusual activity on

‘Got that boomer!’: How cyber-criminals steal one-time passcodes for SIM swap attacks and raiding bank accounts Read More »

Scammers found planting online betting ads on Indian government websites

Security /

Some Indian government websites have allowed scammers to plant advertisements capable of redirecting visitors to online betting platforms. TechCrunch discovered around four dozen “gov.in” website links associated with Indian states, including Bihar, Goa, Karnataka, Kerala, Mizoram and Telangana that were redirecting to online betting platforms. Some of those websites belong to state police and property

Scammers found planting online betting ads on Indian government websites Read More »

Threat actor says he scraped 49M Dell customer addresses before the company found out

Security /

The person who claims to have 49 million Dell customer records told TechCrunch that he brute-forced an online company portal and scraped customer data, including physical addresses, directly from Dell’s servers.  TechCrunch verified that some of the scraped data matches the personal information of Dell customers. On Thursday, Dell sent an email to customers saying

Threat actor says he scraped 49M Dell customer addresses before the company found out Read More »