Security

Allianz Life says ‘majority’ of customers’ personal data stolen in cyberattack

Security /

U.S. insurance giant Allianz Life has confirmed to TechCrunch that hackers stole the personal information of the “majority” of its customers, financial professionals, and employees during a mid-July data breach. When reached by TechCrunch, Allianz Life spokesperson Brett Weinberg confirmed the breach. “On July 16, 2025, a malicious threat actor gained access to a third-party, […]

Allianz Life says ‘majority’ of customers’ personal data stolen in cyberattack Read More »

Google took a month to shut down Catwatchful, a phone spyware operation hosted on its servers

Security /

Google has suspended the account of phone surveillance operator Catwatchful, which was using the tech giant’s servers to host and operate the monitoring software. Google’s move to shut down the spyware operation comes a month after TechCrunch alerted the technology giant the operator was hosting the operation on Firebase, one of Google’s developer platforms. Catwatchful

Google took a month to shut down Catwatchful, a phone spyware operation hosted on its servers Read More »

Cybercrime forum Leak Zone publicly exposed its users’ IP addresses

Security /

A self-styled “leaking and cracking forum” where users advertise and share breached databases, stolen credentials, and pirated software was leaking the IP addresses of its logged-in users to the open web, security researchers have found. Leak Zone left an Elasticsearch database exposed to the internet without a password, according to researchers at UpGuard. In a

Cybercrime forum Leak Zone publicly exposed its users’ IP addresses Read More »

European authorities arrest alleged admin of notorious Russian crime forum XSS

Security /

European officials have confirmed the arrest of the alleged administrator behind XSS.is, one of the longest-running Russian-language cybercrime forums.  Per Europol, the alleged administrator was arrested in Ukraine on Tuesday. A law enforcement notice on XSS now reads: “This domain has been seized.” According to a statement by prosecutors in Paris, French authorities obtained a

European authorities arrest alleged admin of notorious Russian crime forum XSS Read More »

Hundreds of organizations breached by SharePoint mass-hacks

Security /

Security researchers say hackers have breached at least 400 organizations by exploiting a zero-day vulnerability in Microsoft SharePoint, signalling a sharp rise in the number of detected compromises since the bug was discovered last week. Eye Security, a Dutch cybersecurity firm that first identified the vulnerability in SharePoint, a popular server software that companies use

Hundreds of organizations breached by SharePoint mass-hacks Read More »

Apple alerted Iranians to iPhone spyware attacks, say researchers

Security /

Apple notified more than a dozen Iranians in recent months that their iPhones had been targeted with government spyware, according to security researchers. Miian Group, a digital rights organization that focuses on Iran, and Hamid Kashfi, an Iranian cybersecurity researcher who lives in Sweden, said they spoke with several Iranians who received the notifications in

Apple alerted Iranians to iPhone spyware attacks, say researchers Read More »

UK government wants ransomware victims to report cyberattacks so it can disrupt the hackers

Security /

The U.K. government wants to require victims of ransomware to report if they were breached with the goal of providing law enforcement with information that could help target the cybercriminals responsible.  On Tuesday, the U.K.’s interior ministry, the Home Office, published a proposal with the aim of changing the British government’s strategy to counter ransomware.

UK government wants ransomware victims to report cyberattacks so it can disrupt the hackers Read More »

Serial spyware founder Scott Zuckerman wants the FTC to unban him from the surveillance industry

Security /

The founder of a spyware company who was banned from the surveillance industry following an earlier data breach is now seeking to undo the ban, according to the Federal Trade Commission.  In a notice on Friday, the federal watchdog said Scott Zuckerman sought to rescind or modify the 2021 ban imposed by the FTC on

Serial spyware founder Scott Zuckerman wants the FTC to unban him from the surveillance industry Read More »

Hackers exploiting SharePoint zero-day seen targeting government agencies

Security /

The hackers behind the initial wave of attacks exploiting a zero-day in Microsoft SharePoint servers have so far primarily targeted government organizations, according to researchers as well as news reports. Over the weekend U.S. cybersecurity agency CISA published an alert, warning that hackers were exploiting a previously unknown bug — known as a “zero-day” —

Hackers exploiting SharePoint zero-day seen targeting government agencies Read More »

Indian crypto exchange CoinDCX confirms $44 million stolen during hack

Security /

India’s largest crypto exchange CoinDCX has confirmed that one of its internal operational accounts was compromised in a recent security breach, allowing the hackers to make off with millions in crypto. On Saturday, CoinDCX co-founder and CEO Sumit Gupta disclosed in a post on X that an internal account “used only for liquidity provisioning on

Indian crypto exchange CoinDCX confirms $44 million stolen during hack Read More »