cybersecurity

SonicWall says hackers are exploiting a new zero-day bug to breach customer networks

Cybersecurity company SonicWall says hackers are exploiting a newly discovered vulnerability in one of its enterprise products to break into its customers’ corporate networks.  SonicWall said in an advisory that the vulnerability in its SMA1000 remote access appliance, which companies use to allow their employees to remotely log in to their corporate networks as if […]

SonicWall says hackers are exploiting a new zero-day bug to breach customer networks Read More »

Hackers are targeting machine identities. Token Security just raised $20M to stop them

The number of machine identities is booming thanks to the growth of cloud and AI – and it’s posing real security problems by giving hackers way more entry points than ever before. For example, a 2023 hack of authentication app Okta was caused by exploiting a service account while in 2024, Microsoft disclosed a major

Hackers are targeting machine identities. Token Security just raised $20M to stop them Read More »

How the ransomware attack at Change Healthcare went down: A timeline

A February 2024 ransomware attack on UnitedHealth-owned health tech company Change Healthcare stands as the largest data breach of health and medical data in U.S. history. Change Healthcare confirmed in January 2025 that its data breach affects approximately 190 million people in America, almost double the company’s previous estimate. The company said it has notified

How the ransomware attack at Change Healthcare went down: A timeline Read More »

TalkTalk investigating data breach after hacker claims theft of customer data

U.K. telecoms giant TalkTalk has confirmed that it is investigating a data breach after a hacker claimed to have stolen the personal information of millions of customers. In a post on a popular cybercrime forum seen by TechCrunch, an individual using the alias “b0nd” claimed to have stolen the personal data of more than 18.8

TalkTalk investigating data breach after hacker claims theft of customer data Read More »

UnitedHealth confirms 190 million Americans affected by Change Healthcare data breach

UnitedHealth has confirmed the ransomware attack on its Change Healthcare unit last February affected around 190 million people in America — nearly double previous estimates. The U.S. health insurance giant confirmed the latest number to TechCrunch on Friday after the markets closed. “Change Healthcare has determined the estimated total number of individuals impacted by the

UnitedHealth confirms 190 million Americans affected by Change Healthcare data breach Read More »

US indicts five individuals in crackdown on North Korea’s illicit IT workforce

U.S. authorities have indicted five people over their alleged involvement in a multi-year scheme that saw them obtain remote IT employment with dozens of American companies. The Department of Justice on Thursday announced the indictment of North Korean citizens Jin Sung-Il and Pak Jin-Song; Pedro Ernesto Alonso De Los Reyes of Mexico, and U.S. nationals

US indicts five individuals in crackdown on North Korea’s illicit IT workforce Read More »

Hidden Waymo feature let researcher customize robotaxi’s display

A security researcher found a hidden unreleased feature in the Waymo app that allowed her to display whatever characters she wanted on the robotaxi’s top display.  Jane Manchun Wong, a well-known security researcher, posted an image on X on Saturday showing the top display of a Waymo car — officially called “dome” — that included

Hidden Waymo feature let researcher customize robotaxi’s display Read More »

Trump administration fires members of cybersecurity review board in “horribly shortsighted” decision

On Tuesday, a day after Donald Trump’s inauguration as the new U.S. president, the Department of Homeland Security told members of several advisory committees that they were effectively fired.  Among the committees impacted is the Cyber Security Review Board, or CSRB, according to sources familiar with the board who spoke to TechCrunch, as well as

Trump administration fires members of cybersecurity review board in “horribly shortsighted” decision Read More »

Conduent confirms outage was due to a cybersecurity incident

U.S. government contractor Conduent, which provides technology to support services such as child support and food assistance, has confirmed that a recent outage was caused by a cybersecurity incident.  Conduent confirmed the disruption, which left some U.S. residents without access to support payments, to TechCrunch on Tuesday but declined to say whether the outage was

Conduent confirms outage was due to a cybersecurity incident Read More »

What PowerSchool isn’t saying about its ‘massive’ student data breach

It’s only January, but the recent hack of U.S. edtech giant PowerSchool has the potential to be one of the biggest breaches of the year.  PowerSchool, which provides K-12 software to more than 18,000 schools to support some 60 million students in the United States, confirmed the breach in early January. The California-based company, which

What PowerSchool isn’t saying about its ‘massive’ student data breach Read More »