The White House is investigating after one or more people reportedly accessed the contacts from the personal phone of White House chief of staff Susie Wiles, and used the information to contact other top officials and impersonate her. Wiles reportedly told people that her phone was hacked. The Wall Street Journal first reported the hack […]
White House investigating how Trump’s chief of staff’s phone was hacked Read More »
The U.S. government imposed sanctions on FUNNULL, a company accused of providing infrastructure for cybercriminals running so-called “pig butchering” crypto scams that have led to $200 million in losses for Americans victims. On Thursday, the Treasury’s Office of Foreign Assets Control announced the sanctions, saying FUNNULL is “linked to the majority of virtual currency investment
US government sanctions tech company involved in cyber scams Read More »
This month, cybersecurity company Thinkst will mark its 10th anniversary since the launch of its now-flagship product, Canary. The company debuted Canary after seeing companies spend millions of dollars on cybersecurity products, yet were still taking months or longer to realize that they had been breached. Thinkst believed it could make a digital tripwire product
A decade in, bootstrapped Thinkst Canary reaches $20M in ARR without VC funding Read More »
Fashion retail giant Victoria’s Secret said it is addressing a “security incident,” as its website and online orders face ongoing disruption. Victoria’s Secret posted the brief statement on its website Wednesday. The company’s outages began earlier on Monday, as users have reported not being able to access Victoria’s Secret’s website. “We immediately enacted our response
Victoria’s Secret hit by outages as it battles security incident Read More »
LexisNexis Risk Solutions, a data broker that collects and uses consumers’ personal data to help its paying corporate customers detect possible risk and fraud, has disclosed a data breach affecting more than 364,000 people. The company said in a filing with Maine’s attorney general that the breach, dating back to December 25, 2024, allowed a
More than a decade ago, researchers at antivirus company Kaspersky identified suspicious internet traffic of what they thought was a known government-backed group, based on similar targeting and its phishing techniques. Soon, the researchers realized they had found a much more advanced hacking operation that was targeting the Cuban government, among others. Eventually the researchers
Mysterious hacking group Careto was run by the Spanish government, sources say Read More »
Microsoft and law enforcement have announced a court-authorized takedown of Lumma, a prolific info-stealer malware operation found on more than 394,000 Windows PCs globally, mostly in Brazil, Europe, and the United States. The tech giant took civil action to ask a federal court to seize 2,300 domains that served as the malware’s network of command
Microsoft says Lumma password stealer malware found on 394,000 Windows PCs Read More »
A Massachusetts student has agreed to plead guilty to federal charges relating to hacking and extorting one of the largest U.S. education tech companies, prosecutors confirmed Tuesday. Matthew D. Lane, 19, is accused of using stolen login credentials to access the network of an unnamed software company, which serves schools across North America and elsewhere,
US student agrees to plead guilty to hack affecting tens of millions of students Read More »
Coinbase said at least 69,461 customers had personal and financial information stolen during a months-long data breach that it disclosed last week. The crypto giant confirmed the number of affected customers in a filing with Maine’s attorney general on Wednesday, as required by the state’s data breach notification law. Coinbase’s filing said the breach dates
Coinbase says its data breach affects at least 69,000 customers Read More »
A trio of phone surveillance apps, which was caught spying on millions of people’s phones earlier this year, has gone offline. Cocospy, Spyic, and Spyzie were three near-identical but differently branded stalkerware apps that allowed the person planting one of the apps on a target’s phone access to their personal data — including their messages,
Cocospy stalkerware apps go offline after data breach Read More »
