cybersecurity

SafeBase taps AI to automate software security reviews

Security /

Entrepreneurs Al Yang and Adar Arnon met at Harvard Business School and quickly realized that they had an interest in common: cybersecurity. “We’ve witnessed an evolving business climate that brought along with it an unprecedented need for improved security processes,” Arnon told TechCrunch. “Security’s importance has increased exponentially … [it’s] non-negotiable for technology buyers.” Yang […]

SafeBase taps AI to automate software security reviews Read More »

Change Healthcare hackers broke in using stolen credentials — and no MFA, says UHG CEO

Government & Policy /

The ransomware gang that hacked into U.S. health tech giant Change Healthcare used a set of stolen credentials to remotely access the company’s systems that weren’t protected by multifactor authentication (MFA), according to the chief executive of its parent company, UnitedHealth Group (UHG). UnitedHealth CEO Andrew Witty provided the written testimony ahead of a House

Change Healthcare hackers broke in using stolen credentials — and no MFA, says UHG CEO Read More »

Thoma Bravo to take UK cybersecurity company Darktrace private in $5B deal

Security /

Darktrace is set to go private in a deal that values the U.K.-based cybersecurity giant at around $5 billion. A newly formed entity called Luke Bidco Ltd., formed by private equity giant Thoma Bravo, has tabled an all-cash bid of £6.20 ($7.75) per share, which represents a 44% premium on its average price for the

Thoma Bravo to take UK cybersecurity company Darktrace private in $5B deal Read More »

Rubrik’s shares end trading up almost 16% on the company’s public debut

Security /

Rubrik shares hit the New York Stock Exchange Thursday, debuting at $38 a share. The cybersecurity company priced its shares at $32 apiece Wednesday night, just a hair over its initial target range of $29 to $31 after raising $752 million. This share price gives Rubrik a fully diluted valuation of $6.6 billion, up 88%

Rubrik’s shares end trading up almost 16% on the company’s public debut Read More »

Ex-NSA hacker and ex-Apple researcher launch startup to protect Apple devices

Security /

Two veteran security experts are launching a startup that aims to help other makers of cybersecurity products to up their game in protecting Apple devices. Their startup is called DoubleYou, the name taken from the initials of its co-founder, Patrick Wardle, who worked at the U.S. National Security Agency between 2006 and 2008. Wardle then

Ex-NSA hacker and ex-Apple researcher launch startup to protect Apple devices Read More »

Security bugs in popular phone-tracking app iSharing exposed users’ precise locations

Privacy /

Last week when a security researcher said he could easily obtain the precise location from any one of the millions of users of a widely used phone-tracking app, we had to see it for ourselves. Eric Daigle, a computer science and economics student at the University of British Columbia in Vancouver, found the vulnerabilities in

Security bugs in popular phone-tracking app iSharing exposed users’ precise locations Read More »

UnitedHealth says Change hackers stole health data on ‘substantial proportion of people in America’

Privacy /

Health insurance giant UnitedHealth Group has confirmed that a ransomware attack on its health tech subsidiary Change Healthcare earlier this year resulted in a huge theft of Americans’ private healthcare data. UnitedHealth said in a statement on Monday that a ransomware gang took files containing personal data and protected health information that it says may

UnitedHealth says Change hackers stole health data on ‘substantial proportion of people in America’ Read More »

US government downgrades bug in Chirp Systems app that contained hardcoded password

Security /

A vulnerability in a smart access control system used in thousands of U.S. rental homes went unfixed for years because Chirp Systems, the company that makes the system, ignored requests to fix the flaw. U.S. cybersecurity agency CISA went public with a security advisory last month saying that the phone apps developed by Chirp, which

US government downgrades bug in Chirp Systems app that contained hardcoded password Read More »

Lawmakers vote to reauthorize US spying law that critics say expands government surveillance

Privacy /

Lawmakers passed legislation early Saturday reauthorizing and expanding a controversial U.S. surveillance law shortly after the powers expired at midnight, rejecting opposition by privacy advocates and lawmakers. The bill, which passed on a 60-34 vote, reauthorizes powers known as Section 702 under the Foreign Intelligence Surveillance Act (FISA), which allows the government to collect the

Lawmakers vote to reauthorize US spying law that critics say expands government surveillance Read More »

Apex Legends hacker says game developers patched exploit used on streamers

Gaming /

Last month, a hacker wreaked havoc during an esports tournament of the popular shooter game Apex Legends, hacking two well-known streamers mid-game to make it look like they were using cheats. A month later, it seems like the hacking saga may have come to a close with the game developers patching the bug exploited by

Apex Legends hacker says game developers patched exploit used on streamers Read More »