hacking

HPE investigating security breach after hacker claims theft of sensitive data

Hewlett-Packard Enterprise is investigating a data breach after a well-known hacker claimed to have stolen sensitive information from the company. The hacker, who uses the alias “IntelBroker,” claims to have stolen a trove of data from HPE, the enterprise IT division of hardware giant HP.  In a post on a popular cybercrime forum on January […]

HPE investigating security breach after hacker claims theft of sensitive data Read More »

How victims of PowerSchool’s data breach helped each other investigate ‘massive’ hack

On January 7, at 11:10 p.m. in Dubai, Romy Backus received an email from education technology giant PowerSchool notifying her that the school she works at was one of the victims of a data breach that the company discovered on December 28. PowerSchool said hackers had accessed a cloud system that housed a trove of

How victims of PowerSchool’s data breach helped each other investigate ‘massive’ hack Read More »

Treasury sanctions Salt Typhoon hacking group behind breaches of major US telecom firms

The U.S. government has announced sanctions against a Chinese organization with links to Salt Typhoon, the hacking group responsible for the largest telecoms hack in U.S. history.  The Treasury Department’s Office of Foreign Assets Control (OFAC) announced on Friday that it had sanctioned a China-based cybersecurity company, known as Sichuan Juxinhe Network Technology, which it

Treasury sanctions Salt Typhoon hacking group behind breaches of major US telecom firms Read More »

UK plans to ban public sector organizations from paying ransomware hackers

U.K. public sector and critical infrastructure organizations could be banned from making ransom payments under new proposals from the U.K. government.  The U.K.’s Home Office launched a consultation on Tuesday that proposes a “targeted ban” on ransomware payments. Under the proposal, public sector bodies — including local councils, schools, and NHS trusts — would be

UK plans to ban public sector organizations from paying ransomware hackers Read More »

UK domain giant Nominet confirms cybersecurity incident linked to Ivanti VPN hacks

Nominet, the U.K. domain registry that maintains .co.uk domains, has experienced a cybersecurity incident that it confirmed is linked to the recent exploitation of a new Ivanti VPN vulnerability. In an email to customers, seen by TechCrunch, Nominet warned of an “ongoing security incident” under investigation. Nominet said hackers accessed its systems via “third-party VPN

UK domain giant Nominet confirms cybersecurity incident linked to Ivanti VPN hacks Read More »

Meet the Chinese ‘Typhoon’ hackers preparing for war

Of the cybersecurity risks facing the United States today, few loom larger than the potential sabotage capabilities posed by China-backed hackers, which senior U.S. national security officials have described as an “epoch-defining threat.” The U.S. says Chinese government-backed hackers have — in some cases for years — been burrowing deep into the networks of U.S.

Meet the Chinese ‘Typhoon’ hackers preparing for war Read More »

Facebook awards researcher $100,000 for finding bug that granted internal access

In October 2024, security researcher Ben Sadeghipour was analyzing Facebook’s ad platform when he found a security vulnerability that allowed him to run commands on the internal Facebook server housing that platform, essentially giving him control of the server.   After he reported the vulnerability to Facebook’s owner Meta, which Sadeghipour said took just one hour

Facebook awards researcher $100,000 for finding bug that granted internal access Read More »

UN aviation agency confirms hacker breached recruitment database to access thousands of records

The United Nations’ aviation agency has confirmed that a hacker accessed thousands of records after compromising its internal recruitment database. Over the weekend, an individual using the alias “Natohub” claimed to have accessed 42,000 documents from the International Civil Aviation Organization (ICAO). The agency said it was investigating the incident on Monday and, in an

UN aviation agency confirms hacker breached recruitment database to access thousands of records Read More »

Meet the Chinese ‘Typhoon’ hackers preparing for war

Of the cybersecurity risks facing the United States today, few loom larger than the potential sabotage capabilities posed by China-backed hackers, which senior U.S. national security officials have described as an “epoch-defining threat.” The U.S. says Chinese government-backed hackers have — in some cases for years — been burrowing deep into the networks of U.S.

Meet the Chinese ‘Typhoon’ hackers preparing for war Read More »

US sanctions Chinese cyber firm linked to Flax Typhoon hacks

The U.S. government has sanctioned a Beijing-based cybersecurity company over its alleged links to a China government-backed hacking group, tracked as Flax Typhoon. The Treasury Department’s Office of Foreign Assets Control (OFAC) on Friday announced the sanctions against the Integrity Technology Group for its role in “multiple computer intrusion incidents against U.S. victims,” including U.S.

US sanctions Chinese cyber firm linked to Flax Typhoon hacks Read More »