infosec Archives - Page 3 of 7

How victims of PowerSchool’s data breach helped each other investigate ‘massive’ hack

On January 7, at 11:10 p.m. in Dubai, Romy Backus received an email from education technology giant PowerSchool notifying her that the school she works at was one of the victims of a data breach that the company discovered on December 28. PowerSchool said hackers had accessed a cloud system that housed a trove of […]

How victims of PowerSchool’s data breach helped each other investigate ‘massive’ hack Read More »

Governments call for spyware regulations in UN Security Council meeting

Security / Sasandara Dilmina

On Tuesday, the United Nations Security Council held a meeting to discuss the dangers of commercial spyware, which marks the first time this type of software — also known as government or mercenary spyware — has been discussed at the Security Council. The goal of the meeting, according to the U.S. Mission to the UN,

Governments call for spyware regulations in UN Security Council meeting Read More »

Facebook awards researcher $100,000 for finding bug that granted internal access

Security / Sasandara Dilmina

In October 2024, security researcher Ben Sadeghipour was analyzing Facebook’s ad platform when he found a security vulnerability that allowed him to run commands on the internal Facebook server housing that platform, essentially giving him control of the server. After he reported the vulnerability to Facebook’s owner Meta, which Sadeghipour said took just one hour

Facebook awards researcher $100,000 for finding bug that granted internal access Read More »

Why Apple sends spyware victims to this nonprofit security lab

Security / Sasandara Dilmina

Before the elections, the cybersecurity team of U.S. vice president and then-presidential candidate Kamala Harris reached out to Apple asking for help, according to Forbes, after a tool that’s designed to detect spyware on iPhones flagged anomalies on two devices belonging to campaign staffers. Apple declined to forensically analyze the phones, per Forbes. The company’s

Why Apple sends spyware victims to this nonprofit security lab Read More »

Serbian police used Cellebrite to unlock, then plant spyware, on a journalist’s phone

Security / Sasandara Dilmina

This year, a Serbian journalist and an activist had their phones hacked by local authorities using a cellphone-unlocking device made by forensic tool maker Cellebrite. The authorities’ goal was not only to unlock the phones to access their personal data, as Cellebrite allows, but also to install spyware to enable further surveillance, according to a

Serbian police used Cellebrite to unlock, then plant spyware, on a journalist’s phone Read More »

Ukraine says Russian hackers are targeting country’s defense contractors

Security / Sasandara Dilmina

Ukraine’s Computer Emergency Response Team (CERT-UA) said in a report published over the weekend that a hacking group has been targeting the country’s defense and military companies with phishing attacks. The CERT identified the hacking group as UAC-0185 — also known as UNC4221 — without saying who was behind the group. Earlier this year, however,

Ukraine says Russian hackers are targeting country’s defense contractors Read More »

The rise and fall of the ‘Scattered Spider’ hackers

Security / Sasandara Dilmina

After evading capture for more than two years following a hacking spree that targeted some of the world’s biggest tech companies, U.S. authorities say they have finally caught at least some of the hackers responsible. In August 2022, security researchers went public with a warning that a group of hackers had targeted over 130 organizations

The rise and fall of the ‘Scattered Spider’ hackers Read More »

US charges five accused of multi-year hacking spree targeting tech and crypto giants

Security / Sasandara Dilmina

The U.S. government announced charges against five individuals accused of carrying out a multi-year hacking spree targeting tech giants and cryptocurrency owners, which security researchers dubbed 0ktapus. On Wednesday, the U.S. Department of Justice published a press release announcing the charges against the five alleged hackers: Ahmed Hossam Eldin Elbadawy, 23, of College Station, Texas;

US charges five accused of multi-year hacking spree targeting tech and crypto giants Read More »

Snowflake hackers identified and charged with stealing 50 billion AT&T records

Security / Sasandara Dilmina

The U.S. government has accused Connor Moucka and John Binns of being the hackers who broke into the systems of AT&T, stealing around 50 billion customer call and text records. In July, AT&T said hackers stole the phone records of “nearly all” of its cellular and landline customers, as well as calls and text message

Snowflake hackers identified and charged with stealing 50 billion AT&T records Read More »

Canadian authorities say they arrested hacker linked to Snowflake data breaches

Security / Sasandara Dilmina

A hacker suspected of involvement in a series of massive Snowflake-related hacks has been arrested in Canada, according to local authorities. Ian McLeod, a spokesperson for the Canadian Department of Justice, told TechCrunch in an email that, “following a request by the United States, Alexander Moucka (a.k.a. Connor Moucka) was arrested on a provisional arrest

Canadian authorities say they arrested hacker linked to Snowflake data breaches Read More »