Reddit says hackers accessed internal data following employee phishing attack

Hackers threaten to leak 80GB of confidential data stolen from Reddit

Hackers are threatening to release confidential data stolen from Reddit unless the company pays a ransom demand – and reverses its controversial API price hikes.  In a post on its dark web leak site, the BlackCat ransomware gang, also known as ALPHV, claims to have stolen 80 gigabytes of compressed data from Reddit during a […]

Read more
US government warns Royal ransomware is targeting critical infrastructure

US confirms federal agencies hit by MOVEit breach, as hackers list more victims

The U.S. government has confirmed that multiple federal agencies have fallen victim to cyberattacks exploiting a security vulnerability in a popular file transfer tool. In a statement shared with TechCrunch, CISA confirmed that “several” U.S. government agencies have experienced intrusions related to the exploitation of a vulnerability in MOVEit Transfer, an enterprise file transfer tool […]

Read more
A simple bug exposed access to thousands of smart security alarm systems

A simple bug exposed access to thousands of smart security alarm systems

U.S. power and electronics giant Eaton has fixed a security vulnerability that allowed a security researcher to remotely access thousands of smart security alarm systems. Security researcher Vangelis Stykas said he found the vulnerability in Eaton’s SecureConnect, a cloud-based system that allows customers to remotely access, manage, and arm and disarm their security alarm systems […]

Read more
Feds catch another LockBit hacker, Justice Department announces

Feds catch another LockBit hacker, Justice Department announces

The Justice Department has arrested and charged a Russian national for his alleged role in multiple LockBit ransomware attacks against victims in the U.S. and around the world. According to a criminal complaint unsealed on Thursday, 20-year-old Ruslan Magomedovich Astamirov is accused of carrying out five cyberattacks between August 2020 and March 2023, four of […]

Read more
LockBit claims ransomware attack on pharma giant Granules India

LockBit claims ransomware attack on pharma giant Granules India

The Russia-linked ransomware group LockBit has claimed responsibility for a cyberattack on Indian pharmaceutical giant Granules India, and published portions of the data it allegedly stole. LockBit’s dark web leak site listed Granules India as one of its latest victims on Wednesday, according to a listing seen by TechCrunch. Granules India has yet to confirm […]

Read more
Justice Department indicts 80 individuals in a massive business email scam bust

Mandiant says China-backed hackers exploited Barracuda zero-day to spy on governments

Security researchers at Mandiant say China-backed hackers are likely behind the mass-exploitation of a recently discovered security flaw in Barracuda Networks’ email security gear, which prompted a warning to customers to remove and replace affected devices. Mandiant, which was called in to run Barracuda’s incident response, said the hackers exploited the flaw to compromise hundreds […]

Read more
Advisor to Europe’s top court backs antitrust watchdogs looking at privacy

Don’t rush generative AI apps to market without tackling privacy risks, says UK watchdog

The UK’s data protection watchdog has fired its most explicit warning shot yet at generative AI developers — saying it expects them to address privacy risks before bringing their products to market. In a blog post trailing remarks the Information Commissioner’s Office’s (ICO) exec director of regulatory risk, Stephen Almond, will make at a conference later […]

Read more
Financial software firm Ion Group battles LockBit ransomware attack

Ransomware gang lists first victims of MOVEit mass-hacks, including US banks and universities

Clop, the ransomware gang responsible for exploiting a critical security vulnerability in a popular corporate file transfer tool, has begun listing victims of the mass-hacks, including a number of U.S. banks and universities. The Russia-linked ransomware gang has been exploiting the security flaw in MOVEit Transfer, a tool used by corporations and enterprises to share […]

Read more
Google delays EU launch of its AI chatbot after privacy regulator raises concerns

Google delays EU launch of its AI chatbot after privacy regulator raises concerns

Google has delayed a planned launch of its generative AI chatbot, Bard, in the European Union this week, according to the Irish Data Protection Commission (DPC) — the tech giant’s lead data protection authority in the region. The development, first reported by Politico, comes long after OpenAI launched a free research preview (November 2022) of […]

Read more
Announcing the Security Stage agenda at TechCrunch Disrupt

Announcing the Security Stage agenda at TechCrunch Disrupt

A few weeks ago we introduced you to the brand new Security Stage, our debut space dedicated to cybersecurity at TechCrunch Disrupt. Now, we’re ready to reveal what we have in store. We’ve got a packed agenda featuring some of the sharpest minds and professionals in the industry discussing the biggest cybersecurity challenges today. There […]

Read more