“Most of the startups I give advice to about how to raise venture capital shouldn’t be raising venture capital,” an investor recently told me. While the idea that every startup isn’t venture-backable might run counter to the narrative to the barrage of funding news each week, I think it’s important to double click on the
Philip Choo
Some personal information just doesn’t age – here’s what the Facebook data leak may mean for you ‘Half a billion Facebook users’ data breached’, this or something very similar is a headline you may have seen in the media in recent days. Any data breach, especially one that affects such a large quantity of users,
by Paul Ducklin How scammers copied a government website almost to perfection. What to do about those fake “bug” hunters who ask for payment for finding “vulnerabilities” that aren’t. Why the Dutch data protection authority fined Booking.com for not sending in a data breach disclosure fast enough. With Kimberly Truong, Doug Aamoth and Paul Ducklin.
APKPure, one of the largest alternative app stores outside of the Google Play Store, was infected with malware this week, allowing threat actors to distribute Trojans to Android devices. In an incident that’s similar to that of German telecommunications equipment manufacturer Gigaset, the APKPure client version 3.17.18 is said to have been tampered with in
The United States has imprisoned the cyberstalker of a woman who, as a child, survived a violent assault that claimed the life of her friend. According to court records, the victim was in a Texas bedroom with another girl in December 1999 when an assailant entered and slit both the little girls’ throats. The perpetrator
Welcome back to The TechCrunch Exchange, a weekly startups-and-markets newsletter. It’s broadly based on the daily column that appears on Extra Crunch, but free, and made for your weekend reading. Ready? Let’s talk money, startups and spicy IPO rumors. The startup world could be in for a busy summer. Today the economy is improving. Unemployment
Chinese regulators have hit Alibaba with a record fine of 18 billion yuan (about $2.75 billion) for violating anti-monopoly rules as the country seeks to rein in the power of its largest internet conglomerates. In November, China proposed sweeping antitrust regulations targeting its interent economy. In late December, the State Administration for Market Regulation said
The treasure trove of data reportedly includes users’ LinkedIn IDs, full names, email addresses, phone numbers and workplace information Mere days after news broke of a data leak that impacted more than half a billion Facebook users, another massive batch of people’s personal information is being offered for sale on a hacking forum. This time
by Paul Ducklin The annual Pwn2Own contest features live hacking where top cybersecurity researchers duke it out under time pressure for huge cash prizes. Their quest: to prove that the exploits they claim to have discovered really do work under real-life conditions. Indeed, Pwn2Own is a bug bounty program with a twist. The end result
A previously undocumented malware downloader has been spotted in the wild in phishing attacks to deploy credential stealers and other malicious payloads. Dubbed “Saint Bot,” the malware is said to have first appeared on the scene in January 2021, with indications that it’s under active development. “Saint Bot is a downloader that appeared quite recently,
Social media giant Facebook has removed thousands of groups from its platforms over the trading of fake and misleading reviews. The cull occurred after two separate interventions by Britain’s competition watchdog, the Competition and Markets Authority (CMA). In January 2020, Facebook committed to improving its identification, investigation, and removal of groups and other pages where
However the outcome of today’s vote count turned out, there was one thing we knew for certain: it wasn’t going to mark the end of the battle between Amazon and the Retail, Wholesale and Department Store Union. With voting having broken overwhelmingly in Amazon’s favor, the union was quick to challenge the results. The RWDSU
A vulnerability in Fortinet’s Fortigate VPN is being exploited by Cring ransomware threat actors, according to a report published days after a Cybersecurity and Infrastructure Security Agency advisory warned that several FortiOS flaws were being utilized in cyber attacks. Kaspersky Lab’s ICS CERT, a project dedicated to industrial cybersecurity threats, released a report Wednesday showing
Easy to redeem and hard to trace, gift cards remain a hot commodity in the criminal underground A cybercriminal has sold almost 900,000 gift cards and over 300,000 payment cards on a top-tier cybercrime forum on the dark web. The total value of the cards was claimed to be some US$38 million. The hacker probably
Iyuno-SDI Group, a provider of translated subtitles and other media localization services, announced today it has raised $160 million in funding from SoftBank Vision 2. The company said this makes the fund one of its largest shareholders. Iyuno-SDI Group was formed after Iyuno Media Group completed its acquisition of SDI Media last month. In a
by Paul Ducklin In a brief yet fascinating press release, Europol just announced the arrest of an Italian man who is accused of “hiring a hitman on the dark web”. According to Europol: The hitman, hired through an internet assassination website hosted on the Tor network, was paid about €10,000 worth in Bitcoins to kill
An Iranian threat actor has unleashed a new cyberespionage campaign against a possible Lebanese target with a backdoor capable of exfiltrating sensitive information from compromised systems. Cybersecurity firm Check Point attributed the operation to APT34, citing similarities with previous techniques used by the threat actor as well as based on its pattern of victimology. APT34
Police in Chicago have arrested a former track and field coach for allegedly soliciting sexually explicit images from female athletes under false pretenses. Chicago resident Steve Waithe was arrested on April 7 and charged with one count of wire fraud and one count of cyberstalking. Waithe attended Loch Raven High School, where he was the Maryland State
Product-led growth is all the rage in the Valley these days, and we had two leading thinkers discuss how to incorporate it into a startup at TechCrunch Early Stage 2021. Tope Awotona is the CEO and founder of Calendly, which bootstrapped for much of its existence before raising $350 million at a $3 billion valuation
ESET researchers discover a new Lazarus backdoor deployed against a freight logistics firm in South Africa ESET researchers have discovered a previously undocumented Lazarus backdoor used to attack a freight logistics company in South Africa, which they have dubbed Vyveva. The backdoor consists of multiple components and communicates with its C&C server via the Tor
Cybercrime is increasing at an alarming clip. Year after year billions of dollars are lost and millions of personal records stolen by online criminals. To counter this onslaught of cyber attacks, businesses and governments have come to count on equally cunning and dedicated cybersecurity professionals to protect them from attack. The scale and impact of
Butter, a startup registered in Denmark but operating fully remote, is building an “all-in-one” platform for planning and running virtual workshops. Offering video software and other features dedicated to workshopping, the idea is to pull people away from using more generic tools, such as Zoom and Microsoft Teams, which, arguably, aren’t well suited to workshops.
Cuba Ransomware Overview Over the past year, we have seen ransomware attackers change the way they have responded to organizations that have either chosen to not pay the ransom or have recovered their data via some other means. At the end of the day, fighting ransomware has resulted in the bad actors’ loss of revenue.
Google on Tuesday announced that its open source version of the Android operating system will add support for Rust programming language in a bid to prevent memory safety bugs. To that end, the company has been building parts of the Android Open Source Project (AOSP) with Rust for the past 18 months, with plans in
Michigan State University (MSU) has been impacted by a data breach stemming from a cyber-attack on an Ohio law firm. Bricker & Eckler LLP, which is associated with MSU Title IX contractor INCompliance Consulting, was hit with ransomware in January 2021. An investigation into the incident determined that an unauthorized party gained access to certain Bricker
Despite the classification of ride-hail drivers as “essential workers” during the early days of the pandemic, last April Uber’s business dropped by 80%. Drivers decided they’d rather not risk contracting or spreading COVID-19 for the measly revenue provided by the few rides per day they were getting, so when the federal CARES Act extended the Pandemic
How can organizations tackle the growing menace of attacks that shake trust in software? Cybersecurity is only as good as the weakest link, and in a supply chain this could be virtually anywhere. The big questions may be, “what and where is the weakest link?” and “is it something that you have control over and
No-code startups continue to see a lot of traction among enterprises, where employees — strictly speaking, non-technical, but still using software every day — are getting hands-on and building apps to take on some of the more repetitive aspects of their jobs, the so-called “citizen coders” of the working world. And in one of the
Executive Summary Cuba ransomware is an older ransomware, that has recently undergone some development. The actors have incorporated the leaking of victim data to increase its impact and revenue, much like we have seen recently with other major ransomware campaigns. In our analysis, we observed that the attackers had access to the network before the infection and were able to collect specific information
by Paul Ducklin The Dutch Data Protection Authority (DPA) – the country’s data protection regulator – has fined online travel and hotel booking company Booking.com almost half a million Euros over a data breach. Interestingly, the fine was issued not merely because there was a breach, but because the company didn’t report the breach quickly
- « Previous Page
- 1
- 2
- 3
- 4
- 5
- …
- 192
- Next Page »