data security
On today’s episode of Equity, we’re taking a look at news you might’ve missed over the holiday weekend here in the U.S., starting with the…
TechCrunch Minute: Slack may be training its AI off of your messages — and opting out is harder than you’d think
Slack is under fire for its shady policies around using customer data to train its AI. According to Slack’s privacy principles, customer data like messages…
Artificial intelligence continues to be a big threat, but it’s also a huge promise in the world of cybersecurity. Today, one of the startups tackling both the opportunity and the…
DNA testing and genealogy companies are stepping up user account security by mandating the use of two-factor authentication, following the theft of millions of user records from DNA genetic testing…
A security researcher says a bug on an Indian state government website inadvertently revealed documents containing residents’ Aadhaar numbers, identity cards and copies of their fingerprints. The bug was fixed…
India’s state-owned logistics portal has fixed misconfigurations and vulnerabilities that exposed sensitive personal data and various state and private trade records. Called the National Logistics Portal-Marine, the website made the…
Featured Article
Security researcher warns of chilling effect after feds search phone at airport
A U.S. security researcher is warning of a chilling effect after he was detained on arrival at a U.S. airport, his phone was searched and he was ordered to testify to a grand jury, only to have prosecutors reverse course and drop the investigation later. On Wednesday, Sam Curry, a…
With Beijing’s green light, mobility unicorns Zeekr and WeRide inch closer to US IPOs
Six months ago, China’s securities authority announced a set of new rules to facilitate overseas IPOs of Chinese companies, allowing Beijing to tighten its grip on businesses seeking to sell…
As organizations embrace cloud services — and are forced to confront changing regulations and data use standards — their ability to maintain control of data security frequently becomes strained. If…
Israel cybersecurity agency says no breach after senior official self-infects home PC with malware
Israel’s National Cybersecurity Directorate said there was “no breach” of its network after passwords belonging to a senior agency official were stolen from their home computer earlier this year and…
The Bangladeshi government on Sunday took down citizens’ sensitive data that it had left exposed online. On Friday, TechCrunch reported that a website belonging to the government of Bangladesh was…
The federal government agency responsible for granting patents and trademarks has confirmed it inadvertently exposed about 61,000 filers’ private addresses in a years-long data spill. The U.S. Patent and Trademark…
Featured Article
Ransomware gang lists first victims of MOVEit mass-hacks, including US banks and universities
Clop, the ransomware gang responsible for exploiting a critical security vulnerability in a popular corporate file transfer tool, has begun listing victims of the mass-hacks, including a number of U.S. banks and universities. The Russia-linked ransomware gang has been exploiting the security flaw in MOVEit Transfer, a tool used by…
Oil giant Shell said it is investigating after a security researcher found an exposed internal database spilling the personal information of drivers who use the company’s electric vehicle charging stations.…
Toyota confirms another years-long data leak, this time exposing at least 260,000 car owners
Two weeks ago, Toyota said it exposed the data of more than two million customers to the internet for a decade. Today, the automotive giant said it recently discovered the…
Apple on Monday released its first batch of publicly available “rapid security” patches, aimed at quickly fixing security vulnerabilities that are under active exploitation or pose significant risks to its…
Featured Article
Throne fixes security bug that exposed creators’ private home addresses
A recently fixed security bug at a popular platform for supporting creators shows how even privacy-focused platforms can put creators’ private information at risk. Throne, founded in 2021, bills itself as “a fully secure, concierge wishlist service that acts as an intermediary between your fans and you.” Throne claims to…
Parents are still looking for answers weeks after hackers stole the personal data of thousands of users from kids’ tech coding camp iD Tech, with some fearing that their children’s…
Cerebral has revealed it shared the private health information, including mental health assessments, of more than 3.1 million patients in the United States with advertisers and social media giants like…
Indian at-home salon platform Yes Madam exposed the sensitive data of its customers and gig workers due to a server-side misconfiguration. Noida-based Yes Madam operates in more than 30 cities…
If you recently made a purchase from an overseas online store selling knockoff clothes and goods, there’s a chance your credit card number and personal information were exposed. Since January…
Point-and-click security settings on low- or no-code platforms can be extremely powerful, but with great power comes great responsibility.
Pharmaceutical giant AstraZeneca has blamed “user error” for leaving a list of credentials online for more than a year that exposed access to sensitive patient data. Mossab Hussein, chief security…
Featured Article
Adtech’s compliance theatre is headed to Europe’s top court
For those watching the slow motion unpicking of surveillance advertising in the European Union here’s a fresh development on the long and winding road to a long-overdue legal reckoning: Multiple grounds for appeal lodged by industry body, the IAB Europe, against a breach finding earlier this year against its self-proclaimed…
COVID-19 has reshaped our lives in many ways and given rise to a plethora of services tailored to these newborn needs. Waysia, an Asian grocery delivery platform, is one such…
A fat fine — of €405 million — is headed Instagram’s way after European Union privacy regulators came to a decision on a long-running complaint related to how the social…
Electronics giant Samsung has confirmed a data breach affecting customers’ personal information. In a brief notice, Samsung said it discovered the security incident in late-July and that an “unauthorized third…
The U.K. could be gearing up to hit a handful of tech firms with enforcement orders (and potentially fines) related to a children’s online privacy and safety Code which has…
Privacy breaches are not only bad for users, but also costly for tech companies. For example, GDPR fines now total $1.7 billion, and earlier this year Twitter had to pay…
The explosive Twitter whistleblower complaint that was made public yesterday — detailing a raft of damning allegations across security, privacy and data protection issues (among others) by Twitter’s former former…