Microsoft under fire for threatening security researcher with criminal investigation

Microsoft under fire for threatening security researcher with criminal investigation

After a security researcher published a series of unpatched bugs in Microsoft products, along with code to exploit them, the company is now threatening to take legal action and call the cops on them. Microsoft’s veiled threat reignites a long-running argument over what responsibility, if any, security researchers have to disclose vulnerabilities affecting large and…

Read More
U.S. says troops were targeted with location data, as senator warns ad industry is a ‘national security threat’

U.S. says troops were targeted with location data, as senator warns ad industry is a ‘national security threat’

The U.S. Department of Defense has confirmed that adversaries have targeted and surveilled serving military personnel on the battlefield using commercial location data, the latest demonstration of how information collected from phones and computers can be abused to track and target individuals.  In a letter shared by Sen. Ron Wyden with TechCrunch, U.S. Central Command…

Read More
CrowdStrike and Google take down botnet used by hackers to target software developers in supply chain attacks

CrowdStrike and Google take down botnet used by hackers to target software developers in supply chain attacks

CrowdStrike, working with Google and Shadowserver, a nonprofit organization that scans and monitors the internet for cyberattacks, took down a botnet that cybercriminals used to push malware and steal passwords from open-source software developers. The takedown operation had the goal of disrupting the activities of the cybercriminals behind the so-called Glassworm botnet, who have been…

Read More
UK Visa Portal spilled thousands of applicants’ passports and selfies online — and hasn’t fixed the leak

UK Visa Portal spilled thousands of applicants’ passports and selfies online — and hasn’t fixed the leak

A website called UK Visa Portal is publicly exposing the passports and selfie photos of applicants who signed up and paid the site to obtain a U.K immigration visa, TechCrunch has learned. An anonymous person notified TechCrunch about the security lapse, saying that the website is exposing at least 100,000 documents from people who uploaded…

Read More
Dutch government blocks US company from acquisition, citing ‘risk to public interest’

Dutch government blocks US company from acquisition, citing ‘risk to public interest’

The Dutch government has blocked American IT giant Kyndryl from acquiring Solvinity, a Dutch cloud provider that hosts the Netherlands’ online identity platform. The government in The Hague said the deal poses a possible “risk to the public interest.” Dutch minister for the digital economy Willemijn Aerdts said in a machine-translated letter published Monday that…

Read More
Trump Mobile confirms it exposed customers’ personal data, including phone numbers and home addresses

Trump Mobile confirms it exposed customers’ personal data, including phone numbers and home addresses

Phone provider Trump Mobile has confirmed that it was exposing customers’ names, email addresses, mailing addresses, cell numbers, and order identifiers to the open internet. Chris Walker, a spokesperson for the Trump-branded phone maker, told TechCrunch that the company is investigating the exposure and has not found evidence that content or financial information spilled online….

Read More