Security

Microsoft will now pay up to $20k for Xbox Live security exploits

Think you’ve found a glaring security hole in Xbox Live? Microsoft is interested. The company announced a new bug bounty program today, focused specifically on its Xbox Live network and services. Depending on how serious the exploit is and how complete your report is, they’re paying up to $20,000. Like most bug bounty programs, Microsoft […]
Read More
31 Jan 2020

Amazon quietly publishes its latest transparency report

Just as Amazon was basking in the news of a massive earnings win, the tech giant quietly published — as it always does — its latest transparency report, revealing a slight dip in the number of government demands for user data. It’s a rarely seen decline in the number of demands received by a tech […]
Read More
31 Jan 2020

Ring’s new security ‘control center’ isn’t nearly enough

On the same day that a Mississippi family is suing Amazon -owned smart camera maker Ring for not doing enough to prevent hackers from spying on their kids, the company has rolled out its previously announced “control center,” which it hopes will make you forget about its verifiably “awful” security practices. In a blog post […]
Read More
30 Jan 2020

Social media boosting service exposed thousands of Instagram passwords

A social media boosting startup, which bills itself as a service to increase a user’s Instagram followers, has exposed thousands of Instagram account passwords. The company, Social Captain, says it helps thousands of users to grow their Instagram follower counts by connecting their accounts to its platform. Users are asked to enter their Instagram username […]
Read More
30 Jan 2020

Indian airline SpiceJet confirms breach of 1.2 million passenger details

SpiceJet, one of India’s largest privately owned airlines, has confirmed a data breach involving the details of over a million of its passengers. The security researcher, who described their actions as “ethical hacking” but whom we are not naming as they likely ran afoul of U.S. computer hacking laws, gained access to one of SpiceJet’s […]
Read More
30 Jan 2020

Verkada raises $80M at $1.6B to be every building’s security OS

50 iPads were stolen from Verkada co-founder Hans Robertson’s old company. Only when they checked the security system did they realize the video cameras hadn’t been working for months. He was pissed. “The market lagged behind the progress seen in the consumer space, where someone could buy high-end cameras with cloud-based software to protect their […]
Read More
29 Jan 2020

Dept. of Interior grounds its drones amid cybersecurity concerns

The U.S. Department of the Interior has confirmed it has grounded its fleet of non-emergency drones amid concerns over cybersecurity. In a brief statement, the department said the move will help to ensure that “the technology used for these operations is such that it will not compromise our national security interests.” Interior spokesperson Carol Danko […]
Read More
29 Jan 2020

Essential advice for securing your small startup

Jeff Bezos’ phone was hacked. And if the richest person in the world is vulnerable, chances are good that your startup could get hacked, too. The good news is that, as a tiny company, you’re not a big target. But as soon as you hire your first employee, it’s time to think about adopting basic […]
Read More
28 Jan 2020

Essential advice for securing your small startup

Jeff Bezos’ phone was hacked. And if the richest person in the world is vulnerable, chances are good that your startup could get hacked, too. The good news is that, as a tiny company, you’re not a big target. But as soon as you hire your first employee, it’s time to think about adopting basic […]
Read More
28 Jan 2020

A Christian-friendly payments processor spilled 6 million transaction records online

A little-known payments processor, which bills itself as a Christian-friendly company that does “not process credit card transactions for morally objectionable businesses,” left a database containing years’ worth of customer payment transactions online. The database contained 6.7 million records since 2013, and was updating by the day. But the database was not protected with a […]
Read More
28 Jan 2020

LabCorp website bug exposed thousands of medical documents

A security flaw in LabCorp’s website exposed thousands of medical documents, like test results containing sensitive health data. It’s the second incident in the past year after LabCorp said in June that 7.7 million patients had been affected by a credit card data breach of a third-party payments processor. The breach also hit several other […]
Read More
28 Jan 2020

UK will allow Huawei to supply 5G — with ‘tight restrictions’

The UK government will allow Chinese tech giant Huawei to play a limited role in supplying the country’s 5G networks, it has been announced today. The government said the package of restrictions being announced on “high risk” 5G vendors will allow it to “mitigate the potential risk posed by the supply chain and to combat […]
Read More
28 Jan 2020

An adult sexting site exposed thousands of models’ passports and driver’s licenses

A popular sexting website has exposed thousands of photo IDs belonging to models and sex workers who earn commissions from the site. SextPanther, an Arizona-based adult site, stored over 11,000 identity documents on an exposed Amazon Web Services (AWS) storage bucket, including passports, driver’s licenses, and Social Security numbers, without a password. The company says […]
Read More
24 Jan 2020

Daily Crunch: Saudis probably hacked Bezos’ phone

The Daily Crunch is TechCrunch’s roundup of our biggest and most important stories. If you’d like to get this delivered to your inbox every day at around 9am Pacific, you can subscribe here. 1. UN calls for investigation after Saudis linked to Bezos phone hack United Nations experts are calling for an investigation after a […]
Read More
22 Jan 2020

Daily Crunch: Saudis probably hacked Bezos’ phone

The Daily Crunch is TechCrunch’s roundup of our biggest and most important stories. If you’d like to get this delivered to your inbox every day at around 9am Pacific, you can subscribe here. 1. UN calls for investigation after Saudis linked to Bezos phone hack United Nations experts are calling for an investigation after a […]
Read More
22 Jan 2020

Should tech giants slam the encryption door on the government?

Reuters reported yesterday, citing six sources familiar with the matter, that the FBI pressured Apple into dropping a feature that would allow users to encrypt iPhone backups stored in Apple’s cloud. The decision to abandon plans to end-to-end encrypt iCloud-stored backups was reportedly made about two years ago. The feature, if rolled out, would have […]
Read More
22 Jan 2020

Octarine releases open source security scanning tools for Kubernetes

Octarine, a startup that helps automate security of Kubernetes workloads, released an open source scanning tool today. The tool, which is called KubeScan, is designed to help developers understand the level of security risk in their Kubernetes clusters. The company is also open sourcing a second tool called KCSS, which is the underlying configuration framework […]
Read More
22 Jan 2020

Thundra announces $4M Series A to secure and troubleshoot serverless workloads

Thundra, an early stage serverless tooling startup, announced a $4 million Series A today led by Battery Ventures. The company spun out from OpsGenie after it was sold to Atlassian for $295 million in 2018. York IE, Scale X Ventures and Opsgenie founder Berkay Mollamustafaoglu also participated in the round. Battery’s Neeraj Agarwal is joining […]
Read More
22 Jan 2020

Snyk snags $150M investment as its valuation surpasses $1B

Snyk, the company that wants to help developers secure their code in a modern context, announced a $150 million investment today. The company indicated the investment brings the company valuation to over $1 billion (although it did not share the exact figure). Today’s round was led by Stripes, a New York City investment firm with […]
Read More
21 Jan 2020

Israel’s cybersecurity startup scene spawned new entrants in 2019

Yoav Leitersdorf Contributor Share on Twitter Yoav Leitersdorf is the Silicon Valley-based Managing Partner at YL Ventures, where he accelerates cybersecurity startups in the U.S. market. More posts by this contributor A look back at the Israeli cyber security industry in 2018 Trends in Israel’s cybersecurity investments Ofer Schreiber Contributor Share on Twitter Ofer Schreiber […]
Read More
20 Jan 2020

TechCrunch’s Top 10 investigative reports from 2019

Facebook spying on teens, Twitter accounts hijacked by terrorists, and sexual abuse imagery found on Bing and Giphy were amongst the ugly truths revealed by TechCrunch’s investigating reporting in 2019. The tech industry needs more watchdogs than ever as its size enlargens the impact of safety failures and the abuse of power. Whether through malice, […]
Read More
19 Jan 2020

Microsoft says it will fix an Internet Explorer security bug under active attack

Microsoft has confirmed a security flaw affecting Internet Explorer is currently being used by hackers, but that it has no immediate plans to fix. In a late-evening tweet, US-CERT, the division of Homeland Security tasked with reporting on major security flaws, tweeted a link to a security advisory detailing the bug, describing it as “being […]
Read More
18 Jan 2020