Tech Crunch

Sqreen wants to become the IFTTT of web app security

Tech Crunch Security - 4 hours 29 min ago
 French startup Sqreen recently launched a Security Hub with dozens of plugins to put you in control of the security of your web app. In many ways, it feels like enabling tasks on popular automation service IFTTT. Sqreen participated in TechCrunch’s Startup Battlefield and Y Combinator’s current batch. The vision of the product hasn’t changed. Sqreen lets you protect your… Read More
Categories: Tech Crunch

Facebook didn’t mean to send spam texts to two-factor authentication users

Tech Crunch Security - 6 hours 4 min ago
 Facebook Chief Security Officer Alex Stamos apologized for spam texts that were incorrectly sent to users who had activated two-factor authentication. The company is working on a fix, and you won’t receive non-security-related text messages if you never signed up for those notifications. Facebook says it was a bug. But calling it a bug is a bit too easy — it’s a feature that… Read More
Categories: Tech Crunch

People are trolling iPhone users with the ‘killer symbol’ that crashes their apps

Tech Crunch Security - Fri, 02/16/2018 - 6:22pm
 Surprise! Assorted jerks on the internet have weaponized the unicode-based bug we reported yesterday to insta-crash apps running on an iPhone or a Mac. The result is somewhere between the old Alt + F4 trick and a script kiddie stunt and it ranges from being annoying to rendering a device unusable, depending on the tenacity of the troll. The bug causes many iOS and Mac apps to crash when… Read More
Categories: Tech Crunch

Oracle grabs Zenedge as it continues to beef up its cloud security play

Tech Crunch Security - Fri, 02/16/2018 - 2:19pm
 Oracle announced yesterday that it intends to acquire Zenedge, a 4-year old hybrid security startup. They didn’t reveal a purchase price. With Zenedge, Oracle gets a security service to add it to its growing cloud play. In this case, the company has products to protect customers whether in the cloud, on-prem or across hybrid environments. The company offers a range of services from… Read More
Categories: Tech Crunch

Special counsel Robert Mueller indicts Russian bot farm for election meddling

Tech Crunch Security - Fri, 02/16/2018 - 2:05pm
 Special Counsel Robert Mueller has just handed down a set of indictments, charging 13 Russian citizens and three Russian organizations with interference in the U.S. presidential election in efforts dating back to 2014. The indictment names the Internet Research Agency as one of the sources of the fake accounts meant to create divisions in American society. Read More
Categories: Tech Crunch

This new text bomb crashes most Mac and iOS apps with a single unicode symbol

Tech Crunch Security - Thu, 02/15/2018 - 10:57am
 TechCrunch has learned of a potentially serious new bug affecting a wide range of Apple devices. During their development work on an international news feed, software engineers at Aloha Browser discovered two unicode symbols in a non-English language that can crash any Apple device that uses Apple’s default San Francisco font. The bug instigates crashes on iPhones, iPads, Macs and even… Read More
Categories: Tech Crunch

UK accuses Russia of 2017’s NotPetya ransomware attacks

Tech Crunch Security - Thu, 02/15/2018 - 9:40am
 The UK government has directly accused Russia of being behind the so called NotPetya ransomware attack last year — which quickly spread around the globe, including affecting businesses in Spain, France and India, demanding payment in Bitcoin to unlock infected machines. Read More
Categories: Tech Crunch

Senator calls on Tinder to fix a security flaw that lets randos snoop through your dates

Tech Crunch Security - Wed, 02/14/2018 - 10:09pm
 Oregon Senator Ron Wyden is nervous about Tinder. He may not be swiping on the service this Valentine’s Day, but with a new letter demanding that Tinder resolve some security issues, Wyden is looking out for everyone who is. Last month, a security report surfaced what it deemed “disturbing vulnerabilities” in the dating app. Wyden’s letter cites the research, demanding… Read More
Categories: Tech Crunch

Stealth Security reels in $8 million investment from Shasta Ventures to root out bad bots

Tech Crunch Security - Wed, 02/14/2018 - 7:59am
 We live in world where bots are operating all over the internet. Like Glenda in the Wizard of Oz asking Dorothy if she is a good witch or a bad witch, network admins simply want to determine if a bot is there to help or harm. It’s not always easy to know. That’s where Stealth Security comes in. The 4-year old startup wants to help you defend against automated bot attacks. Today,… Read More
Categories: Tech Crunch

Salon’s Monero mining project might be crazy like a fox

Tech Crunch Security - Tue, 02/13/2018 - 6:32pm
 In the age of altcoins, at least one news site is taking a novel approach to making ends meet. Salon announced today that it would give readers a choice between turning off ad-blocking software or “allowing Salon to use your unused computing power” in order to access their content. If you say yes to the latter deal, Salon will then invite you to install Coinhive, a software plugin… Read More
Categories: Tech Crunch

Coincheck users are suing to get their money off the hacked cryptocurrency exchange

Tech Crunch Security - Mon, 02/12/2018 - 11:42pm
 The fallout from the year’s biggest cryptocurrency hack to date continues. On Monday, Reuters reported that 10 traders who used the Tokyo-based exchange Coincheck are preparing to file a lawsuit with Tokyo’s District Court on Thursday. The plaintiffs will be represented by Hiromu Mochizuki, who has been tweeting some updates about the case. During the aftermath of its recent… Read More
Categories: Tech Crunch

Cryptocurrency-mining malware put UK and US government machines to work

Tech Crunch Security - Mon, 02/12/2018 - 2:12pm
 Over the weekend, a little piece of malware was hard at work mining cryptocurrency on government computers. Security researcher Scott Helme first noticed the malware, which he believes was running on more than 4,000 sites, including the U.K.’s Information Commissioner’s Office ( and the website for the American court system ( Read More
Categories: Tech Crunch

Italian cryptocurrency exchange gets hacked for $170 million in Nano

Tech Crunch Security - Mon, 02/12/2018 - 1:10pm
 The obscure Italian coin exchange BitGrail looks to be the latest cryptocurrency cautionary tale. On Friday, the site posted a notice to users informing them that hackers had made off with 17 million units of Nano (XRB), the coin formerly known as RaiBlocks. Nano currently boasts a market capitalization of $1,287,013,24, the 24th largest of any cryptocurrency. Read More
Categories: Tech Crunch

Cryptojacking attack hits ~4,000 websites, including UK’s data watchdog

Tech Crunch Security - Mon, 02/12/2018 - 6:38am
 An attacker injected a crypto mining script into a web plugin’s JavaScript library, and some 4,000 websites — a large number of them taxpayer funded — were co-opted into illegal crypto mining… oopsie… Read More
Categories: Tech Crunch

Apple addresses iOS source code leak, says it appears to be tied to three-year-old software

Tech Crunch Security - Thu, 02/08/2018 - 1:36pm
 Earlier this week, iOS source code showed up on GitHub, raising concerns that hackers could find a way to comb the material for vulnerabilities. Apple has yet to confirm or deny the legitimacy of the posted material, but all signs point to it being the real deal — a fact seemingly confirmed by a DMCA takedown notice issued to the platform. Read More
Categories: Tech Crunch

Chrome will soon mark all unencrypted pages as ‘not secure’

Tech Crunch Security - Thu, 02/08/2018 - 1:00pm
 Google’s Chrome browser will soon flag every site that doesn’t use HTTPS encryption. Starting in July, with the launch of Chrome 68, Chrome will mark all HTTP sites as ‘not secure’ and prominently highlight this in its URL bar. Over the course of the last few years, Google has strongly advocated for the use of HTTPS to help keep your browsing data safe from anybody… Read More
Categories: Tech Crunch

Google’s bug bounty programs paid out almost $3M in 2017

Tech Crunch Security - Wed, 02/07/2018 - 5:58pm
 Bug bounty programs are designed to sic security researchers on software and pay them to find vulnerabilities and report back to the sponsor. In return, the researchers are richly rewarded for their findings. In fact, Google’s bug bounty paid out a hefty $2.9 million in bug bounties in 2017. Rewards can range from $500 to $100,000 or more depending on the type of bug and the amount of… Read More
Categories: Tech Crunch

Aperio raises a $4.5M seed round to protect power plants from hackers

Tech Crunch Security - Wed, 02/07/2018 - 7:00am
 Protecting critical infrastructure like power plants and other industrial plants is just as important as it’s challenging. It’s one thing to take over a remote machine to mine some Bitcoin, but you’ve got a totally different problem when those hackers try to manipulate the physical infrastructure of your power plant with the goal of causing an explosion. With their thousands… Read More
Categories: Tech Crunch

Mixpanel analytics accidentally slurped up passwords

Tech Crunch Security - Mon, 02/05/2018 - 3:44pm
 The passwords of some people using sites monitored by popular analytics provider Mixpanel were mistakenly pulled into its software. Until TechCrunch’s inquiry, Mixpanel had made no public announcement about the embarassing error beyond quietly emailing clients about the problem. Yet some need to update to a fixed Mixpanel SDK to prevent an ongoing privacy breach. It’s unclear… Read More
Categories: Tech Crunch

Businesses with Apple and Cisco products may now pay less for cybersecurity insurance

Tech Crunch Security - Mon, 02/05/2018 - 10:16am
 Apple and Cisco announced this morning a new deal with insurer Allianz that will allow businesses with their technology products to receive better terms on their cyber insurance coverage, including lower deductibles – or even no deductibles, in some cases. Allianz said it made the decision to offer these better terms after evaluating the technical foundation of Apple and… Read More
Categories: Tech Crunch