Microsoft said it’s investigating an authentication outage with Office 365, preventing users from accessing some of the company’s most widely used services, including Office.com, Outlook.com, and Teams. The company’s status dashboard said the issue started at 2:25pm PT, and has impacted mostly consumer users across the globe for the last few hours. Some government users […] …Continue Reading

Universal Health Services, one of the largest healthcare providers in the U.S., has been hit by a ransomware attack. The attack hit UHS systems early on Sunday morning, according to two people with direct knowledge of the incident, locking computers and phone systems at several UHS facilities across the country, including in California and Florida. […] …Continue Reading

A U.S. federal court has said a ban on TikTok will not go into effect on Monday as scheduled. The move to delay the anticipated ban will allow Americans to continue using the app while the court considers the ban’s legality and whether the app poses a risk to national security as the Trump administration claims. […] …Continue Reading

Anyone can access portions of a web portal, used by law enforcement to request customer data from Amazon, even though the portal is supposed to require a verified email address and password. Amazon’s law enforcement request portal allows police and federal agents to submit formal requests for customer data along with a legal order, like […] …Continue Reading

VPNs are in high demand as Americans scramble to keep access to TikTok and WeChat amid a looming government ban. There are dozens of free VPNs out there that promise to protect your privacy by keeping you anonymous on the internet and hiding your browsing history. Don’t believe it. Free VPNs are bad for you. […] …Continue Reading

Shopify blames “rogue” employees for a data breach, Google Maps adds COVID-19 data and China pushes back against the TikTok deal. This is your Daily Crunch for September 23, 2020. The big story: Shopify confirms data breach The e-commerce platform blamed two “rogue members” of its support team, alleging that they stole customer data from […] …Continue Reading

Homeland Security’s cybersecurity advisory unit has issued a rare emergency alert to government departments after the recent disclosure of a “critical”-rated security vulnerability in server versions of Microsoft Windows. The Cybersecurity and Infrastructure Security Agency, better known as CISA, issued an alert late on Friday requiring all federal departments and agencies to “immediately” patch any […] …Continue Reading

As people begin to process the announcement from the U.S. Department of Commerce detailing how it plans, on grounds of national security, to shut down TikTok and WeChat — starting with app downloads and updates for both, plus all of WeChat’s services, on September 20, with TikTok following with a shut down of servers and […] …Continue Reading

Twitter is taking steps to tighten account security for a range of users ahead of the US presidential election, including by requiring the use of strong passwords. “We’re taking the additional step of proactively implementing account security measures for a designated group of high-profile, election-related Twitter accounts in the US. Starting today, these accounts will […] …Continue Reading

A privacy bug in Democratic presidential candidate Joe Biden’s official campaign app allowed anyone to look up sensitive voter information on millions of Americans, a security researcher has found. The campaign app, Vote Joe, allows Biden supporters to encourage friends and family members to vote in the upcoming U.S. presidential election by uploading their phone’s […] …Continue Reading

U.S. Customs and Border Protection proudly announced in a press release on Friday a seizure of 2,000 boxes of “counterfeit” Apple AirPods, said to be worth about $400,000, from a shipment at John F. Kennedy Airport in New York. But the photos in the press release appear to show boxes of OnePlus Buds, the wireless […] …Continue Reading

TikTok has fixed four security bugs in its Android app that could have led to the hijacking of user accounts. The vulnerabilities, discovered by app security startup Oversecured, could have allowed a malicious app on the same device to steal sensitive files, like session tokens, from inside the TikTok app. Session tokens are small files […] …Continue Reading