Carly Page
Journalist & copywriter with 10+ years covering the tech industry, formerly senior cybersecurity reporter at TechCrunch. Bylines include IT Pro, LeadDev, The Register, The Telegraph, TIME, WIRED, & more.
☎️ Signal: carly.44
✉️ carlypagewrites@gmail.com
- happy new year! i’m back on the cybersecurity desk at The Register from tomorrow, pls send me your tips & scoops (signal/email in bio)
- Reposted by Carly PageGood morning! Last night @greenarcher.io released the newest issue of Yours Truly, Johnny Dollar! Details about why I created this issue (edited by the extremely talented @carlypage.bsky.social) are in our newsletter. But, I wanted to tell you about the hacking group featured in this comic…
- Reposted by Carly PageGreat story from colleague @carlypage.bsky.social Defra is department which made vets buy old laptops on eBay because it was the only way to access the system which recorded bovine TB
- Cops have seized the latest incarnation of Breach Forums, which had become the public-facing leak shop for Scattered Lapsus$ Hunters' latest extortion campaign. The group claims the takedown has "no impact" on its planned leak of ~1 billion Salesforce records www.theregister.com/2025/10/10/c...
- From PAYE to P45: HMRC staff fired for prying into taxpayer data www.theregister.com/2025/08/18/h...
- Alexa hits snooze on basic functions as alarms and timers KO'd in UK outage www.theregister.com/2025/08/14/a...
- Law and water: Russia blamed for US court system break-in and Norwegian dam drama www.theregister.com/2025/08/14/l...
- re-sharing as i'm on The Reg cyber desk a bunch over the next few weeks - send me your tips!
- can't believe The Reg are already letting me get away with headlines like this www.theregister.com/2025/07/24/e...
- news! i'm going to be doing some shifts on the cybersecurity desk at The Register. if you've got any tips/scoops/spicy stories, send them my way - Signal & email in bio. ty!
- ❤️
- yeah having a really productive day thanks
- hello! 👋 after being made redundant from TechCrunch, I took some much-needed time to hang out with my daughter, touch grass, and briefly forget how to write. good news: I think I’ve remembered, so do get in touch if you're looking for a tech journalist/writer/editor/mix of the above
- proof I can still write: techicons.com/spotlight/th... techicons.com/spotlight/th... www.telegraph.co.uk/recommended/...
- some ✨personal news✨ i've been redundant and it's my last week at TechCrunch. i’m going to be returning to the world of freelance, so if you need an experienced tech journalist / copywriter / editor / or a mix of the above, please get in touch carlypagewrites@gmail.com
- just noticed the typo. we're off to a good start!!
- Reposted by Carly PageIn a statement, Apple told me that it took action against fewer than 250 iCloud users that were affected by the breach at SpyX. Apple said when data breaches at other companies pose a risk to its customers, its security teams investigate & take action. More: techcrunch.com/2025/03/19/d...
- Reposted by Carly PageNEW: North Korea is reportedly launching a new cybersecurity research unit called Research Center 227, which will be housed within the intelligence agency Reconnaissance General Bureau (RGB), and will focus on AI-based hacking and stealing digital assets. techcrunch.com/2025/03/20/n...
- Hackers are ramping up attempts to exploit a trio of year-old ServiceNow vulnerabilities to break into unpatched company instances techcrunch.com/2025/03/20/h...
- The Pennsylvania State Education Association says hackers stole the sensitive personal and financial information of more than half a million of its members. PSEA said it “took steps” to ensure the stolen data was deleted, suggesting it paid a ransom demand techcrunch.com/2025/03/19/u...
- Reposted by Carly PageNEW, by @lorenzofb.bsky.social: Citizen Lab have named several countries, including Canada, as potential customers of Paragon's Graphite spyware, weeks after WhatsApp notified 90 users — including a journalist and human rights defenders — that their devices were targeted by the Israeli-made spyware.
- CISA is scrambling to contact more than 130 former employees after a federal court ruled that the Trump administration must reinstate workers it “unlawfully” fired techcrunch.com/2025/03/18/c...
- Security researchers say hackers linked to the notorious LockBit gang are exploiting a pair of Fortinet firewall vulnerabilities to deploy ransomware on company networks techcrunch.com/2025/03/17/h...
- Reposted by Carly PageNew, by me: Marko Elez, the DOGE staffer who resigned after his racist posts resurfaced (and was rehired soon after), violated Treasury rules when he sent an unencrypted email containing personally identifiable information to two Trump administration officials. techcrunch.com/2025/03/17/d...
- Reposted by Carly PageNEW: @journalistjagmeet.com confirmed that Indian police have arrested co-founder of the Russian crypto exchange Garantex Aleksej Besciokov. Police said arrest was under extradition law, suggesting it was on behalf of U.S. authorities who indicted Besciokov with money laundering crimes.
- NEW by @lorenzofb.bsky.social: North Korean-linked hackers uploaded Android spyware to Google Play. The spyware, which collects an “extensive amount” of sensitive data, was downloaded more than 10 times before Google removed it, according to Lookout techcrunch.com/2025/03/12/n...
- Reposted by Carly Pagethe new yorker has proudly updated its style guidelines to get rid of anachronisms like "web site," "in box," and "the Internet." techcrunch.com/2025/03/11/t...
- Elon Musk’s DOGE has fired more than a hundred employees working for the CISA, including “red team” employees, two people affected by the layoffs confirmed to TechCrunch One of the affected employees said they are now looking for “DOGE-resistant gigs” techcrunch.com/2025/03/11/d...
- A hacker compromised PowerSchool months before its massive data breach in December. The hacker used the same compromised credentials used in the December breach to access PowerSchool’s network in August, according to CrowdStrike techcrunch.com/2025/03/10/h...
- Reposted by Carly PageNEW: After authorities took down the domains of Russian crypto exchange's Garantex, and charged two of its administrators for facilitating money laundering, the company is now inviting customers for “face-to-face meetings” at its headquarters. 🤔 techcrunch.com/2025/03/10/f...
- Reposted by Carly PageNEW: The U.S. government has accused two administrators of Russian crypto exchange Garantex of facilitating money laundering for terrorists and cybercriminals. Aleksej Besciokov and Aleksandr Mira Serda allegedly knew they were helping ransomware hackers as well as DPRK's Lazarus Group.
- Japanese telecom giant NTT Communications says hackers stole the data of almost 18,000 corporate customers during a February cyberattack. It’s not yet known how many individuals had personal data stolen or who was behind the NTT breach techcrunch.com/2025/03/07/j...
- The FBI is warning that scammers are impersonating the BianLian ransomware gang using fake ransom notes sent to US corporate executives techcrunch.com/2025/03/07/f...
- Reposted by Carly PageNew, by me: U.K. health giant HCRG, which was hacked last month, demanded a U.S.-based cybersecurity journalist who writes at DataBreaches.net "take down" their reporting, citing a U.K. court order. The journalist declined to comply, citing a lack of jurisdiction. techcrunch.com/2025/03/06/h...
- Reposted by Carly PageNEW: U.S. Secret Service and other international law enforcement agencies have seized the website of Russian crypto exchange Garantex. Garantex had previously been sanctioned by U.S. government for being associated with ransomware gangs like Conti, and by EU government for ties to Russian banks.
- Reposted by Carly PageThe U.K. government has quietly scrubbed encryption advice from its government web pages. This comes just weeks after the U.K. government demanded backdoor access to encrypted data stored on Apple’s cloud storage service. from @carlypage.bsky.social: techcrunch.com/2025/03/06/u...
- The UK government appears to have quietly scrubbed encryption advice from government web pages. The change comes just weeks after demanding backdoor access to encrypted data stored on Apple’s cloud storage service techcrunch.com/2025/03/06/u...
- Reposted by Carly PageNEW: A Barcelona court ruled that NSO Group co-founders Omri Lavie and Shalev Hulio, as well as former executive of two affiliate companies Yuval Somekh, can be charged for the alleged hacking of a lawyer. “We have no comment,” NSO Group told us. techcrunch.com/2025/03/05/c...
- The Department of Justice has announced criminal charges against 12 Chinese government-linked hackers who are accused of hacking over 100 American organizations, including the U.S. Treasury, over the course of a decade techcrunch.com/2025/03/05/j...
- Reposted by Carly PageNew, by me: CIA Director John Ratcliffe has confirmed that the Trump administration paused intelligence sharing with Ukraine, following the heated exchange between the two countries’ leaders on Friday. Ratcliffe said the pause "will go away," but didn't specify when. techcrunch.com/2025/03/05/c...
- Broadcom is warning that a trio of VMware vulnerabilities are being actively exploited by hackers to compromise the networks of its corporate customers techcrunch.com/2025/03/05/b...
- POLSA, Poland’s space agency, says it's working to restore services following a cyberattack techcrunch.com/2025/03/04/p...
- Reposted by Carly PageNew, by me: A month on from its ransomware attack, Lee Enterprises is still experiencing disruption and outages — including payments to freelancers and other outside vendors. One person, who is owed thousands of dollars, said have no idea when they are getting paid. techcrunch.com/2025/03/03/l...
- The US has suspended its offensive cyber operations against Russia, according to reports. The reported policy change comes just months after the US intelligence community said Russia poses an “enduring cyber threat” to US critical infrastructure techcrunch.com/2025/03/03/u...
- Reposted by Carly PageNEW: Google fixed three zero-day vulnerabilities in Android that were used by authorities to unlock phones with Cellebrite forensic tools. The fixes come after Amnesty alerted Google, following the analysis of a Serbian student protester's phone. techcrunch.com/2025/02/28/r...
- The Belgian federal prosecutor's office confirmed to TechCrunch that it is investigating an alleged breach of its state security service (VSSE) by China-backed hackers. The hackers reportedly used a Barracuda ESG vulnerability to access VSSE’s external mail server techcrunch.com/2025/02/28/b...
- Reposted by Carly PageNEW: After security researchers and firms accused North Korea of the massive Bybit hack, the FBI follows suit. North Korean government hackers allegedly stoled more than $1.4 billion in Ethereum from the crypto exchange. techcrunch.com/2025/02/27/f...
- Reposted by Carly PageNEW: Hacked crypto exchange Bybit is offering $140 million in bounties to anyone who can help locate and freeze the stolen ethereum. Bybit also disclosed preliminary results of investigations, which reveal hackers breached a developer’s device at a wallet platform Safe Wallet.
- Reposted by Carly PageNEW: Cellebrite said it stopped authorities in Serbia from using of its cellphone forensic tools. Decision comes after cases where Serbian police and intelligence used Cellebrite to unlock activist and journalist phone to then install spyware on them. techcrunch.com/2025/02/26/c...
- Australian IVF provider Genea confirms hackers have leaked patient data after Termite listed the firm on its dark web site. A court order prohibiting publication of the data reveals hackers breached Genea's network in January to steal more than 900GB of information techcrunch.com/2025/02/26/h...
- Security researchers are warning that data exposed to the internet, even for a moment, can linger in online generative AI chatbots like Microsoft Copilot long after the data is made private techcrunch.com/2025/02/26/t...
- DISA Global Solutions has confirmed a data breach affecting 3.3 million people. The Texas-based company, which provides services including drug and alcohol testing and background checks, said the stolen data includes individuals' SSNs and financial information techcrunch.com/2025/02/25/u...
- Australia has become the latest country to ban government officials from using software made by Russian cybersecurity firm Kaspersky techcrunch.com/2025/02/24/a...
- Reposted by Carly PageNEW: Multiple researchers — independent and crypto monitoring firms — are accusing North Korean hackers of stealing $1.4 billion in crypto from Bybit. Attribution is based on link to previous hacks and "characteristic pattern" of laundering the funds. techcrunch.com/2025/02/24/r...
- Reposted by Carly PageNew: A default password shipped with a widely used access control system is exposing remote access to dozens of apartment buildings across the US & Canada, per a researcher. Hirsch, which makes the system, won't fix the bug and says it's up to buildings to remediate. techcrunch.com/2025/02/24/a...
- Reposted by Carly PageNEW: Apple said it "can no longer" offer iCloud end-to-end encryption in the UK, and turned off the option to enable it for new users in the country. The unprecedented move comes after the British government demanded a backdoor into Apple's cloud service. techcrunch.com/2025/02/21/a...
- Reposted by Carly PageNew, w/ @carlypage.bsky.social: A trove of Black Basta ransomware chat logs have leaked online. TechCrunch obtained a copy. The chats reveal details on the group's members (including a 17y/o), its victims, their exploits, and their fear of Russian and US authorities. techcrunch.com/2025/02/21/a...
- A trove of chat logs allegedly belonging to the prolific Black Basta ransomware group has leaked online, revealing unprecedented insights into the gang's operations The logs, seen by TechCrunch, also name several previously unknown targeted organizations techcrunch.com/2025/02/21/a...
- Reposted by Carly PageNEW, by me: A bug in phone spyware apps Cocospy and Spyic are exposing the phone data of ~2.65 million people, according to a security researcher. The bug also exposes the email address of the people who signed up. Now those email addresses are in Have I Been Pwned. techcrunch.com/2025/02/20/s...
- UK healthcare giant HCRG Care Group has confirmed it’s investigating an "IT security incident" after the Medusa ransomware gang claimed to have breached the company's systems to steal troves of sensitive data techcrunch.com/2025/02/20/u...
- Reposted by Carly PageNEW: Former U.S. Army soldier Cameron John Wagenius pleads guilty to hacking Verizon and AT&T as part of the massive Snowflake-related data breaches. Wagenius faces up to $500,000 in fines and 20 years in prison, according to court records we reviewed. techcrunch.com/2025/02/19/u...
- Australian IVF giant Genea has disclosed a cybersecurity incident that disrupted patient services and led to the access of potentially sensitive information techcrunch.com/2025/02/19/a...
- Palo Alto Networks has warned that hackers are exploiting another vulnerability in its firewall software to break into unpatched customer networks techcrunch.com/2025/02/19/p...
- Reposted by Carly Page
The dozens of individuals who work under, or advise, Musk and the Department of Government Efficiency are a real-life illustration of Musk’s web-like reach in the tech industry. But who are the individuals in Musk’s inner circle and how did they get there? Find out here: tcrn.ch/4gKMJWA - US-based VC giant Insight Partners has confirmed that hackers breached its systems in January. The company said hackers had accessed “certain Insight information systems through a sophisticated social engineering attack”, but did not say whether any data was stolen techcrunch.com/2025/02/18/v...
- Reposted by Carly PageNew: Newspaper giant Lee Enterprises blames a ransomware attack for encrypting critical applications and systems used by dozens of media outlets across the United States. Several local U.S. outlets owned by Lee continue to report outages. More: techcrunch.com/2025/02/18/a...
- Reposted by Carly PageNEW: Valve removed from Steam a videogame that contained malware. A strange case with a lot of open questions. Was this an accident? Did someone inject the malware into the game? Or hackers developed a game with the single purpose of infecting players? techcrunch.com/2025/02/13/v...
- Reposted by Carly PageNEW: We caught another government spyware vendor, which made fake Android apps masquerading as WhatsApp and cellphone providers' apps. The spyware, called Spyrtacus, was made by SIO, which sells to Italian government and says that it partners with "Police and Intelligence Agencies."
- British cybersecurity firm Sophos is laying off 6% of its workforce less than two weeks after completing its acquisition of Secureworks techcrunch.com/2025/02/13/s...
- Barcelona-based spyware vendor Variston has reportedly gone into liquidation. This comes almost exactly a year after TechCrunch reported that Variston was in the process of shutting down after letting go of more than half-a-dozen employees techcrunch.com/2025/02/13/b...
- The China-backed Salt Typhoon group is still hacking telecommunications providers, despite government sanctions. Recorded Future says Salt Typhoon breached five firms between December and January, including a US affiliate of a prominent UK provider and a US-based ISP techcrunch.com/2025/02/13/c...
- Reposted by Carly PageNEW: Another Italian involved in rescuing immigrants in the Mediterranean says he was targeted in the Paragon spyware campaign that WhatsApp revealed recently. There are now four people who have come forward pas alleged targets of this hacking campaign. techcrunch.com/2025/02/11/a...
- Amid uncertainty about the future of the cybersecurity agency, CISA has reportedly placed several members of its election security team on administrative leave techcrunch.com/2025/02/11/c...
- A global law enforcement operation has led to the arrest of four individuals who authorities accuse of being key figures in the 8base ransomware operation. The four suspects are accused of amassing $16 million through attacks against more than 1,000 organizations techcrunch.com/2025/02/11/a...
- Reposted by Carly PageNEW: Apple released a fix for a zero-day bug for iOS that “may have been exploited in an extremely sophisticated attack against specific targeted individuals.” AFAIK this is the first time Apple uses "extremely sophisticated attack" in an official release. techcrunch.com/2025/02/10/a...
- A group of international law enforcement agencies have seized the dark web leak site of the 8base ransomware gang. The NCA confirmed the legitimacy of the takedown message to TechCrunch and said the UK played a “supportive role” in the operation techcrunch.com/2025/02/10/g...
- The UK government's secret demands for backdoor access to encrypted iCloud accounts is a "global emergency", critics have warned techcrunch.com/2025/02/10/u...
- Reposted by Carly PageNew, by me: Media giant Lee Enterprises says it was hit by a cyberattack last week, per an email seen by TechCrunch. Lee confirmed it was working to restore its systems. Lee publishes dozens of newspapers across the U.S., many of which are reporting disruption. techcrunch.com/2025/02/10/m...
- Reposted by Carly PageNew, by me: Hewlett Packard Enterprise (HPE) has begun notifying data breach victims after it was hacked by Russian government-backed hackers in 2023. techcrunch.com/2025/02/07/h...
- Reposted by Carly PageNew: A coalition of more than a dozen U.S. states say they plan to file a lawsuit after Elon Musk’s DOGE gained access to the federal government's banks of Americans’ personal data. The states haven't yet filed the lawsuit... and Musk still has broad access to data. techcrunch.com/2025/02/07/c...
- Government officials in the UK have reportedly ordered Apple to build a backdoor that would give it access to users’ encrypted iCloud data. Apple will likely stop offering its encrypted cloud storage service, Advanced Data Protection, to users in the country techcrunch.com/2025/02/07/u...
