Carly Page

@carlypage
1.5K Followers
96 Following
479 Posts

Freelance journalist and copywriter with 10+ years covering the technology industry, and formerly senior cybersecurity reporter at TechCrunch.

Bylines include IT Pro, LeadDev, Resilience Media, The Register, TechFinitive, The Telegraph, TIME, WIRED, & more.

☎️ Signal: carly.44

✉️ [email protected]

Blueskyhttps://bsky.app/profile/carlypage.bsky.social
VERIFIED BY PRESSCHECK.ORGhttps://presscheck.org/journalists/carly-page
Workhttps://www.carlypagewrites.co.uk
Carly PageFeb 24
Show threadZack WhittakerFeb 24

Conduent's handling of its data breach has been truly shit, refusing to say how many people are affected, or how the breach occurred.

Conduent hid its breach notice with "noindex" code, so you won't see the page in search results. The breach notice doesn't even *mention* a breach!

https://techcrunch.com/2026/02/24/conduent-data-breach-grows-affecting-at-least-25m-people/

Carly PageJan 6
Open Rights GroupJan 6

"Now more than ever, the UK needs to build and protect sovereignty over its digital infrastructure, and not leave itself vulnerable to the policies and actions of foreign powers such as the US and China."

🗣 @JamesBaker on ORG's call for #DigitalSovereignty in the UK Cybersecurity Bill.

https://www.theregister.com/2026/01/06/uk_urged_to_unplug_from/

#CybersecurityBill #cybersecurity #ukpolitics #ukpol

UK urged to unplug from US tech giants as digital sovereignty fears grow

: Campaigners say Britain's dependence on Big Tech leaves critical systems exposed to political pressure

The Register
Carly PageJan 5
happy new year! i’m back on the cybersecurity desk at The Register from tomorrow, pls send me your tips & scoops (signal/email in bio)
Carly PageNov 27
Open Rights GroupNov 27

"A data regulator that fails to deter bad practices is not worth having."

Rules only work if they're actually enforced.

With the Information Commissioner's Office (UK), we've seen a collapse in the use of corrective powers when data protection laws are broken.

We need an inquiry into this failing watchdog.

Read more about our open letter signed by over 70 organisations and experts ⬇️

https://www.theregister.com/2025/11/25/ico_inquiry_afghan_mod/

#dataprotection #gdpr #ICO #privacy #data #ukpolitics #ukpol

Calls grow for inquiry into UK data watchdog after MoD leak

: ICO accused of backing off oversight as fallout from Afghan blunder widens

The Register
Carly PageNov 26
BrianKrebsNov 26

Scoopy, new, by me:

Meet Rey, the Admin of 'Scattered Lapsus$ Hunters'

"A prolific cybercriminal group that calls itself "Scattered LAPSUS$ Hunters" made headlines regularly this year by stealing data from and publicly mass extorting dozens of major corporations. But the tables seem to have turned somewhat for "Rey," the moniker chosen by the technical operator and public face of the hacker group: Earlier this week, Rey confirmed his real life identity and agreed to an interview after KrebsOnSecurity tracked him down and contacted his father."

https://krebsonsecurity.com/2025/11/meet-rey-the-admin-of-scattered-lapsus-hunters/

Carly PageOct 15
Zack WhittakerOct 15

This one's a wild/messy one: Cyber giant F5, which serves most of the Fortune 500, said unknown government hackers had 'long term' access to its network:

• stole source code, some customer data
• accessed undisclosed vulns in BIG-IP
• DOJ allowed F5 to delay public notice citing national security

More, from me:

https://techcrunch.com/2025/10/15/cyber-giant-f5-networks-says-government-hackers-had-long-term-access-to-its-systems-stole-code-and-customer-data/

Cyber giant F5 Networks says government hackers had 'long-term' access to its systems, stole code and customer data | TechCrunch

The company, which provides cybersecurity defenses to most of the Fortune 500, said the DOJ allowed it to delay notifying the public on national security grounds.

TechCrunch
Carly PageOct 10

Cops have seized the latest incarnation of Breach Forums, which had become the public-facing leak shop for Scattered Lapsus$ Hunters' latest extortion campaign.

The group claims the takedown has "no impact" on its planned leak of ~1 billion records allegedly stolen from Salesforce and its customers https://www.theregister.com/2025/10/10/cops_seize_breachforums/

Cops nuke BreachForums (again) amid cybercrime supergroup extortion blitz

: US and French fuzz pull the plug on Scattered Lapsus$ Hunters' latest leak shop targeting Salesforce

The Register
Carly PageOct 7
Red Hat breach escalates as cybercrims collaborate on 'multi-terabyte' extortion plot https://www.theregister.com/2025/10/07/red_hat_breach_new_claims/
Red Hat breach escalates as criminals collaborate on 'multi-terabyte' extortion plot

: Bad guys promise not to attack customers if they get paid

The Register
Carly PageOct 3
Zack WhittakerOct 3

NEW: A notorious predominantly English-speaking hacking and extortion group, dubbed Scattered LAPSUS$ Hunters, has published a data leak site claiming the theft of 1 billion records from companies who store their customer data in Salesforce databases.

The hackers claim to have stolen data Qantas, Stellantis, FedEx, Hulu, and others.

w/ @lorenzofb

https://techcrunch.com/2025/10/03/hacking-group-claims-theft-of-1-billion-records-from-salesforce-customer-databases/

Hacking group claims theft of 1 billion records from Salesforce customer databases | TechCrunch

The hacking group claims to have stolen about a billion records from companies, including FedEx, Qantas, and TransUnion, who store their customer and company data in Salesforce.

TechCrunch
Carly PageSep 26, 2025
Zack WhittakerSep 26, 2025

ICYMI: A viral app called Neon, which pays you to record your phone calls so your audio can be used to train AI, has gone offline after I discovered a security lapse exposing users' phone numbers, call recordings, and call transcriptions.

Anyone could download users' raw audio recordings because the web links were publicly accessible from the web.

https://techcrunch.com/2025/09/25/viral-call-recording-app-neon-goes-dark-after-exposing-users-phone-numbers-call-recordings-and-transcripts/

Exclusive: Neon takes down app after exposing users' phone numbers, call recordings, and transcripts

Call recording app Neon was one of the top-ranked iPhone apps, but was pulled offline after a security bug allowed any logged-in user to access the call recordings and transcripts of any other user.

TechCrunch