June 2025

How to bridge the MFA gap

If a credential is worth protecting, it's worth protecting well. Sponsored feature  What do flossing and multi-factor authentication (MFA) have in common? Each is highly beneficial, yet far too few people do them consistently. MFA helps protect organizations from credential-based attacks, but according to the Cyber Readiness Institute,…

Amazon CISO: Iranian hacking crews ‘on high alert’ since Israel attack

Meanwhile, next-gen script kiddies are levelling up faster thanks to agentic AI Interview  Iran's state-sponsored cyber operatives and hacktivists have all increased their activities since the military conflict with Israel erupted last week – but not necessarily in the way that Amazon chief information security officer CJ Moses…

Trump administration set to waive TikTok sell-or-die deadline for a third time

Quick reminder: The law that banned the app is called ‘Protecting Americans from Foreign Adversary Controlled Applications Act’ The Trump administration is set to again waive the 2024 law that requires the made-in-China social network TikTok to either sell its US operations to a local company or stop…

AWS locks down cloud security, hits 100% MFA enforcement for root users

Plus adds a ton more security capabilities for cloud customers at re:Inforce Amazon Web Services hit a major multi-factor authentication milestone, achieving 100 percent MFA enforcement for root users across all types of AWS accounts.…

Sitecore CMS flaw let attackers brute-force ‘b’ for backdoor

Hardcoded passwords and path traversals keeping bug hunters in work Security researchers have issued a warning about a pre-authentication exploit chain affecting a CMS used by some of the biggest companies in the world.…

Redefining identity security in the age of agentic AI

Now AI agents have identity, too. Here's how to handle it Partner content  The rise of agentic AI systems is rewriting the rules of cybersecurity. Unlike generative AI, which relies on predefined instructions or prompts, AI agents operate autonomously, learn continuously, and act with minimal oversight. They collaborate…

23andMe hit with £2.3M fine after exposing genetic data of millions

Penalty follows year-long probe into flaws that allowed attack to affect so many The UK's data watchdog is fining beleaguered DNA testing outfit 23andMe £2.31 million ($3.13 million) over its 2023 mega breach.…

Scattered Spider has moved from retail to insurance

Google threat analysts warn the team behind the Marks & Spencer break-in has moved on Cyber-crime crew Scattered Spider has infected US insurance companies following a series of ransomware attacks against American and British retailers, according to Google, which urged this sector to be on "high alert."…

Remorseless extortionists claim to have stolen thousands of files from Freedman HealthCare

The group has previously threatened to SWAT cancer patients and leaked pre-op plastic surgery photos An extortion gang claims to have breached Freedman HealthCare, a data and analytics firm whose customers include state agencies, health providers, and insurance companies, and is threatening to dump tens of thousands of…

Canada’s WestJet says ‘expect interruptions’ online as it navigates cybersecurity turbulence

Flights still flying - just don't count on the app or website working smoothly Canadian airline WestJet is warning of "intermittent interruptions or errors" on its app and website as it investigates a cybersecurity incident.…

Copyright © 2026 Lugapel