August 2025

Ransomware crooks knock Swedish municipalities offline for measly sum of $168K

Miljödata meltdown leaves 200 local authorities scrambling over 1.5 BTC Sweden's municipal governments have been knocked offline after ransomware crooks hit IT supplier Miljödata, reportedly demanding the bargain-basement sum of $168,000.…

Nx NPM packages poisoned in AI-assisted supply chain attack

Stolen dev credentials posted to GitHub as attackers abuse CLI tools for recon Nx is the latest target of a software supply chain attack in the NPM ecosystem, with multiple malicious versions being uploaded to the NPM registry on Tuesday evening.…

The intruder is in the house: Storm-0501 attacked Azure, stole data, demanded payment via Teams

Don't let it happen to you Storm-0501, a financially motivated cybercrime crew, recently broke into a large enterprise's on-premises and cloud environments, ultimately exfiltrating and destroying data within the org's Azure environment. The criminals then contacted the victim via a Microsoft Teams account that they'd also compromised in…

Salesforce data missing? It might be due to Salesloft breach, Google says

Attackers steal OAuth tokens to access third-party sales platform, then CRM data in 'widespread campaign' Google says a recent spate of Salesforce-related breaches was caused by attackers stealing OAuth tokens from the third-party Salesloft Drift app.…

Who are you again? Infosec experiencing ‘Identity crisis’ amid rising login attacks

Vendor insists passkeys are the future, but getting workers on board is proving difficult Infosec pros are losing confidence in their identity providers' ability to keep attackers out, with Cisco-owned Duo warning that the industry is facing what it calls "an identity crisis."…

BGP’s security problems are notorious. Attempts to fix that are a work in progress

Securing internet infrastructure remains a challenging endeavour Systems Approach  I’ve been working on a chapter about infrastructure security for our network security book.…

Citrix patches trio of NetScaler bugs – after attackers beat them to it

Criminals already abusing its latest zero-days Citrix has pushed out fixes for three fresh NetScaler holes – and yes, they've already been used in the wild before the vendor got around to patching.…

Crypto thief earns additional prison time for assaulting witness

Remy Ra St Felix led a vicious international crime ring A violent home invader and gunpoint cryptocurrency thief will now spend more than 50 years behind bars after being found guilty of assaulting a witness.…

Farmers Insurance harvests bad news: 1.1M customers snared in data breach

Crims raided third-party systems and lifted personal data, including license numbers and partial SSNs US insurance giant Farmers Insurance says more than a million customers had personal data nicked after a third-party vendor was compromised.…

Malware-ridden apps made it into Google’s Play Store, scored 19 million downloads

Everything's fine, the ad slinger assures us Cloud security vendor Zscaler says customers of Google’s Play Store have downloaded more than 19 million instances of malware-laden apps that evaded the web giant’s security scans.…

Copyright © 2026 Lugapel