August 2025

Cisco’s Secure Firewall Management Center now not-so secure, springs a CVSS 10 RCE hole

Switchzilla's summer of perfect 10s Cisco has issued a patch for a maximum-severity bug in its Secure Firewall Management Center (FMC) software that could allow an unauthenticated, remote attacker to inject arbitrary shell commands on vulnerable systems.…

Cyberattack on Dutch prosecution service is keeping speed cameras offline

Who knew zero-days could be so useful to highway speedsters? The lingering effects of a cyberattack on the Public Prosecution Service of the Netherlands are preventing it from reactivating speed cameras across the country.…

Telco giant Colt suffers attack, takes systems offline

London-based multinational takes customer portal and Voice API platform offline as 'protective measure' following breach Updated  Multinational telco Colt Technology Services says a "cyber incident" is to blame for its customer portal and other services being down for a number of days.…

LLM chatbots trivial to weaponize for data theft, say boffins

System prompt engineering turns benign AI assistants into 'investigator' and 'detective' roles that bypass privacy guardrails A team of boffins is warning that AI chatbots built on large language models (LLM) can be tuned into malicious agents to autonomously harvest users’ personal data, even by attackers with "minimal…

Should UK.gov save money by looking for open source alternatives to Microsoft? You decide

As £9 billion MoU sparks debate about value for money, it's time to have your say Register debate series  It's a lot of money, £9 billion ($12 billion). Especially for a government which finds itself — for whatever reason — in a fiscal dead end.…

‘MadeYouReset’ HTTP/2 flaw lets attackers DoS servers

Researchers had to notify over 100 vendors of flaw that builds on 2023's Rapid Reset with neat twist past usual mitigations Security researchers Gal Bar Nahum, Anat Bremler-Barr, and Yaniv Harel have published details of a "common design flaw" in implementations of the HyperText Transfer Protocol 2 (HTTP/2)…

Lock down your critical infrastructure, CISA begs admins

The agency offered some tips for operational technology environments, where attacks are rising CISA is urging companies with operational technology environments to set a better cybersecurity posture, and not just by adopting some new best practices and purchasing some new software.…

BtcTurk suspends operations amid alleged $49M hot wallet heist

Turkish exchange is the latest victim of a recent spate of major crypto thefts Turkish cryptocurrency exchange BtcTurk is halting all deposits and withdrawals amid fears that blockchain bandits succeeded in significantly compromising its hot wallets.…

Law and water: Russia blamed for US court system break-in and Norwegian dam drama

Moscow-linked miscreants accused of swiping sealed US court files and fiddling with a Norwegian dam’s floodgates Russian attackers reportedly spent months rummaging through the US federal court's creaky case-management system, while Norway reckons the same Kremlin-friendly miscreants took control of a dam's controls – a transatlantic double-act in…

Italian hotels breached en masse since June, government confirms

Nearly 100,000 records allegedly up for sale after apparent breach at booking system Italy's digital agency (AGID) says a cybercriminal's claims concerning a spate of data thefts affecting various hotels across the country are genuine.…

Copyright © 2026 Lugapel