October 24, 2025

Sneaky Mermaid attack in Microsoft 365 Copilot steals data

Redmond says it's fixed this particular indirect prompt injection vuln updated  Microsoft fixed a security hole in Microsoft 365 Copilot that allowed attackers to trick the AI assistant into stealing sensitive tenant data – like emails – via indirect prompt injection attacks.…

Microsoft drops surprise Windows Server patch before weekend downtime

You didn't have plans, did you? Microsoft has released an out-of-band update to patch a critical vulnerability in Windows Server Update Services (WSUS).…

Digital ID is now less about illegal working, more about rummaging through drawers

Starmer rebrands unpopular scheme as convenience tool after backlash UK Prime Minister Keir Starmer has relaunched his digital ID scheme as something that will make people's lives easier, less than four weeks after announcing it as a measure to tackle illegal working.…

Shield AI shows off not-at-all-terrifying autonomous VTOL combat drone

Runways? Where we're going, we don't need runways US defense technology biz Shield AI claims it can build a jet-powered vertical take-off and landing (VTOL) autonomous fighter drone that doesn't need a runway to operate.…

Iran’s MuddyWater wades into 100+ government networks in latest spying spree

Group-IB says Tehran-linked crew used hijacked mailbox and VPN to sling phishing emails across Middle East Iran's favorite muddy-footed cyberespionage crew is at it again, this time breaching more than 100 government entities across the Middle East and North Africa, according to researchers at Group-IB.…

Cyber exec with lavish lifestyle charged with selling secrets to Russia

The 0-days have left the building Federal prosecutors have charged a former general manager of US government defense contractor L3Harris's cyber arm Trenchant with selling secrets to an unidentified Russian buyer for $1.3 million.…

Copyright © 2026 Lugapel