2025

BGP’s security problems are notorious. Attempts to fix that are a work in progress

Securing internet infrastructure remains a challenging endeavour Systems Approach  I’ve been working on a chapter about infrastructure security for our network security book.…

Citrix patches trio of NetScaler bugs – after attackers beat them to it

Criminals already abusing its latest zero-days Citrix has pushed out fixes for three fresh NetScaler holes – and yes, they've already been used in the wild before the vendor got around to patching.…

Crypto thief earns additional prison time for assaulting witness

Remy Ra St Felix led a vicious international crime ring A violent home invader and gunpoint cryptocurrency thief will now spend more than 50 years behind bars after being found guilty of assaulting a witness.…

Farmers Insurance harvests bad news: 1.1M customers snared in data breach

Crims raided third-party systems and lifted personal data, including license numbers and partial SSNs US insurance giant Farmers Insurance says more than a million customers had personal data nicked after a third-party vendor was compromised.…

Malware-ridden apps made it into Google’s Play Store, scored 19 million downloads

Everything's fine, the ad slinger assures us Cloud security vendor Zscaler says customers of Google’s Play Store have downloaded more than 19 million instances of malware-laden apps that evaded the web giant’s security scans.…

Bug bounties: The good, the bad, and the frankly ridiculous ways to do it

For incentives remember the three Fs – finance, fame, and fixing it feature  Thirty years ago, Netscape kicked off the first commercial bug bounty program. Since then, companies large and small have bought into the idea, with mixed results.…

Short circuit: Electronics supplier to tech giants suffers ransomware shutdown

Amazon, Apple, Google, and Microsoft among major customers Data I/O, a major electronics manufacturer whose customers include Amazon, Apple, Google, and Microsoft, notified federal regulators that it fell victim to a ransomware infection on August 16 that continues to disrupt its business operations.…

Kidney dialysis giant DaVita tells 2.4M people they were snared in ransomware data theft nightmare

Health details, tax ID numbers, even images of checks were stolen, reportedly by the Interlock gang Ransomware scum breached kidney dialysis firm Davita's labs database in April and stole about 2.4 million people's personal and health-related information.…

Criminal background checker APCS faces data breach

The attack first affected an upstream provider of bespoke software Exclusive  A leading UK provider of criminal record checks for employers is handling a data breach stemming from a third-party development company.…

Fake CAPTCHA tests trick users into running malware

ClickFix tricks Microsoft's security team has published an in-depth report into ClickFix, the social engineering attack which tricks users into executing malicious commands in the guise of proving their humanity.…

Copyright © 2026 Lugapel