2025

Majority of 1.4M customers caught in Allianz Life data heist

No word on who's behind it, but attack has hallmarks of the usual suspects Financial services biz Allianz says the majority of customers of one of its North American subsidiaries had their data stolen in a cyberattack.…

Aeroflot aeroflops over ‘IT issues’ after attackers claim year-long compromise

Russia's top airline cancels 49 flights, delays affect many more Russia's largest airline, Aeroflot, canceled numerous flights on Monday morning following what it says was a failure in its IT systems - something hacktivists are claiming responsiblity for.…

Congress tries to outlaw AI that jacks up prices based on what it knows about you

Surveillance-based pricing? Two lawmakers say enough Two Democratic members of Congress, Greg Casar (D-TX) and Rashida Tlaib (D-MI,) have introduced legislation in the US House of Representatives to ban the use of AI surveillance to set prices and wages.…

Blame a leak for Microsoft SharePoint attacks, researcher insists

MAPP program to blame? A week after Microsoft told the world that its July software updates didn't fully fix a couple of bugs, which allowed miscreants to take over on-premises SharePoint servers and remotely execute code, researchers have assembled much of the puzzle — with one big missing piece.…

Senator to Google: Give us info from telco Salt Typhoon probes

AT&T and Verizon refused to hand over the security assessments, says Cantwell US Senator Maria Cantwell (D-WA) has demanded that Google-owned incident response firm Mandiant hand over the Salt Typhoon-related security assessments of AT&T and Verizon that, according to the lawmaker, both operators have thus far refused to…

Freelance dev shop Toptal caught serving malware after GitHub account break-in

Malicious code lurking in over 5,000 downloads, says Socket researcher Developer freelancing platform Toptal has been inadvertently spreading malicious code after attackers broke into its systems and began distributing malware through developer accounts.…

Microsoft admits it ‘cannot guarantee’ data sovereignty

Under oath in French Senate, exec says it would be compelled – however unlikely – to pass local customer info to US admin Microsoft says it "cannot guarantee" data sovereignty to customers in France – and by implication the wider European Union – should the Trump administration demand…

Advisor to Brit tech contractors Qdos confirms client data leak

Policy management not affected, but some personal data may have been snaffled Updated  Business insurance and employment status specialist Qdos has confirmed that an intruder has stolen some customers personal data, according to a communication to tech contractors that was seen by The Register.…

DNS security is important but DNSSEC may be a failed experiment

Nobody thinks of running a website without HTTPs. Safer DNS still seems optional Systems Approach  Last week I turned on DNSSEC (Domain Name System Security Extensions) for the systemsapproach.org domain. No need to applaud; I was just trying to get an understanding of what the barriers to adoption…

Laptop farmer behind $17M North Korean IT worker scam locked up for 8.5 years

Plus she has to cough up a slice of Pyongyang’s payday An Arizona woman who ran a laptop farm from her home - helping North Korean IT operatives pose as US-based remote workers - has been sentenced to eight and a half years behind bars for her role…

Copyright © 2026 Lugapel