2025

CVSS 10 RCE in Wing FTP exploited within 24 hours, security researchers warn

Intruders looked up how to use curl mid-attack - rookie errors kept damage minimal Huntress security researchers observed exploitation of the CVSS 10.0 remote code execution (RCE) flaw in Wing FTP Server on July 1, just one day after its public disclosure.…

UK Online Safety Act ‘not up to scratch’ on misinformation, warn MPs

Last summer's riots show how some content can be harmful but not illegal The Online Safety Act fails to tackle online misinformation, leaving the UK in need of further regulation to curb the viral spread of false content, a report from MPs has found.…

Russia, hotbed of cybercrime, says nyet to ethical hacking bill

Politicians uneasy over potential impact on national security, local reports say Russia, home to some of the world's most lucrative and damaging cybercrime operations, has rejected a bill to legalize ethical hacking.…

NCA arrests four in connection with UK retail ransomware attacks

Crimefighting agency cagey on details, probes into intrusions at M&S, Harrods, and Co-op continue The UK's National Crime Agency (NCA) arrested four individuals suspected of being involved with the big three cyberattacks on UK retail businesses in recent weeks.…

Sovereign-ish: Google Cloud keeps AI data in UK, but not the support

Processing and storage for Gemini 2.5 Flash to stay in Blighty Google Cloud is attempting to ease concerns about where AI data is stored by offering organizations the option to keep Gemini 2.5 Flash machine learning processing entirely within the UK.…

Review: How Passwork 7 helps tame business passwords

A simple interface and new roles-based capabilities make this venerable password manager an attractive proposition Sponsored feature  Passwords are necessary for businesses, but look away for a minute and they quickly get out of control. If your users do things right and use a different password for each…

At last, a use case for AI agents with sky-high ROI: Stealing crypto

Boffins outsmart smart contracts with evil automation Using AI models to generate exploits for cryptocurrency contract flaws appears to be a promising business model, though not necessarily a legal one.…

AMD warns of new Meltdown, Spectre-like bugs affecting CPUs

Low-severity bugs but infosec pros claim they are a 'critical' overall threat – patch accordingly AMD is warning users of a newly discovered form of side-channel attack affecting a broad range of its chips that could lead to information disclosure.…

The cloud-native imperative for effective cyber resilience

Modern threats demand modern defenses. Cloud-native is the new baseline Partner content  Every organization is investing in cyberresilience tools, training, and processes. Unfortunately, only some of them will be able to successfully respond and recover from an attack. Regardless of how hard they work, many IT and security…

Reframing investments in security as investments in the business

A little skill in business communication can help get the board on board Partner content  Cybersecurity executives and their teams are under constant pressure and scrutiny. As the barrier to entry for attackers gets lower, organizations need to improve their defenses. As businesses get leaner, so do their…

Copyright © 2026 Lugapel