lugapelsiteadmin

Ivanti patches exploited admin command execution flaw

Fears over chained attacks affecting EOL product The US Cybersecurity and Infrastructure Security Agency (CISA) just added the latest Ivanti weakness to its Known Exploited Vulnerability (KEV) catalog, a situation sure to annoy some – given that it's yet another path traversal flaw.…

Cybercrooks strut away with haute couture Harvey Nichols data

Nothing high-end about the sparsely detailed, poorly publicized breach High-end British department store Harvey Nichols is writing to customers to confirm some of their data was exposed in a recent cyberattack.…

CISA boss: Makers of insecure software are the real cyber villains

Write better code, urges Jen Easterly. And while you're at it, give crime gangs horrible names like 'Evil Ferret' Software developers who ship buggy, insecure code are the true baddies in the cyber crime story, Jen Easterly, boss of the US government's Cybersecurity and Infrastructure Security Agency, has…

Valencia Ransomware explodes on the scene, claims California city, fashion giant, more as victims

Boasts 'appear to be credible' experts tell El Reg A California city, a Spanish fashion giant, an Indian paper manufacturer, and two pharmaceutical companies are the alleged victims of what looks like a new ransomware gang that started leaking stolen info this week.…

1 in 10 orgs dumping their security vendors after CrowdStrike outage

Many left reeling from July's IT meltdown, but not to worry, it was all unavoidable Germany's Federal Office for Information Security (BSI) says one in ten organizations in the country affected by CrowdStrike's outage in July are dropping their current vendor's products.…

Thousands of orgs at risk of knowledge base data leaks via ServiceNow misconfigurations

Better check your widgets, people Security researchers say that thousands of companies are potentially leaking secrets from their internal knowledge base (KB) articles via ServiceNow misconfigurations.…

UK activists targeted with Pegasus spyware ask police to charge NSO Group

4 file complaint with London's Met, alleging malware maker helped autocratic states violate their privacy Four UK-based proponents of human rights and critics of Middle Eastern states today filed a report with London's Metropolitan Police they hope will lead to charges against Pegasus peddler NSO Group.…

Tor insists its network is safe after German cops convict CSAM dark-web admin

Outdated software blamed for cracks in the armor The Tor project has insisted its privacy-preserving powers remain potent, countering German reports that user anonymity on its network can be and has been compromised by police.…

FBI boss says China ‘burned down’ 260,000-device botnet when confronted by Feds

Plus: Wray tells how bureau helps certain victims negotiate with ransomware crooks China-backed spies are said to have tore down their own 260,000-device botnet after the FBI and its international pals went after them.…

Lebanon now hit with walkie-talkie blasts as Israel declares ‘new phase’ of war

Second wave of exploding gear pushes death toll higher First it was pagers, now Lebanon is being rocked by Hezbollah's walkie-talkies detonating across the country.…

Copyright © 2024 Lugapel