Blog

Uncle Sam abruptly turns off funding for CVE program. Yes, that CVE program

Because vulnerability management has nothing to do with national security, right? Updated  US government funding for the world's CVE program – the centralized Common Vulnerabilities and Exposures database of product security flaws – ends Wednesday.…

All right, you can have one: DOGE access to Treasury IT OK’d judge

Login green-lit for lone staffer if he’s trained, papered up, won’t pull an Elez A federal judge has partly lifted an injunction against Elon Musk's Trump-blessed cost-trimming DOGE unit, allowing one staff member to access sensitive US Treasury payment systems. This access includes personally identifiable financial information tied…

Chinese snoops use stealth RAT to backdoor US orgs – still active last week

Let the espionage and access resale campaigns begin (again) A cyberspy crew or individual with ties to China's Ministry of State Security has infected global organizations with a remote access trojan (RAT) that's "even better" than Cobalt Strike, using this stealthy backdoor to enable its espionage and access…

ActiveX blocked by default in Microsoft 365 because remote code execution is bad, OK?

Stopping users shooting themselves in the foot with last century's tech Microsoft has twisted the knife into ActiveX once again, setting Microsoft 365 to disable all controls without so much as a prompt.…

Where it Hertz: Customer data driven off in Cleo attacks

Car hire biz takes your privacy seriously, though Car hire giant Hertz has confirmed that customer information was stolen during the zero-day data raids on Cleo file transfer products last year.…

EU gives staff ‘burner phones, laptops’ for US visits

That would put America on the same level as China for espionage The European Commission is giving staffers visiting the US on official business burner laptops and phones to avoid espionage attempts, according to the Financial Times.…

Official abuse of state security has always been bad, now it’s horrifying

UK holds onto oversight by a whisker, but it's utterly barefaced on the other side of the pond Opinion  The UK government's attempts to worm into Apple's core end-to-end encryption were set back last week when the country's Home Office failed in its bid to keep them secret…

CIO and digi VP to depart UK retail giant Asda as Walmart divorce woes settle

Brit retailer says troubled breakup with tech platform of former US owner nearing conclusion Two of the top team behind Asda's £1 billion ($1.31 billion) tech divorce from US retail giant Walmart — which has seen a number of setbacks — are departing the company.…

AI can’t stop making up software dependencies and sabotaging everything

Hallucinated package names fuel 'slopsquatting' The rise of AI-powered code generation tools is reshaping how developers write software - and introducing new risks to the software supply chain in the process.…

Microsoft total recalls Recall totally to Copilot+ PCs

Redmond hopes you’ve forgotten or got over why everyone hated it the first time After temporarily shelving its controversial Windows Recall feature amid a wave of backlash, Microsoft is back at it - now quietly slipping the screenshotting app into the Windows 11 Release Preview channel for Copilot+…

Copyright © 2026 Lugapel