Blog

FTC scolds two data brokers for allegedly selling your location to the meter

'Where we go is who we are' totally isn't a creepy ad slogan at all The FTC has reached a settlement with two data brokerages over allegations they harvested precise location data that shows when people entered hospitals, places of worship, and even attended protests supporting the late…

Perfect 10 directory traversal vuln hits SailPoint’s IAM solution

20-year-old info disclosure class bug still pervades security software It's time to rev up those patch engines after SailPoint disclosed a perfect 10/10 severity vulnerability in its identity and access management (IAM) platform IdentityIQ.…

Severity of the risk facing the UK is widely underestimated, NCSC annual review warns

National cyber emergencies increased threefold this year The number of security threats in the UK that hit the country's National Cyber Security Centre's (NCSC) maximum severity threshold has tripled compared to the previous 12 months.…

Russia gives life sentence to Hydra dark web kingpin after seizing a ton of drugs

No exaggeration – literally a ton. Plus, 15 co-conspirators also put behind bars A Russian court has handed a life sentence to the head of the infamous online drugs souk Hydra, and 15 of his co-conspirators will also spend many years behind bars.…

Data on 760K workers from Xerox, Nokia, BofA, Morgan Stanley and more dumped online

Yet another result of the MOVEit mess Hundreds of thousands of employees from major corporations including Xerox, Nokia, Koch, Bank of America, Morgan Stanley and others appear to be the latest victims in a massive data breach linked to last year's attacks on file transfer tool MOVEit.…

AWS unveils cloud security IR service for a mere $7K a month

Tap into the infinite scalability... of pricing Re:Invent  Amazon Web Services has a new incident response service that combines automation and people to protect customers' AWS accounts - at a hefty price.…

Discover the future of Linux security

Explore open source strategies to safeguard critical systems and data Webinar  Linux security is a component that sits at the heart of today's IT landscape.…

Russia arrests one of its own – a cybercrime suspect on FBI’s most wanted list

The latest in an unusual change of fortune for group once protected by the Kremlin An alleged former affiliate of the LockBit and Babuk ransomware operations, who also just happens to be one of the most wanted cybercriminals in the US, is now reportedly in handcuffs.…

Telco security is a dumpster fire and everyone’s getting burned

The politics of cybersecurity are too important to be left to the politicians Opinion  Here's a front-page headline you won't see these days: CHINA'S SPIES ARE TAPPING OUR PHONES. Not that they're not – they are – but, like the environment, there's so much cybersecurity horror in the…

Interpol nabs thousands, seizes millions in global cybercrime-busting op

Also, script kiddies still a threat, Tornado Cash is back, UK firms lose billions to avoidable attacks, and more Infosec in brief  Interpol and its financial supporters in the South Korean government are back with another round of anti-cybercrime arrests via the fifth iteration of Operation HAECHI, this…

Copyright © 2024 Lugapel