Source: nakedsecurity.sophos.com – Author: Paul Ducklin US food delivery compeny PurFoods, which trades as Mom’s Meals, has just admitted to a cyberintrusion that took place from...
Author:
S3 Ep149: How many cryptographers does it take to change a light bulb? – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin DOUG. Leaky light bulbs, WinRAR bugs, and “Airplane mode, [HIGH RISING TONE] question mark?” All that and more on the Naked...
Using WinRAR? Be sure to patch against these code execution bugs… – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin The venerable RAR program, short for Roshal’s Archiver after its original creator, has been popular in file sharing and software...
Smart light bulbs could give away your password secrets – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin A trio of researchers split between Italy and the UK have recently published a paper about cryptographic insecurities they found...
“Snakes in airplane mode” – what if your phone says it’s offline but isn’t? – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin Researchers at Apple device management company Jamf recently published an intriguing paper entitled Fake Airplane Mode: A mobile tampering technique...
S3 Ep148: Remembering crypto heroes – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin DOUG. ATM skimmers, ransomware servers, and a warning from the FBI. All that, and more, on the Naked Security podcast. [MUSICAL...
FBI warns about scams that lure you in as a mobile beta-tester – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin The US Federal Bureau of Investigation (FBI) has just published an official public service announcement headlined with with a very...
“Grab hold and give it a wiggle” – ATM card skimming is still a thing – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin It’s been a while since we’ve written about card skimmers, which used to play a big part in global cybercrime....
Crimeware server used by NetWalker ransomware seized and shut down – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin It’s taken nearly ten years, but the US Department of Justice (DOJ) has just announced the court-approved seizure of a...
S3 Ep147: What if you type in your password during a meeting? – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin DOUG. Crocodilian cryptocrime, the BWAIN streak continues, and a reason to learn to touch-type. All that, and more, on the Naked...
Microsoft Patch Tuesday: 74 CVEs plus 2 “Exploit Detected” advisories – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin The August 2023 Microsoft security updates are out (the first day of the month was a Tuesday, making this month’s...
Serious Security: Why learning to touch-type could protect you from audio snooping – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin Audio recordings are dangerously easy to make these days, whether by accident or by design. You could end up with...
“Crocodile of Wall Street” and her husband plead guilty to giant-sized cryptocrimes – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin Back in August 2016, Heather Morgan, a.k.a. Razzlekhan, a.k.a. the Crocodile of Wall Street (actually, there’s a double-barrelled expletive in...
S3 Ep146: Tell us about that breach! (If you want to.) – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin DOUG. Firefox updates, another Bug With An Impressive Name, and the SEC demands disclosure. All that, and more, on the Naked...
Performance and security clash yet again in “Collide+Power” attack – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin Another week, another BWAIN! As you’ll know if you listened to last week’s podcast (hint, hint!), BWAIN is short for...
Firefox fixes a flurry of flaws in the first of two releases this month – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin Skip to content by Post navigation The latest full new version of Firefox is out, marking the first of two...
SEC demands four-day disclosure limit for cybersecurity breaches – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin Last week, the US Securities and Exchange Commission (SEC) announced new and fairly strict rules about cybersecurity breach disclosures for...
S3 Ep145: Bugs With Impressive Names! – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin Apple patches two zero-days, one for a second time. How a 30-year-old cryptosystem got cracked. All your secret are belong...
Zenbleed: How the quest for CPU performance could put your passwords at risk – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin Remember Heartbleed? That was the bug, back in 2014, that introduced the suffix -bleed for vulnerabilities that leak data in...
Apple ships that recent “Rapid Response” spyware patch to everyone, fixes a second zero-day – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin Two weeks ago, we urged Apple users with recent hardware to grab the company’s second-ever Rapid Response patch. As we...
Hacking police radios: 30-year-old crypto flaws in the spotlight – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin If you’d been quietly chasing down cryptographic bugs in a proprietary police radio system since 2021, but you’d had to...
S3 Ep144: When threat hunting goes down a rabbit hole – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin Why your Mac’s calendar app says it’s JUL 17. One patch, one line, one file. Careful with that {axe,file}, Eugene....
Google Virus Total leaks list of spooky email addresses – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin Early disclaimer: this isn’t quite the mother of all data breaches, nor even perhaps a younger cousin, so you can...
Microsoft hit by Storm season – a tale of two semi-zero days – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin At the tail-end of last week, Microsoft published a report entitled Analysis of Storm-0558 techniques for unauthorized email access. In...
Zimbra Collaboration Suite warning: Patch this 0-day right now (by hand)! – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin Popular collaboration product Zimbra has warned customers to apply a software patch urgently to close a security hole that it...
S3 Ep143: Supercookie surveillance shenanigans – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin Remembering the slide rule. What you need to know about Patch Tuesday. Supercookie surveillance shenanigans. When bugs arrive in pairs....
Microsoft patches four zero-days, finally takes action against crimeware kernel drivers – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin This Tuesday, 2023-07-11, was Microsoft’s Patch Tuesday for July 2023, so here’s a brief reminder to do two things: Patch...
Apple silently pulls its latest zero-day update – what now? – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin Betteridge’s Law of Headlines insists that any headline posed as a question can instantly be answered with a simple “No.”...
Urgent! Apple fixes critical zero-day hole in iPhones, iPads and Macs – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin The second-ever Apple Rapid Security Response just came out. That’s where the very latest versions of macOS, iOS and iPadOS...
Serious Security: Rowhammer returns to gaslight your computer – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin You’re probably familiar with the word gaslighting, used to refer to people with the odious habit of lying not merely...