Source: nakedsecurity.sophos.com – Author: Paul Ducklin Researchers at IoT security company Sternum dug into a popular home automation mains plug from well-known device brand Belkin. The...
Author:
Zut alors! Raclage crapuleux! Clearview AI in 20% more trouble in France – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin Here’s how the French data protection regulator describes controversial facial recognition service Clearview AI, in its own words, in clear...
S3 Ep134: It’s a PRIVATE key – the hint is in the name! – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin DOUG. Bluetooth trackers, bothersome bootkits, and how not to get a job. All that, and more, on the Naked Security podcast....
Bootkit zero-day fix – is this Microsoft’s most cautious patch ever? – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin Microsoft’s May 2023 Patch Tuesday updates comprise just the sort of mixture you probably expected. If you go by numbers,...
Low-level motherboard security keys leaked in MSI breach, claim researchers – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin About a month ago, we wrote about a data breach notification issued by major motherboard manufacturer MSI. The company said:...
PHP Packagist supply chain poisoned by hacker “looking for a job” – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin We’ve written about PHP’s Packagist ecosystem before. Like PyPI for Pythonistas, Gems for Ruby fans, NPM for JavaScript programmers, or...
S3 Ep133: Apple takes “tight-lipped” to a whole new level – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin DOUG. Passwords, botnets, and malware on the Mac. All that, and more, on the Naked Security podcast. [MUSICAL MODEM] Welcome to...
World Password Day: 2 + 2 = 4 – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin World Password Day is always hard to write tips for, because the primary advice you’ll hear has been the same...
Tracked by hidden tags? Apple and Google unite to propose safety and security standards… – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin Apple’s AirTag system has famously been subjected to firmware hacking, used as a free low-bandwidth community radio network, and involved...
Apple delivers first-ever Rapid Security Response “cyberattack” patch – leaves some users confused – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin We’ve written about the uncertainty of Apple’s security update process many times before. We’ve had urgent updates accompanied by email...
Mac malware-for-hire steals passwords and cryptocoins, sends “crime logs” via Telegram – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin Researchers at dark web monitoring company Cyble recently wrote about a data-stealing-as-a-service toolkit that they found being advertised in an...
S3 Ep132: Proof-of-concept lets anyone hack at will – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin DOUG. Remote code execution, remote code execution, and 2FA codes in the cloud. All that, and more, on the Naked Security...
Google leaking 2FA secrets – researchers advise against new “account sync” feature for now – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin The Google Authenticator 2FA app has featured strongly in cybersecurity news stories lately, with Google adding a feature to let...
PaperCut security vulnerabilities under active attack – vendor urges customers to patch – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin We’ll be honest, and admit that we hadn’t heard of the printer management software PaperCut until this week. In fact,...
Double zero-day in Chrome and Edge – check your versions now! – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin If you’re a Google Chrome or Microsoft Edge browser fan, you’re probably getting updates automatically and you’re probably up to...
VMware patches break-and-enter hole in logging tools: update now! – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin Logging software has made cyberinsecurity headlines many times before, notably in the case of the Apache Log4J bug known as...
S3 Ep131: Can you really have fun with FORTRAN? – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin DOUG. Juicejacking, public psychotherapy, and Fun with FORTRAN. All that and more on the Naked Security podcast. [MUSICAL MODEM] Welcome to...
Ex-CEO of breached pyschotherapy clinic gets prison sentence for bad data security – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin Skip to content by Post navigation We’ve said this before, but we’ll repeat it again here: Imagine that you’d spoken...
FBI and FCC warn about “Juicejacking” – but just how useful is their advice? – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin If you’d never heard the cybersecurity jargon word “juicejacking” until the last few days (or, indeed, if you’d never heard...
S3 Ep130: Open the garage bay doors, HAL [Audio + Text] – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin DOUG Patches aplenty, connected garage doors, and motherboard malfeasance. All that and more on the Naked Security podcast. [MUSICAL MODEM] Welcome...
Patch Tuesday: Microsoft fixes a zero-day, and two curious bugs that take the Secure out of Secure Boot – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin It’s Patch Tuesday Week (if you will allow us our daily pleonasm), and Microsoft’s updates include fixes for a number...
Attention gamers! Motherboard maker MSI admits to breach, issues “rogue firmware” alert – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin If you’re a gamer or an avid squeezer of raw computing power, you’ve probably spent hours tweaking your motherboard settings...
Apple zero-day spyware patches extended to cover older Macs, iPhones and iPads – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin Last week, we warned about the appearance of two critical zero-day bugs that were patched in the very latest versions...
Apple zero-day spyware patches extended to cover older Macs, iPhones and iPads
Last week, we warned about the appearance of two critical zero-day bugs that were patched in the very latest versions of macOS (version 13, also known...