Login
FreshRSS
Login
About FreshRSS
Main stream
Favourites (0)
Security
/r/netsec - Information Security News & Discussion
Dark Reading:
http://blog.trendmicro.com/feed
ICS-CERT Alert Feed
Infosec Island Latest Articles
InfoSec Resources
Krebs on Security
McAfee Blogs
Naked Security
News β Packet Storm
Paul's Security Weekly
SANS Internet Storm Center, InfoCON: green
Security β Cisco Blog
SecurityFocus News
The first stop for security news | Threatpost
The Hacker News
The Register - Security
Threatpost | The first stop for security news
Troy Hunt
Verisign Blog
WeLiveSecurity
WIRED
ZDNet | security RSS
Tools
Security Tool Files β Packet Storm
ToolsWatch.org β The Hackers Arsenal Tools Portal
Vulnerabilities
Advisory Files β Packet Storm
Exploit-DB Updates
Full Disclosure
SecurityFocus Vulnerabilities
There are new available articles, click to refresh the page.
Before yesterday
Naked Security
Naked Security
GitHub blighted by βresearcherβ who created thousands of malicious projects
August 3
rd
2022 at 23:06Β
GitHub blighted by βresearcherβ who created thousands of malicious projects
By
Paul Ducklin
If you spew projects laced with hidden malware into an open source repository, don't waste your time telling us "no harm done" afterwards.
Related tags
β
Law
&
order
github
malware
supply
chain
August 3
rd
2022 at 23:06
Naked Security
Poisoned Python and PHP packages purloin passwords for AWS access
May 24
th
2022 at 23:04Β
Poisoned Python and PHP packages purloin passwords for AWS access
By
Paul Ducklin
More supply chain trouble - this time with clear examples so you can learn how to spot this stuff yourself.
Related tags
β
Malware
Vulnerability
exfiltration
PHP
python
secops
supply
chain
XDR
May 24
th
2022 at 23:04
Naked Security
RubyGems supply chain rip-and-replace bug fixed β check your logs!
May 9
th
2022 at 15:41Β
RubyGems supply chain rip-and-replace bug fixed β check your logs!
By
Paul Ducklin
Imagine if you could assume the identity of, say, Franklin Delano Roosevelt simply by showing up and calling yourself "Frank".
ruby-1200
Related tags
β
Vulnerability
CVE-2022-29176
ruby
RubyGems
suppy
chain
vulnerability
May 9
th
2022 at 15:41
Naked Security
Android monthly updates are out β critical bugs found in critical places!
May 4
th
2022 at 15:54Β
Android monthly updates are out β critical bugs found in critical places!
By
Paul Ducklin
Android May 2022 updates are out - with some critical fixes in some critical places. Learn more...
Related tags
β
Android
Google
Vulnerability
critical
Patch
update
vulnerability
May 4
th
2022 at 15:54
Naked Security
GitHub issues final report on supply-chain source code intrusions
April 29
th
2022 at 16:15Β
GitHub issues final report on supply-chain source code intrusions
By
Paul Ducklin
Learn how to find out which apps you've given access rights to, and how to revoke those rights immediately in an emergency.
Related tags
β
Data
loss
Microsoft
github
oauth
supply
chain
zero
trust
April 29
th
2022 at 16:15
Naked Security
World Backup Day: 5 data recovery tips for everyone!
March 30
th
2022 at 15:10Β
World Backup Day: 5 data recovery tips for everyone!
By
Paul Ducklin
The only backup you will ever regret is the one you didn't make
Related tags
β
Data
loss
backup
ransomware
world
backup
day
March 30
th
2022 at 15:10
Naked Security
Serious Security: DEADBOLT β the ransomware that goes straight for your backups
March 23
rd
2022 at 19:58Β
Serious Security: DEADBOLT β the ransomware that goes straight for your backups
By
Paul Ducklin
Some tips on how to keep your network safe - even (or perhaps especially!) if you think you're safe already.
Related tags
β
Ransomware
Vulnerability
backup
Deadbolt
Exploit
NAS
QNAP
ransomware
vulnerability
March 23
rd
2022 at 19:58
Naked Security
S3 Ep71: VMware escapes, PHP holes, WP plugin woes, and scary scams [Podcast + Transcript]
February 24
th
2022 at 16:51Β
S3 Ep71: VMware escapes, PHP holes, WP plugin woes, and scary scams [Podcast + Transcript]
By
Paul Ducklin
Latest episode - listen now!
Related tags
β
Phishing
Podcast
Vulnerability
backup
Exploit
hacking
Naked
Security
Podcast
Scam
sextortion
VMware
vulnerability
Wordpress
February 24
th
2022 at 16:51
Naked Security
WordPress backup plugin maker Updraft says βYou should updateββ¦
February 22
nd
2022 at 17:26Β
WordPress backup plugin maker Updraft says βYou should updateββ¦
By
Paul Ducklin
A straight-talking bug report written in plain English by an actual expert - there's a teachable moment in this cybersecurity story!
Related tags
β
Vulnerability
CVE-2022-23303
data
leak
Updraft
vulnerability
Wordpress
February 22
nd
2022 at 17:26
Naked Security
Serious Security: Linux full-disk encryption bug fixed β patch now!
January 14
th
2022 at 21:58Β
Serious Security: Linux full-disk encryption bug fixed β patch now!
By
Paul Ducklin
Imagine if someone who didn't have your password could sneakily modify data that was encrypted with it.
Related tags
β
Cryptography
cryptsetup
Linux
January 14
th
2022 at 21:58
Naked Security
S3 Ep65: Supply chain conniption, NetUSB hole, Honda flashback, FTC muscle [Podcast + Transcript]
January 13
th
2022 at 15:26Β
S3 Ep65: Supply chain conniption, NetUSB hole, Honda flashback, FTC muscle [Podcast + Transcript]
By
Paul Ducklin
Latest episode -listen to it or read it now!
Related tags
β
Podcast
Vulnerability
Honda
Naked
Security
Podcast
npm
supply
chain
January 13
th
2022 at 15:26
Naked Security
JavaScript developer destroys own projects in supply chain βlessonβ
January 11
th
2022 at 00:54Β
JavaScript developer destroys own projects in supply chain βlessonβ
By
Paul Ducklin
Two popular open source JavaScript packages recently got "hacked" in a symbolic gesture by the original project creator.
Related tags
β
colors.js
faker.js
JavaScript
npm
supply
chain
January 11
th
2022 at 00:54
Naked Security
Listen up 2 β CYBERSECURITY FIRST! How to protect yourself from supply chain attacks
October 25
th
2021 at 16:38Β
Listen up 2 β CYBERSECURITY FIRST! How to protect yourself from supply chain attacks
By
Paul Ducklin
Everyone remembers this year's big-news supply chain attacks on Kaseya and SolarWinds. Sophos expert Chester Wisniewski explains how to control the risk.
Related tags
β
Malware
Podcast
Ransomware
Security
leadership
BeCyberSmart
Cybermonth
Chester
Wisniewki
Cybermonth
2021
sos-2021
supply
chain
October 25
th
2021 at 16:38
There are no more articles
β
Mark all as read