Login
FreshRSS
Login
About FreshRSS
Main stream
Favourites (0)
Security
/r/netsec - Information Security News & Discussion
Dark Reading:
http://blog.trendmicro.com/feed
ICS-CERT Alert Feed
Infosec Island Latest Articles
InfoSec Resources
Krebs on Security
McAfee Blogs
Naked Security
News ≈ Packet Storm
Paul's Security Weekly
SANS Internet Storm Center, InfoCON: green
Security – Cisco Blog
SecurityFocus News
The first stop for security news | Threatpost
The Hacker News
The Register - Security
Threatpost | The first stop for security news
Troy Hunt
Verisign Blog
WeLiveSecurity
WIRED
ZDNet | security RSS
Tools
Security Tool Files ≈ Packet Storm
ToolsWatch.org – The Hackers Arsenal Tools Portal
Vulnerabilities
Advisory Files ≈ Packet Storm
Exploit-DB Updates
Full Disclosure
SecurityFocus Vulnerabilities
There are new available articles, click to refresh the page.
Before yesterday
Naked Security
Naked Security
Tracers in the Dark: The Global Hunt for the Crime Lords of Crypto
February 6
th
2023 at 21:53
Tracers in the Dark: The Global Hunt for the Crime Lords of Crypto
By
Paul Ducklin
Hear renowned cybersecurity author Andy Greenberg's thoughtful commentary about the "war on crypto" as we talk to him about his new book...
Related tags
❌
Cryptocurrency
Cryptography
Law
&
order
Podcast
nobackdoors
Andy
Greenberg
cryptocurrency
Cybercrime
Tracers
Tracers
in
the
Dark
February 6
th
2023 at 21:53
Naked Security
Finnish psychotherapy extortion suspect arrested in France
February 6
th
2023 at 19:13
Finnish psychotherapy extortion suspect arrested in France
By
Naked Security writer
Company transcribed ultra-personal conversations, didn't secure them. Criminal stole them, then extorted thousands of vulnerable patients.
Related tags
❌
Data
loss
Law
&
order
data
breach
extortion
Vastaamo
February 6
th
2023 at 19:13
Naked Security
S3 Ep120: When dud crypto simply won’t let go [Audio + Text]
February 2
nd
2023 at 17:50
S3 Ep120: When dud crypto simply won’t let go [Audio + Text]
By
Paul Ducklin
Latest episode - listen now!
Related tags
❌
Cryptography
Law
&
order
Podcast
Ransomware
collision
Hive
MD5
Naked
Security
Podcast
ransomware
Samba
vulnerability
February 2
nd
2023 at 17:50
Naked Security
Password-stealing “vulnerability” reported in KeePass – bug or feature?
February 1
st
2023 at 19:58
Password-stealing “vulnerability” reported in KeePass – bug or feature?
By
Paul Ducklin
Is it a vulnerability if someone with control over your account can mess with files that your account is allowed to access anyway?
Related tags
❌
Cryptography
Data
loss
Vulnerability
CVE-2023-24055
data
leakage
KeePass
trigger
February 1
st
2023 at 19:58
Naked Security
Serious Security: The Samba logon bug caused by outdated crypto
January 30
th
2023 at 19:59
Serious Security: The Samba logon bug caused by outdated crypto
By
Paul Ducklin
Enjoy our Serious Security deep dive into this real-world example of why cryptographic agility is important!
Related tags
❌
Cryptography
Vulnerability
CIFS
collision
CVE-2022-38023
mac
MD5
message
digest
Samba
SMB
January 30
th
2023 at 19:59
Naked Security
S3 Ep119: Breaches, patches, leaks and tweaks! [Audio + Text]
January 26
th
2023 at 19:57
S3 Ep119: Breaches, patches, leaks and tweaks! [Audio + Text]
By
Paul Ducklin
Lastest episode - listen now! (Or read the transcript.)
Related tags
❌
Apple
Data
loss
Google
Podcast
Vulnerability
DNS
GoTo
LastPass
vulnerability
Zero
Day
January 26
th
2023 at 19:57
Naked Security
GoTo admits: Customer cloud backups stolen together with decryption key
January 25
th
2023 at 01:37
GoTo admits: Customer cloud backups stolen together with decryption key
By
Paul Ducklin
We were going to write, "Once more unto the breach, dear friends, once more"... but it seems to go without saying these days.
Related tags
❌
Cryptography
Data
loss
breach
cloud
GoTo
hash
LastPass
January 25
th
2023 at 01:37
Naked Security
S3 Ep118: Guess your password? No need if it’s stolen already! [Audio + Text]
January 19
th
2023 at 15:53
S3 Ep118: Guess your password? No need if it’s stolen already! [Audio + Text]
By
Paul Ducklin
As always: entertaining, informative and educational... and not bogged down with jargon! Listen (or read) now...
Related tags
❌
Cryptocurrency
Podcast
bust
cracking
Cybercrime
data
breach
hacking
JWT
Naked
Security
Podcast
January 19
th
2023 at 15:53
Naked Security
Serious Security: Unravelling the LifeLock “hacked passwords” story
January 17
th
2023 at 17:59
Serious Security: Unravelling the LifeLock “hacked passwords” story
By
Paul Ducklin
Four straight-talking tips to improve your online security, whether you're a LifeLock customer or not.
Related tags
❌
Cryptography
Privacy
LifeLock
Norton
NortonLifeLock
passwords
January 17
th
2023 at 17:59
Naked Security
Multi-million investment scammers busted in four-country Europol raid
January 16
th
2023 at 16:10
Multi-million investment scammers busted in four-country Europol raid
By
Paul Ducklin
216 questioned, 15 arrested, 4 fake call centres searched, millions seized...
Related tags
❌
Cryptocurrency
Law
&
order
cryptocurrency
Europol
Scam
January 16
th
2023 at 16:10
Naked Security
S3 Ep117: The crypto crisis that wasn’t (and farewell forever to Win 7) [Audio + Text]
January 12
th
2023 at 17:59
S3 Ep117: The crypto crisis that wasn’t (and farewell forever to Win 7) [Audio + Text]
By
Paul Ducklin
Tell us in the comments... What's the REAL reason there was no Windows 9? (No theory too far-fetched!)
Related tags
❌
Cryptography
Law
&
order
Podcast
Vulnerability
bust
Naked
Security
Podcast
RSA
Scam
Windows
7
Windows
8.1
January 12
th
2023 at 17:59
Naked Security
Popular JWT cloud security library patches “remote” code execution hole
January 10
th
2023 at 19:59
Popular JWT cloud security library patches “remote” code execution hole
By
Paul Ducklin
It's remotely triggerable, but attackers would already have pretty deep network access if they could "prime" your server for compromise.
Related tags
❌
Cryptography
Vulnerability
JSON
jsonwebtoken
JWT
rce
vulnerability
January 10
th
2023 at 19:59
Naked Security
RSA crypto cracked? Or perhaps not!
January 6
th
2023 at 19:59
RSA crypto cracked? Or perhaps not!
By
Paul Ducklin
Stand down from blue alert, it seems... but why not plan your cryptographic agility anyway?
Related tags
❌
Cryptography
crypto
January 6
th
2023 at 19:59
Naked Security
S3 Ep116: Last straw for LastPass? Is crypto doomed? [Audio + Text]
January 5
th
2023 at 17:52
S3 Ep116: Last straw for LastPass? Is crypto doomed? [Audio + Text]
By
Paul Ducklin
Lots of big issues this week: breaches, encryption, supply chains and patching problems. Listen now! (Full transcript inside.)
Related tags
❌
Cryptography
Podcast
LastPass
Naked
Security
Podcast
PyTorch
January 5
th
2023 at 17:52
Naked Security
Serious Security: How to improve cryptography, resist supply chain attacks, and handle data breaches
January 4
th
2023 at 19:50
Serious Security: How to improve cryptography, resist supply chain attacks, and handle data breaches
By
Paul Ducklin
Lessons for us all: improve cryptography, fight cybercrime, own your supply chain... and don't steal my data and then pretend you're sorry.
Related tags
❌
Data
loss
Malware
Podcast
Security
leadership
Vulnerability
Cryptography
Cybercrime
Linux
machine
learning
vulnerability
January 4
th
2023 at 19:50
Naked Security
Inside a scammers’ lair: Ukraine busts 40 in fake bank call-centre raid
January 3
rd
2023 at 17:03
Inside a scammers’ lair: Ukraine busts 40 in fake bank call-centre raid
By
Naked Security writer
When someone calls you up to warn you that your bank account is under attack - it's true, because THAT VERY PERSON is the one attacking you!
Related tags
❌
Cryptocurrency
Data
loss
Law
&
order
Caller
ID
Cybercrime
fake
call
scamming
January 3
rd
2023 at 17:03
Naked Security
PyTorch: Machine Learning toolkit pwned from Christmas to New Year
January 1
st
2023 at 21:36
PyTorch: Machine Learning toolkit pwned from Christmas to New Year
By
Paul Ducklin
The bad news: the crooks have your SSH private keys. The good news: only users of the "nightly" build were affected.
Related tags
❌
Machine
Learning
Malware
AI
Artificial
intelligence
data
stealing
Linux
machine
learning
malware
ML
PyTorch
triton
January 1
st
2023 at 21:36
Naked Security
US passes the Quantum Computing Cybersecurity Preparedness Act – and why not?
December 29
th
2022 at 20:45
US passes the Quantum Computing Cybersecurity Preparedness Act – and why not?
By
Paul Ducklin
Cryptographic agility: the ability and the willingness to change quickly when needed.
sc-daa-1200
Related tags
❌
Cryptography
Congress
Grover
PQC
quantum
quantum
computing
Shor
December 29
th
2022 at 20:45
Naked Security
Twitter data of “+400 million unique users” up for sale – what to do?
December 28
th
2022 at 19:59
Twitter data of “+400 million unique users” up for sale – what to do?
By
Paul Ducklin
If the crooks have connected up your phone number and your Twitter handle... what could go wrong?
Related tags
❌
Data
loss
breach
extortion
Twitter
December 28
th
2022 at 19:59
Naked Security
OneCoin scammer Sebastian Greenwood pleads guilty, “Cryptoqueen” still missing
December 19
th
2022 at 19:50
OneCoin scammer Sebastian Greenwood pleads guilty, “Cryptoqueen” still missing
By
Paul Ducklin
The Cryptoqueen herself is still missing, but her co-conspirator, who is said to have pocketed over $20m a month, has been convicted.
Related tags
❌
Cryptocurrency
Law
&
order
cryotocurrency
cryptoqueen
doj
Greenwood
Ignatova
OneCoin
Ponzi
Scam
December 19
th
2022 at 19:50
Naked Security
SIM swapper sent to prison for 2FA cryptocurrency heist of over $20m
December 6
th
2022 at 17:56
SIM swapper sent to prison for 2FA cryptocurrency heist of over $20m
By
Naked Security writer
Guilty party got 18 months, also has to pay back $20m he probably hasn't got, which could land him in more hot water.
Related tags
❌
Cryptocurrency
Law
&
order
2FA
Cybercrime
password
sim
swap
December 6
th
2022 at 17:56
Naked Security
S3 Ep111: The business risk of a sleazy “nudity unfilter” [Audio + Text]
December 1
st
2022 at 19:58
S3 Ep111: The business risk of a sleazy “nudity unfilter” [Audio + Text]
By
Paul Ducklin
Latest episode - listen now (or read if you prefer)...
Related tags
❌
Cryptocurrency
Law
&
order
Malware
Podcast
Privacy
CryptoRom
Cybercrime
iSpoof
Naked
Security
Podcast
porn
scam
TikTok
December 1
st
2022 at 19:58
Naked Security
Serious Security: MD5 considered harmful – to the tune of $600,000
November 30
th
2022 at 17:58
Serious Security: MD5 considered harmful – to the tune of $600,000
By
Paul Ducklin
It's not just the hashing, by the way. It's the salting and the stretching, too!
Related tags
❌
Cryptography
Law
&
order
CNIL
EDF
hashing
MD5
PBKDF2
November 30
th
2022 at 17:58
Naked Security
TikTok “Invisible Challenge” porn malware puts us all at risk
November 29
th
2022 at 19:58
TikTok “Invisible Challenge” porn malware puts us all at risk
By
Paul Ducklin
An injury to one is an injury to all. Especially if the other people are part of your social network.
Related tags
❌
Malware
Privacy
Social
networks
github
malware
supply
chain
Tik
Tok
TikTok
November 29
th
2022 at 19:58
Naked Security
Multimillion dollar CryptoRom scam sites seized, suspects arrested in US
November 23
rd
2022 at 19:58
Multimillion dollar CryptoRom scam sites seized, suspects arrested in US
By
Paul Ducklin
Five tips to keep yourself, and your friends and family, out of the clutches of "chopping block" scammers...
cryptorom-1200
Related tags
❌
BEC
Law
&
order
Malware
Social
networks
CryptoRom
ios
romance
scam
TestFlight
November 23
rd
2022 at 19:58
Naked Security
S3 Ep108: You hid THREE BILLION dollars in a popcorn tin?
November 10
th
2022 at 17:26
S3 Ep108: You hid THREE BILLION dollars in a popcorn tin?
By
Paul Ducklin
Patches, busts, leaks and why even low-likelihood exploits can be high-severity risks - listen now!
Related tags
❌
Cryptocurrency
Law
&
order
Microsoft
Podcast
Privacy
Vulnerability
bust
cryptocurrency
Exploit
Naked
Security
Podcast
Patch
Tuesday
Windows
November 10
th
2022 at 17:26
Naked Security
Silk Road drugs market hacker pleads guilty, faces 20 years inside
November 8
th
2022 at 19:58
Silk Road drugs market hacker pleads guilty, faces 20 years inside
By
Paul Ducklin
Jurisprudence isn't like arithmetic... two negatives never make a positive!
Related tags
❌
Cryptocurrency
Law
&
order
Big
Bitcoin
Heist
bitcoin
bust
doj
Silk
Road
Zhong
November 8
th
2022 at 19:58
Naked Security
Twitter Blue Badge email scams – Don’t fall for them!
November 4
th
2022 at 17:59
Twitter Blue Badge email scams – Don’t fall for them!
By
Naked Security writer
That was the week that was...
Related tags
❌
2-factor
Authentication
Phishing
Privacy
Spam
blue
badge
phishing
Twitter
verified
November 4
th
2022 at 17:59
Naked Security
S3 Ep107: Eight months to kick out the crooks and you think that’s GOOD? [Audio + Text]
November 3
rd
2022 at 17:51
S3 Ep107: Eight months to kick out the crooks and you think that’s GOOD? [Audio + Text]
By
Paul Ducklin
Listen now - latest episode - audio plus full transcript
Related tags
❌
Apple
Data
loss
Google
Law
&
order
Malware
Podcast
Privacy
Vulnerability
bust
Cybercrime
cyberextortion
data
breach
heartbleed
Naked
Security
Podcast
openssl
Patches
November 3
rd
2022 at 17:51
Naked Security
The OpenSSL security update story – how can you tell what needs fixing?
November 3
rd
2022 at 00:44
The OpenSSL security update story – how can you tell what needs fixing?
By
Paul Ducklin
How to Hack! Finding OpenSSL library files and accurately identifying their version numbers...
ossl-code-1200
Related tags
❌
Cryptography
Vulnerability
CVE-2022-3602
CVE-2022-378
openssl
November 3
rd
2022 at 00:44
Naked Security
OpenSSL patches are out – CRITICAL bug downgraded to HIGH, but patch anyway!
November 1
st
2022 at 17:24
OpenSSL patches are out – CRITICAL bug downgraded to HIGH, but patch anyway!
By
Paul Ducklin
That bated-breath OpenSSL update is out! It's no longer rated CRITICAL, but we advise you to patch ASAP anyway. Here's why...
Related tags
❌
Cryptography
Vulnerability
CVE-2022-3602
CVE-2022-3786
openssl
vulneravility
November 1
st
2022 at 17:24
Naked Security
SHA-3 code execution bug patched in PHP – check your version!
November 1
st
2022 at 14:09
SHA-3 code execution bug patched in PHP – check your version!
By
Paul Ducklin
As everyone waits for news of a bug in OpenSSL, here's a reminder that other cryptographic code in your life may also need patching!
Related tags
❌
Cryptography
Vulnerability
cryptograhpy
CVE-2022-37454
PHP
sha-3
November 1
st
2022 at 14:09
Naked Security
Psychotherapy extortion suspect: arrest warrant issued
October 31
st
2022 at 19:59
Psychotherapy extortion suspect: arrest warrant issued
By
Paul Ducklin
Wanted! Not only the extortionist who abused the data, but also the CEO who let it happen.
Related tags
❌
Law
&
order
cover-up
extortion
Finland
Vastaamo
October 31
st
2022 at 19:59
Naked Security
S3 Ep106: Facial recognition without consent – should it be banned?
October 27
th
2022 at 16:59
S3 Ep106: Facial recognition without consent – should it be banned?
By
Paul Ducklin
Latest episode - listen (or read) now. Teachable moments for X-Ops professionals!
Related tags
❌
Cryptography
Data
loss
GDPR
compliance
Law
&
order
Podcast
Privacy
Ransomware
Clearview
Clearview
AI
Deadbolt
Naked
Security
Podcast
randomness
October 27
th
2022 at 16:59
Naked Security
Clearview AI image-scraping face recognition service hit with €20m fine in France
October 26
th
2022 at 00:50
Clearview AI image-scraping face recognition service hit with €20m fine in France
By
Paul Ducklin
"We told you to stop but you ignored us," said the French regulator, "so now we're coming after you again."
Related tags
❌
Law
&
order
Privacy
Clearview
Clearview
AI
data
collectoin
facial
recognition
October 26
th
2022 at 00:50
Naked Security
Serious Security: How randomly (or not) can you shuffle cards?
October 24
th
2022 at 18:57
Serious Security: How randomly (or not) can you shuffle cards?
By
Paul Ducklin
What if you could guess the next card correctly twice as often as you should?
card-fan-1200
Related tags
❌
Cryptography
Diaconis
randomness
schneier
shuffle
October 24
th
2022 at 18:57
Naked Security
When cops hack back: Dutch police fleece DEADBOLT criminals (legally!)
October 21
st
2022 at 18:25
When cops hack back: Dutch police fleece DEADBOLT criminals (legally!)
By
Paul Ducklin
Crooks: Show us the money! Cops: How about you show us the decryption keys first?
Related tags
❌
Cryptocurrency
Law
&
order
counter-hack
cryptocurrency
Deadbolt
dutch
police
ransomware
October 21
st
2022 at 18:25
Naked Security
S3 Ep105: WONTFIX! The MS Office cryptofail that “isn’t a security flaw” [Audio + Text]
October 20
th
2022 at 18:54
S3 Ep105: WONTFIX! The MS Office cryptofail that “isn’t a security flaw” [Audio + Text]
By
Paul Ducklin
The coolest video game ever! And lots of solid cybersecurity advice - listen now!
pic-1200
Related tags
❌
Cryptography
Data
loss
Microsoft
Podcast
Privacy
data
breach
Naked
Security
Podcast
Office
Patch
Tuesday
zoom
October 20
th
2022 at 18:54
Naked Security
Women in Cryptology – USPS celebrates WW2 codebreakers
October 19
th
2022 at 16:58
Women in Cryptology – USPS celebrates WW2 codebreakers
By
Paul Ducklin
What did you do in the war, Mom? Oh, y'know, a bit of this and that...
Related tags
❌
Cryptography
October 19
th
2022 at 16:58
Naked Security
Fashion brand SHEIN fined $1.9m for lying about data breach
October 17
th
2022 at 18:50
Fashion brand SHEIN fined $1.9m for lying about data breach
By
Naked Security writer
Is "pay a small fine and keep on trading" a sufficient penalty for letting a breach happen, impeding an investigation, and hiding the truth?
Related tags
❌
Data
loss
GDPR
compliance
cover-up
data
breach
New
York
ROMWE
SHEIN
Zoetop
October 17
th
2022 at 18:50
Naked Security
Serious Security: Microsoft Office 365 attacked over feeble encryption
October 14
th
2022 at 16:59
Serious Security: Microsoft Office 365 attacked over feeble encryption
By
Paul Ducklin
How 2022 is your encryption?
Related tags
❌
Cryptography
Microsoft
ECB
Office
Windows
October 14
th
2022 at 16:59
Naked Security
Serious Security: OAuth 2 and why Microsoft is finally forcing you into it
October 10
th
2022 at 18:02
Serious Security: OAuth 2 and why Microsoft is finally forcing you into it
By
Paul Ducklin
Microsoft calls it "Modern Auth", though it's a decade old, and is finally forcing Exchange Online customers to switch to it.
Related tags
❌
Cryptography
Microsoft
Podcast
exchange
Modern
Auth
Oath
oauth
TOTP
October 10
th
2022 at 18:02
Naked Security
S3 Ep99: TikTok “attack” – was there a data breach, or not? [Audio + Text]
September 8
th
2022 at 13:21
S3 Ep99: TikTok “attack” – was there a data breach, or not? [Audio + Text]
By
Paul Ducklin
Latest episode - listen now! (Or read if you prefer - full transcript inside.)
Related tags
❌
Podcast
Eckersley
Lets
Encrypt
Naked
Security
Podcast
Peter
Tik
Tok
September 8
th
2022 at 13:21
Naked Security
S3 Ep97: Did your iPhone get pwned? How would you know? [Audio + Text]
August 25
th
2022 at 15:37
S3 Ep97: Did your iPhone get pwned? How would you know? [Audio + Text]
By
Paul Ducklin
Latest episode - listen now! (Or read the transcript if you prefer the text version.)
Related tags
❌
Apple
Cryptocurrency
Google
Microsoft
Podcast
Vulnerability
"Edge"
chrome
crypto
cryptocurrency
denial
of
service
DOS
iPhone
Naked
Security
Podcast
R&B
Zero
Day
August 25
th
2022 at 15:37
Naked Security
Bitcoin ATMs leeched by attackers who created fake admin accounts
August 23
rd
2022 at 18:35
Bitcoin ATMs leeched by attackers who created fake admin accounts
By
Paul Ducklin
The criminals didn't implant any malware. The attack was orchestrated via malevolent configuration changes.
Related tags
❌
Cryptocurrency
Vulnerability
atm
BTC
crypto
cryptocurrency
General
Bytes
phantom
withdrawal
vulnerability
August 23
rd
2022 at 18:35
Naked Security
S3 Ep96: Zoom 0-day, AEPIC leak, Conti reward, healthcare security [Audio + Text]
August 18
th
2022 at 18:38
S3 Ep96: Zoom 0-day, AEPIC leak, Conti reward, healthcare security [Audio + Text]
By
Paul Ducklin
Latest episode - listen now (or read if you prefer!)
Related tags
❌
Cryptography
Intel
Law
&
order
Malware
Podcast
Privacy
AEPIC
Conti
healthcare
Naked
Security
Podcast
ransomware
zoom
August 18
th
2022 at 18:38
Naked Security
S3 Ep95: Slack leak, Github onslaught, and post-quantum crypto [Audio + Text]
August 11
th
2022 at 14:34
S3 Ep95: Slack leak, Github onslaught, and post-quantum crypto [Audio + Text]
By
Paul Ducklin
Latest episode - listen now! (Or read the transcript if you prefer.)
Related tags
❌
Cryptography
Data
loss
Law
&
order
Malware
Microsoft
Podcast
Privacy
Cybercrime
github
hacking
malware
Naked
Security
Podcast
quantum
computing
August 11
th
2022 at 14:34
Naked Security
APIC/EPIC! Intel chips leak secrets even the kernel shouldn’t see…
August 10
th
2022 at 16:59
APIC/EPIC! Intel chips leak secrets even the kernel shouldn’t see…
By
Paul Ducklin
If you've ever written code that left stuff lying around in memory when you didn't need it any more... we bet you've regretted it!
Related tags
❌
Cryptography
Data
loss
Vulnerability
APIC
CVE-2022-21233
EPIC
SGX
ÆPIC
Leak
August 10
th
2022 at 16:59
Naked Security
Slack admits to leaking hashed passwords for five years
August 8
th
2022 at 15:14
Slack admits to leaking hashed passwords for five years
By
Paul Ducklin
"When those invitations went out... somehow, your password hash went out with them."
Related tags
❌
Cryptography
Data
loss
brute
force
crack
dictionary
attack
hashing
password
salt
Slack
August 8
th
2022 at 15:14
Naked Security
S3 Ep94: This sort of crypto (graphy), and the other sort of crypto (currency!) [Audio + Text]
August 4
th
2022 at 17:52
S3 Ep94: This sort of crypto (graphy), and the other sort of crypto (currency!) [Audio + Text]
By
Paul Ducklin
Latest episode - listen now! (Or read if that's what you prefer.)
Related tags
❌
Cryptocurrency
Cryptography
Podcast
Vulnerability
cryptocurrency
cryptogram
Cybercrime
Naked
Security
Podcast
August 4
th
2022 at 17:52
Naked Security
Post-quantum cryptography – new algorithm “gone in 60 minutes”
August 3
rd
2022 at 18:55
Post-quantum cryptography – new algorithm “gone in 60 minutes”
By
Paul Ducklin
And THIS is why you don't knit your own home-made encryption algorithms and hope no one looks at them.
Related tags
❌
Cryptography
nist
PQC
quantum
quantum
computing
SIKE
August 3
rd
2022 at 18:55
Naked Security
Cryptocoin “token swapper” Nomad loses $200 million in coding blunder
August 2
nd
2022 at 16:12
Cryptocoin “token swapper” Nomad loses $200 million in coding blunder
By
Paul Ducklin
Transactions were only approved, it seems, if they were initiated by... errrrr, by anyone.
Related tags
❌
Cryptocurrency
Cryptography
Vulnerability
cryptocoin
cryptocurrency
DeFi
Nomad
August 2
nd
2022 at 16:12
Naked Security
GnuTLS patches memory mismanagement bug – update now!
August 1
st
2022 at 16:55
GnuTLS patches memory mismanagement bug – update now!
By
Paul Ducklin
GnuTLS may well be the most widespread cryptographic toolkit you've never heard of. Learn more...
Related tags
❌
Cryptography
Vulnerability
CVE-2022-2509
double-free
gnutls
heartbleed
August 1
st
2022 at 16:55
Naked Security
S3 Ep91: CodeRed, OpenSSL, Java bugs, Office macros [Audio + Text]
July 14
th
2022 at 18:47
S3 Ep91: CodeRed, OpenSSL, Java bugs, Office macros [Audio + Text]
By
Paul Ducklin
Latest episode - listen now! Great discussion, technical content, solid advice... all covered in plain English.
Related tags
❌
Cryptography
Law
&
order
Malware
Microsoft
Podcast
AES
Naked
Security
Podcast
ransomware
RSA
VBA
July 14
th
2022 at 18:47
Naked Security
Paying ransomware crooks won’t reduce your legal risk, warns regulator
July 12
th
2022 at 18:24
Paying ransomware crooks won’t reduce your legal risk, warns regulator
By
Paul Ducklin
"We paid the crooks to keep things under control and make a bad thing better"... isn't a valid excuse. Who knew?
Related tags
❌
GDPR
compliance
Law
&
order
Ransomware
Uncategorized
cyberextortion
GCHQ
ico
NCSC
ransomware
July 12
th
2022 at 18:24
Naked Security
S3 Ep90: Chrome 0-day again, True Cybercrime, and a 2FA bypass [Podcast + Transcript]
July 7
th
2022 at 18:46
S3 Ep90: Chrome 0-day again, True Cybercrime, and a 2FA bypass [Podcast + Transcript]
By
Paul Ducklin
Listen now! Or read if you prefer...
Related tags
❌
Cryptocurrency
Google
Google
Chrome
Law
&
order
Podcast
Vulnerability
2FA
busts
cryptocurrency
Naked
Security
Podcast
OneCoin
July 7
th
2022 at 18:46
Naked Security
OpenSSL fixes two “one-liner” crypto bugs – what you need to know
July 6
th
2022 at 16:52
OpenSSL fixes two “one-liner” crypto bugs – what you need to know
By
Paul Ducklin
"As bad as Heartbleed"? We heard that concern a week ago, but we think it's less ungood than that...
Related tags
❌
Cryptography
Vulnerability
AES
openssl
RSA
vulnerability
July 6
th
2022 at 16:52
Naked Security
Canadian cybercriminal pleads guilty to “NetWalker” attacks in US
July 4
th
2022 at 14:09
Canadian cybercriminal pleads guilty to “NetWalker” attacks in US
By
Paul Ducklin
Bust in Canada, now bust in the USA as well.
Related tags
❌
Cryptocurrency
Law
&
order
Ransomware
bitcoin
bust
Netwalker
ransomware
revil
July 4
th
2022 at 14:09
Naked Security
“Missing Cryptoqueen” hits the FBI’s Ten Most Wanted list
July 1
st
2022 at 16:49
“Missing Cryptoqueen” hits the FBI’s Ten Most Wanted list
By
Paul Ducklin
The "Missing Cryptoqueen" makes the American Top Ten... but not in a good way.
Related tags
❌
Cryptocurrency
Law
&
order
crypto
cryptocoin
cryptoqueen
Ignatova
Scam
July 1
st
2022 at 16:49
Naked Security
S3 Ep89: Sextortion, blockchain blunder, and an OpenSSL bugfix [Podcast + Transcript]
June 30
th
2022 at 12:57
S3 Ep89: Sextortion, blockchain blunder, and an OpenSSL bugfix [Podcast + Transcript]
By
Paul Ducklin
Latest episode - listen and read now! Use our advice to advise your own friends and family... let's all do our bit to stand up to scammers!
Related tags
❌
Cryptocurrency
Cryptography
Law
&
order
Podcast
Vulnerability
crypto
cryptocurrency
extortion
Naked
Security
Podcast
openssl
scammers
June 30
th
2022 at 12:57
Load more articles