Login
FreshRSS
Login
About FreshRSS
Main stream
Favourites (0)
Security
/r/netsec - Information Security News & Discussion
Dark Reading:
http://blog.trendmicro.com/feed
ICS-CERT Alert Feed
Infosec Island Latest Articles
InfoSec Resources
Krebs on Security
McAfee Blogs
Naked Security
News β Packet Storm
Paul's Security Weekly
SANS Internet Storm Center, InfoCON: green
Security β Cisco Blog
SecurityFocus News
The first stop for security news | Threatpost
The Hacker News
The Register - Security
Threatpost | The first stop for security news
Troy Hunt
Verisign Blog
WeLiveSecurity
WIRED
ZDNet | security RSS
Tools
Security Tool Files β Packet Storm
ToolsWatch.org β The Hackers Arsenal Tools Portal
Vulnerabilities
Advisory Files β Packet Storm
Exploit-DB Updates
Full Disclosure
SecurityFocus Vulnerabilities
There are new available articles, click to refresh the page.
Before yesterday
Naked Security
Naked Security
Windows 11 also vulnerable to βaCropalypseβ image data leakage
March 22
nd
2023 at 17:59Β
Windows 11 also vulnerable to βaCropalypseβ image data leakage
By
Paul Ducklin
Turns out that the Windows 11 Snipping Tool has the same "aCropalypse" data leakage bug as Pixel phones. Here's how to work around the problem...
Related tags
β
Data
loss
Microsoft
aCropalypse
CVE-2023-20136
data
leakage
Snipping
Tool
Windows
March 22
nd
2023 at 17:59
Naked Security
Bitcoin ATM customers hacked by video upload that was actually an app
March 20
th
2023 at 19:50Β
Bitcoin ATM customers hacked by video upload that was actually an app
By
Paul Ducklin
As the misquote goes, "Once is misfortune..." This is the second time, and you know what Lady Bracknell had to say about that...
Related tags
β
Cryptocurrency
Data
loss
Privacy
atm
breach
cryptocurrency
Cybercrime
General
Bytes
March 20
th
2023 at 19:50
Naked Security
S3 Ep125: When security hardware has security holes [Audio + Text]
March 9
th
2023 at 18:58Β
S3 Ep125: When security hardware has security holes [Audio + Text]
By
Paul Ducklin
Lastest episode - listen now! (Full transcript inside.)
Related tags
β
Cryptography
Law
&
order
Podcast
Ransomware
Vulnerability
bust
CISA
Naked
Security
Podcast
ransomware
tpm
March 9
th
2023 at 18:58
Naked Security
Serious Security: TPM 2.0 vulns β is your super-secure data at risk?
March 7
th
2023 at 19:59Β
Serious Security: TPM 2.0 vulns β is your super-secure data at risk?
By
Paul Ducklin
Security bugs in the very code you've been told you must have to improve the security of your computer...
Related tags
β
Cryptography
Vulnerability
TCG
tpm
TPM
2.0
Windows
11
March 7
th
2023 at 19:59
Naked Security
DoppelPaymer ransomware supsects arrested in Germany and Ukraine
March 6
th
2023 at 16:16Β
DoppelPaymer ransomware supsects arrested in Germany and Ukraine
By
Naked Security writer
Devices seized, suspects interrogated and arrested, allegedly connected to devastating cyberattack on University Hospital in DΓΌsseldorf.
Related tags
β
Cryptocurrency
Cryptography
Law
&
order
Ransomware
bust
Cybercrime
doppelpaymer
Europol
Grief
ransomware
March 6
th
2023 at 16:16
Naked Security
S3 Ep124: When so-called security apps go rogue [Audio + Text]
March 2
nd
2023 at 19:40Β
S3 Ep124: When so-called security apps go rogue [Audio + Text]
By
Paul Ducklin
Rogue software packages. Rogue "sysadmins". Rogue keyloggers. Rogue authenticators. Rogue ROGUES!
s3-ep124-auth--1200
Related tags
β
Apple
Cryptography
Data
loss
Google
Law
&
order
Podcast
2FA
Cybercrime
extortion
hacking
LastPass
Naked
Security
Podcast
ransomware
March 2
nd
2023 at 19:40
Naked Security
Dutch police arrest three cyberextortion suspects who allegedly earned millions
February 27
th
2023 at 19:33Β
Dutch police arrest three cyberextortion suspects who allegedly earned millions
By
Naked Security writer
Ever paid hush money to crooks who broke into your network? Wondered how much you can trust them?
Related tags
β
Cryptocurrency
Law
&
order
Ransomware
bust
data
breach
ransomware
February 27
th
2023 at 19:33
Naked Security
Beware rogue 2FA apps in App Store and Google Play β donβt get hacked!
February 27
th
2023 at 02:10Β
Beware rogue 2FA apps in App Store and Google Play β donβt get hacked!
By
Paul Ducklin
Even in Apple's and Google's "walled gardens", there are plenty of 2FA apps that are either dangerously incompetent, or unrepentantly malicious. (Or perhaps both.)
Related tags
β
2-factor
Authentication
Cryptography
Data
loss
Malware
2FA
authenticator
authenticator
app
mysk_co
Tommy
Mysk
TOTP
February 27
th
2023 at 02:10
Naked Security
S3 Ep123: Crypto company compromise kerfuffle [Audio + Text]
February 23
rd
2023 at 19:58Β
S3 Ep123: Crypto company compromise kerfuffle [Audio + Text]
By
Paul Ducklin
Latest episode - listen now! Top-notch advice for cybersecurity, both at work and at home.
Related tags
β
Cryptocurrency
Data
loss
Podcast
Privacy
2FA
Coinbase
crypto
cryptocurrency
Cybercrime
GoDaddy
malware
Naked
Security
Podcast
Twitter
February 23
rd
2023 at 19:58
Naked Security
Coinbase breached by social engineers, employee data stolen
February 21
st
2023 at 17:58Β
Coinbase breached by social engineers, employee data stolen
By
Paul Ducklin
Another day, another "sophisticated" attack. This time, the company has handily included some useful advice along with its mea culpa...
Related tags
β
Cryptocurrency
Data
loss
breach
Coinbase
crypto
MDR
Social
Engineering
XDR
February 21
st
2023 at 17:58
Naked Security
Twitter tells users: Pay up if you want to keep using insecure 2FA
February 20
th
2023 at 17:58Β
Twitter tells users: Pay up if you want to keep using insecure 2FA
By
Paul Ducklin
Ironically, Twitter Blue users will be allowed to keep using the very 2FA process that's not considered secure enough for everyone else.
Related tags
β
2-factor
Authentication
Twitter
2FA
SIM
sim
swap
February 20
th
2023 at 17:58
Naked Security
Serious Security: GnuTLS follows OpenSSL, fixes timing attack bug
February 13
th
2023 at 17:59Β
Serious Security: GnuTLS follows OpenSSL, fixes timing attack bug
By
Paul Ducklin
Conditional code considered cryptographically counterproductive.
Related tags
β
Cryptography
crypto
gnutls
timing
attack
February 13
th
2023 at 17:59
Naked Security
OpenSSL fixes High Severity data-stealing bug β patch now!
February 8
th
2023 at 02:58Β
OpenSSL fixes High Severity data-stealing bug β patch now!
By
Paul Ducklin
7 memory mismanagements and a timing attack. We explain all the jargon bug terminology in plain English...
Related tags
β
Cryptography
Vulnerability
memory
mismanagement
openssl
timing
attack
February 8
th
2023 at 02:58
Naked Security
Tracers in the Dark: The Global Hunt for the Crime Lords of Crypto
February 6
th
2023 at 21:53Β
Tracers in the Dark: The Global Hunt for the Crime Lords of Crypto
By
Paul Ducklin
Hear renowned cybersecurity author Andy Greenberg's thoughtful commentary about the "war on crypto" as we talk to him about his new book...
Related tags
β
Cryptocurrency
Cryptography
Law
&
order
Podcast
nobackdoors
Andy
Greenberg
cryptocurrency
Cybercrime
Tracers
Tracers
in
the
Dark
February 6
th
2023 at 21:53
Naked Security
Finnish psychotherapy extortion suspect arrested in France
February 6
th
2023 at 19:13Β
Finnish psychotherapy extortion suspect arrested in France
By
Naked Security writer
Company transcribed ultra-personal conversations, didn't secure them. Criminal stole them, then extorted thousands of vulnerable patients.
Related tags
β
Data
loss
Law
&
order
data
breach
extortion
Vastaamo
February 6
th
2023 at 19:13
Naked Security
S3 Ep120: When dud crypto simply wonβt let go [Audio + Text]
February 2
nd
2023 at 17:50Β
S3 Ep120: When dud crypto simply wonβt let go [Audio + Text]
By
Paul Ducklin
Latest episode - listen now!
Related tags
β
Cryptography
Law
&
order
Podcast
Ransomware
collision
Hive
MD5
Naked
Security
Podcast
ransomware
Samba
vulnerability
February 2
nd
2023 at 17:50
Naked Security
Password-stealing βvulnerabilityβ reported in KeePass β bug or feature?
February 1
st
2023 at 19:58Β
Password-stealing βvulnerabilityβ reported in KeePass β bug or feature?
By
Paul Ducklin
Is it a vulnerability if someone with control over your account can mess with files that your account is allowed to access anyway?
Related tags
β
Cryptography
Data
loss
Vulnerability
CVE-2023-24055
data
leakage
KeePass
trigger
February 1
st
2023 at 19:58
Naked Security
Serious Security: The Samba logon bug caused by outdated crypto
January 30
th
2023 at 19:59Β
Serious Security: The Samba logon bug caused by outdated crypto
By
Paul Ducklin
Enjoy our Serious Security deep dive into this real-world example of why cryptographic agility is important!
Related tags
β
Cryptography
Vulnerability
CIFS
collision
CVE-2022-38023
mac
MD5
message
digest
Samba
SMB
January 30
th
2023 at 19:59
Naked Security
S3 Ep119: Breaches, patches, leaks and tweaks! [Audio + Text]
January 26
th
2023 at 19:57Β
S3 Ep119: Breaches, patches, leaks and tweaks! [Audio + Text]
By
Paul Ducklin
Lastest episode - listen now! (Or read the transcript.)
Related tags
β
Apple
Data
loss
Google
Podcast
Vulnerability
DNS
GoTo
LastPass
vulnerability
Zero
Day
January 26
th
2023 at 19:57
Naked Security
GoTo admits: Customer cloud backups stolen together with decryption key
January 25
th
2023 at 01:37Β
GoTo admits: Customer cloud backups stolen together with decryption key
By
Paul Ducklin
We were going to write, "Once more unto the breach, dear friends, once more"... but it seems to go without saying these days.
Related tags
β
Cryptography
Data
loss
breach
cloud
GoTo
hash
LastPass
January 25
th
2023 at 01:37
Naked Security
S3 Ep118: Guess your password? No need if itβs stolen already! [Audio + Text]
January 19
th
2023 at 15:53Β
S3 Ep118: Guess your password? No need if itβs stolen already! [Audio + Text]
By
Paul Ducklin
As always: entertaining, informative and educational... and not bogged down with jargon! Listen (or read) now...
Related tags
β
Cryptocurrency
Podcast
bust
cracking
Cybercrime
data
breach
hacking
JWT
Naked
Security
Podcast
January 19
th
2023 at 15:53
Naked Security
Serious Security: Unravelling the LifeLock βhacked passwordsβ story
January 17
th
2023 at 17:59Β
Serious Security: Unravelling the LifeLock βhacked passwordsβ story
By
Paul Ducklin
Four straight-talking tips to improve your online security, whether you're a LifeLock customer or not.
Related tags
β
Cryptography
Privacy
LifeLock
Norton
NortonLifeLock
passwords
January 17
th
2023 at 17:59
Naked Security
Multi-million investment scammers busted in four-country Europol raid
January 16
th
2023 at 16:10Β
Multi-million investment scammers busted in four-country Europol raid
By
Paul Ducklin
216 questioned, 15 arrested, 4 fake call centres searched, millions seized...
Related tags
β
Cryptocurrency
Law
&
order
cryptocurrency
Europol
Scam
January 16
th
2023 at 16:10
Naked Security
S3 Ep117: The crypto crisis that wasnβt (and farewell forever to Win 7) [Audio + Text]
January 12
th
2023 at 17:59Β
S3 Ep117: The crypto crisis that wasnβt (and farewell forever to Win 7) [Audio + Text]
By
Paul Ducklin
Tell us in the comments... What's the REAL reason there was no Windows 9? (No theory too far-fetched!)
Related tags
β
Cryptography
Law
&
order
Podcast
Vulnerability
bust
Naked
Security
Podcast
RSA
Scam
Windows
7
Windows
8.1
January 12
th
2023 at 17:59
Naked Security
Popular JWT cloud security library patches βremoteβ code execution hole
January 10
th
2023 at 19:59Β
Popular JWT cloud security library patches βremoteβ code execution hole
By
Paul Ducklin
It's remotely triggerable, but attackers would already have pretty deep network access if they could "prime" your server for compromise.
Related tags
β
Cryptography
Vulnerability
JSON
jsonwebtoken
JWT
rce
vulnerability
January 10
th
2023 at 19:59
Naked Security
RSA crypto cracked? Or perhaps not!
January 6
th
2023 at 19:59Β
RSA crypto cracked? Or perhaps not!
By
Paul Ducklin
Stand down from blue alert, it seems... but why not plan your cryptographic agility anyway?
Related tags
β
Cryptography
crypto
January 6
th
2023 at 19:59
Naked Security
S3 Ep116: Last straw for LastPass? Is crypto doomed? [Audio + Text]
January 5
th
2023 at 17:52Β
S3 Ep116: Last straw for LastPass? Is crypto doomed? [Audio + Text]
By
Paul Ducklin
Lots of big issues this week: breaches, encryption, supply chains and patching problems. Listen now! (Full transcript inside.)
Related tags
β
Cryptography
Podcast
LastPass
Naked
Security
Podcast
PyTorch
January 5
th
2023 at 17:52
Naked Security
Serious Security: How to improve cryptography, resist supply chain attacks, and handle data breaches
January 4
th
2023 at 19:50Β
Serious Security: How to improve cryptography, resist supply chain attacks, and handle data breaches
By
Paul Ducklin
Lessons for us all: improve cryptography, fight cybercrime, own your supply chain... and don't steal my data and then pretend you're sorry.
Related tags
β
Data
loss
Malware
Podcast
Security
leadership
Vulnerability
Cryptography
Cybercrime
Linux
machine
learning
vulnerability
January 4
th
2023 at 19:50
Naked Security
Inside a scammersβ lair: Ukraine busts 40 in fake bank call-centre raid
January 3
rd
2023 at 17:03Β
Inside a scammersβ lair: Ukraine busts 40 in fake bank call-centre raid
By
Naked Security writer
When someone calls you up to warn you that your bank account is under attack - it's true, because THAT VERY PERSON is the one attacking you!
Related tags
β
Cryptocurrency
Data
loss
Law
&
order
Caller
ID
Cybercrime
fake
call
scamming
January 3
rd
2023 at 17:03
Naked Security
PyTorch: Machine Learning toolkit pwned from Christmas to New Year
January 1
st
2023 at 21:36Β
PyTorch: Machine Learning toolkit pwned from Christmas to New Year
By
Paul Ducklin
The bad news: the crooks have your SSH private keys. The good news: only users of the "nightly" build were affected.
Related tags
β
Machine
Learning
Malware
AI
Artificial
intelligence
data
stealing
Linux
machine
learning
malware
ML
PyTorch
triton
January 1
st
2023 at 21:36
Naked Security
US passes the Quantum Computing Cybersecurity Preparedness Act β and why not?
December 29
th
2022 at 20:45Β
US passes the Quantum Computing Cybersecurity Preparedness Act β and why not?
By
Paul Ducklin
Cryptographic agility: the ability and the willingness to change quickly when needed.
sc-daa-1200
Related tags
β
Cryptography
Congress
Grover
PQC
quantum
quantum
computing
Shor
December 29
th
2022 at 20:45
Naked Security
Twitter data of β+400 million unique usersβ up for sale β what to do?
December 28
th
2022 at 19:59Β
Twitter data of β+400 million unique usersβ up for sale β what to do?
By
Paul Ducklin
If the crooks have connected up your phone number and your Twitter handle... what could go wrong?
Related tags
β
Data
loss
breach
extortion
Twitter
December 28
th
2022 at 19:59
Naked Security
OneCoin scammer Sebastian Greenwood pleads guilty, βCryptoqueenβ still missing
December 19
th
2022 at 19:50Β
OneCoin scammer Sebastian Greenwood pleads guilty, βCryptoqueenβ still missing
By
Paul Ducklin
The Cryptoqueen herself is still missing, but her co-conspirator, who is said to have pocketed over $20m a month, has been convicted.
Related tags
β
Cryptocurrency
Law
&
order
cryotocurrency
cryptoqueen
doj
Greenwood
Ignatova
OneCoin
Ponzi
Scam
December 19
th
2022 at 19:50
Naked Security
SIM swapper sent to prison for 2FA cryptocurrency heist of over $20m
December 6
th
2022 at 17:56Β
SIM swapper sent to prison for 2FA cryptocurrency heist of over $20m
By
Naked Security writer
Guilty party got 18 months, also has to pay back $20m he probably hasn't got, which could land him in more hot water.
Related tags
β
Cryptocurrency
Law
&
order
2FA
Cybercrime
password
sim
swap
December 6
th
2022 at 17:56
Naked Security
S3 Ep111: The business risk of a sleazy βnudity unfilterβ [Audio + Text]
December 1
st
2022 at 19:58Β
S3 Ep111: The business risk of a sleazy βnudity unfilterβ [Audio + Text]
By
Paul Ducklin
Latest episode - listen now (or read if you prefer)...
Related tags
β
Cryptocurrency
Law
&
order
Malware
Podcast
Privacy
CryptoRom
Cybercrime
iSpoof
Naked
Security
Podcast
porn
scam
TikTok
December 1
st
2022 at 19:58
Naked Security
Serious Security: MD5 considered harmful β to the tune of $600,000
November 30
th
2022 at 17:58Β
Serious Security: MD5 considered harmful β to the tune of $600,000
By
Paul Ducklin
It's not just the hashing, by the way. It's the salting and the stretching, too!
Related tags
β
Cryptography
Law
&
order
CNIL
EDF
hashing
MD5
PBKDF2
November 30
th
2022 at 17:58
Naked Security
TikTok βInvisible Challengeβ porn malware puts us all at risk
November 29
th
2022 at 19:58Β
TikTok βInvisible Challengeβ porn malware puts us all at risk
By
Paul Ducklin
An injury to one is an injury to all. Especially if the other people are part of your social network.
Related tags
β
Malware
Privacy
Social
networks
github
malware
supply
chain
Tik
Tok
TikTok
November 29
th
2022 at 19:58
Naked Security
Multimillion dollar CryptoRom scam sites seized, suspects arrested in US
November 23
rd
2022 at 19:58Β
Multimillion dollar CryptoRom scam sites seized, suspects arrested in US
By
Paul Ducklin
Five tips to keep yourself, and your friends and family, out of the clutches of "chopping block" scammers...
cryptorom-1200
Related tags
β
BEC
Law
&
order
Malware
Social
networks
CryptoRom
ios
romance
scam
TestFlight
November 23
rd
2022 at 19:58
Naked Security
S3 Ep108: You hid THREE BILLION dollars in a popcorn tin?
November 10
th
2022 at 17:26Β
S3 Ep108: You hid THREE BILLION dollars in a popcorn tin?
By
Paul Ducklin
Patches, busts, leaks and why even low-likelihood exploits can be high-severity risks - listen now!
Related tags
β
Cryptocurrency
Law
&
order
Microsoft
Podcast
Privacy
Vulnerability
bust
cryptocurrency
Exploit
Naked
Security
Podcast
Patch
Tuesday
Windows
November 10
th
2022 at 17:26
Naked Security
Silk Road drugs market hacker pleads guilty, faces 20 years inside
November 8
th
2022 at 19:58Β
Silk Road drugs market hacker pleads guilty, faces 20 years inside
By
Paul Ducklin
Jurisprudence isn't like arithmetic... two negatives never make a positive!
Related tags
β
Cryptocurrency
Law
&
order
Big
Bitcoin
Heist
bitcoin
bust
doj
Silk
Road
Zhong
November 8
th
2022 at 19:58
Naked Security
Twitter Blue Badge email scams β Donβt fall for them!
November 4
th
2022 at 17:59Β
Twitter Blue Badge email scams β Donβt fall for them!
By
Naked Security writer
That was the week that was...
Related tags
β
2-factor
Authentication
Phishing
Privacy
Spam
blue
badge
phishing
Twitter
verified
November 4
th
2022 at 17:59
Naked Security
S3 Ep107: Eight months to kick out the crooks and you think thatβs GOOD? [Audio + Text]
November 3
rd
2022 at 17:51Β
S3 Ep107: Eight months to kick out the crooks and you think thatβs GOOD? [Audio + Text]
By
Paul Ducklin
Listen now - latest episode - audio plus full transcript
Related tags
β
Apple
Data
loss
Google
Law
&
order
Malware
Podcast
Privacy
Vulnerability
bust
Cybercrime
cyberextortion
data
breach
heartbleed
Naked
Security
Podcast
openssl
Patches
November 3
rd
2022 at 17:51
Naked Security
The OpenSSL security update story β how can you tell what needs fixing?
November 3
rd
2022 at 00:44Β
The OpenSSL security update story β how can you tell what needs fixing?
By
Paul Ducklin
How to Hack! Finding OpenSSL library files and accurately identifying their version numbers...
ossl-code-1200
Related tags
β
Cryptography
Vulnerability
CVE-2022-3602
CVE-2022-378
openssl
November 3
rd
2022 at 00:44
Naked Security
OpenSSL patches are outΒ β CRITICAL bug downgraded to HIGH, but patch anyway!
November 1
st
2022 at 17:24Β
OpenSSL patches are outΒ β CRITICAL bug downgraded to HIGH, but patch anyway!
By
Paul Ducklin
That bated-breath OpenSSL update is out! It's no longer rated CRITICAL, but we advise you to patch ASAP anyway. Here's why...
Related tags
β
Cryptography
Vulnerability
CVE-2022-3602
CVE-2022-3786
openssl
vulneravility
November 1
st
2022 at 17:24
Naked Security
SHA-3 code execution bug patched in PHP β check your version!
November 1
st
2022 at 14:09Β
SHA-3 code execution bug patched in PHP β check your version!
By
Paul Ducklin
As everyone waits for news of a bug in OpenSSL, here's a reminder that other cryptographic code in your life may also need patching!
Related tags
β
Cryptography
Vulnerability
cryptograhpy
CVE-2022-37454
PHP
sha-3
November 1
st
2022 at 14:09
Naked Security
Psychotherapy extortion suspect: arrest warrant issued
October 31
st
2022 at 19:59Β
Psychotherapy extortion suspect: arrest warrant issued
By
Paul Ducklin
Wanted! Not only the extortionist who abused the data, but also the CEO who let it happen.
Related tags
β
Law
&
order
cover-up
extortion
Finland
Vastaamo
October 31
st
2022 at 19:59
Naked Security
S3 Ep106: Facial recognition without consent β should it be banned?
October 27
th
2022 at 16:59Β
S3 Ep106: Facial recognition without consent β should it be banned?
By
Paul Ducklin
Latest episode - listen (or read) now. Teachable moments for X-Ops professionals!
Related tags
β
Cryptography
Data
loss
GDPR
compliance
Law
&
order
Podcast
Privacy
Ransomware
Clearview
Clearview
AI
Deadbolt
Naked
Security
Podcast
randomness
October 27
th
2022 at 16:59
Naked Security
Clearview AI image-scraping face recognition service hit with β¬20m fine in France
October 26
th
2022 at 00:50Β
Clearview AI image-scraping face recognition service hit with β¬20m fine in France
By
Paul Ducklin
"We told you to stop but you ignored us," said the French regulator, "so now we're coming after you again."
Related tags
β
Law
&
order
Privacy
Clearview
Clearview
AI
data
collectoin
facial
recognition
October 26
th
2022 at 00:50
Naked Security
Serious Security: How randomly (or not) can you shuffle cards?
October 24
th
2022 at 18:57Β
Serious Security: How randomly (or not) can you shuffle cards?
By
Paul Ducklin
What if you could guess the next card correctly twice as often as you should?
card-fan-1200
Related tags
β
Cryptography
Diaconis
randomness
schneier
shuffle
October 24
th
2022 at 18:57
Naked Security
When cops hack back: Dutch police fleece DEADBOLT criminals (legally!)
October 21
st
2022 at 18:25Β
When cops hack back: Dutch police fleece DEADBOLT criminals (legally!)
By
Paul Ducklin
Crooks: Show us the money! Cops: How about you show us the decryption keys first?
Related tags
β
Cryptocurrency
Law
&
order
counter-hack
cryptocurrency
Deadbolt
dutch
police
ransomware
October 21
st
2022 at 18:25
Naked Security
S3 Ep105: WONTFIX! The MS Office cryptofail that βisnβt a security flawβ [Audio + Text]
October 20
th
2022 at 18:54Β
S3 Ep105: WONTFIX! The MS Office cryptofail that βisnβt a security flawβ [Audio + Text]
By
Paul Ducklin
The coolest video game ever! And lots of solid cybersecurity advice - listen now!
pic-1200
Related tags
β
Cryptography
Data
loss
Microsoft
Podcast
Privacy
data
breach
Naked
Security
Podcast
Office
Patch
Tuesday
zoom
October 20
th
2022 at 18:54
Naked Security
Women in Cryptology β USPS celebrates WW2 codebreakers
October 19
th
2022 at 16:58Β
Women in Cryptology β USPS celebrates WW2 codebreakers
By
Paul Ducklin
What did you do in the war, Mom? Oh, y'know, a bit of this and that...
Related tags
β
Cryptography
October 19
th
2022 at 16:58
Naked Security
Fashion brand SHEIN fined $1.9m for lying about data breach
October 17
th
2022 at 18:50Β
Fashion brand SHEIN fined $1.9m for lying about data breach
By
Naked Security writer
Is "pay a small fine and keep on trading" a sufficient penalty for letting a breach happen, impeding an investigation, and hiding the truth?
Related tags
β
Data
loss
GDPR
compliance
cover-up
data
breach
New
York
ROMWE
SHEIN
Zoetop
October 17
th
2022 at 18:50
Naked Security
Serious Security: Microsoft Office 365 attacked over feeble encryption
October 14
th
2022 at 16:59Β
Serious Security: Microsoft Office 365 attacked over feeble encryption
By
Paul Ducklin
How 2022 is your encryption?
Related tags
β
Cryptography
Microsoft
ECB
Office
Windows
October 14
th
2022 at 16:59
Naked Security
Serious Security: OAuth 2 and why Microsoft is finally forcing you into it
October 10
th
2022 at 18:02Β
Serious Security: OAuth 2 and why Microsoft is finally forcing you into it
By
Paul Ducklin
Microsoft calls it "Modern Auth", though it's a decade old, and is finally forcing Exchange Online customers to switch to it.
Related tags
β
Cryptography
Microsoft
Podcast
exchange
Modern
Auth
Oath
oauth
TOTP
October 10
th
2022 at 18:02
Naked Security
S3 Ep99: TikTok βattackβ β was there a data breach, or not? [Audio + Text]
September 8
th
2022 at 13:21Β
S3 Ep99: TikTok βattackβ β was there a data breach, or not? [Audio + Text]
By
Paul Ducklin
Latest episode - listen now! (Or read if you prefer - full transcript inside.)
Related tags
β
Podcast
Eckersley
Lets
Encrypt
Naked
Security
Podcast
Peter
Tik
Tok
September 8
th
2022 at 13:21
Naked Security
S3 Ep97: Did your iPhone get pwned? How would you know? [Audio + Text]
August 25
th
2022 at 15:37Β
S3 Ep97: Did your iPhone get pwned? How would you know? [Audio + Text]
By
Paul Ducklin
Latest episode - listen now! (Or read the transcript if you prefer the text version.)
Related tags
β
Apple
Cryptocurrency
Google
Microsoft
Podcast
Vulnerability
"Edge"
chrome
crypto
cryptocurrency
denial
of
service
DOS
iPhone
Naked
Security
Podcast
R&B
Zero
Day
August 25
th
2022 at 15:37
Naked Security
Bitcoin ATMs leeched by attackers who created fake admin accounts
August 23
rd
2022 at 18:35Β
Bitcoin ATMs leeched by attackers who created fake admin accounts
By
Paul Ducklin
The criminals didn't implant any malware. The attack was orchestrated via malevolent configuration changes.
Related tags
β
Cryptocurrency
Vulnerability
atm
BTC
crypto
cryptocurrency
General
Bytes
phantom
withdrawal
vulnerability
August 23
rd
2022 at 18:35
Naked Security
S3 Ep96: Zoom 0-day, AEPIC leak, Conti reward, healthcare security [Audio + Text]
August 18
th
2022 at 18:38Β
S3 Ep96: Zoom 0-day, AEPIC leak, Conti reward, healthcare security [Audio + Text]
By
Paul Ducklin
Latest episode - listen now (or read if you prefer!)
Related tags
β
Cryptography
Intel
Law
&
order
Malware
Podcast
Privacy
AEPIC
Conti
healthcare
Naked
Security
Podcast
ransomware
zoom
August 18
th
2022 at 18:38
Naked Security
S3 Ep95: Slack leak, Github onslaught, and post-quantum crypto [Audio + Text]
August 11
th
2022 at 14:34Β
S3 Ep95: Slack leak, Github onslaught, and post-quantum crypto [Audio + Text]
By
Paul Ducklin
Latest episode - listen now! (Or read the transcript if you prefer.)
Related tags
β
Cryptography
Data
loss
Law
&
order
Malware
Microsoft
Podcast
Privacy
Cybercrime
github
hacking
malware
Naked
Security
Podcast
quantum
computing
August 11
th
2022 at 14:34
Load more articles