Login
FreshRSS
Login
About FreshRSS
Main stream
Favourites (0)
Security
/r/netsec - Information Security News & Discussion
Dark Reading:
http://blog.trendmicro.com/feed
ICS-CERT Alert Feed
Infosec Island Latest Articles
InfoSec Resources
Krebs on Security
McAfee Blogs
Naked Security
News β Packet Storm
Paul's Security Weekly
SANS Internet Storm Center, InfoCON: green
Security β Cisco Blog
SecurityFocus News
The first stop for security news | Threatpost
The Hacker News
The Register - Security
Threatpost | The first stop for security news
Troy Hunt
Verisign Blog
WeLiveSecurity
WIRED
ZDNet | security RSS
Tools
Security Tool Files β Packet Storm
ToolsWatch.org β The Hackers Arsenal Tools Portal
Vulnerabilities
Advisory Files β Packet Storm
Exploit-DB Updates
Full Disclosure
SecurityFocus Vulnerabilities
There are new available articles, click to refresh the page.
Before yesterday
Naked Security
Naked Security
S3 Ep125: When security hardware has security holes [Audio + Text]
March 9
th
2023 at 18:58Β
S3 Ep125: When security hardware has security holes [Audio + Text]
By
Paul Ducklin
Lastest episode - listen now! (Full transcript inside.)
Related tags
β
Cryptography
Law
&
order
Podcast
Ransomware
Vulnerability
bust
CISA
Naked
Security
Podcast
ransomware
tpm
March 9
th
2023 at 18:58
Naked Security
Serious Security: TPM 2.0 vulns β is your super-secure data at risk?
March 7
th
2023 at 19:59Β
Serious Security: TPM 2.0 vulns β is your super-secure data at risk?
By
Paul Ducklin
Security bugs in the very code you've been told you must have to improve the security of your computer...
Related tags
β
Cryptography
Vulnerability
TCG
tpm
TPM
2.0
Windows
11
March 7
th
2023 at 19:59
Naked Security
DoppelPaymer ransomware supsects arrested in Germany and Ukraine
March 6
th
2023 at 16:16Β
DoppelPaymer ransomware supsects arrested in Germany and Ukraine
By
Naked Security writer
Devices seized, suspects interrogated and arrested, allegedly connected to devastating cyberattack on University Hospital in DΓΌsseldorf.
Related tags
β
Cryptocurrency
Cryptography
Law
&
order
Ransomware
bust
Cybercrime
doppelpaymer
Europol
Grief
ransomware
March 6
th
2023 at 16:16
Naked Security
S3 Ep124: When so-called security apps go rogue [Audio + Text]
March 2
nd
2023 at 19:40Β
S3 Ep124: When so-called security apps go rogue [Audio + Text]
By
Paul Ducklin
Rogue software packages. Rogue "sysadmins". Rogue keyloggers. Rogue authenticators. Rogue ROGUES!
s3-ep124-auth--1200
Related tags
β
Apple
Cryptography
Data
loss
Google
Law
&
order
Podcast
2FA
Cybercrime
extortion
hacking
LastPass
Naked
Security
Podcast
ransomware
March 2
nd
2023 at 19:40
Naked Security
Beware rogue 2FA apps in App Store and Google Play β donβt get hacked!
February 27
th
2023 at 02:10Β
Beware rogue 2FA apps in App Store and Google Play β donβt get hacked!
By
Paul Ducklin
Even in Apple's and Google's "walled gardens", there are plenty of 2FA apps that are either dangerously incompetent, or unrepentantly malicious. (Or perhaps both.)
Related tags
β
2-factor
Authentication
Cryptography
Data
loss
Malware
2FA
authenticator
authenticator
app
mysk_co
Tommy
Mysk
TOTP
February 27
th
2023 at 02:10
Naked Security
Serious Security: GnuTLS follows OpenSSL, fixes timing attack bug
February 13
th
2023 at 17:59Β
Serious Security: GnuTLS follows OpenSSL, fixes timing attack bug
By
Paul Ducklin
Conditional code considered cryptographically counterproductive.
Related tags
β
Cryptography
crypto
gnutls
timing
attack
February 13
th
2023 at 17:59
Naked Security
OpenSSL fixes High Severity data-stealing bug β patch now!
February 8
th
2023 at 02:58Β
OpenSSL fixes High Severity data-stealing bug β patch now!
By
Paul Ducklin
7 memory mismanagements and a timing attack. We explain all the jargon bug terminology in plain English...
Related tags
β
Cryptography
Vulnerability
memory
mismanagement
openssl
timing
attack
February 8
th
2023 at 02:58
Naked Security
Tracers in the Dark: The Global Hunt for the Crime Lords of Crypto
February 6
th
2023 at 21:53Β
Tracers in the Dark: The Global Hunt for the Crime Lords of Crypto
By
Paul Ducklin
Hear renowned cybersecurity author Andy Greenberg's thoughtful commentary about the "war on crypto" as we talk to him about his new book...
Related tags
β
Cryptocurrency
Cryptography
Law
&
order
Podcast
nobackdoors
Andy
Greenberg
cryptocurrency
Cybercrime
Tracers
Tracers
in
the
Dark
February 6
th
2023 at 21:53
Naked Security
S3 Ep120: When dud crypto simply wonβt let go [Audio + Text]
February 2
nd
2023 at 17:50Β
S3 Ep120: When dud crypto simply wonβt let go [Audio + Text]
By
Paul Ducklin
Latest episode - listen now!
Related tags
β
Cryptography
Law
&
order
Podcast
Ransomware
collision
Hive
MD5
Naked
Security
Podcast
ransomware
Samba
vulnerability
February 2
nd
2023 at 17:50
Naked Security
Password-stealing βvulnerabilityβ reported in KeePass β bug or feature?
February 1
st
2023 at 19:58Β
Password-stealing βvulnerabilityβ reported in KeePass β bug or feature?
By
Paul Ducklin
Is it a vulnerability if someone with control over your account can mess with files that your account is allowed to access anyway?
Related tags
β
Cryptography
Data
loss
Vulnerability
CVE-2023-24055
data
leakage
KeePass
trigger
February 1
st
2023 at 19:58
Naked Security
Serious Security: The Samba logon bug caused by outdated crypto
January 30
th
2023 at 19:59Β
Serious Security: The Samba logon bug caused by outdated crypto
By
Paul Ducklin
Enjoy our Serious Security deep dive into this real-world example of why cryptographic agility is important!
Related tags
β
Cryptography
Vulnerability
CIFS
collision
CVE-2022-38023
mac
MD5
message
digest
Samba
SMB
January 30
th
2023 at 19:59
Naked Security
GoTo admits: Customer cloud backups stolen together with decryption key
January 25
th
2023 at 01:37Β
GoTo admits: Customer cloud backups stolen together with decryption key
By
Paul Ducklin
We were going to write, "Once more unto the breach, dear friends, once more"... but it seems to go without saying these days.
Related tags
β
Cryptography
Data
loss
breach
cloud
GoTo
hash
LastPass
January 25
th
2023 at 01:37
Naked Security
Serious Security: Unravelling the LifeLock βhacked passwordsβ story
January 17
th
2023 at 17:59Β
Serious Security: Unravelling the LifeLock βhacked passwordsβ story
By
Paul Ducklin
Four straight-talking tips to improve your online security, whether you're a LifeLock customer or not.
Related tags
β
Cryptography
Privacy
LifeLock
Norton
NortonLifeLock
passwords
January 17
th
2023 at 17:59
Naked Security
S3 Ep117: The crypto crisis that wasnβt (and farewell forever to Win 7) [Audio + Text]
January 12
th
2023 at 17:59Β
S3 Ep117: The crypto crisis that wasnβt (and farewell forever to Win 7) [Audio + Text]
By
Paul Ducklin
Tell us in the comments... What's the REAL reason there was no Windows 9? (No theory too far-fetched!)
Related tags
β
Cryptography
Law
&
order
Podcast
Vulnerability
bust
Naked
Security
Podcast
RSA
Scam
Windows
7
Windows
8.1
January 12
th
2023 at 17:59
Naked Security
Popular JWT cloud security library patches βremoteβ code execution hole
January 10
th
2023 at 19:59Β
Popular JWT cloud security library patches βremoteβ code execution hole
By
Paul Ducklin
It's remotely triggerable, but attackers would already have pretty deep network access if they could "prime" your server for compromise.
Related tags
β
Cryptography
Vulnerability
JSON
jsonwebtoken
JWT
rce
vulnerability
January 10
th
2023 at 19:59
Naked Security
RSA crypto cracked? Or perhaps not!
January 6
th
2023 at 19:59Β
RSA crypto cracked? Or perhaps not!
By
Paul Ducklin
Stand down from blue alert, it seems... but why not plan your cryptographic agility anyway?
Related tags
β
Cryptography
crypto
January 6
th
2023 at 19:59
Naked Security
S3 Ep116: Last straw for LastPass? Is crypto doomed? [Audio + Text]
January 5
th
2023 at 17:52Β
S3 Ep116: Last straw for LastPass? Is crypto doomed? [Audio + Text]
By
Paul Ducklin
Lots of big issues this week: breaches, encryption, supply chains and patching problems. Listen now! (Full transcript inside.)
Related tags
β
Cryptography
Podcast
LastPass
Naked
Security
Podcast
PyTorch
January 5
th
2023 at 17:52
Naked Security
Serious Security: How to improve cryptography, resist supply chain attacks, and handle data breaches
January 4
th
2023 at 19:50Β
Serious Security: How to improve cryptography, resist supply chain attacks, and handle data breaches
By
Paul Ducklin
Lessons for us all: improve cryptography, fight cybercrime, own your supply chain... and don't steal my data and then pretend you're sorry.
Related tags
β
Data
loss
Malware
Podcast
Security
leadership
Vulnerability
Cryptography
Cybercrime
Linux
machine
learning
vulnerability
January 4
th
2023 at 19:50
Naked Security
US passes the Quantum Computing Cybersecurity Preparedness Act β and why not?
December 29
th
2022 at 20:45Β
US passes the Quantum Computing Cybersecurity Preparedness Act β and why not?
By
Paul Ducklin
Cryptographic agility: the ability and the willingness to change quickly when needed.
sc-daa-1200
Related tags
β
Cryptography
Congress
Grover
PQC
quantum
quantum
computing
Shor
December 29
th
2022 at 20:45
Naked Security
Serious Security: MD5 considered harmful β to the tune of $600,000
November 30
th
2022 at 17:58Β
Serious Security: MD5 considered harmful β to the tune of $600,000
By
Paul Ducklin
It's not just the hashing, by the way. It's the salting and the stretching, too!
Related tags
β
Cryptography
Law
&
order
CNIL
EDF
hashing
MD5
PBKDF2
November 30
th
2022 at 17:58
Naked Security
The OpenSSL security update story β how can you tell what needs fixing?
November 3
rd
2022 at 00:44Β
The OpenSSL security update story β how can you tell what needs fixing?
By
Paul Ducklin
How to Hack! Finding OpenSSL library files and accurately identifying their version numbers...
ossl-code-1200
Related tags
β
Cryptography
Vulnerability
CVE-2022-3602
CVE-2022-378
openssl
November 3
rd
2022 at 00:44
Naked Security
OpenSSL patches are outΒ β CRITICAL bug downgraded to HIGH, but patch anyway!
November 1
st
2022 at 17:24Β
OpenSSL patches are outΒ β CRITICAL bug downgraded to HIGH, but patch anyway!
By
Paul Ducklin
That bated-breath OpenSSL update is out! It's no longer rated CRITICAL, but we advise you to patch ASAP anyway. Here's why...
Related tags
β
Cryptography
Vulnerability
CVE-2022-3602
CVE-2022-3786
openssl
vulneravility
November 1
st
2022 at 17:24
Naked Security
SHA-3 code execution bug patched in PHP β check your version!
November 1
st
2022 at 14:09Β
SHA-3 code execution bug patched in PHP β check your version!
By
Paul Ducklin
As everyone waits for news of a bug in OpenSSL, here's a reminder that other cryptographic code in your life may also need patching!
Related tags
β
Cryptography
Vulnerability
cryptograhpy
CVE-2022-37454
PHP
sha-3
November 1
st
2022 at 14:09
Naked Security
S3 Ep106: Facial recognition without consent β should it be banned?
October 27
th
2022 at 16:59Β
S3 Ep106: Facial recognition without consent β should it be banned?
By
Paul Ducklin
Latest episode - listen (or read) now. Teachable moments for X-Ops professionals!
Related tags
β
Cryptography
Data
loss
GDPR
compliance
Law
&
order
Podcast
Privacy
Ransomware
Clearview
Clearview
AI
Deadbolt
Naked
Security
Podcast
randomness
October 27
th
2022 at 16:59
Naked Security
Serious Security: How randomly (or not) can you shuffle cards?
October 24
th
2022 at 18:57Β
Serious Security: How randomly (or not) can you shuffle cards?
By
Paul Ducklin
What if you could guess the next card correctly twice as often as you should?
card-fan-1200
Related tags
β
Cryptography
Diaconis
randomness
schneier
shuffle
October 24
th
2022 at 18:57
Naked Security
S3 Ep105: WONTFIX! The MS Office cryptofail that βisnβt a security flawβ [Audio + Text]
October 20
th
2022 at 18:54Β
S3 Ep105: WONTFIX! The MS Office cryptofail that βisnβt a security flawβ [Audio + Text]
By
Paul Ducklin
The coolest video game ever! And lots of solid cybersecurity advice - listen now!
pic-1200
Related tags
β
Cryptography
Data
loss
Microsoft
Podcast
Privacy
data
breach
Naked
Security
Podcast
Office
Patch
Tuesday
zoom
October 20
th
2022 at 18:54
Naked Security
Women in Cryptology β USPS celebrates WW2 codebreakers
October 19
th
2022 at 16:58Β
Women in Cryptology β USPS celebrates WW2 codebreakers
By
Paul Ducklin
What did you do in the war, Mom? Oh, y'know, a bit of this and that...
Related tags
β
Cryptography
October 19
th
2022 at 16:58
Naked Security
Serious Security: Microsoft Office 365 attacked over feeble encryption
October 14
th
2022 at 16:59Β
Serious Security: Microsoft Office 365 attacked over feeble encryption
By
Paul Ducklin
How 2022 is your encryption?
Related tags
β
Cryptography
Microsoft
ECB
Office
Windows
October 14
th
2022 at 16:59
Naked Security
Serious Security: OAuth 2 and why Microsoft is finally forcing you into it
October 10
th
2022 at 18:02Β
Serious Security: OAuth 2 and why Microsoft is finally forcing you into it
By
Paul Ducklin
Microsoft calls it "Modern Auth", though it's a decade old, and is finally forcing Exchange Online customers to switch to it.
Related tags
β
Cryptography
Microsoft
Podcast
exchange
Modern
Auth
Oath
oauth
TOTP
October 10
th
2022 at 18:02
Naked Security
S3 Ep96: Zoom 0-day, AEPIC leak, Conti reward, healthcare security [Audio + Text]
August 18
th
2022 at 18:38Β
S3 Ep96: Zoom 0-day, AEPIC leak, Conti reward, healthcare security [Audio + Text]
By
Paul Ducklin
Latest episode - listen now (or read if you prefer!)
Related tags
β
Cryptography
Intel
Law
&
order
Malware
Podcast
Privacy
AEPIC
Conti
healthcare
Naked
Security
Podcast
ransomware
zoom
August 18
th
2022 at 18:38
Naked Security
S3 Ep95: Slack leak, Github onslaught, and post-quantum crypto [Audio + Text]
August 11
th
2022 at 14:34Β
S3 Ep95: Slack leak, Github onslaught, and post-quantum crypto [Audio + Text]
By
Paul Ducklin
Latest episode - listen now! (Or read the transcript if you prefer.)
Related tags
β
Cryptography
Data
loss
Law
&
order
Malware
Microsoft
Podcast
Privacy
Cybercrime
github
hacking
malware
Naked
Security
Podcast
quantum
computing
August 11
th
2022 at 14:34
Naked Security
APIC/EPIC! Intel chips leak secrets even the kernel shouldnβt seeβ¦
August 10
th
2022 at 16:59Β
APIC/EPIC! Intel chips leak secrets even the kernel shouldnβt seeβ¦
By
Paul Ducklin
If you've ever written code that left stuff lying around in memory when you didn't need it any more... we bet you've regretted it!
Related tags
β
Cryptography
Data
loss
Vulnerability
APIC
CVE-2022-21233
EPIC
SGX
ΓPIC
Leak
August 10
th
2022 at 16:59
Naked Security
Slack admits to leaking hashed passwords for five years
August 8
th
2022 at 15:14Β
Slack admits to leaking hashed passwords for five years
By
Paul Ducklin
"When those invitations went out... somehow, your password hash went out with them."
Related tags
β
Cryptography
Data
loss
brute
force
crack
dictionary
attack
hashing
password
salt
Slack
August 8
th
2022 at 15:14
Naked Security
S3 Ep94: This sort of crypto (graphy), and the other sort of crypto (currency!) [Audio + Text]
August 4
th
2022 at 17:52Β
S3 Ep94: This sort of crypto (graphy), and the other sort of crypto (currency!) [Audio + Text]
By
Paul Ducklin
Latest episode - listen now! (Or read if that's what you prefer.)
Related tags
β
Cryptocurrency
Cryptography
Podcast
Vulnerability
cryptocurrency
cryptogram
Cybercrime
Naked
Security
Podcast
August 4
th
2022 at 17:52
Naked Security
Post-quantum cryptography β new algorithm βgone in 60 minutesβ
August 3
rd
2022 at 18:55Β
Post-quantum cryptography β new algorithm βgone in 60 minutesβ
By
Paul Ducklin
And THIS is why you don't knit your own home-made encryption algorithms and hope no one looks at them.
Related tags
β
Cryptography
nist
PQC
quantum
quantum
computing
SIKE
August 3
rd
2022 at 18:55
Naked Security
Cryptocoin βtoken swapperβ Nomad loses $200 million in coding blunder
August 2
nd
2022 at 16:12Β
Cryptocoin βtoken swapperβ Nomad loses $200 million in coding blunder
By
Paul Ducklin
Transactions were only approved, it seems, if they were initiated by... errrrr, by anyone.
Related tags
β
Cryptocurrency
Cryptography
Vulnerability
cryptocoin
cryptocurrency
DeFi
Nomad
August 2
nd
2022 at 16:12
Naked Security
GnuTLS patches memory mismanagement bug β update now!
August 1
st
2022 at 16:55Β
GnuTLS patches memory mismanagement bug β update now!
By
Paul Ducklin
GnuTLS may well be the most widespread cryptographic toolkit you've never heard of. Learn more...
Related tags
β
Cryptography
Vulnerability
CVE-2022-2509
double-free
gnutls
heartbleed
August 1
st
2022 at 16:55
Naked Security
S3 Ep91: CodeRed, OpenSSL, Java bugs, Office macros [Audio + Text]
July 14
th
2022 at 18:47Β
S3 Ep91: CodeRed, OpenSSL, Java bugs, Office macros [Audio + Text]
By
Paul Ducklin
Latest episode - listen now! Great discussion, technical content, solid advice... all covered in plain English.
Related tags
β
Cryptography
Law
&
order
Malware
Microsoft
Podcast
AES
Naked
Security
Podcast
ransomware
RSA
VBA
July 14
th
2022 at 18:47
Naked Security
OpenSSL fixes two βone-linerβ crypto bugs β what you need to know
July 6
th
2022 at 16:52Β
OpenSSL fixes two βone-linerβ crypto bugs β what you need to know
By
Paul Ducklin
"As bad as Heartbleed"? We heard that concern a week ago, but we think it's less ungood than that...
Related tags
β
Cryptography
Vulnerability
AES
openssl
RSA
vulnerability
July 6
th
2022 at 16:52
Naked Security
S3 Ep89: Sextortion, blockchain blunder, and an OpenSSL bugfix [Podcast + Transcript]
June 30
th
2022 at 12:57Β
S3 Ep89: Sextortion, blockchain blunder, and an OpenSSL bugfix [Podcast + Transcript]
By
Paul Ducklin
Latest episode - listen and read now! Use our advice to advise your own friends and family... let's all do our bit to stand up to scammers!
Related tags
β
Cryptocurrency
Cryptography
Law
&
order
Podcast
Vulnerability
crypto
cryptocurrency
extortion
Naked
Security
Podcast
openssl
scammers
June 30
th
2022 at 12:57
Naked Security
OpenSSL issues a bugfix for the previous bugfix
June 24
th
2022 at 15:32Β
OpenSSL issues a bugfix for the previous bugfix
By
Paul Ducklin
Fortunately, it's not a major bugfix, which means it's easy to patch and can teach us all some useful lessons.
Related tags
β
Cryptography
Vulnerability
command
injection
crypto
openssl
June 24
th
2022 at 15:32
Naked Security
He sold cracked passwords for a living β now heβs serving 4 years in prison
May 13
th
2022 at 18:31Β
He sold cracked passwords for a living β now heβs serving 4 years in prison
By
Paul Ducklin
Crooks don't need a password for every user on your network to break in and wreak havoc. One could be enough...
Related tags
β
Cryptography
Law
&
order
bust
cracking
Cybercrime
doj
May 13
th
2022 at 18:31
Naked Security
S3 Ep79: Chrome hole, a bad place for a cybersecurity holiday, and crypto-dodginess [Podcast]
April 21
st
2022 at 13:41Β
S3 Ep79: Chrome hole, a bad place for a cybersecurity holiday, and crypto-dodginess [Podcast]
By
Paul Ducklin
Do you know your Adam Osborne from your John Osbourne? Your Z80 from your 6502? Latest episode - listen now!
Related tags
β
Cryptocurrency
Cryptography
Law
&
order
Podcast
Beanstalk
cryptocurrency
Cybercrime
Naked
Security
Podcast
April 21
st
2022 at 13:41
Naked Security
Critical cryptographic Java security blunder patched β update now!
April 20
th
2022 at 16:43Β
Critical cryptographic Java security blunder patched β update now!
By
Paul Ducklin
Either know the private key and use it scrupulously in your digital signature calculation.... or just send a bunch of zeros instead.
Related tags
β
Cryptography
Java
Oracle
Vulnerability
CVE-2022-21449
digital
signature
vulnerability
April 20
th
2022 at 16:43
Naked Security
S3 Ep78: Darkweb hydra, Ruby, quantum computing, and a robot revolution [Podcast]
April 14
th
2022 at 13:39Β
S3 Ep78: Darkweb hydra, Ruby, quantum computing, and a robot revolution [Podcast]
By
Paul Ducklin
Latest episode - listen now!
Related tags
β
Cryptocurrency
Cryptography
Podcast
Vulnerability
darkweb
Hydra
iot
Naked
Security
Podcast
PQC
quantum
computing
robot
takedown
April 14
th
2022 at 13:39
Naked Security
OpenSSH goes Post-Quantum, switches to qubit-busting crypto by default
April 11
th
2022 at 16:58Β
OpenSSH goes Post-Quantum, switches to qubit-busting crypto by default
By
Paul Ducklin
Useful quantum computers might not actually be possible. But what if they are? And what if they arrive, say, tomorrow?
cat-1200
Related tags
β
Cryptography
NTRU
Prime
openssh
quantum
computing
April 11
th
2022 at 16:58
Naked Security
S3 Ep75: Okta hack, CryptoRom, OpenSSL, and CafePress [Podcast]
March 24
th
2022 at 13:49Β
S3 Ep75: Okta hack, CryptoRom, OpenSSL, and CafePress [Podcast]
By
Paul Ducklin
Latest episode - listen now!
Related tags
β
Cryptography
Data
loss
Malware
Podcast
Vulnerability
CafePress
data
breach
ftc
lapsus
Naked
Security
Podcast
March 24
th
2022 at 13:49
Naked Security
OpenSSL patches infinite-loop DoS bug in certificate verification
March 18
th
2022 at 17:59Β
OpenSSL patches infinite-loop DoS bug in certificate verification
By
Paul Ducklin
When it comes to writing loops in your code... never sit on the fence!
Related tags
β
Cryptography
Vulnerability
CVE-2022-0778
DOS
openssl
ormandy
vulnerability
March 18
th
2022 at 17:59
Naked Security
Self-styled βCrocodile of Wall Streetβ arrested with husband over Bitcoin megaheist
February 9
th
2022 at 14:44Β
Self-styled βCrocodile of Wall Streetβ arrested with husband over Bitcoin megaheist
By
Naked Security writer
The cops say they've recovered 80% of a $72 million cryptocoin heist... but the recovered funds alone are now worth over $4 billion!
Related tags
β
Cryptocurrency
Cryptography
Law
&
order
Big
Bitcoin
Heist
bitcoin
BTC
bust
cryptocurrency
doj
quantum
cryptography
February 9
th
2022 at 14:44
Naked Security
S3 Ep66: Cybercrime busts, wormable Windows, and the crisis of featuritis [Podcast + Transcript]
January 20
th
2022 at 17:28Β
S3 Ep66: Cybercrime busts, wormable Windows, and the crisis of featuritis [Podcast + Transcript]
By
Paul Ducklin
Latest epsiode - listen now!
Related tags
β
Apple
iOS
Law
&
order
Linux
Microsoft
Podcast
Vulnerability
Cryptography
Cybercrime
Loinux
Naked
Security
Podcast
Windows
January 20
th
2022 at 17:28
Naked Security
Serious Security: Linux full-disk encryption bug fixed β patch now!
January 14
th
2022 at 21:58Β
Serious Security: Linux full-disk encryption bug fixed β patch now!
By
Paul Ducklin
Imagine if someone who didn't have your password could sneakily modify data that was encrypted with it.
Related tags
β
Cryptography
cryptsetup
Linux
January 14
th
2022 at 21:58
Naked Security
Serious Security: OpenSSL fixes βerror conflationβ bugs β how mixing up mistakes can lead to trouble
December 17
th
2021 at 17:57Β
Serious Security: OpenSSL fixes βerror conflationβ bugs β how mixing up mistakes can lead to trouble
By
Paul Ducklin
Have you ever seen the message "An error occurred"? Even worse, the message "This error cannot occur"? Facts matter!
Related tags
β
Cryptography
CVE-2021-4044
openssl
Patching
vulnerability
December 17
th
2021 at 17:57
Naked Security
Mozilla patches critical βBigSigβ cryptographic bug: Hereβs how to track it down and fix it
December 3
rd
2021 at 17:58Β
Mozilla patches critical βBigSigβ cryptographic bug: Hereβs how to track it down and fix it
By
Paul Ducklin
Mozilla's cryptographic code had a critical bug. Problem is that numerous apps are affected and may need patching individually.
Related tags
β
Mozilla
Vulnerability
Cryptography
NSS
vulnerability
December 3
rd
2021 at 17:58
Naked Security
Samba update patches plaintext password plundering problem
November 12
th
2021 at 19:59Β
Samba update patches plaintext password plundering problem
By
Paul Ducklin
When Microsoft itself says STOP USING X, where X is one of its own protocols... we think you should listen.
Related tags
β
Cryptography
legacy
plaintext
Samba
SMB1
November 12
th
2021 at 19:59
Naked Security
S3 Ep55: Live malware, global encryption, dating scams, and secret emanations [Podcasts]
October 21
st
2021 at 18:13Β
S3 Ep55: Live malware, global encryption, dating scams, and secret emanations [Podcasts]
By
Paul Ducklin
Latest episode - listen now! (And sign up for our forthcoming Live Malware Demo at the same time.)
Related tags
β
Cryptocurrency
Cryptography
Malware
Podcast
Privacy
Ben-Gurion
University
BGU
cryptocurency
Cybercrime
LANtenna
Naked
Security
Podcast
scammers
TBX
October 21
st
2021 at 18:13
There are no more articles
β
Mark all as read