Login
FreshRSS
Login
About FreshRSS
Main stream
Favourites (0)
Security
/r/netsec - Information Security News & Discussion
Dark Reading:
http://blog.trendmicro.com/feed
ICS-CERT Alert Feed
Infosec Island Latest Articles
InfoSec Resources
Krebs on Security
McAfee Blogs
Naked Security
News β Packet Storm
Paul's Security Weekly
SANS Internet Storm Center, InfoCON: green
Security β Cisco Blog
SecurityFocus News
The first stop for security news | Threatpost
The Hacker News
The Register - Security
Threatpost | The first stop for security news
Troy Hunt
Verisign Blog
WeLiveSecurity
WIRED
ZDNet | security RSS
Tools
Security Tool Files β Packet Storm
ToolsWatch.org β The Hackers Arsenal Tools Portal
Vulnerabilities
Advisory Files β Packet Storm
Exploit-DB Updates
Full Disclosure
SecurityFocus Vulnerabilities
There are new available articles, click to refresh the page.
Before yesterday
Naked Security
Naked Security
Appleβs secret is out: 3 zero-days fixed, so be sure to patch now!
May 19
th
2023 at 01:02Β
Appleβs secret is out: 3 zero-days fixed, so be sure to patch now!
By
Paul Ducklin
All Apple users have zero-days that need patching, though some have more zero-days than others.
Related tags
β
Apple
Vulnerability
Exploit
iPhone
mac
vulnerability
May 19
th
2023 at 01:02
Naked Security
S3 Ep133: Apple takes βtight-lippedβ to a whole new level
May 4
th
2023 at 20:59Β
S3 Ep133: Apple takes βtight-lippedβ to a whole new level
By
Paul Ducklin
Entertaining, educational, and all in plain English π§π
Related tags
β
Podcast
AMOS
Apple
mac
malware
Naked
Security
Podcast
passwords
May 4
th
2023 at 20:59
Naked Security
Mac malware-for-hire steals passwords and cryptocoins, sends βcrime logsβ via Telegram
April 30
th
2023 at 01:23Β
Mac malware-for-hire steals passwords and cryptocoins, sends βcrime logsβ via Telegram
By
Paul Ducklin
These malware peddlers are specifically going after Mac users. The hint's in the name: "Atomic macOS Stealer", or AMOS for short.
Related tags
β
Apple
Brave
Firefox
Google
Chrome
Microsoft
Edge
Opera
Yandex
AMOS
Cybercrime
mac
malware
April 30
th
2023 at 01:23
Naked Security
Apple issues emergency patches for spyware-style 0-day exploits β update now!
April 8
th
2023 at 01:20Β
Apple issues emergency patches for spyware-style 0-day exploits β update now!
By
Paul Ducklin
A bug to hack your browser, then a bug to pwn the kernel... reported from the wild by Amnesty International.
Related tags
β
Apple
Apple
Safari
Vulnerability
day
Amnesty
International
Exploit
ios
iPhone
mac
Zero
Day
April 8
th
2023 at 01:20
Naked Security
Apple patches everything, including a zero-day fix for iOS 15 users
March 28
th
2023 at 00:23Β
Apple patches everything, including a zero-day fix for iOS 15 users
By
Paul Ducklin
Got an older iPhone that can't run iOS 16? You've got a zero-day to deal with! That super-cool Studio Display monitor needs patching, too.
Related tags
β
Apple
Vulnerability
day
Exploit
ios
iPad
iPadOS
iPhone
macOS
vulnerability
Zero
Day
March 28
th
2023 at 00:23
Naked Security
Serious Security: The Samba logon bug caused by outdated crypto
January 30
th
2023 at 19:59Β
Serious Security: The Samba logon bug caused by outdated crypto
By
Paul Ducklin
Enjoy our Serious Security deep dive into this real-world example of why cryptographic agility is important!
Related tags
β
Cryptography
Vulnerability
CIFS
collision
CVE-2022-38023
mac
MD5
message
digest
Samba
SMB
January 30
th
2023 at 19:59
Naked Security
Apple patches are out β old iPhones get an old zero-day fix at last!
January 24
th
2023 at 01:24Β
Apple patches are out β old iPhones get an old zero-day fix at last!
By
Paul Ducklin
Don't delay, especially if you're still running an iOS 12 device... please do it today!
Related tags
β
Apple
Vulnerability
CVE-2022-42856
Exploit
ios
ios
12
iPadOS
macOS
Ventura
Zero
Day
January 24
th
2023 at 01:24
Naked Security
Serious Security: How to improve cryptography, resist supply chain attacks, and handle data breaches
January 4
th
2023 at 19:50Β
Serious Security: How to improve cryptography, resist supply chain attacks, and handle data breaches
By
Paul Ducklin
Lessons for us all: improve cryptography, fight cybercrime, own your supply chain... and don't steal my data and then pretend you're sorry.
Related tags
β
Data
loss
Malware
Podcast
Security
leadership
Vulnerability
Cryptography
Cybercrime
Linux
machine
learning
vulnerability
January 4
th
2023 at 19:50
Naked Security
PyTorch: Machine Learning toolkit pwned from Christmas to New Year
January 1
st
2023 at 21:36Β
PyTorch: Machine Learning toolkit pwned from Christmas to New Year
By
Paul Ducklin
The bad news: the crooks have your SSH private keys. The good news: only users of the "nightly" build were affected.
Related tags
β
Machine
Learning
Malware
AI
Artificial
intelligence
data
stealing
Linux
machine
learning
malware
ML
PyTorch
triton
January 1
st
2023 at 21:36
Naked Security
S3 Ep115: True crime stories β A day in the life of a cybercrime fighter [Audio + Text]
December 29
th
2022 at 09:20Β
S3 Ep115: True crime stories β A day in the life of a cybercrime fighter [Audio + Text]
By
Paul Ducklin
Listen now - you'll be alarmed, amused and educated, all in equal measure. (Full transcript in article.)
Related tags
β
Data
loss
Malware
Podcast
Ransomware
Security
leadership
Cybercrime
hacking
MDR
Naked
Security
Podcast
Peter
Mackenzie
ransomware
December 29
th
2022 at 09:20
Naked Security
Microsoft dishes the dirt on Appleβs βAchilles heelβ shortly after fixing similar Windows bug
December 20
th
2022 at 17:59Β
Microsoft dishes the dirt on Appleβs βAchilles heelβ shortly after fixing similar Windows bug
By
Paul Ducklin
It happens to the best of us: Microsoft highlights a security bypass bug on Macs that is curiously similar to a recent Windows 0-day.
Related tags
β
Apple
Microsoft
Vulnerability
Achilles
CVE-2022-42821
Gatekeeper
macOS
MOTW
vulnerability
December 20
th
2022 at 17:59
Naked Security
Apple megaupdate: Ventura out, iOS and iPad kernel zero-day β act now!
October 25
th
2022 at 18:03Β
Apple megaupdate: Ventura out, iOS and iPad kernel zero-day β act now!
By
Paul Ducklin
Ventura hits the market with 112 patches, Catalina's gone missing, and iPhones and iPads get a critical kernel-level zero-day patch...
Related tags
β
Apple
iOS
OS
X
Vulnerability
day
CVE-2022-42827
Exploit
ios
iPad
iPhone
mac
vulnerability
zer-day
October 25
th
2022 at 18:03
Naked Security
Move over Patch Tuesday β itβs Ada Lovelace Day!
October 11
th
2022 at 15:22Β
Move over Patch Tuesday β itβs Ada Lovelace Day!
By
Paul Ducklin
Hacking on actual computers is one thing, but hacking purposefully on imaginary computers is, these days, something we can only imagine.
Related tags
β
Machine
Learning
ada
Ada
Lovelace
Day
Alan
Turing
babbage
computer
science
Lady
Lovelace
October 11
th
2022 at 15:22
Naked Security
Apple patches double zero-day in browser and kernel β update now!
August 17
th
2022 at 23:33Β
Apple patches double zero-day in browser and kernel β update now!
By
Paul Ducklin
Double 0-day exploits - one in WebKit (to break in) and the other in the kernel (to take over). Patch now!
Related tags
β
Apple
iOS
Malware
OS
X
Vulnerability
CVE-2022-32893
CVE-2022-32894
ios
iPadOS
jailbreak
macOS
spyware
August 17
th
2022 at 23:33
Naked Security
Zoom for Mac patches critical bug β update now!
August 15
th
2022 at 18:26Β
Zoom for Mac patches critical bug β update now!
By
Paul Ducklin
There's many a slip 'twixt the cup and the lip. Or at least between the TOC and the TOU...
Related tags
β
OS
X
Vulnerability
CVE-2022-28756
macOS
Wardle
zoom
August 15
th
2022 at 18:26
Naked Security
Office macro security: on-again-off-again feature now BACK ON AGAIN!
July 23
rd
2022 at 01:10Β
Office macro security: on-again-off-again feature now BACK ON AGAIN!
By
Paul Ducklin
20 years to turn it on, then 20 weeks to turn it off, then just 2 weeks to turn it back on again. That's progress!
Related tags
β
Data
loss
Malware
Microsoft
Privacy
macros
Office
VBA
July 23
rd
2022 at 01:10
Naked Security
Apple patches β0-dayβ browser bug fixed 2 weeks ago in Chrome, Edge
July 21
st
2022 at 12:38Β
Apple patches β0-dayβ browser bug fixed 2 weeks ago in Chrome, Edge
By
Paul Ducklin
One vendor's zero-day is another vendor's routine patch...
Related tags
β
Apple
Vulnerability
iPad
iPhone
mac
macOS
vulnerability
July 21
st
2022 at 12:38
Naked Security
That didnβt last! Microsoft turns off the Office security it just turned on
July 11
th
2022 at 13:27Β
That didnβt last! Microsoft turns off the Office security it just turned on
By
Paul Ducklin
An Office anti-malware setting that took more than 20 years to arrive... and fewer than 20 weeks to vanish again.
Related tags
β
Malware
Microsoft
Phishing
macro
malware
Office
VBA
July 11
th
2022 at 13:27
Naked Security
Apple pushes out two emergency 0-day updates β get βem now!
March 31
st
2022 at 23:38Β
Apple pushes out two emergency 0-day updates β get βem now!
By
Paul Ducklin
More Apple zero-days - mobile devices, laptops and desktops affected. Update now!
apple-1200
Related tags
β
Apple
Vulnerability
iPad
iPhone
mac
vulnerability
Zero
Day
March 31
st
2022 at 23:38
Naked Security
Apple zero-day drama for Macs, iPhones and iPads β patch now!
February 11
th
2022 at 14:25Β
Apple zero-day drama for Macs, iPhones and iPads β patch now!
By
Paul Ducklin
Sudden update! Zero-day browser hole! Drive-by malware danger! Patch Apple laptops and phones now...
apple-1200
Related tags
β
Apple
iOS
OS
X
Vulnerability
CVE-2022-22620
iPad
iPhone
macOS
vulnerability
February 11
th
2022 at 14:25
Naked Security
At last! Office macros from the internet to be blocked by default
February 8
th
2022 at 16:34Β
At last! Office macros from the internet to be blocked by default
By
Paul Ducklin
It's been a long time coming, and we're not there yet, but at least Microsoft Office will be a bit safer against macro malware...
Related tags
β
Malware
Microsoft
Security
threats
macroi
viruses
malware
Melissa
virus
Office
VBA
February 8
th
2022 at 16:34
Naked Security
Apple fixes Safari data leak (and patches a zero-day!) β update now
January 27
th
2022 at 21:09Β
Apple fixes Safari data leak (and patches a zero-day!) β update now
By
Paul Ducklin
That infamous "supercookie" bug in Safari has now been fixed. Oh, and there was a zero-day kernel hole as well.
apple-1200
Related tags
β
Apple
iOS
OS
X
Privacy
Vulnerability
Exploit
ios
iPhone
macOS
Patch
rce
January 27
th
2022 at 21:09
Naked Security
S3 Ep63: Log4Shell (what else?) and Apple kernel bugs [Podcast+Transcript]
December 16
th
2021 at 17:41Β
S3 Ep63: Log4Shell (what else?) and Apple kernel bugs [Podcast+Transcript]
By
Paul Ducklin
Latest episode - listen now! (Yes, there are plenty of critical things to go along with Log4Shell.)
Related tags
β
Apple
Podcast
CVE-2021-44228
Exploit
iPhone
jailbreak
Log4Shell
macOS
Naked
Security
Podcast
December 16
th
2021 at 17:41
Naked Security
Apple security updates are out β and not a Log4Shell mention in sight
December 14
th
2021 at 12:55Β
Apple security updates are out β and not a Log4Shell mention in sight
By
Paul Ducklin
Get 'em while they're hot!
Related tags
β
Apple
iPad
iPhone
macOS
Patch
vulnerability
December 14
th
2021 at 12:55
Naked Security
Sophos 2022 Threat Report: Malware, Mobile, Machine learning and more!
November 9
th
2021 at 19:31Β
Sophos 2022 Threat Report: Malware, Mobile, Machine learning and more!
By
Paul Ducklin
The crooks have shown that they're willing to learn and adapt their attacks, so we need to make sure we learn and adapt, too.
Related tags
β
Machine
Learning
Malware
Mobile
Security
leadership
Security
threats
AI
MTR
sophoslabs
Threat
Report
November 9
th
2021 at 19:31
There are no more articles
β
Mark all as read