Login
FreshRSS
Login
About FreshRSS
Main stream
Favourites (0)
Security
/r/netsec - Information Security News & Discussion
Dark Reading:
http://blog.trendmicro.com/feed
ICS-CERT Alert Feed
Infosec Island Latest Articles
InfoSec Resources
Krebs on Security
McAfee Blogs
Naked Security
News β Packet Storm
Paul's Security Weekly
SANS Internet Storm Center, InfoCON: green
Security β Cisco Blog
SecurityFocus News
The first stop for security news | Threatpost
The Hacker News
The Register - Security
Threatpost | The first stop for security news
Troy Hunt
Verisign Blog
WeLiveSecurity
WIRED
ZDNet | security RSS
Tools
Security Tool Files β Packet Storm
ToolsWatch.org β The Hackers Arsenal Tools Portal
Vulnerabilities
Advisory Files β Packet Storm
Exploit-DB Updates
Full Disclosure
SecurityFocus Vulnerabilities
There are new available articles, click to refresh the page.
Before yesterday
Naked Security
Naked Security
Firefox 115 is out, says farewell to users of older Windows and Mac versions
July 5
th
2023 at 18:58Β
Firefox 115 is out, says farewell to users of older Windows and Mac versions
By
Paul Ducklin
No zero-days this month, so you're patching to stay ahead, not merely to catch up!
Related tags
β
Vulnerability
Firefox
Patch
vulnerability
July 5
th
2023 at 18:58
Naked Security
Ghostscript bug could allow rogue documents to run system commands
July 4
th
2023 at 17:57Β
Ghostscript bug could allow rogue documents to run system commands
By
Paul Ducklin
Even if you've never heard of the venerable Ghostscript project, you may have it installed without knowing.
Related tags
β
Vulnerability
command
injection
CVE-2023-36664
Ghostscript
pipe
rce
vulnerability
July 4
th
2023 at 17:57
Naked Security
WordPress plugin lets users become adminsΒ β Patch early, patch often!
July 3
rd
2023 at 16:48Β
WordPress plugin lets users become adminsΒ β Patch early, patch often!
By
Paul Ducklin
Ultimate Member plugin lets rogue users choose their own site capabilities, including becoming admins.
Related tags
β
Vulnerability
CVE-2023-3460
Patch
Ultimate
Members
vulnerability
July 3
rd
2023 at 16:48
Naked Security
S3 Ep141: What was Steve Jobsβs first job?
June 29
th
2023 at 16:58Β
S3 Ep141: What was Steve Jobsβs first job?
By
Paul Ducklin
Latest episode - listen now! (Full transcript inside.)
Related tags
β
Apple
Cryptocurrency
Data
loss
Law
&
order
Malware
Podcast
Privacy
Vulnerability
bust
Cybercrime
hacking
iPhone
malware
Naked
Security
Podcast
Twitter
Zero
Day
June 29
th
2023 at 16:58
Naked Security
Interested in $10,000,000? Ready to turn in the Clop ransomware crew?
June 28
th
2023 at 18:59Β
Interested in $10,000,000? Ready to turn in the Clop ransomware crew?
By
Naked Security writer
Technically, it's "up to $10 million", but it's potentially a LOT of money, nevertheless...
Related tags
β
Data
loss
Law
&
order
Ransomware
CL0p
Clop
MOVEit
ransomware
reward
June 28
th
2023 at 18:59
Naked Security
UK hacker busted in Spain gets 5 years over Twitter hack and more
June 26
th
2023 at 18:35Β
UK hacker busted in Spain gets 5 years over Twitter hack and more
By
Naked Security writer
Not just that infamous Twitter hack, but SIM-swapping, stalking and swatting too...
Related tags
β
Cryptocurrency
Law
&
order
bust
Cybercrime
Twitter
hack
June 26
th
2023 at 18:35
Naked Security
Aussie PM says, βShut down your phone every 24 hours for 5 minsβ β but thatβs not enough on its own
June 23
rd
2023 at 16:10Β
Aussie PM says, βShut down your phone every 24 hours for 5 minsβ β but thatβs not enough on its own
By
Paul Ducklin
Don't treat rebooting your phone once a day as a cybersecurity talisman... here are 8 additional tips for better mobile phone security.
Related tags
β
Data
loss
Malware
Albanese
australia
modile
phone
tips
June 23
rd
2023 at 16:10
Naked Security
S3 Ep140: So you think you know ransomware?
June 22
nd
2023 at 16:48Β
S3 Ep140: So you think you know ransomware?
By
Paul Ducklin
Lots to learn this week - listen now! (Full transcript inside.)
Related tags
β
Law
&
order
Podcast
Vulnerability
Asus
Kim
Dotcom
megaupload
MOVEit
Naked
Security
Podcast
vulnerability
June 22
nd
2023 at 16:48
Naked Security
Apple patch fixes zero-day kernel hole reported by Kaspersky β update now!
June 22
nd
2023 at 00:36Β
Apple patch fixes zero-day kernel hole reported by Kaspersky β update now!
By
Paul Ducklin
Apple didn't use the words "Triangulation Trojan", but you probably will.
Related tags
β
Apple
Apple
Safari
iOS
OS
X
Vulnerability
Patch
Zero
Day
June 22
nd
2023 at 00:36
Naked Security
Beware bad passwords as attackers co-opt Linux servers into cybercrime
June 21
st
2023 at 19:50Β
Beware bad passwords as attackers co-opt Linux servers into cybercrime
By
Paul Ducklin
Did you prevent password-only logins on your SSH servers? On ALL of them? Are you sure about that?
Related tags
β
Botnet
Cryptocurrency
Malware
botnet
cryptojacking
DDoS
password
guessing
ssh
XMrig
zombie
malware
June 21
st
2023 at 19:50
Naked Security
βThe Ransomware Documentaryβ β brand new video series from Sophos starting now!
June 21
st
2023 at 18:00Β
βThe Ransomware Documentaryβ β brand new video series from Sophos starting now!
By
Sally Adam
Get the full 360-degree view of ransomware
Ransomware Documentary Graphic Theme_780x480 NS
Related tags
β
Ransomware
June 21
st
2023 at 18:00
Naked Security
ASUS warns router customers: Patch now, or block all inbound requests
June 20
th
2023 at 18:14Β
ASUS warns router customers: Patch now, or block all inbound requests
By
Paul Ducklin
"Do as we say, not as we do!" - The patches took ages to come out, but don't let that lure you into taking ages to install them.
Related tags
β
Vulnerability
Asus
Patch
rce
router
vulnerability
June 20
th
2023 at 18:14
Naked Security
Megaupload duo will go to prison at last, but Kim Dotcom fights onβ¦
June 19
th
2023 at 18:59Β
Megaupload duo will go to prison at last, but Kim Dotcom fights onβ¦
By
Paul Ducklin
One, sadly, has died, and two are heading to prison, but for Kim Dotcom, the saga goes on...
Related tags
β
Law
&
order
dotcom
file
locker
Kim
Dotcom
megaupload
June 19
th
2023 at 18:59
Naked Security
MOVEit mayhem 3: βDisable HTTP and HTTPS traffic immediatelyβ
June 15
th
2023 at 22:10Β
MOVEit mayhem 3: βDisable HTTP and HTTPS traffic immediatelyβ
By
Paul Ducklin
Twice more unto the breach... third patch tested and released, shut down web access until you've applied it
mi-1200
Related tags
β
Vulnerability
MOVEit
Progress
SQL
Injection
vulnerability
June 15
th
2023 at 22:10
Naked Security
S3 Ep139: Are password rules like running through rain?
June 15
th
2023 at 18:43Β
S3 Ep139: Are password rules like running through rain?
By
Paul Ducklin
Latest episode - listen now! (Full transcript inside.)
Related tags
β
Law
&
order
Malware
Microsoft
Podcast
bust
Cybercrime
hacking
malware
Naked
Security
Podcast
June 15
th
2023 at 18:43
Naked Security
Patch Tuesday fixes 4 critical RCE bugs, and a bunch of Office holes
June 13
th
2023 at 23:32Β
Patch Tuesday fixes 4 critical RCE bugs, and a bunch of Office holes
By
Paul Ducklin
No zero-days this month, if you ignore the Edge RCE hole patched last week
Related tags
β
Microsoft
Vulnerability
Office
Patch
Tuesday
sharepoint
vulnerability
June 13
th
2023 at 23:32
Naked Security
Gozi banking malware βIT chiefβ finally jailed after more than 10 years
June 13
th
2023 at 18:43Β
Gozi banking malware βIT chiefβ finally jailed after more than 10 years
By
Paul Ducklin
Gozi threesome from way back in the late 2000s and early 2010s now all charged, convicted and sentenced. The DOJ got there in the end...
Related tags
β
Data
loss
Law
&
order
Malware
bust
doj
Gozi
paunescu
June 13
th
2023 at 18:43
Naked Security
History revisited: US DOJ unseals Mt. Gox cybercrime charges
June 12
th
2023 at 16:58Β
History revisited: US DOJ unseals Mt. Gox cybercrime charges
By
Naked Security writer
Though the mills of the Law grind slowly/Yet they grind exceeding small/Though with patience they stand waiting/With exactness grind they all...
Related tags
β
Cryptocurrency
Law
&
order
bitcoin
bust
doj
mt
gox
June 12
th
2023 at 16:58
Naked Security
More MOVEit mitigations: new patches published for further protection
June 9
th
2023 at 21:54Β
More MOVEit mitigations: new patches published for further protection
By
Paul Ducklin
Good news... more patches, this time available proactively
Related tags
β
Data
loss
Vulnerability
CVE-2023-34362
MOVEit
Progress
June 9
th
2023 at 21:54
Naked Security
Thoughts on scheduled password changes (donβt call them rotations!)
June 9
th
2023 at 18:58Β
Thoughts on scheduled password changes (donβt call them rotations!)
By
Paul Ducklin
Does swapping your password regularly make it a better password?
Related tags
β
Privacy
passwords
June 9
th
2023 at 18:58
Naked Security
S3 Ep138: I like to MOVEit, MOVEit
June 8
th
2023 at 16:56Β
S3 Ep138: I like to MOVEit, MOVEit
By
Paul Ducklin
Backdoors, exploits, and Little Bobby Tables. Listen now! (Full transcript available...)
s3-ep138-1200
Related tags
β
Google
Google
Chrome
Microsoft
Microsoft
Edge
Podcast
Vulnerability
"Edge"
chrome
Gigabyte
MOVEit
Naked
Security
Podcast
Zero
Day
June 8
th
2023 at 16:56
Naked Security
Firefox 114 is out: No 0-days, but one fascinating βteachable momentβ bug
June 7
th
2023 at 19:59Β
Firefox 114 is out: No 0-days, but one fascinating βteachable momentβ bug
By
Paul Ducklin
With the right (or wrong, if you're on the right side of the fence) timing...
Related tags
β
Firefox
Mozilla
Vulnerability
CVE-2023-34414
Patches
vulnerability
June 7
th
2023 at 19:59
Naked Security
Chrome and Edge zero-day: βThis exploit is in the wildβ, so check your versions now
June 6
th
2023 at 18:28Β
Chrome and Edge zero-day: βThis exploit is in the wildβ, so check your versions now
By
Paul Ducklin
Chrome and Edge 0-days patched.
Related tags
β
Google
Google
Chrome
Microsoft
Microsoft
Edge
Vulnerability
"Edge"
chrome
CVE-2023-3079
type
confusion
vulnerability
Zero
Day
June 6
th
2023 at 18:28
Naked Security
MOVEit zero-day exploit used by data breach gangs: The how, the why, and what to doβ¦
June 5
th
2023 at 19:59Β
MOVEit zero-day exploit used by data breach gangs: The how, the why, and what to doβ¦
By
Paul Ducklin
Little Bobby Tables is back!
mi-1200
Related tags
β
Data
loss
Ransomware
Vulnerability
CVE-2023-34362
MOVEit
Progress
June 5
th
2023 at 19:59
Naked Security
Researchers claim Windows βbackdoorβ affects hundreds of Gigabyte motherboards
June 2
nd
2023 at 18:56Β
Researchers claim Windows βbackdoorβ affects hundreds of Gigabyte motherboards
By
Paul Ducklin
It's a backdoor, Jim, but not as we know it... here's a sober look at this issue.
Related tags
β
Vulnerability
firmware
Gigabyte
vulnerability
WPBT
June 2
nd
2023 at 18:56
Naked Security
S3 Ep137: 16th century crypto skullduggery
June 1
st
2023 at 16:45Β
S3 Ep137: 16th century crypto skullduggery
By
Paul Ducklin
Lots to learn, clearly explained in plain English... listen now! (Full transcript inside.)
s3-ep137-feat-1200
Related tags
β
Data
loss
Law
&
order
Podcast
Ransomware
Vulnerability
bust
crypto
Cryptography
CVE-2023-32784
Cybercrime
KeePass
oauth
June 1
st
2023 at 16:45
Naked Security
Serious Security: That KeePass βmaster password crackβ, and what we can learn from it
May 31
st
2023 at 19:39Β
Serious Security: That KeePass βmaster password crackβ, and what we can learn from it
By
Paul Ducklin
Here, in an admittedly discursive nutshell, is the fascinating story of CVE-2023-32784. (Short version: Don't panic.)
Related tags
β
Data
loss
CVE-2023-32784
KeePass
memory
management
ram
scraping
serious
security
May 31
st
2023 at 19:39
Naked Security
Serious Security: Verification is vital β examining an OAUTH login bug
May 30
th
2023 at 16:59Β
Serious Security: Verification is vital β examining an OAUTH login bug
By
Paul Ducklin
What good is a popup asking for your approval if an attacker can bypass it simply by suppressing it?
Related tags
β
Data
loss
Vulnerability
CVE-2023-28131
expo
oauth
vulnerability
May 30
th
2023 at 16:59
Naked Security
S3 Ep136: Navigating a manic malware maelstrom
May 25
th
2023 at 16:50Β
S3 Ep136: Navigating a manic malware maelstrom
By
Paul Ducklin
Latest episode - listen now. Full transcript inside...
Related tags
β
Denial
of
Service
Law
&
order
Malware
Podcast
bust
Cybercrime
hacking
Naked
Security
Podcast
PyPI
supply
chain
Uncategorized
May 25
th
2023 at 16:50
Naked Security
Ransomware tales: The MitM attack that really had a Man in the Middle
May 24
th
2023 at 17:59Β
Ransomware tales: The MitM attack that really had a Man in the Middle
By
Paul Ducklin
Another traitorous sysadmin story, this one busted by system logs that gave his game away...
Related tags
β
Uncategorized
bust
ransomware
May 24
th
2023 at 17:59
Naked Security
PyPI open-source code repository deals with manic malware maelstrom
May 23
rd
2023 at 18:45Β
PyPI open-source code repository deals with manic malware maelstrom
By
Paul Ducklin
Controlled outage used to keep malware marauders from gumming up the works. Learn what you can do to help in future...
Related tags
β
Malware
malware
PyPI
python
supply
chain
May 23
rd
2023 at 18:45
Naked Security
Phone scamming kingpin gets 13 years for running βiSpoofβ service
May 22
nd
2023 at 16:58Β
Phone scamming kingpin gets 13 years for running βiSpoofβ service
By
Naked Security writer
Site marketing video promised total anonymity, but that was a lie. 170 arrested already. Potentially 1000s more to follow.
ispoof-1200
Related tags
β
Data
loss
Law
&
order
Privacy
bust
iSpoof
NCA
May 22
nd
2023 at 16:58
Naked Security
Appleβs secret is out: 3 zero-days fixed, so be sure to patch now!
May 19
th
2023 at 01:02Β
Appleβs secret is out: 3 zero-days fixed, so be sure to patch now!
By
Paul Ducklin
All Apple users have zero-days that need patching, though some have more zero-days than others.
Related tags
β
Apple
Vulnerability
Exploit
iPhone
mac
vulnerability
May 19
th
2023 at 01:02
Naked Security
S3 Ep135: Sysadmin by day, extortionist by night
May 18
th
2023 at 18:48Β
S3 Ep135: Sysadmin by day, extortionist by night
By
Paul Ducklin
Laugh (sufficiently), learn (efficiently), and then let us know what you think in our comments (anonymously, if you wish)...
Related tags
β
Podcast
Naked
Security
Podcast
May 18
th
2023 at 18:48
Naked Security
US offers $10m bounty for Russian ransomware suspect outed in indictment
May 17
th
2023 at 18:40Β
US offers $10m bounty for Russian ransomware suspect outed in indictment
By
Naked Security writer
"Up to $10 million for information that leads to the arrest and/or conviction of this defendant."
Related tags
β
Law
&
order
Ransomware
babuk
bust
doj
Hive
lockbit
ransomware
May 17
th
2023 at 18:40
Naked Security
Belkin Wemo Smart Plug V2 β the buffer overflow that wonβt be patched
May 16
th
2023 at 17:59Β
Belkin Wemo Smart Plug V2 β the buffer overflow that wonβt be patched
By
Paul Ducklin
Yes, it's a buffer overflow bug. No, it's not going get fixed.
Related tags
β
belkin
Wemo
plug
May 16
th
2023 at 17:59
Naked Security
Zut alors! Raclage crapuleux! Clearview AI in 20% more trouble in France
May 15
th
2023 at 16:36Β
Zut alors! Raclage crapuleux! Clearview AI in 20% more trouble in France
By
Paul Ducklin
We asked you once, we told you twice, now we're ordering you for the third time...
Related tags
β
GDPR
compliance
Privacy
Clearview
Clearview
AI
CNIL
Data
Collection
May 15
th
2023 at 16:36
Naked Security
Whodunnit? Cybercrook gets 6 years for ransoming his own employer
May 12
th
2023 at 16:15Β
Whodunnit? Cybercrook gets 6 years for ransoming his own employer
By
Naked Security writer
Not just an active adversary, but a two-faced one, too.
Related tags
β
Data
loss
Law
&
order
doj
FBI
MDR
ransomware
zero
trust
May 12
th
2023 at 16:15
Naked Security
S3 Ep134: Itβs a PRIVATE key β the hint is in the name!
May 11
th
2023 at 14:54Β
S3 Ep134: Itβs a PRIVATE key β the hint is in the name!
By
Paul Ducklin
Latest episode - listen now! (Full transcript inside.)
Related tags
β
Podcast
Cybercrime
Naked
Security
Podcast
ransomware
May 11
th
2023 at 14:54
Naked Security
Bootkit zero-day fix β is this Microsoftβs most cautious patch ever?
May 10
th
2023 at 11:50Β
Bootkit zero-day fix β is this Microsoftβs most cautious patch ever?
By
Paul Ducklin
When blocking buggy bootup modules, you have to be really careful not to lock your keys inside the car...
Related tags
β
Uncategorized
May 10
th
2023 at 11:50
Naked Security
Low-level motherboard security keys leaked in MSI breach, claim researchers
May 9
th
2023 at 16:58Β
Low-level motherboard security keys leaked in MSI breach, claim researchers
By
Paul Ducklin
What can you do if someone steals your keys but you can't change the lock? We explain the dilemma in plain English.
May 9
th
2023 at 16:58
Naked Security
PHP Packagist supply chain poisoned by hacker βlooking for a jobβ
May 5
th
2023 at 16:59Β
PHP Packagist supply chain poisoned by hacker βlooking for a jobβ
By
Paul Ducklin
I pwned you! Gizza job! You know it makes sense!
Related tags
β
Vulnerability
Packagist
PHP
supply
chain
May 5
th
2023 at 16:59
Naked Security
S3 Ep133: Apple takes βtight-lippedβ to a whole new level
May 4
th
2023 at 20:59Β
S3 Ep133: Apple takes βtight-lippedβ to a whole new level
By
Paul Ducklin
Entertaining, educational, and all in plain English π§π
Related tags
β
Podcast
AMOS
Apple
mac
malware
Naked
Security
Podcast
passwords
May 4
th
2023 at 20:59
Naked Security
World Password Day: 2 + 2 = 4
May 4
th
2023 at 13:12Β
World Password Day: 2 + 2 = 4
By
Paul Ducklin
We've kept it short and simple, with no sermons, no judgmentalism, no tubthumping... and no BUY NOW buttons. Have a nice day!
Related tags
β
Privacy
WorldPasswordDay
passwords
fun
tips
May 4
th
2023 at 13:12
Naked Security
Tracked by hidden tags? Apple and Google unite to propose safety and security standardsβ¦
May 3
rd
2023 at 19:58Β
Tracked by hidden tags? Apple and Google unite to propose safety and security standardsβ¦
By
Paul Ducklin
To bleat, or not to bleat, that is the question.
Related tags
β
Apple
Google
Privacy
AirTag
cyberstalking
May 3
rd
2023 at 19:58
Naked Security
Apple delivers first-ever Rapid Security Response βcyberattackβ patch β leaves some users confused
May 1
st
2023 at 20:46Β
Apple delivers first-ever Rapid Security Response βcyberattackβ patch β leaves some users confused
By
Paul Ducklin
Just when we'd got used to three-numbered versions, such as "13.3.1", here comes an update suffix, bringing you "13.3.1 (a)"...
Related tags
β
Uncategorized
Apple
Patch
Rapid
Security
Response
Zero
Day
May 1
st
2023 at 20:46
Naked Security
Mac malware-for-hire steals passwords and cryptocoins, sends βcrime logsβ via Telegram
April 30
th
2023 at 01:23Β
Mac malware-for-hire steals passwords and cryptocoins, sends βcrime logsβ via Telegram
By
Paul Ducklin
These malware peddlers are specifically going after Mac users. The hint's in the name: "Atomic macOS Stealer", or AMOS for short.
Related tags
β
Apple
Brave
Firefox
Google
Chrome
Microsoft
Edge
Opera
Yandex
AMOS
Cybercrime
mac
malware
April 30
th
2023 at 01:23
Naked Security
Google wins court order to force ISPs to filter botnet traffic
April 28
th
2023 at 19:59Β
Google wins court order to force ISPs to filter botnet traffic
By
Naked Security writer
CryptBot criminals are alleged to have plundered browser passwords, illicitly-snapped screenshots, cryptocurrency account data, and more.
Related tags
β
Google
Law
&
order
bust
CryptBot
racketeering
Scam
April 28
th
2023 at 19:59
Naked Security
S3 Ep132: Proof-of-concept lets anyone hack at will
April 27
th
2023 at 16:55Β
S3 Ep132: Proof-of-concept lets anyone hack at will
By
Paul Ducklin
When Doug says, "Happy Remote Code Execution Day, Duck"... it's irony. For the avoidance of all doubt :-)
Related tags
β
Google
Google
Chrome
Microsoft
Microsoft
Edge
Podcast
Privacy
Vulnerability
"Edge"
chrome
Cybercrime
PaperCut
April 27
th
2023 at 16:55
Naked Security
Google leaking 2FA secrets β researchers advise against new βaccount syncβ feature for now
April 26
th
2023 at 17:59Β
Google leaking 2FA secrets β researchers advise against new βaccount syncβ feature for now
By
Paul Ducklin
You waited 13 years for this feature in Google Authenticator. Now researchers are advising you to wait a while longer, just in case...
Related tags
β
2-factor
Authentication
Google
April 26
th
2023 at 17:59
Naked Security
PaperCut security vulnerabilities under active attack β vendor urges customers to patch
April 25
th
2023 at 17:53Β
PaperCut security vulnerabilities under active attack β vendor urges customers to patch
By
Paul Ducklin
If you have the product, but you haven't patched - well, the crooks have now landed, so please don't delay. Do it today...
Related tags
β
Vulnerability
CVE-2023-27350
CVE-2023-27351
Exploit
PaperCut
rce
vulnerability
April 25
th
2023 at 17:53
Naked Security
Double zero-day in Chrome and Edge β check your versions now!
April 24
th
2023 at 19:59Β
Double zero-day in Chrome and Edge β check your versions now!
By
Paul Ducklin
Wouldn't it be handy if there were a single version number to check for in every Chromium-based browser, on every supported platform?
Related tags
β
Google
Google
Chrome
Microsoft
Microsoft
Edge
Vulnerability
"Edge"
chrome
Chromium
Patch
Zero
Day
April 24
th
2023 at 19:59
Naked Security
VMware patches break-and-enter hole in logging tools: update now!
April 21
st
2023 at 17:58Β
VMware patches break-and-enter hole in logging tools: update now!
By
Paul Ducklin
You know jolly well/What we're going to say/And that's "Do not delay/Simply do it today."
Related tags
β
Vulnerability
Aria
CVE-2023-20864
VMware
April 21
st
2023 at 17:58
Naked Security
S3 Ep131: Can you really have fun with FORTRAN?
April 20
th
2023 at 17:55Β
S3 Ep131: Can you really have fun with FORTRAN?
By
Paul Ducklin
Loop-the-loop in this week's episode. Entertaining, educational and all in plain English. Transcript inside.
Related tags
β
Apple
Google
Law
&
order
Podcast
2FA
data
breach
juicejacking
Naked
Security
Podcast
rogue
apps
April 20
th
2023 at 17:55
Naked Security
Ex-CEO of breached pyschotherapy clinic gets prison sentence for bad data security
April 18
th
2023 at 16:56Β
Ex-CEO of breached pyschotherapy clinic gets prison sentence for bad data security
By
Paul Ducklin
Did the sentence fit the crime? Read the backstory, and then have your say in our comments! (You may post anonymously.)
Related tags
β
Data
loss
Law
&
order
bust
data
breach
extortion
Finland
GDPR
April 18
th
2023 at 16:56
Naked Security
FBI and FCC warn about βJuicejackingβ β but just how useful is their advice?
April 17
th
2023 at 18:17Β
FBI and FCC warn about βJuicejackingβ β but just how useful is their advice?
By
Paul Ducklin
USB charging stations - can you trust them? What are the real risks, and how can you keep your data safe on the road?
Related tags
β
Data
loss
Law
&
order
Privacy
Android
Apple
FBI
FCC
Google
ios
juicejacking
April 17
th
2023 at 18:17
Naked Security
S3 Ep130: Open the garage bay doors, HAL [Audio + Text]
April 13
th
2023 at 16:54Β
S3 Ep130: Open the garage bay doors, HAL [Audio + Text]
By
Paul Ducklin
I'm sorry, Dave. I'm afraid I can't... errr, no, hang on a minute, I can do that easily! Worldwide! Right now!
Related tags
β
Apple
IoT
Microsoft
Podcast
Vulnerability
Cybercrime
exoploit
hacking
iot
Naked
Security
Podcast
Zero
Day
April 13
th
2023 at 16:54
Naked Security
Patch Tuesday: Microsoft fixes a zero-day, and two curious bugs that take the Secure out of Secure Boot
April 12
th
2023 at 18:57Β
Patch Tuesday: Microsoft fixes a zero-day, and two curious bugs that take the Secure out of Secure Boot
By
Paul Ducklin
Is Secure Boot without the Secure just "Boot"?
Related tags
β
Microsoft
Vulnerability
bootkit
Exploit
Patch
Tuesday
Secure
Boot
Zero
Day
April 12
th
2023 at 18:57
Naked Security
Attention gamers! Motherboard maker MSI admits to breach, issues βrogue firmwareβ alert
April 11
th
2023 at 18:58Β
Attention gamers! Motherboard maker MSI admits to breach, issues βrogue firmwareβ alert
By
Paul Ducklin
Stealing private keys is like getting hold of a medieval monarch's personal signet ring... you get to put an official seal on treasonous material.
Related tags
β
Malware
Ransomware
blackmail
data
breach
extortion
MSI
private
key
ransomware
supply
chain
April 11
th
2023 at 18:58
Naked Security
Apple zero-day spyware patches extended to cover older Macs, iPhones and iPads
April 10
th
2023 at 20:20Β
Apple zero-day spyware patches extended to cover older Macs, iPhones and iPads
By
Paul Ducklin
That double-whammy Apple browser-to-kernel spyware bug combo we wrote up last week? Turns out it applies to all supported Macs and iDevices - patch now!
Related tags
β
Apple
iOS
OS
X
Vulnerability
Exploit
kernel
bug
rce
spyware
April 10
th
2023 at 20:20
Load more articles