Login
FreshRSS
Login
About FreshRSS
Main stream
Favourites (0)
Security
/r/netsec - Information Security News & Discussion
Dark Reading:
http://blog.trendmicro.com/feed
ICS-CERT Alert Feed
Infosec Island Latest Articles
InfoSec Resources
Krebs on Security
McAfee Blogs
Naked Security
News ≈ Packet Storm
Paul's Security Weekly
SANS Internet Storm Center, InfoCON: green
Security – Cisco Blog
SecurityFocus News
The first stop for security news | Threatpost
The Hacker News
The Register - Security
Threatpost | The first stop for security news
Troy Hunt
Verisign Blog
WeLiveSecurity
WIRED
ZDNet | security RSS
Tools
Security Tool Files ≈ Packet Storm
ToolsWatch.org – The Hackers Arsenal Tools Portal
Vulnerabilities
Advisory Files ≈ Packet Storm
Exploit-DB Updates
Full Disclosure
SecurityFocus Vulnerabilities
There are new available articles, click to refresh the page.
Before yesterday
Naked Security
Naked Security
Performance and security clash yet again in “Collide+Power” attack
August 2
nd
2023 at 23:36
Performance and security clash yet again in “Collide+Power” attack
By
Paul Ducklin
It's a real vulnerability, but the data leakage rate can be as low as... let's just say that an IMAX-quality copy of the new "Oppenheimer" movie could take you 4 billion years to exfiltrate.
Related tags
❌
Data
loss
Vulnerability
amd
Collide+Power
CVE-2023-20538
intel
August 2
nd
2023 at 23:36
Naked Security
Apple silently pulls its latest zero-day update – what now?
July 11
th
2023 at 15:21
Apple silently pulls its latest zero-day update – what now?
By
Paul Ducklin
Previously, we said "do it today", but now we're forced back on: "Do not delay; do it as soon as Apple and your device will let you."
Related tags
❌
Apple
Apple
Safari
iOS
OS
X
Rapid
Security
Response
vulnerability
Zero
Day
July 11
th
2023 at 15:21
Naked Security
Apple delivers first-ever Rapid Security Response “cyberattack” patch – leaves some users confused
May 1
st
2023 at 20:46
Apple delivers first-ever Rapid Security Response “cyberattack” patch – leaves some users confused
By
Paul Ducklin
Just when we'd got used to three-numbered versions, such as "13.3.1", here comes an update suffix, bringing you "13.3.1 (a)"...
Related tags
❌
Uncategorized
Apple
Patch
Rapid
Security
Response
Zero
Day
May 1
st
2023 at 20:46
Naked Security
FBI and FCC warn about “Juicejacking” – but just how useful is their advice?
April 17
th
2023 at 18:17
FBI and FCC warn about “Juicejacking” – but just how useful is their advice?
By
Paul Ducklin
USB charging stations - can you trust them? What are the real risks, and how can you keep your data safe on the road?
Related tags
❌
Data
loss
Law
&
order
Privacy
Android
Apple
FBI
FCC
Google
ios
juicejacking
April 17
th
2023 at 18:17
Naked Security
Google Pixel phones had a serious data leakage bug – here’s what to do!
March 21
st
2023 at 17:58
Google Pixel phones had a serious data leakage bug – here’s what to do!
By
Paul Ducklin
What if the "safe" images you shared after carefully cropping them... had some or all of the "unsafe" pixels left behind anyway?
Related tags
❌
Android
Data
loss
Google
aCropalypse
CVE-2023-20136
image
leak
Pixel
March 21
st
2023 at 17:58
Naked Security
Dangerous Android phone 0-day bugs revealed – patch or work around them now!
March 17
th
2023 at 19:56
Dangerous Android phone 0-day bugs revealed – patch or work around them now!
By
Paul Ducklin
Despite its usually inflexible 0-day disclosure policy, Google is keeping four mobile modem bugs semi-secret due to likely ease of exploitation.
Related tags
❌
Android
Google
Samsung
Vulnerability
Patches
rce
vulnerability
March 17
th
2023 at 19:56
Naked Security
Inside a scammers’ lair: Ukraine busts 40 in fake bank call-centre raid
January 3
rd
2023 at 17:03
Inside a scammers’ lair: Ukraine busts 40 in fake bank call-centre raid
By
Naked Security writer
When someone calls you up to warn you that your bank account is under attack - it's true, because THAT VERY PERSON is the one attacking you!
Related tags
❌
Cryptocurrency
Data
loss
Law
&
order
Caller
ID
Cybercrime
fake
call
scamming
January 3
rd
2023 at 17:03
Naked Security
S3 Ep109: How one leaked email password could drain your business [Audio + Transcript]
November 17
th
2022 at 17:52
S3 Ep109: How one leaked email password could drain your business [Audio + Transcript]
By
Paul Ducklin
Latest episode - listen now! Cybersecurity news plus loads of great advice...
Related tags
❌
Law
&
order
Podcast
Vulnerability
Android
Apple
Cybercrime
Naked
Security
Podcast
November 17
th
2022 at 17:52
Naked Security
Black Friday and retail season – watch out for PayPal “money request” scams
November 17
th
2022 at 12:45
Black Friday and retail season – watch out for PayPal “money request” scams
By
Paul Ducklin
Don't let a keen eye for bargains lead you into risky online behaviour...
Related tags
❌
Data
loss
Privacy
Black
Friday
PayPal
Scam
November 17
th
2022 at 12:45
Naked Security
Dangerous SIM-swap lockscreen bypass – update Android now!
November 11
th
2022 at 19:59
Dangerous SIM-swap lockscreen bypass – update Android now!
By
Paul Ducklin
A bit like leaving the front door keys under the doormat...
Related tags
❌
Android
Google
CVE-2022-20465
hacking
lockscreen
pypass
SIM
November 11
th
2022 at 19:59
Naked Security
WhatsApp goes after Chinese password scammers via US court
October 7
th
2022 at 18:14
WhatsApp goes after Chinese password scammers via US court
By
Paul Ducklin
If you can't beat 'em, sue 'em!
Related tags
❌
Malware
Android
Google
Play
malware
Meta
scammers
WhatsApp
October 7
th
2022 at 18:14
Naked Security
LastPass source code breach – incident response report released
September 19
th
2022 at 18:59
LastPass source code breach – incident response report released
By
Paul Ducklin
Wondering how you'd handle a data breach report if the worst happened to you? Here's a useful example.
Related tags
❌
Data
loss
data
breach
incident
response
LastPass
password
password
manager
zero
trust
September 19
th
2022 at 18:59
Naked Security
7 cybersecurity tips for your summer vacation!
July 15
th
2022 at 18:23
7 cybersecurity tips for your summer vacation!
By
Paul Ducklin
Here you go - seven thoughtful cybersecurity tips to help you travel safely...
Related tags
❌
Privacy
holiday
spycam
surveillance
travel
vacation
Wi-fi
July 15
th
2022 at 18:23
Naked Security
SSNDOB Market domains seized, identity theft “brokerage” shut down
June 8
th
2022 at 14:53
SSNDOB Market domains seized, identity theft “brokerage” shut down
By
Paul Ducklin
The online identity "brokerage" SSNDOB Market didn't want people to be in any doubt what it was selling.
Related tags
❌
Law
&
order
Privacy
bust
doj
identity
theft
SSNDOB
takedown
June 8
th
2022 at 14:53
Naked Security
Android monthly updates are out – critical bugs found in critical places!
May 4
th
2022 at 15:54
Android monthly updates are out – critical bugs found in critical places!
By
Paul Ducklin
Android May 2022 updates are out - with some critical fixes in some critical places. Learn more...
Related tags
❌
Android
Google
Vulnerability
critical
Patch
update
vulnerability
May 4
th
2022 at 15:54
Naked Security
S3 Ep77: Bugs, busts and old-school PDP-11 hacking [Podcast]
April 7
th
2022 at 12:24
S3 Ep77: Bugs, busts and old-school PDP-11 hacking [Podcast]
By
Paul Ducklin
Latest episode - listen now! Cybersecurity news and advice in plain English.
Related tags
❌
Android
Apple
Firefox
Google
iOS
Law
&
order
Mozilla
OS
X
Podcast
Privacy
Vulnerability
Cybercrime
data
breach
lapsus
Naked
Security
Podcast
Patches
vulnerability
April 7
th
2022 at 12:24
Naked Security
Google’s monthly Android updates patch numerous “get root” holes
April 5
th
2022 at 14:44
Google’s monthly Android updates patch numerous “get root” holes
By
Paul Ducklin
Get the update now... if it's available for your phone. Here's how to check.
android-1200
Related tags
❌
Android
Google
Vulnerability
Android
10
EoP
Patch
vulnerability
April 5
th
2022 at 14:44
Naked Security
S3 Ep74: Cybercrime busts, Apple patches, Pi Day, and disconnect effects [Podcast]
March 17
th
2022 at 13:32
S3 Ep74: Cybercrime busts, Apple patches, Pi Day, and disconnect effects [Podcast]
By
Paul Ducklin
Latest episode - listen now!
Related tags
❌
Apple
Law
&
order
Podcast
Vulnerability
"vulnerability"
PiDay
Cybercrime
Naked
Security
Podcast
Pi
March 17
th
2022 at 13:32
Naked Security
S3 Ep73: Ransomware with a difference, dirty Linux pipes, and much more [Podcast + Transcript]
March 10
th
2022 at 19:37
S3 Ep73: Ransomware with a difference, dirty Linux pipes, and much more [Podcast + Transcript]
By
Paul Ducklin
Latest episode - listen now!
Related tags
❌
Podcast
adafruit
CVE-2022-0847
Cybercrime
Dirty
Pipe
Firefox
hacking
Linux
Mozilla
Naked
Security
Podcast
NVIDIA
ransomware
March 10
th
2022 at 19:37
Naked Security
“Dirty Pipe” Linux kernel bug lets anyone write to any file
March 8
th
2022 at 19:37
“Dirty Pipe” Linux kernel bug lets anyone write to any file
By
Paul Ducklin
Even read-only files can be written to, leading to a dangerously general purpose elevation-of-privilege attack.
pipe-1200
Related tags
❌
Android
Google
Linux
Vulnerability
CVE-2022-0847
EoP
file
overwrite
kernel
splice
vulnerability
March 8
th
2022 at 19:37
Naked Security
Ransomware with a difference: “Derestrict your software, or else!”
March 2
nd
2022 at 16:33
Ransomware with a difference: “Derestrict your software, or else!”
By
Paul Ducklin
"Change your code to improve cryptomining"... or we'll dump 1TB of stolen secrets.
Related tags
❌
Security
threats
data
breach
extortion
hacking
lapsus
NVIDIA
ransomware
March 2
nd
2022 at 16:33
Naked Security
Coronavirus SMS scam offers home PCR testing devices – don’t fall for it!
January 28
th
2022 at 23:58
Coronavirus SMS scam offers home PCR testing devices – don’t fall for it!
By
Paul Ducklin
Free home PCR devices would be technological marvels, and really useful, too. But there aren't any...
Related tags
❌
Phishing
Security
threats
coronavirus
COVID-19
NHS
Scam
SMS
January 28
th
2022 at 23:58
Naked Security
SFW! The Top N Cybersecurity Stories of 2021 (for small positive integer values of N)
December 24
th
2021 at 17:44
SFW! The Top N Cybersecurity Stories of 2021 (for small positive integer values of N)
By
Paul Ducklin
Happy Holidays! Our Top N stories, all totally SFW!
Related tags
❌
Security
leadership
Security
threats
2018
US
State
of
Cybercrime
Cybercrime
cybersecurity
Happy
Holidays
Top
3
December 24
th
2021 at 17:44
Naked Security
Log4Shell: The Movie… a short, safe visual tour for work and home
December 20
th
2021 at 13:20
Log4Shell: The Movie… a short, safe visual tour for work and home
By
Paul Ducklin
Be happy that your sysadmins are taking one (three, actually!) for the team right now... here's why!
Related tags
❌
Video
CVE-2021-44228
CVE-2021-45046
CVE-2021-45105
December 20
th
2021 at 13:20
Naked Security
US government securities watchdog spoofed by investment scammers – don’t fall for it!
November 24
th
2021 at 19:57
US government securities watchdog spoofed by investment scammers – don’t fall for it!
By
Paul Ducklin
Those numbers that show up on your phone to tell you who's calling? Treat them as SUGGESTIONS, never as PROOF.
Related tags
❌
Data
loss
Privacy
Caller
ID
CLI
phone
scammers
pretexting
scammers
SEC
Social
Engineering
November 24
th
2021 at 19:57
Naked Security
Black Friday and Cyber Monday – here’s what you REALLY need to do!
November 22
nd
2021 at 19:52
Black Friday and Cyber Monday – here’s what you REALLY need to do!
By
Paul Ducklin
The world fills up with cybersecurity tips every year when Black Friday comes round. But what about the rest of the year?
Related tags
❌
Malware
Phishing
Black
Friday
Cyber
Monday
cybersecurity
November 22
nd
2021 at 19:52
Naked Security
Europol announces “targeting” of 12 suspects in ransomware attacks
October 29
th
2021 at 23:22
Europol announces “targeting” of 12 suspects in ransomware attacks
By
Naked Security writer
More anti-ransomware activity by law enforcement, this time in Switzerland and Ukraine.
Related tags
❌
Law
&
order
Ransomware
Europol
ransomware
Sophos
Rapid
Response
October 29
th
2021 at 23:22
Naked Security
REvil ransomware gang allegedly forced offline by law enforcement counterattacks
October 22
nd
2021 at 14:03
REvil ransomware gang allegedly forced offline by law enforcement counterattacks
By
Paul Ducklin
One down. Lots more to go. Here's what to do...
Related tags
❌
Law
&
order
Ransomware
Darkside
FBI
law
enforcement
ransomware
revil
October 22
nd
2021 at 14:03
There are no more articles
✓
Mark all as read