SSNDOB Market domains seized, identity theft “brokerage” shut down

By Paul Ducklin — June 8^th 2022 at 14:53

The online identity "brokerage" SSNDOB Market didn't want people to be in any doubt what it was selling.

Naked Security

S3 Ep83: Cracking passwords, patching Firefox, and Apple vulns [Podcast]

By Paul Ducklin — May 19^th 2022 at 13:56

Latest episode - listen now!

Naked Security

He sold cracked passwords for a living – now he’s serving 4 years in prison

By Paul Ducklin — May 13^th 2022 at 18:31

Crooks don't need a password for every user on your network to break in and wreak havoc. One could be enough...

Naked Security

Ransomware Survey 2022 – like the Curate’s Egg, “good in parts”

By Paul Ducklin — April 27^th 2022 at 15:22

You might not like the headline statistics in this year's ransomware report... but that makes it even more important to take a look!

Naked Security

S3 Ep79: Chrome hole, a bad place for a cybersecurity holiday, and crypto-dodginess [Podcast]

By Paul Ducklin — April 21^st 2022 at 13:41

Do you know your Adam Osborne from your John Osbourne? Your Z80 from your 6502? Latest episode - listen now!

Naked Security

US cryptocurrency coder gets 5 years for North Korea sanctions busting

By Naked Security writer — April 13^th 2022 at 15:52

Cryptocurrency expert didn't take "No" for an answer when the US authorities said he couldn't pursue cryptocoin opps in North Korea.

Naked Security

S3 Ep77: Bugs, busts and old-school PDP-11 hacking [Podcast]

By Paul Ducklin — April 7^th 2022 at 12:24

Latest episode - listen now! Cybersecurity news and advice in plain English.

Naked Security

Serious Security: Darkweb drugs market Hydra taken offline by German police

By Paul Ducklin — April 6^th 2022 at 16:22

Why are Tor sites hard to locate and therefore difficult to take down? We explain in plain English...

Naked Security

LAPSUS$ hacks continue despite two hacker suspects in court

By Paul Ducklin — April 4^th 2022 at 21:36

Do you know where in your company to report security anomalies? If you receive such reports, do you have an efficient way to process them?

Naked Security

S3 Ep76: Deadbolt, LAPSUS$, Zlib, and a Chrome 0-day [Podcast]

By Paul Ducklin — March 31^st 2022 at 13:38

Latest episode - listen now!

Naked Security

UK police arrest 7 hacking suspects – have they bust the LAPSUS$ gang?

By Naked Security writer — March 25^th 2022 at 01:48

Seven alleged hackers have been arrested in the UK. But who are they, and which hacking crew are they from?

Naked Security

S3 Ep74: Cybercrime busts, Apple patches, Pi Day, and disconnect effects [Podcast]

By Paul Ducklin — March 17^th 2022 at 13:32

Latest episode - listen now!

Naked Security

Alleged Kaseya ransomware attacker arrives in Texas for trial

By Naked Security writer — March 11^th 2022 at 14:59

The US Independence Day weekend of 2021 wasn't much of a holiday for cybersecurity staff. That was when the Kaseya attack unfolded...

Naked Security

S3 Ep69: WordPress woes, Wormhole holes, and a Microsoft change of heart [Podcast + Transcript]

By Paul Ducklin — February 10^th 2022 at 01:15

Latest episode - listen now!

Naked Security

Self-styled “Crocodile of Wall Street” arrested with husband over Bitcoin megaheist

By Naked Security writer — February 9^th 2022 at 14:44

The cops say they've recovered 80% of a $72 million cryptocoin heist... but the recovered funds alone are now worth over $4 billion!

Naked Security

Alleged carder gang mastermind and three acolytes under arrest in Russia

By Naked Security writer — January 24^th 2022 at 14:14

The motto of the gang was "In Fraud We Trust", and they went by a dizzying range of online nicknames.

Naked Security

S3 Ep66: Cybercrime busts, wormable Windows, and the crisis of featuritis [Podcast + Transcript]

By Paul Ducklin — January 20^th 2022 at 17:28

Latest epsiode - listen now!

Naked Security

Romance scammer who targeted 670 women gets 28 months in jail

By Paul Ducklin — January 17^th 2022 at 14:13

Found love online? Sending them money? Friends and family warning you it could be a scam? Don't be too quick to dismiss their concerns...

Naked Security

FTC threatens “legal action” over unpatched Log4j and other vulns

By Paul Ducklin — January 5^th 2022 at 19:37

Remember the Equifax breach? Remember the $700m penalty? In case you'd forgotten, here's the FTC to refresh your memory!

Naked Security

Plundered bitcoins recovered by FBI – all 3,879-and-one-sixth of them!

By Paul Ducklin — December 22^nd 2021 at 17:57

Phew! An audacious crime... that didn't work out.

Naked Security

S3 Ep62: The S in IoT stands for security (and much more) [Podcast+Transcript]

By Paul Ducklin — December 9^th 2021 at 17:40

Listen now or read as an article! (Full transcript inside.)

Naked Security

S3 Ep61: Call scammers, cloud insecurity, and facial recognition creepiness [Podcast+Transcript]

By Paul Ducklin — December 2^nd 2021 at 20:50

Latest episode - listen now!

Naked Security

IoT devices must “protect consumers from cyberharm”, says UK government

By Paul Ducklin — December 2^nd 2021 at 19:10

"Must be at least THIS tall to go on ride" seems to be the starting point. Too little, too late? Or better than nothing?

Naked Security

Clearview AI face-matching service set to be fined over $20m

By Paul Ducklin — November 30^th 2021 at 19:13

Scraping data for a facial recognition service? "That's unlawful", concluded both the British and the Australians.

Naked Security

S3 Ep59: Emotet, an FBI hoax, Samba bugs, and a hijackable suitcase [Podcast]

By Paul Ducklin — November 18^th 2021 at 15:00

Latest episode - listen now!

Naked Security

Emotet malware: “The report of my death was an exaggeration”

By Paul Ducklin — November 16^th 2021 at 14:13

"Old malware rarely dies." The best way to predict the future is to look at the past... if it worked before, it will probably work again.

Naked Security

FBI email hack spreads fake security alerts. Here’s what to do…

By Naked Security writer — November 13^th 2021 at 20:50

Fake warnings and false accusations - it's a "call to distraction"

Naked Security

S3 Ep58: Faces on Facebook, scams that pose as complaints, and a Kaseya bust [Podcast]

By Paul Ducklin — November 11^th 2021 at 17:41

Latest epsiode - listen now!

Naked Security

Kaseya ransomware suspect nabbed in Poland, $6m seized from absent colleague

By Naked Security writer — November 8^th 2021 at 22:37

Suspects nabbed, millions seized, in ransomware busts across the globe.

Naked Security

S3 Ep57: Europol v. Ransomware, Shrootless bug, and Linux browser flamewars [Podcast]

By Paul Ducklin — November 4^th 2021 at 17:46

Latest episode - listen now!

Naked Security

Europol announces “targeting” of 12 suspects in ransomware attacks

By Naked Security writer — October 29^th 2021 at 23:22

More anti-ransomware activity by law enforcement, this time in Switzerland and Ukraine.

Naked Security

S3 Ep56: Cryptotrading rodent, ransomware hackback, and a Docusign phish [Podcast]

By Paul Ducklin — October 28^th 2021 at 18:45

Latest episode - listen now! Serious security explained with personality in plain English.

ns-1200-logo-podcast-with-mic-and-rodent-emoji

Naked Security

REvil ransomware gang allegedly forced offline by law enforcement counterattacks

By Paul Ducklin — October 22^nd 2021 at 14:03

One down. Lots more to go. Here's what to do...