Login
FreshRSS
Login
Naked Security
OpenSSL issues a bugfix for the previous bugfix
By
Paul Ducklin
β June 24
th
2022 at 15:32
Fortunately, it's not a major bugfix, which means it's easy to patch and can teach us all some useful lessons.
Naked Security
Poisoned Python and PHP packages purloin passwords for AWS access
By
Paul Ducklin
β May 24
th
2022 at 23:04
More supply chain trouble - this time with clear examples so you can learn how to spot this stuff yourself.
Naked Security
Clearview AI face-matching service fined a lot less than expected
By
Paul Ducklin
β May 23
rd
2022 at 13:01
The fine has finally gone through... but it's less than 45% of what was originally proposed.
eleceye-1200
Naked Security
Pwn2Own hacking schedule released β Windows and Linux are top targets
By
Paul Ducklin
β May 18
th
2022 at 13:04
What's better? Disclose early, patch fast? Or dig deep, disclose in full, patch more slowly?
Naked Security
Colonial Pipeline facing $1,000,000 fine for poor recovery plans
By
Paul Ducklin
β May 10
th
2022 at 16:59
How good is your cybersecurity? Are you making the same mistakes as lots of other people? Here's some real-life advice...
Naked Security
Beanstalk cryptocurrency heist: scammer votes himself all the money
By
Paul Ducklin
β April 19
th
2022 at 16:00
Voting safeguards based on commuity collateral don't work if one person can use a momentary loan to "become" 75% of the community.
Naked Security
Yet another Chrome zero-day emergency update β patch now!
By
Paul Ducklin
β April 16
th
2022 at 00:33
The third emergency Chrome 0-day in three months - the first one was exploited by North Korea, so you might as well get this one ASAP.
Naked Security
S3 Ep78: Darkweb hydra, Ruby, quantum computing, and a robot revolution [Podcast]
By
Paul Ducklin
β April 14
th
2022 at 13:39
Latest episode - listen now!
Naked Security
OpenSSH goes Post-Quantum, switches to qubit-busting crypto by default
By
Paul Ducklin
β April 11
th
2022 at 16:58
Useful quantum computers might not actually be possible. But what if they are? And what if they arrive, say, tomorrow?
cat-1200
Naked Security
Web vendor CafePress fined $500,000 for giving cybersecurity a low value
By
Paul Ducklin
β March 21
st
2022 at 16:55
Just because you're the victim of a cybercrime doesn't let you off your cybersecurity obligations
Naked Security
Beware bogus Betas β cryptocoin scammers abuse Appleβs TestFlight system
By
Paul Ducklin
β March 16
th
2022 at 15:49
"Install this moneymaking app" - this one is so special that it isn't available on Google Play or the App Store!
Naked Security
Happy #PiDay β even if you arenβt in North America!
By
Paul Ducklin
β March 14
th
2022 at 23:59
There is a cybersecurity angle here - but you will need to read right to the end to find it :-)
Naked Security
Cryptocoin ATMs ruled illegal β βShut down at onceβ, says regulator
By
Paul Ducklin
β March 14
th
2022 at 17:51
If you live in the UK and hadn't yet heard of cryptocoin ATMs... it's too late now!
Naked Security
S3 Ep70: Bitcoin, billing blunders, and 0-day after 0-day after 0-day [Podcast + Transcript]
By
Paul Ducklin
β February 17
th
2022 at 17:12
Latest episode - listen and learn!
Naked Security
Apple zero-day drama for Macs, iPhones and iPads β patch now!
By
Paul Ducklin
β February 11
th
2022 at 14:25
Sudden update! Zero-day browser hole! Drive-by malware danger! Patch Apple laptops and phones now...
apple-1200
Naked Security
Self-styled βCrocodile of Wall Streetβ arrested with husband over Bitcoin megaheist
By
Naked Security writer
β February 9
th
2022 at 14:44
The cops say they've recovered 80% of a $72 million cryptocoin heist... but the recovered funds alone are now worth over $4 billion!
Naked Security
Wormhole cryptotrading company turns over $340,000,000 to criminals
By
Paul Ducklin
β February 4
th
2022 at 17:38
It was the best of blockchains, it was the worst of blockchains... as Charles Dickens might have said.
Naked Security
Coronavirus SMS scam offers home PCR testing devices β donβt fall for it!
By
Paul Ducklin
β January 28
th
2022 at 23:58
Free home PCR devices would be technological marvels, and really useful, too. But there aren't any...
Naked Security
Apple fixes Safari data leak (and patches a zero-day!) β update now
By
Paul Ducklin
β January 27
th
2022 at 21:09
That infamous "supercookie" bug in Safari has now been fixed. Oh, and there was a zero-day kernel hole as well.
apple-1200
Naked Security
Cryptocoin broker Crypto.com says 2FA bypass led to $35m theft
By
Paul Ducklin
β January 21
st
2022 at 16:25
The company has put out a brief security report that summarises the 'what', but not yet the 'how' or 'why'.
Naked Security
JavaScript developer destroys own projects in supply chain βlessonβ
By
Paul Ducklin
β January 11
th
2022 at 00:54
Two popular open source JavaScript packages recently got "hacked" in a symbolic gesture by the original project creator.
Naked Security
Plundered bitcoins recovered by FBI β all 3,879-and-one-sixth of them!
By
Paul Ducklin
β December 22
nd
2021 at 17:57
Phew! An audacious crime... that didn't work out.
Naked Security
S3 Ep63: Log4Shell (what else?) and Apple kernel bugs [Podcast+Transcript]
By
Paul Ducklin
β December 16
th
2021 at 17:41
Latest episode - listen now! (Yes, there are plenty of critical things to go along with Log4Shell.)
Naked Security
Apple security updates are out β and not a Log4Shell mention in sight
By
Paul Ducklin
β December 14
th
2021 at 12:55
Get 'em while they're hot!
Naked Security
Cryptocurrency startup fails to subtract before adding, loses $31m
By
Paul Ducklin
β December 6
th
2021 at 19:50
Think of a number, any number. Take away 42. Add 42 back in. Then pretend you didn't take away 42. How much is left?
Naked Security
S3 Ep61: Call scammers, cloud insecurity, and facial recognition creepiness [Podcast+Transcript]
By
Paul Ducklin
β December 2
nd
2021 at 20:50
Latest episode - listen now!
Naked Security
Clearview AI face-matching service set to be fined over $20m
By
Paul Ducklin
β November 30
th
2021 at 19:13
Scraping data for a facial recognition service? "That's unlawful", concluded both the British and the Australians.
Naked Security
S3 Ep60: Exchange exploit, GoDaddy breach and cookies made public [Podcast]
By
Paul Ducklin
β November 25
th
2021 at 12:38
Latest episode - listen now! Solid cybersecurity advice in plain English.
Naked Security
Github cookie leakage β thousands of Firefox cookie files uploaded by mistake
By
Paul Ducklin
β November 18
th
2021 at 22:20
Be aware before you share! That's a good rule for developers and techies, just as much as it is for social media addicts.
Naked Security
S3 Ep58: Faces on Facebook, scams that pose as complaints, and a Kaseya bust [Podcast]
By
Paul Ducklin
β November 11
th
2021 at 17:41
Latest epsiode - listen now!
Naked Security
Facebook to throw out face recognition, delete all template data
By
Paul Ducklin
β November 3
rd
2021 at 19:31
Publicity stunt? Or privacy progress?
Naked Security
βTo the moon!β Cryptocurrency hamster Mr Goxx trades online 24/7
By
Paul Ducklin
β October 20
th
2021 at 18:07
Here's a happy cryptocurrency story for once, with not a cybercrook in sight.
Naked Security
LANtenna hack spies on your data from across the room! (Sort of)
By
Paul Ducklin
β October 15
th
2021 at 18:58
Are your network cables acting as undercover wireless transmitters? What can you do if they are?
There are no more articles
β
Mark all as read