Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2021-04-23 16:59:19 |
Apple AirDrop has “significant privacy leak”, say German researchers (lien direct) |
Researchers say they reported what they consider to be a privacy hole to Apple in 2019, but never heard back. They worked on a fix anyway. |
|
|
|
|
2021-04-22 16:52:50 |
Linux team in public bust-up over fake “patches” to introduce bugs (lien direct) |
Embarrassed overreaction or righteous indignation? An academic research group has provoked the Linux crew to ban their whole university! |
|
|
|
|
2021-04-22 16:49:05 |
S3 Ep29: Anti-tracking, rowhammer problems and IoT vulns [Podcast] (lien direct) |
Latest episode - listen now! |
|
|
|
|
2021-04-21 12:33:12 |
When cryptography attacks – how TLS helps malware hide in plain sight (lien direct) |
No IT technology feels quite as much of a double-edged sword as encryption. |
Malware
|
|
|
|
2021-04-20 16:04:56 |
Firefox 88 patches bugs and kills off a sneaky JavaScript tracking trick (lien direct) |
What's in a window name? Turns out that it could be a sneaky tracking code, so Firefox has put a stop to that. |
|
|
|
|
2021-04-19 13:52:46 |
Naked Security Live – To hack or not to hack? (lien direct) |
Latest video - watch now! We look at the recent FBI "webshell hacking" controversy from both sides. |
Hack
|
|
|
|
2021-04-19 12:26:07 |
Serious Security: Rowhammer is back, but now it\'s called SMASH (lien direct) |
Simply put: reading from RAM in your program could write to RAM in someone else's |
|
|
|
|
2021-04-16 13:26:33 |
S3 Ep28.5: Hacking back – is attack an acceptable form of defence? [Podcast] (lien direct) |
Listen now - and have your say on this divisive issue in our comments! |
|
|
|
|
2021-04-15 11:59:49 |
S3 Ep28: Pwn2Own hacks, dark web hitmen and COVID-19 privacy (lien direct) |
New episode - listen now! |
|
|
|
|
2021-04-14 12:38:04 |
FBI hacks into hundreds of infected US servers (and disinfects them) (lien direct) |
Hacking for good! A judge said I could! |
|
|
|
|
2021-04-13 16:57:27 |
IoT bug report claims “at least 100M devices” may be impacted (lien direct) |
The programmers among us are learning... but not always quickly enough, it seems. Here's some food for coding thought... |
|
|
|
|
2021-04-12 16:43:12 |
Apple and Google block official UK COVID-19 app update (lien direct) |
UK coronavirus app update apparently included "feature creep" that's explicitly prohibited by Apple's and Google's programming rules. |
|
|
★★★
|
|
2021-04-12 11:00:18 |
Naked Security Live – How to spot “government” scammers (lien direct) |
Latest episode - watch now, and please share with your friends and family! |
|
|
|
|
2021-04-09 00:33:54 |
Pwn2Own 2021: Zoom, Teams, Exchange, Chrome and Edge “fully owned” (lien direct) |
Two lucky winners scooped $200k for just 30 minutes' work - if you don't count the days, weeks and months of meticulous effort beforehand |
|
|
|
|
2021-04-08 14:04:11 |
Italian charged with hiring “dark web hitman” to murder his ex-girlfriend (lien direct) |
Fortunately, this suspect wasn't as anonymous as he thought... |
|
|
|
|
2021-04-08 10:46:54 |
S3 Ep27: Census scammers, beg bounties and data breach fines [Podcast] (lien direct) |
New episode - listen now! |
Data Breach
|
|
|
|
2021-04-06 22:22:58 |
Too slow! Booking.com fined for not reporting data breach fast enough (lien direct) |
It's not just the breach, it's the speed of the breach response... |
Data Breach
|
|
|
|
2021-04-01 23:41:25 |
Criminals send out fake “census form” reminder – don\'t fall for it! (lien direct) |
Don't fall for fake text messages, no matter how realistic the website looks if you click through. |
|
|
|
|
2021-04-01 09:31:52 |
S3 Ep26: Apple 0-day, crypto vulnerabilities and PHP backdoor [Podcast] (lien direct) |
Latest episode - listen now! |
|
|
|
|
2021-03-30 15:30:18 |
PHP web language narrowly avoids “backdoor” supply chain attack (lien direct) |
The crooks got in and added a backdoor to PHP, but it looks as though it was caught before any harm was done. |
|
|
|
|
2021-03-29 11:25:38 |
Naked Security Live – Lessons beyond ransomware (lien direct) |
Cybercrime isn't about just one sort of attack, one type of crook, or one method of protection! |
Ransomware
|
|
|
|
2021-03-28 15:20:57 |
Serious Security: OpenSSL fixes two high-severity crypto bugs (lien direct) |
The bug that broke security when you turned STRICT mode on... |
|
|
|
|
2021-03-27 13:17:17 |
Apple devices get urgent patch for zero-day exploit – update now! (lien direct) |
Universal Cross Site Scripting bug means all web browsing is potentially at risk. We explain in plain English. |
|
|
|
|
2021-03-26 13:05:11 |
Alan Turing\'s £50 banknote officially unveiled (lien direct) |
If only he'd been treated like this in his ilfetime: the computing pioneer who knew "this is only a foretaste". |
|
|
|
|
2021-03-25 13:29:28 |
S3 Ep25: Drained accounts, ransomware attacks and Linux badware [Podcast] (lien direct) |
New episode - listen now! |
Ransomware
|
|
|
|
2021-03-23 23:29:30 |
BlackKingdom ransomware still exploiting insecure Exchange servers (lien direct) |
Remember Hafnium? Here's the bad news - it's not over yet! Learn why and what to do... |
Ransomware
|
|
|
|
2021-03-22 17:53:26 |
Naked Security Live – “XcodeSpy” takes aim at Mac and iOS developers (lien direct) |
New episode - watch now! |
|
|
|
|
2021-03-22 15:52:50 |
Instagram scams and how to avoid them (lien direct) |
Don't get taken for a sucker on social media! Here are our top tips to protect you from Instagram scams... |
|
|
|
|
2021-03-19 14:16:06 |
Serious Security: Mac “supply chain” backdoor takes aim at Xcode devs (lien direct) |
Just one tiny line of script in your Xcode project - and you've been pwned! |
|
|
★★★
|
|
2021-03-18 14:03:11 |
S3 Ep24: How not to get snooped, scammed or hoaxed [Podcast] (lien direct) |
Latest episode - listen now! |
|
|
|
|
2021-03-17 17:04:30 |
Bitcoin scammer who hacked celeb Twitter accounts gets 3 years (lien direct) |
Youngster behind blue-flag Twitter hack of Elon Musk, Bill Gates, Apple Inc. and many others will do three years in prison. |
Hack
|
|
|
|
2021-03-17 12:20:27 |
Serious Security: The Linux kernel bugs that surfaced after 15 years (lien direct) |
Anyone could have found these bugs, but everyone assumed someone would, and in the end, no one did. (Until now.) |
|
|
|
|
2021-03-15 14:59:21 |
S3 Ep 23.5: An interview with cybersecurity expert John Noble CBE (lien direct) |
Special episode - listen now! |
|
|
|
|
2021-03-15 09:33:07 |
Naked Security Live – HAFNIUM explained in plain English (lien direct) |
Latest episode - watch now! |
|
|
|
|
2021-03-11 17:32:12 |
How confidential are your calls? This iPhone app shared them with everyone (lien direct) |
Caveat utilitor! Caveat emptor! Caveat programmator! |
|
|
|
|
2021-03-11 13:56:28 |
S3 Ep23: Hafnium happenings, I see you, and Pythonic poison [Podcast] (lien direct) |
New episode - listen now! (And find out what HAFNIUM really stands for.) |
|
|
|
|
2021-03-10 17:57:27 |
150,000 security cameras allegedly breached in “too much fun” hack (lien direct) |
Cloud security cameras rained confidential customer data, says Bloomberg. |
Hack
|
|
|
|
2021-03-09 12:32:50 |
Serious Security: Webshells explained in the aftermath of HAFNIUM attacks (lien direct) |
Webshells explained, with some (safe) examples you can try at home if you want to learn more. |
|
|
|
|
2021-03-08 15:46:17 |
Naked Security Live – ICU: How much do your home-working photos give away? (lien direct) |
I see you/And what you do - So be aware/Before you share - And if in doubt/Don't give it out! |
|
|
|
|
2021-03-07 23:43:47 |
Poison packages – “Supply Chain Risks” user hits Python community with 4000 fake modules (lien direct) |
To this "researcher", even a job not worth doing was worth overdoing. Here's what you can learn from the incident... |
|
|
|
|
2021-03-04 17:49:20 |
S3 Ep22: Cryptographic escapes and social media scams [Podcast] (lien direct) |
Lastest episode - listen now. (And tell your friends!) |
|
|
|
|
2021-03-04 11:26:42 |
Using TikTok? Check out these six security tips (lien direct) |
Practical advice on how to maximize your security and privacy on TikTok. |
|
|
|
|
2021-03-04 01:41:45 |
Another Chrome zero-day exploit – so get that update done! (lien direct) |
It's déjà vu all over again! New month, new Chrome zero-day bug being exploited in the wild. |
|
|
|
|
2021-03-03 22:17:13 |
How (NOT?!) to jailbreak your iPhone (lien direct) |
We're sticking to our "patch early, peath often" mantra, although in this case it means you can't jailbreak. |
|
|
|
|
2021-03-03 12:00:27 |
I see you: your home-working photos reveal more than you think! (lien direct) |
Beware of sensitive data lurking in the background of your video calls and social pictures. |
|
|
|
|
2021-03-02 13:45:23 |
Search crimes – how the Gootkit gang poisons Google searches (lien direct) |
When a search result looks too good to be true - it IS too good to be true! |
|
|
|
|
2021-02-25 10:35:22 |
S3 Ep21: Cryptomining clampdown, the 100-ton man, and ScamClub ads [Podcast] (lien direct) |
Latest episode - listen now! |
|
|
|
|
2021-02-23 15:59:05 |
Keybase secure messaging fixes photo-leaking bug – patch now! (lien direct) |
It's a bit like Snapchat all over again - but this bug was quickly fixed. |
|
|
|
|
2021-02-22 14:13:38 |
Naked Security Live – How to calculate important things using a computer (lien direct) |
Here's the latest Naked Security Live talk - watch now! |
|
|
|
|
2021-02-22 01:27:05 |
Nvidia announces official “anti-cryptomining” software drivers (lien direct) |
"It's a DoS, Jim, but not as we know it." |
|
|
|