What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2020-10-09 15:11:11 | Twitter closing my account for copyright violation? No, it\'s a phishing attack (lien direct) | I received a direct message (DM) on Twitter, bearing some worrying news. Apparently my @gcluley Twitter account is in danger of being permanently deleted due to copyright violation. Crikey! | |||
|
2020-10-07 23:03:42 | Smashing Security podcast #199: A few tech cock-ups, and one cock lock-up (lien direct) | An internet-connected adult toy could leave its users encaged, the official NHS COVID-19 contact-tracing app alarms users, and would you be happy if a robot interviewed you for a job? All this and much more is discussed in the latest edition of the award-winning "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by BBC technology correspondent Zoe Kleinman. | |||
|
2020-10-07 14:45:09 | (Déjà vu) Recorded Future Express gives you elite security intelligence at zero cost (lien direct) | Many thanks to the great folks at Recorded Future, who have sponsored my writing for the past week. Recorded Future empowers your organization, revealing unknown threats before they impact your business, and helping your teams respond to alerts 10 times faster. How does it do this? By automatically collecting and analyzing intelligence from technical, open … Continue reading "Recorded Future Express gives you elite security intelligence at zero cost" | |||
|
2020-10-05 22:19:46 | John McAfee arrested on US tax evasion charges (lien direct) | Anti-virus veteran John McAfee has been arrested in Spain on US tax evasion charges. According to the US Department of Justice, McAfee is charged with failing to file tax returns despite making millions of dollars promoting cryptocurrencies. | |||
|
2020-10-05 14:37:36 | See me keynote at the (ISC)² Security Congress in November 2020 (lien direct) | Graham Cluley will be delivering a keynote address at (ISC)²'s tenth annual Security Congress. And the entire event is virtual - so there's no excuse not to show up! | |||
|
2020-10-05 10:47:58 | UK loses 16,000 COVID-19 cases due to Excel spreadsheet snafu (lien direct) | Some 16,000 Coronavirus cases in the UK went missing after the Excel spreadsheet they were being recorded in reached its maximum limit, and did not allow the automated process to add any more names. | |||
|
2020-10-04 20:41:54 | Google warns of security holes in other vendors\' Android phones (lien direct) | Google has announced it will be publicising security issues it finds in third-party Android devices, in the hope that they will be fixed more quickly. | |||
|
2020-10-04 17:01:00 | Grindr security hole made it easy to hijack accounts (lien direct) | Gay dating app Grindr had a serious security vulnerability that could have allowed anyone to hijack control of a Grindr user's account. All you would need to seize control of a user's account would be their email address. | Vulnerability | ||
|
2020-10-02 09:28:41 | Malware campaign poses as Team Blue Take Action email (lien direct) | Cybercriminals have sent out thousands of malware-laden emails, using lures related to the US elections, to companies across America. | Malware | ||
|
2020-10-01 07:20:00 | A complete stranger controlled this woman\'s home security system, but they\'re not the one she\'s angry with (lien direct) | Imagine being contacted by a complete stranger via Facebook, and them telling you that they have complete control over the security system in your new home. Read more in my article on the Hot for Securiy blog. | |||
|
2020-10-01 05:48:46 | Smashing Security podcast #198: Chucky the coffee maker (lien direct) | Coffee machines catching ransomware, Blacklight shines a torch on website tracking, and a woman is freaked out that a complete stranger can turn off her home's security system. All this and much more is discussed in the latest edition of the award-winning "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by The Cyberwire's Dave Bittner. | |||
|
2020-09-29 15:45:47 | When your every keystroke, mouse click, and website visit is monitored by your boss… (lien direct) | Shibu Philip has done a great service. Now everyone knows to steer well clear of working for him or his company Transcend. | |||
|
2020-09-28 12:54:24 | Should your employer know who you\'re dating *outside* work? (lien direct) | The Coronavirus pandemic has pretty much killed off office romances, and the chances of a snog in the stationery cupboard, but now at least one firm might be pooping over romance outside of the workplace as well. Do you think relationships outside the office should be vetted for whether they pose a cybersecurity threat? | |||
|
2020-09-28 11:10:19 | Elite security intelligence at zero cost – use Recorded Future Express… for FREE! (lien direct) | Many thanks to the great folks at Recorded Future, who have sponsored my writing for the past week. Recorded Future empowers your organization, revealing unknown threats before they impact your business, and helping your teams respond to alerts 10 times faster. How does it do this? By automatically collecting and analyzing intelligence from technical, open … Continue reading "Elite security intelligence at zero cost – use Recorded Future Express… for FREE!" | |||
|
2020-09-25 12:35:35 | The Windows XP and Windows Server 2003 source code leaks online (lien direct) | Various media outlets are reporting that the source code for the legacy operating systems Windows XP and Windows Server 2003 have leaked online. Do they pose a risk? | |||
|
2020-09-24 14:02:31 | Microsoft warns hackers are actively targeting Zerologon vulnerability. Patch pronto! (lien direct) | If there are active attacks in the wild, if the DHS is ordering federal agencies to defend themselves, and if Zerologon is so easy to exploit, don't you think your business should be patching itself as soon as possible? | Patching | ||
|
2020-09-23 23:05:34 | Smashing Security podcast #197: Greedy bosses, game cheats, and virtual beheadings (lien direct) | Why are Zoom and Twitter making some people disappear? How are Counter-Strike: Global Offensive cheats getting their just desserts? And the founder of a anti cyber-fraud firm is charged with fraud. All this and much more is discussed in the latest edition of the award-winning "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Mark Stockley. | |||
|
2020-09-23 12:42:52 | Rogue Shopify staff accessed customer records, says ecommerce platform investigating security breach (lien direct) | Shopify, the major ecommerce platform which powers many online stores, has revealed that it suffered a serious breach of security at the hands of two rogue employees. Read more in my article on the Hot for Security blog. | |||
|
2020-09-22 11:55:18 | Ransomware attack foiled, but details of 540,000 sports referees still stolen by hackers (lien direct) | A ransomware attack detected and blocked at ArbiterSports, but only after sensitive data was exfiltrated. Read more in my article on the Hot for Security blog. | Ransomware | ||
|
2020-09-22 10:49:43 | Activision denies reports 500,000 Call of Duty accounts have been hacked (lien direct) | Reusing passwords is a recipe for disaster, as hackers will use a password breached in one place to break into other online accounts. Password reuse is one of the biggest mistakes you can make on the internet. Always use unique passwords and (whenever available) enable two-factor authentication. | |||
|
2020-09-22 06:59:17 | Does your business have a Well-Known URL for changing passwords? It should! (lien direct) | If you're a business which has a website that customers access via a password, spend a few minutes create your own .well-known/change-password which points users to the correct place. Read more in my article on the Bitdefender Business Insights blog. | |||
|
2020-09-21 12:27:03 | I\'m not interested in this Nigerian restaurant\'s emails… (lien direct) | I'm sure their food is lovely, but I don't think they're going to deliver to me in Oxford, England, are they? Or if they did I'd have to give the delivery driver a stonking tip. | |||
|
2020-09-18 15:12:58 | Google\'s awkward stalkerware typo said it was ok to spy on your spouse (lien direct) | Google gets in a muddle about its stalkerware policy, after making an unfortunate typo. | |||
|
2020-09-18 10:54:42 | Hospital patient dies following botched ransomware attack (lien direct) | When a ransomware attack knocked out systems at a major hospital in Düsseldorf, Germany, there were tragic consequences. | Ransomware | ||
|
2020-09-17 14:01:48 | The Dunkin\' Donuts data breach leaves a very bad taste in the mouth (lien direct) | Despite repeated warnings Dunkin' Donuts failed to investigate evidence of a significant data breach, didn't reset passwords, and didn't warn customers... for years. | Data Breach | ||
|
2020-09-17 12:04:20 | Hackers pumped and dumped GAS cryptocurrency for $16.8 million, alleges US DOJ (lien direct) | US authorities have charged two Russian men with allegedly defrauding cryptocurrency exchanges and their customers out of at least $16.8 million. Read more in my article on the Tripwire State of Security blog. | |||
|
2020-09-16 23:09:15 | Smashing Security podcast #196: Smart guns, smart cars, and smart street lights – oh my! (lien direct) | Kalashnikov unveils its “smart” shotgun, San Diego struggles with its street lights, and a researcher reveals how he found a way to hack every Tesla on the planet. All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined … Continue reading "Smashing Security podcast #196: Smart guns, smart cars, and smart street lights – oh my!" | Hack | ||
|
2020-09-15 12:55:03 | US Customs has one heck of a false positive over “counterfeit Apple AirPods” (lien direct) | This weekend US Customs and Border Protection at New York's JFK airport seemed proud to announce that it had “seized 2,000 counterfeit Apple AirPods” coming in from Hong Kong. But take another look... | |||
|
2020-09-15 11:04:39 | Can you crack Monero? IRS offers $625,000 bounty for anyone who can break privacy of cryptocurrency (lien direct) | Do you think you can crack Monero's layers of privacy? The IRS would like to hear from you. Read more in my article on the Hot for Security blog. | |||
|
2020-09-11 13:03:55 | “Yourefired” was Donald Trump\'s Twitter password, claim hackers (lien direct) | According to Dutch magazine, three ethical hackers were able to determine Donald Trump's Twitter password while he was running his US Presidential campaign. A password that had been exposed years before following the notorious LinkedIn hack. | |||
|
2020-09-11 11:36:14 | Secure your Zoom account with Two-Factor Authentication (lien direct) | We've said it once, we've said it twice, we've said it one hundred times. Hardening the security of your accounts with two-factor authentication (2FA) can dramatically reduce their chances of being hacked. Read more in my article on the Hot for Security website. | |||
|
2020-09-09 23:26:32 | Smashing Security podcast #195: Selene Delgado Lopez is not your friend (lien direct) | The Gadget Show's Jon Bentley joins us to discuss the mystery of a Facebook friend you never requested, software updates for the Mercedes S-Class, and risks in the online classroom. All this and much more is discussed in the latest edition of the award-winning "Smashing Security" podcast hosted by computer security veterans Graham Cluley and Carole Theriault. | |||
|
2020-09-09 20:45:31 | Fake Facebook email invites you to tell 39 strangers you were duped (lien direct) | A reader got in touch with me regarding a suspicious email they had received claiming to come from Facebook. What I expected to be a simple phishing email turned out to be something much more curious... | |||
|
2020-09-08 11:34:28 | Mystery surrounds alleged Paytm Mall hack, as security firm hit by legal threat (lien direct) | According to media reports, India's leading online shopping app has sent a legal notice to a US security firm demanding that they stop spreading “false” claims that it has been hacked. Indian financial newspaper Mint says that Paytm Mall has sent the legal notice to Atlanta-based Cyble Inc, which at the end of last month … Continue reading "Mystery surrounds alleged Paytm Mall hack, as security firm hit by legal threat" | Threat Guideline | ||
|
2020-09-07 14:26:56 | Newcastle University says it will take “several weeks” to recover from cyber attack (lien direct) | Newcastle University, in the North East of England, has confirmed that it has suffered a cyber attack after several days of disruption to its IT services. And, the university warns, it will “take several weeks” to get systems up and running again | |||
|
2020-09-03 14:06:04 | When trolling your colleagues and boss via an anonymous Twitter account, don\'t make this mistake… (lien direct) | Someone working for the BBC appears to have made a disastrous blunder while trying to remain anonymous on the internet... | |||
|
2020-09-03 09:44:58 | Hackers hijack Indian PM Narendra Modi Twitter account (lien direct) | The hackers used the platform to deny that they had hacked Paytm Mall, India's leading online shopping app. Read more in my article on the Hot for Security blog. | Guideline | ||
|
2020-09-02 23:30:57 | Smashing Security podcast #194: Carry on droning (lien direct) | A Bitcoin bungle causes one user to lose millions, hackers attempt to bribe a Tesla employee into infecting the company's network, and are we ready for a sky full of drones? All this and much more is discussed in the latest edition of the award-winning "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Jessica Barker. | |||
|
2020-09-02 16:27:08 | WordPress websites attacked via File Manager plugin vulnerability (lien direct) | Hackers are exploiting a critical vulnerability that may be affecting hundreds of thousands of websites running WordPress. The vulnerability lies in versions of the popular third-party plugin WordPress File Manager, which has been installed on over 700,000 websites. Read more in my article on the Hot for Security blog. | Vulnerability | ||
|
2020-09-02 10:34:18 | Free ebook: Aligning cyber skills with the MITRE ATT&CK framework (lien direct) | Graham Cluley Security News is sponsored this week by the folks at Immersive Labs. Thanks to the great team there for their support! Attacks and breaches are a fact of life. They happen. What’s most important is how well your organisation responds. And technology isn’t enough. Your staff must be ready too. Immersive Labs delivers … Continue reading "Free ebook: Aligning cyber skills with the MITRE ATT&CK framework" | |||
|
2020-09-01 15:51:03 | Hackers tricked Apple into approving malicious Adobe Flash Player update (lien direct) | Whoops! Apple accidentally approved malware posing as an update for Adobe Flash Player, allowing it to run unhindered on macOS. | Malware | ||
|
2020-09-01 10:53:27 | Hack this email account… plz plz plz! (lien direct) | Running a security blog means that I'm always interested in receiving tips about data breaches, vulnerabilities, malware attacks, and the like. But I do explain that I'm not available to help troubleshoot PC problems or provide technical support – there simply aren't enough hours in the day, and it doesn't put any crumbs on the dining room table. This morning, however, I received a very polite message from a reader of the blog. | Malware Hack | ||
|
2020-08-28 15:26:51 | Sloppy Southern Water found leaking customers\' bills and account details (lien direct) | UK water service supplier Southern Water made it all too easy for unauthorised parties to view customers' billing documents and account details. | |||
|
2020-08-26 23:01:38 | Smashing Security podcast #193: Hacking the CIA, Bridgefy, and college lockdowns (lien direct) | Whatever happened to Crackas with Attitude, perfidious Albion College's approach to locking down Coronavirus, and the Bridgefy mesh messaging app falls down when it comes to security. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Anna Brading. | |||
|
2020-08-26 20:43:10 | North Korean hacking gang targets banks worldwide, US Government warns (lien direct) | The state-sponsored BeagleBoyz hacking group is targeting banks in over 30 countries, possibly to fund North Korea's nuclear weapons ambitions. | |||
|
2020-08-21 19:19:23 | Appearing on the Easy Prey podcast (lien direct) | I was delighted to be invited onto Chris Parker's "Easy Prey" podcast to discuss scams, the recent Twitter hack, and much else besides. | |||
|
2020-08-19 23:17:10 | Smashing Security podcast #192: Ritz and robocalls with Rory (lien direct) | A scam involving restaurant bookings at The Ritz is suitably sophisticated, the second wave of UK coronavirus testing apps, and we take a look at one of the biggest studies ever into the scourge of robocalls. All this and much more is discussed in the latest edition of the award-winning "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by BBC technology correspondent Rory Cellan-Jones. | Studies | ||
|
2020-08-19 17:20:49 | Warn your staff about phone spear phishing attacks, as reports rise (lien direct) | Similar "voice phishing" techniques have been used against banks, web hosts, and cryptocurrency exchanges, in recent weeks. | |||
|
2020-08-19 16:29:55 | Bletchley Park visitors warned of data breach after Blackbaud ransomware attack (lien direct) | The famous World War II code-cracking site of Bletchley Park announces a data breach, following a ransomware attack at Blackbaud. | Ransomware Data Breach | ||
|
2020-08-14 16:56:33 | TV stations – stop broadcasting your passwords! (lien direct) | During a broadcast interview conducted via a Zoom video chat, the cameraman no doubt imagined they were getting a terrific angle pointing over the reporter's shoulder. However, what ended up on screen could have put security at risk... |
To see everything:
Our RSS (filtrered)
