What's new arround internet

Last one

Src Date (GMT) Titre Description Tags Stories Notes
grahamcluley.webp 2021-06-22 08:50:12 Don\'t name your Wi-Fi hotspot this, unless you want to crash your iPhone (lien direct) A bizarre bug has been discovered in iOS that can cause an iPhone to crash when it attempts to join a Wi-Fi network with a particular name. Read more in my article on the Hot for Security blog.
grahamcluley.webp 2021-06-21 14:48:29 No, you\'re not talking to Jason Statham (lien direct) Could the Hollywood heart throb really be interested in you? Sorry, you're being scammed. ★★★★★
grahamcluley.webp 2021-06-21 14:31:43 North Korean hackers exploit VPN bug to gain access to South Korean Atomic Energy Research Institute (lien direct) North Korean hackers broke their way into the IT systems of the South Korean Atomic Energy Research Institute (KAERI), according to a statement issued by the government-funded organisation.
grahamcluley.webp 2021-06-18 15:24:35 Repairmen suspected of installing ransomware on customers\' PCs. Arrests in South Korea (lien direct) Authorities in South Korea have filed charges against employees at a computer repair store. What are the nine charged employees of the company alleged to have done? Created and installed ransomware onto the computers of their customers, netting more than 360 million won (approximately US $320,000.) Read more in my article on the Hot for Security blog. Ransomware
grahamcluley.webp 2021-06-18 09:01:02 Fake Ledger devices mailed out in attempt to steal from cryptocurrency fans (lien direct) Received a replacement Ledger cryptocurrency wallet through the post following the service's data breach? Be on your guard... Read more in my article on the Hot for Security blog.
grahamcluley.webp 2021-06-17 16:25:30 CLOP ransomware suspects charged by police in Ukraine (lien direct) Six people alleged to be part of the notorious CLOP ransomware gang have been detained and charged by Ukrainian police, following nearly two dozen raids across the country. Read more in my article on the Tripwire State of Security blog. Ransomware
grahamcluley.webp 2021-06-17 11:24:00 Smashing Security podcast #232: Zoomolympics and language matters (lien direct) Video gaming giant Electronic Arts suffers a hack following slack security, the Japanese Olympics are proving unpopular with everyone apart from cybercriminals, and le coq est mort. All this and much more is discussed in the latest edition of the award-winning "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Maria Varmazis. Hack
grahamcluley.webp 2021-06-14 14:28:10 Ransomware is the biggest threat, says GCHQ cybersecurity chief (lien direct) The head of the UK's National Cyber Security Centre has warned that ransomware has become the biggest threat to British people and businesses. And says ransomware gangs "are often enabled and facilitated by states acting with impunity." Read more in my article on the Tripwire State of Security blog. Ransomware Threat ★★★
grahamcluley.webp 2021-06-14 12:57:33 Meat supplier JBS probed after paying $11 million ransom to attackers (lien direct) The US Congress may have a beef with the firm which paid a ransom totalling $11 million to a gang of cybercriminals.
grahamcluley.webp 2021-06-11 08:22:53 Smashing Security podcast #231: Sexy snaps and encrypted chat traps (lien direct) Criminals are caught in a encrypted chat trap, should you trust Apple’s repair team with your sexy snaps, and do you think the FBI should be able to tell who has been reading the USA Today website? All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by … Continue reading "Smashing Security podcast #231: Sexy snaps and encrypted chat traps"
grahamcluley.webp 2021-06-08 12:21:15 Criminal networks smashed after using “secure” chat app secretly run by cops (lien direct) The Australian Federal Police (AFP) has revealed that it was able to decrypt and snoop on the private messages sent via a supposedly secure messaging app used by criminals… because the app was actually the brainchild of the FBI. Read more in my article on the Hot for Security blog.
grahamcluley.webp 2021-06-03 17:08:40 Cryptocurrency hacks wanted – $100,000 prize fund offered in contest run by cybercrime forum (lien direct) Cybercriminals are running an online competition offering big prizes to anyone who believes they have found an unusual way to help crooks steal cryptocurrency. Read more in my article on the Tripwire State of Security blog.
grahamcluley.webp 2021-06-03 13:16:40 Backup appliance firm pays out $2.6 million ransom to attackers (lien direct) The Conti ransomware gang has successfully managed to extort millions of dollars out of an organisation once again. What's notable on this occasion is that the Conti group's corporate victim is ExaGrid, a backup company. Ransomware
grahamcluley.webp 2021-06-03 09:42:03 It\'s time to get serious about enterprise password management – download this 1Password white paper now (lien direct) Graham Cluley Security News is sponsored this week by the folks at 1Password. Thanks to the great team there for their support! The majority of enterprise data breaches are still tied to weak password and secrets management habits among employees. 1Password’s new white paper highlights these and other findings to illustrate how password management software … Continue reading "It's time to get serious about enterprise password management – download this 1Password white paper now"
grahamcluley.webp 2021-06-03 09:33:31 Smashing Security podcast #230: Flash card f-up and energy pipe pilfering (lien direct) The US military has been caught exposing its nuclear weapons secrets, and we explore the world of nerdy miners. All this and more is discussed in the latest edition of the award-winning "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault.
grahamcluley.webp 2021-06-02 13:17:45 Babuk ransomware gang says it\'s no longer interested in encrypting data, would rather kidnap it instead (lien direct) The Babuk ransomware gang is reinventing itself. It says it's no longer interested in encrypting victims' data, but will be focusing on stealing information instead. Read more in my article on the Hot for Security blog. Ransomware
grahamcluley.webp 2021-06-01 09:49:20 World\'s biggest meat supplier, JBS, suffers cyber attack (lien direct) The world's largest meat supplier, JBS, says that it has suffered a cyber attack against its IT systems in North America and Australia impacting its ability to "process" thousands of cattle, sheep, and pigs.
grahamcluley.webp 2021-05-31 16:07:31 US Army tells remote workers to switch off their IoT devices (and then withdraws advice) (lien direct) The US Army appears to have made a strategic withdrawal from advice it issued to remote workers last week about their use of smart IoT devices. Read more in my article on the Bitdefender BOX blog.
grahamcluley.webp 2021-05-28 13:34:09 Let\'s talk ransomware with the experts from Acronis (lien direct) Join me, and a panel of experts, as we discuss ransomware at a free online event in June. Ransomware
grahamcluley.webp 2021-05-27 13:12:16 Cryptocurrency scam attack on Twitter reminds users to check their app connections (lien direct) Are you doing enough to prevent scammers from hijacking your social media accounts? Even if you have chosen a strong, unique password for your online presence and enabled two-factor authentication it's possible that you've overlooked another way in which online criminals could commandeer your social media accounts and spam out a message to your followers. Read more in my article on the Tripwire State of Security blog. Spam
grahamcluley.webp 2021-05-27 00:01:55 Smashing Security podcast #229: Dating leaks, right to repair, and a stinky bishop (lien direct) A big cheese ends up in jail, a Japanese dating site spills the dirt after a hack, and we learn all about the right to repair. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Paul Roberts from The Security Ledger. Plus don't miss our featured interview with Javvad Malik from KnowBe4.
grahamcluley.webp 2021-05-25 14:16:16 Malware exploited macOS zero-day flaw to secretly take screenshots. Update to Big Sur 11.4 now (lien direct) Apple Mac users are being advised to update their operating system as a matter of priority, after malicious hackers have discovered a way of bypassing privacy protections. Read more in my article on the Hot for Security blog.
grahamcluley.webp 2021-05-20 23:03:54 Cyber insurance giant CNA paid out $40 million to its ransomware attackers (lien direct) Yes, you read that correctly. FORTY MILLION DOLLARS. Ransomware
grahamcluley.webp 2021-05-20 13:48:48 Qlocker ransomware gang shuts shop after extorting owners of QNAP NAS drives (lien direct) With all the headlines about ransomware attacks hitting companies hard, you might think there's only bad news around the subject. Well, think again. Read more in my article on the Tripwire State of Security blog. Ransomware
grahamcluley.webp 2021-05-20 09:01:12 Smashing Security podcast #228: Pipeline pickle, Blockchain bollocks, and Eufy SNAFU (lien direct) The Colonial Pipeline attack has shone light on the activities of the Darkside ransomware gang, we take a skeptical look at cryptocurrencies and the blockchain, and Eufy security cameras suffer an embarrassing security failure. All this and much more is discussed in the latest edition of the award-winning "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by BBC technology correspondent Rory Cellan-Jones. Plus don't miss our featured interview with Vanessa Pegueros of OneLogin. Ransomware
grahamcluley.webp 2021-05-19 16:02:46 Fake Microsoft Authenticator extension discovered in Chrome Store (lien direct) I hope you're being cautious if you're installing extensions from the Chrome Web Store for your browser and care about your online security. Because it's reported that a bogus Chrome add-on purporting to be "Microsoft Authenticator" successfully managed to sneak its way in, and duped hundreds of people into downloading it. Read more in my article on the Hot for Security blog.
grahamcluley.webp 2021-05-18 09:04:21 Apple rejected 215,000 iOS apps due to privacy concerns last year (lien direct) Apple is talking up the efforts it makes to police the iOS App Store, revealing that during 2020 it rejected more than 215,000 iPhone apps for violating its privacy policies. On its website, Apple detailed an array of statistics of how it has protected App Store users from being defrauded. Read more in my article on the Hot for Security blog. ★★★
grahamcluley.webp 2021-05-17 10:25:59 Cyberinsurance giant AXA hit by ransomware attack after saying it would stop covering ransom payments (lien direct) One week after the French branch of cyberinsurance giant AXA said that it would no longer be writing policies to cover ransomware payments, the company's operations in Thailand, Malaysia, Hong Kong, and the Phillippines have reportedly been hit... by a ransomware attack. Ransomware
grahamcluley.webp 2021-05-14 14:54:38 Gamers warned of downloading fake Afterburner overclocking tool to boost graphics card performance (lien direct) A leading manufacturer of gaming hardware has warned internet users to be wary of downloading fake versions of free software it distributes to overclock GPUs. Read more in my article on the Hot for Security blog. Tool Guideline
grahamcluley.webp 2021-05-14 10:33:58 Want to be a cybersecurity manager? Colonial Pipeline is recruiting (lien direct) Sounds like a great opportunity. It's not as if things can get worse, right?
grahamcluley.webp 2021-05-14 09:53:26 Report: Colonial Pipeline paid ransomware attackers $5 million, but still had to rely on its own backups (lien direct) Bloomberg reports that the extortionists of Colonial Pipeline received almost $5 million worth of cryptocurrency, but that the tool they provided to decrypt IT systems wasn't up to the job. Ransomware Tool
grahamcluley.webp 2021-05-14 09:12:50 (Déjà vu) Scumbag ransomware attackers hit Irish Health Service (lien direct) Earlier today, Ireland's health service (the HSE) shut down all of its IT systems following what they describes as a “significant ransomware attack.” Ransomware
grahamcluley.webp 2021-05-13 13:54:57 Muddy waters. Ofwat reveals it has received 20,000 spam and phishing emails so far this year (lien direct) The Water Services Regulation Authority (better known as Ofwat) which is the UK Government's department responsible for regulating the privatised water and sewage industry in England and Wales, said it had received 21,486 malicious emails so far this year - with 5,149 classified as phishing attacks. At first glance that sounds pretty bad for such a short period of time, especially when you consider that Ofwat only employs 266 people. But is it? Read more in my article on the Tripwire State of Security blog. Spam
grahamcluley.webp 2021-05-13 12:10:10 Smashing Security podcast #227: Phishing foul-up, Twitter tip jars, and Facebook\'s Apple fury (lien direct) Facebook says it's sticking up for the little guys as it picks a fight with Apple, there are testing times on the trains, and Twitter takes a tip. All this and much more is discussed in the latest edition of the award-winning "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Ray [REDACTED].
grahamcluley.webp 2021-05-11 12:33:05 The DarkSide ransomware gang must be shitting itself right now (lien direct) So, what do you do if you're a ransomware gang which has just caught the attention of not just the world's media, but also the FBI and the President of the United States? Ransomware
grahamcluley.webp 2021-05-10 13:30:03 City of Tulsa struck by ransomware attack (lien direct) Tulsa, Oklahoma, is reportedly the latest in a long line of American cities to have fallen victim to a ransomware attack. The attack, which occurred on Friday evening, caused the city's IT security teams to shut down many of Tula's internal systems over the weekend "out of an abundance of caution" while they worked around the clock at the weekend in an attempt to restore operations from backups. Read more in my article on the Hot for Security blog. Ransomware
grahamcluley.webp 2021-05-10 11:14:56 Major US oil pipeline shut down after ransomware attack (lien direct) The 5,500 miles of Colonial Pipeline, which carry over 100 million gallons of fuel every day, from Houston, Texas to the New York Harbor, has been offline since May 7 following a ransomware attack. Ransomware
grahamcluley.webp 2021-05-07 13:46:05 Insurer AXA says it will no longer cover ransomware payments in France (lien direct) Insurance giant AXA has said that it is no longer writing cyberinsurance policies in France that cover ransom payments to extortionists. Read more in my article on the Hot for Security blog. Ransomware
grahamcluley.webp 2021-05-07 10:50:16 Chinese smart TVs caught hoovering up data about devices on customers\' networks (lien direct) Millions of smart TVs in China may have collected data without the knowledge of viewers about Wi-Fi networks found within range and attached devices. Read more in my article on the Bitdefender BOX blog.
grahamcluley.webp 2021-05-06 13:54:33 NSA offers advice: connecting OT to the rest of the net can lead to “indefensible levels of risk” (lien direct) The US Defense Department and third-party military contractors are being advised to strengthen the security of their operational technology (OT) in the wake of security breaches, such as the SolarWinds supply chain attack. Read more in my article on the Tripwire State of Security blog.
grahamcluley.webp 2021-05-06 09:39:41 Smashing Security podcast #226: Cryptocrazies and NFTs (lien direct) How did the SCAM cryptocurrency become a success? Why is Google allowing government rip-off ads to still appear on search results? And why on earth is everyone suddenly spending millions of dollars on NFTs? All this and much more is discussed in the latest edition of the award-winning "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Rip Off Britain's David McClelland.
grahamcluley.webp 2021-05-05 22:50:02 Signal says its Instagram ads were banned for being too honest (lien direct) Signal tried to run targeted ads on Instagram that showed users *how* they had been targeted, and revealed the extraordinary amount of data Facebook collects about users.
grahamcluley.webp 2021-05-05 15:52:12 Peloton exercise bikes found exposing user data – company dawdles in its response (lien direct) Uh oh. Not only were Peloton bikes leaking personal information about users, but when told about the problem the company was far from perfect in its response.
grahamcluley.webp 2021-05-04 10:09:27 Boystown, dark web child abuse image website with 400,000 members, shut down by police (lien direct) Police have shut down one Boystown, ome of the world's largest child abuse image websites, following an investigation that saw authorities across the globe work together to identify and apprehend those responsible for its creation and maintenance.
grahamcluley.webp 2021-04-30 07:30:29 DigitalOcean admits data breach exposed customers\' billing details (lien direct) DigitalOcean, the popular cloud-hosting provider, has told some of its customers that their billing details were exposed due to what it described as a "flaw." Read more in my article on the Hot for Security blog. Data Breach APT 32
grahamcluley.webp 2021-04-29 10:36:05 Smashing Security podcast #225: Master of your domain, gripe sites, and John Deere Farmergeddon (lien direct) Google loses its domain in Argentina, how do gripe sites make their dough, and has John Deere solved the cybersecurity problem? All this and much more is discussed in the latest edition of the award-winning "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Mark Stockley.
grahamcluley.webp 2021-04-28 17:52:18 Etsy-owned musical instrument marketplace Reverb suffers data breach (lien direct) The online musical instrument marketplace Reverb has suffered a data breach which has exposed the personal details of 5.6 million users. Read more in my article on the Hot for Security blog. Data Breach
grahamcluley.webp 2021-04-28 13:08:41 Was the email account of Merseyrail\'s MD hacked to spread word of ransomware attack? (lien direct) Reports indicate that Merseyrail, the railway network serving Liverpool and the surrounding area, has been hit by the Lockbit ransomware. Ransomware
grahamcluley.webp 2021-04-28 11:18:05 Arrest after man replaces official COVID-19 check-in signs with anti-vaxxer QR code (lien direct) Police in South Australia have arrested a man for allegedly tampering with Covid-19 QR codes, replacing them with fake codes that could take the public to anti-vaxxer websites.
grahamcluley.webp 2021-04-28 10:09:29 Update your Macs! Malware attacks can exploit critical flaws in Apple\'s built-in defences (lien direct) Apple has released a brand new update for its macOS Big Sur operating system, and you really should install it. Amongst other fixes, Big Sur 11.3 patches a zero-day vulnerability that could allow an attacker to craft malicious payloads that will not be checked by Gatekeeper, the security check built into Apple's operating system that is supposed to block the execution of software from untrusted sources. Malware Vulnerability
Last update at: 2024-03-29 09:09:49
See our sources.
My email:

To see everything: Our RSS (filtrered) Twitter