Award-winning security news, opinion, advice and research from Sophos.
Following updates to Android application programming interfaces (APIs) and Google Play policies, some developers have been surprised to find they’ve been blocked from distributing apps through Google Play. https://nakedsecurity.sophos.com/2019/04/18/google-plays-whack-a-mole-with-naughty-android-developers/
Facebook: we logged 100x more Instagram plaintext passwords than we thought https://wp.me/p120rT-1RDe
Discovering how malware got into your system can be difficult, in this article we explain why and share some tips on staying secure in the future. https://nakedsecurity.sophos.com/2019/04/18/serious-security-ransomware-youll-never-find-and-how-to-stop-it/
User privacy is super-duper important, Facebook has said publicly for years out of one side of its mouth, while on the other side it’s been whispering to third-party app developers to come on in and feast – this user data is tasty. https://nakedsecurity.sophos.com/2019/04/18/facebook-user-data-used-as-bargaining-chip-according-to-leaked-docs/
Following updates to Android application programming interfaces (APIs) and Google Play policies, some developers have been surprised to find they’ve been blocked from distributing apps through Google Play. https://nakedsecurity.sophos.com/2019/04/18/google-plays-whack-a-mole-with-naughty-android-developers/
Oracle has issued a raft of quarterly security updates for 297 vulnerabilities, along with an urgent warning to patch now. #Cybersecurity https://nakedsecurity.sophos.com/2019/04/18/oracle-issues-nearly-300-patches-in-quarterly-update/
Serious Security: Ransomware you’ll never find – and how to stop it https://wp.me/p120rT-1RBn
Facebook user data used as bargaining chip, according to leaked docs https://wp.me/p120rT-1RBe
Google plays Whack-A-Mole with naughty Android developers https://wp.me/p120rT-1RBg
Chrome flaw on iOS leads to 500 million unwanted pop-up ads https://wp.me/p120rT-1RB4
Oracle issues nearly 300 patches in quarterly update https://wp.me/p120rT-1RBP
Mozilla has criticized Apple for its latest privacy marketing campaign, urging it to provide more automatic protection for users behind the scenes. “Privacy. That’s iPhone.” https://nakedsecurity.sophos.com/2019/04/17/mozilla-to-apple-protect-user-privacy-with-rotating-phone-ids/
If you’re using an ad blocker you might be vulnerable to a new attack that enables hackers to compromise your browser. The vulnerability affects Adblock, Adblock Plus, and uBlock (but not uBlock Origin). https://nakedsecurity.sophos.com/2019/04/17/adblocker-firms-rush-to-fix-security-bug/
Nearly four years after it was replaced by Edge as Microsoft’s preferred Windows browser, researchers keep finding security flaws in Internet Explorer (IE). https://nakedsecurity.sophos.com/2019/04/17/internet-explorer-browser-flaw-threatens-all-windows-users/
Our latest podcast - no ads, no jargon, lots of useful advice and loads of fun! Enjoy... https://nakedsecurity.sophos.com/ep-028
Between January and March this year hackers were able to access a “limited number” of consumer http://Outlook.com, Hotmail and MSN Mail email accounts, #Microsoft has confirmed. https://nakedsecurity.sophos.com/2019/04/17/microsoft-confirms-outlook-com-and-hotmail-accounts-were-breache d/
Mozilla to Apple: Protect user privacy with rotating phone IDs https://wp.me/p120rT-1RAb
Ad blocker firms rush to fix security bug https://wp.me/p120rT-1RA9
Internet Explorer browser flaw threatens all Windows users https://wp.me/p120rT-1RA5
Microsoft confirms http://Outlook.com and Hotmail accounts were breached https://wp.me/p120rT-1RA7
For nearly a week, Instagram users have been receiving odd messages from followers expressing shock that their accounts have somehow ended up on something called the “Nasty List.” https://nakedsecurity.sophos.com/2019/04/16/watch-out-dont-fall-for-the-instagram-nasty-list-phishing-attack/
Law enforcement officials in the US have been routinely mining Google’s location history data for criminal investigations. Requests have escalated in the last six months. https://nakedsecurity.sophos.com/2019/04/16/police-cast-wide-search-net-with-googles-sensorvault-location-data/
A group of hackers that doxxed thousands of federal law enforcement employees last week has followed up with more posts offering even more victims’ personal information. https://nakedsecurity.sophos.com/2019/04/16/fbi-national-academy-associates-hackers-strike-twice-more/
Enterprise VPN clients could be vulnerable to a potentially serious security weakness that could be used to spoof access by replaying a user’s session, an alert from the Carnegie Mellon University CERT Coordination Center (CERT/CC) has warned. https://nakedsecurity.sophos.com/2019/04/16/security-weakness-in-popular-vpn-clients/
Google’s location history data shared routinely with police https://wp.me/p120rT-1Rz1
US feds’ names, home and email addresses hacked and posted online https://wp.me/p120rT-1Rz3
Watch out! Don’t fall for the Instagram ‘Nasty List’ phishing attack https://wp.me/p120rT-1Ryo
Security weakness in popular VPN clients https://wp.me/p120rT-1RyU
Identified as CVE-2018-20250, an ancient WinRAR vulnerability made public in February is now well on its way to becoming one of the most widely and rapidly-exploited security flaws of recent times. https://nakedsecurity.sophos.com/2019/04/15/flood-of-exploits-targetting-ancient-winrar-flaw-continues/
Microsoft’s newly-Chromed Edge browser could be on the up. Released last week, two 64-bit Windows 10 versions first tagged as ‘Dev channel’ updated weekly, the second a ‘Canary Channel’ version updated daily. https://nakedsecurity.sophos.com/2019/04/15/microsofts-edge-browser-reborn-after-chromium-makeover/
UK police are planning a multimillion-pound cybercrime prevention drive identified a link between teenage gamers and cybercrime, warning that 82% of young people recruited by online criminals had developed their cybercrime skills through video gaming. https://nakedsecurity.sophos.com/2019/04/15/police-draw-link-between-young-video-gamers-and-cybercrime/
Researchers Mathy Vanhoef of New York University Abu Dhabi and Eyal Ronen of Tel Aviv University & KU Leuven have discovered several holes in a new security protocol for wireless networks. https://nakedsecurity.sophos.com/2019/04/15/dragonblood-data-leaking-flaw-in-wpa3-wi-fi-authentication/
RT @NakedSecurity: Dragonblood: Data-leaking flaw in WPA3 Wi-Fi authentication https://wp.me/p120rT-1Rwq
🗞️Top stories from the last seven days: Airbnb apologises after man detects hidden camera with network scan, toddler locks father out of iPad for 25.5 MILLION minutes, or until 2067 and Microsoft lets Windows users off the update leash. https://nakedsecurity.sophos.com/2019/04/15/monday-review-the-hot-24-stories-of-the-week-28/
Flood of exploits targetting ancient WinRAR flaw continues https://wp.me/p120rT-1Rwl
Microsoft’s Edge browser reborn after Chromium makeover https://wp.me/p120rT-1Rwo
Is there a link between videogaming and cybercrime? Police think so https://wp.me/p120rT-1RxM
Dragonblood: Data-leaking flaw in WPA3 Wi-Fi authentication https://wp.me/p120rT-1Rwq
Monday review – the hot 24 stories of the week https://wp.me/p120rT-1RxI
Retro-cool blast from the past - a 3270 typeface for your terminal window 📺 https://github.com/rbanffy/3270font
Facebook admits “supply chain data leak” in new Oculus headsets https://wp.me/p120rT-1Rxa
Can you detect hidden cameras in hotel rooms? [VIDEO] https://wp.me/p120rT-1RwM
Listen to our latest podcast - fun, advice and research rolled into an ad-free half hour. Ep. 027 - Honeypots, GPS and the MySpace vortex https://nakedsecurity.sophos.com/ep-027
Julian Assange, founder of whistleblowing organisation WikiLeaks, and arguably Ecuador’s most famous Londoner, is in custody in the UK and facing hacking charges in the US. https://nakedsecurity.sophos.com/2019/04/12/assange-arrested-faces-extradition-for-hacking/
A report from the Department of Homeland Security and the FBI suggests that #Russia probably meddled with election-related systems in all 50 US states during the last presidential race. https://nakedsecurity.sophos.com/2019/04/12/feds-say-russian-2016-election-meddling-spanned-all-us-states/
Photo-sharing website Flickr is trying to combat copyright infringement by partnering with Pixsy, which spots copies of its users’ images online. They claim it is a step forward in the fight to protect its members’ rights. https://nakedsecurity.sophos.com/2019/04/12/flickr-signs-with-ai-service-to-find-infringing-images-online/
#Google just announced a new security feature that allows users of Android 7 and later to use their smartphones to authenticate themselves to their Google accounts. https://nakedsecurity.sophos.com/2019/04/12/android-phones-transformed-into-anti-phishing-security-tokens/
Is it possible to detect a hidden camera? Join us on Facebook Live in 30 minutes to ask us your questions and discuss. https://www.facebook.com/SophosSecurity/ #Cybersecurity #AirBnb #HiddenCamera
Assange arrested, faces extradition for hacking https://wp.me/p120rT-1RvH
Feds say Russian 2016 election meddling spanned all US states https://wp.me/p120rT-1Rv9
Flickr tackling online image theft with new AI service https://wp.me/p120rT-1Rv7
 
 
 
 
 
© 2009 creamsocial