Award-winning security news, opinion, advice and research from Sophos.
The Evernote extension for Chrome has a vulnerability that needs patching now. https://nakedsecurity.sophos.com/2019/06/14/critical-flaw-found-in-evernote-web-clipper-for-chrome/
Hey, iOS users. Got a spare Android phone lying around? Now, you can use it as a secure access key for online services. https://nakedsecurity.sophos.com/2019/06/14/android-phones-can-now-be-security-keys-for-ios-devices/
Facebook's last research app was kicked off the App Store. Now it's got a new one. https://nakedsecurity.sophos.com/2019/06/14/facebook-got-187000-users-data-with-snoopy-vpn-app/
A male student posed as a young girl and went out to catch a predator. He got a cop. https://nakedsecurity.sophos.com/2019/06/14/cop-arrested-following-explicit-chat-with-bogus-16yo-girl/
Critical flaw found in Evernote Web Clipper for Chrome https://wp.me/p120rT-1Sty
Android phones can now be security keys for iOS devices https://wp.me/p120rT-1StE
Facebook got 187,000 users’ data with snoopy VPN app https://wp.me/p120rT-1Stz
Cop arrested following explicit chat with bogus 16yo girl https://wp.me/p120rT-1StD
The deepfake of Facebook’s Mark Zuckerberg is here to stay – for a while at least. https://nakedsecurity.sophos.com/2019/06/13/facebook-keeps-deepfake-of-mark-zuckerberg/
The backpacker says he found cameras hidden in walls, behind corrugated metal shelves, and in the shower, along with one microphone. https://nakedsecurity.sophos.com/2019/06/13/backpacker-claims-to-find-a-network-of-hidden-webcams-in-farm-stay/
Diehard text editor users everywhere breathed a sigh of relief this week as the open source community fixed a bug in Vim. https://nakedsecurity.sophos.com/2019/06/13/vim-devs-fix-system-pwning-text-editor-bug/
SandboxEscaper currently takes credit for 21 Microsoft vulnerability disclosures dating back to 2015, three of which were in this month’s Patch Tuesday. https://nakedsecurity.sophos.com/2019/06/13/microsofts-battle-with-sandboxescaper-zero-days-turns-into-grim-gro undhog-day/
Facebook keeps deepfake of Mark Zuckerberg https://wp.me/p120rT-1Ss9
Backpacker claims to find a network of hidden webcams in farm stay https://wp.me/p120rT-1Ssy
Vim devs fix system-pwning text editor bug https://wp.me/p120rT-1SsI
Microsoft’s battle with SandboxEscaper zero days turns into grim Groundhog Day https://wp.me/p120rT-1Ssp
RT @eastangliapics: Paul Ducklin @duckblog delivers keynote about the #cloud and #cloudsecurity at the #OptimiseIt conference #Silversto…
The padlock symbol and the ‘S’ on the end of HTTP in a web address means that site is trustworthy, right? Wrong. https://nakedsecurity.sophos.com/2019/06/12/fbi-warns-users-to-be-wary-of-phishing-sites-abusing-https/
Radiohead slapped that extortionist like a mosquito. #ransom #radiohead #extortion https://nakedsecurity.sophos.com/2019/06/12/radiohead-releases-ok-computer-sessions-that-hacker-tried-to-ransom/
Critical Adobe Flash player bug and more in June’s Patch Tuesday https://wp.me/p120rT-1Srk
US Customs and Border Protection has confirmed that a subcontractor's network was hacked - and travelers' photos and images of their license plates were stolen. https://nakedsecurity.sophos.com/2019/06/12/hackers-stole-photos-of-travelers-and-license-plates-from-subcontractor/
FBI warns users to be wary of phishing sites abusing HTTPS https://wp.me/p120rT-1Sr6
Radiohead releases ‘OK Computer’ sessions that hacker tried to ransom https://wp.me/p120rT-1Srg
Hackers stole photos of travelers and license plates from subcontractor https://wp.me/p120rT-1Sr3
Researchers have found a bug that could enable an attacker to steal an organizations' highly prized secrets. https://nakedsecurity.sophos.com/2019/06/11/researchers-crack-digital-safe-using-hsm-flaw/
In the business version of sextortion, this #scam email is threatening your reputation if you don't cough up. https://nakedsecurity.sophos.com/2019/06/11/its-a-scam-send-bitcoin-or-your-companys-reputation-is-toast/
New in iOS 13 - see what apps are track you in the background via a handy map. And then turn them off. https://nakedsecurity.sophos.com/2019/06/11/ios-13-will-map-the-apps-that-are-tracking-you/
If you know someone with an Amcrest security camera - let them know they should update it now! https://nakedsecurity.sophos.com/2019/06/11/critical-flaws-found-in-amcrest-security-cameras/
Critical flaws found in Amcrest security cameras https://wp.me/p120rT-1SpM
iOS 13 will map the apps that are tracking you https://wp.me/p120rT-1Spa
It’s a SCAM: Send Bitcoin or your company’s reputation is TOAST! https://wp.me/p120rT-1SpL
Researchers crack digital safe using HSM flaw https://wp.me/p120rT-1Sq0
Will an extra security step at the checkout really lead to $billions of lost revenue for e-stores? After all, people still need socks. 🧦🧦 https://nakedsecurity.sophos.com/2019/06/10/online-shops-fear-2fa-at-checkout-will-increase-abandoned-carts/
A roundup of the top #infosec stories of the past week - from the vulnerable Windows RDS 'feature' to the privacy of US visa applicants, and everything in between. https://nakedsecurity.sophos.com/2019/06/10/monday-review-the-hot-21-stories-of-the-week-36/
Podcast sofa has arrived! Sound panels go in on Thursday. Our studio is starting to take shape!
The feds have announced - two-and-a-half years after the fact - that they're examining the laptops involved in the NC 2016 election polls https://nakedsecurity.sophos.com/2019/06/10/laptops-used-in-2016-nc-poll-to-be-examined-by-feds-after-2-5-years/
This thwarted attack on a crypto-wallet goes to show just how important it is to check your open source code #komodo #security https://nakedsecurity.sophos.com/2019/06/10/thwarted-cryptocurrency-attack-shows-importance-of-testing-open-source-code/
Microsoft warns of time-travelling equation exploit – are you safe? https://wp.me/p120rT-1Sp9
It’s been a bracing few weeks for anyone who relies on Microsoft’s Remote Desktop Protocol (RDP). #BlueKeep #GoldBrute https://nakedsecurity.sophos.com/2019/06/10/the-goldbrute-botnet-is-trying-to-crack-open-1-5-million-rdp-servers/
The GoldBrute botnet is trying to crack open 1.5 million RDP servers https://wp.me/p120rT-1SnL
Cryptocurrency attack thwarted by npm team https://wp.me/p120rT-1So3
Laptops used in 2016 NC poll to be examined by Feds – after 2.5 years https://wp.me/p120rT-1SnX
Online shops fear 2FA at checkout will increase abandoned carts https://wp.me/p120rT-1SnJ
Monday review – the hot 21 stories of the week https://wp.me/p120rT-1So2
Oh dear. Anyone can run commands on Exim. https://nakedsecurity.sophos.com/2019/06/07/action-required-exim-mail-servers-need-urgent-patching/
How do you decide what to patch? https://nakedsecurity.sophos.com/2019/06/07/whats-the-best-approach-to-patching-vulnerabilities/
Who needs shoulder surfing when you can do something a million times more difficult? https://nakedsecurity.sophos.com/2019/06/07/researchers-eavesdrop-on-smartphone-finger-taps/
The FBI's photo album is bursting at the seams. https://nakedsecurity.sophos.com/2019/06/07/the-fbi-is-sitting-on-more-than-641m-photos-of-peoples-faces/
Action required! Exim mail servers need urgent patching https://wp.me/p120rT-1Smp
What’s the best approach to patching vulnerabilities? https://wp.me/p120rT-1Smz
 
 
 
 
 
© 2009 creamsocial