Monthly Archives: September 2011

QR code security risks in the car park

QR code security risks in the car park

QR codes are a highly convenient way to link a physical object to a URL. Point your phone's camera at the 2D barcode and you're instantly taken to a website.

But that's something which can have security consequences, as mobile guru Terence Eden explains.

Patch Tuesday for September - what you need to know

Patch Tuesday for September - what you need to know

We've just been hit with a double-barrelled Patch Tuesday, with both Microsoft and Adobe publishing security updates.

Learn what SophosLabs thinks you should do to stay secure.

BitTorrent serves malware directly from website - no need for P2P!

Bittorrent serves malware directly from website - no need for P2P!

Oops!

Even if you are one of the several many entirely law-abiding users of BitTorrent, the mothership company Bittorrent, Inc. may recently have put you in harm's way.

Facebook and first dates - how it can go seriously wrong...

Loverboy or Silly thief?

How exactly does a young mum, aged 23, end up as a getaway driver in an armed robbery instead of a hot date with old friend she reconnected with on Facebook?

Hackers steal credit card details at Wisconsin and Tennessee Wilderness resorts

vacationland-thumb

Bad news if you have been on vacation at one of the Wilderness resorts in Tennessee and Wisconsin in the last couple of years - hackers may now have your credit card details.

There may be up to 40,000 victims of the hack - which could lead to identity theft.

Man in wheelchair falls down elevator shaft - Facebook clickjacking scam

Man in wheelchair falls down elevator shaft - Facebook scam

A shocking video of a man in a wheelchair falling down an elevator shaft? Is that really what you want to watch?

Well, if it is, then you're just the kind of person that a newly-discovered Facebook scam is looking for.

Apple fakery, DNS hack, DigiNotar, Linux, Wikileaks - 60 Sec Security

60ss-20110913-250

Lots of readers said they'd like to see our 'news-with-a-conscience' videos more than once a month.

So here you go. 60 Second Security, once every two weeks.

Christmas tree Trojan blamed for NBC News Twitter hack

Christmas tree Trojan blamed for NBC News Twitter hack

A keylogger is being blamed for a high profile attack which allowed hackers to gain control of the NBC News Twitter account, and post bogus messages about a terrorist attack.

BBC Lottery: Have you won too?

bbc-lottery-thumb

I must be the luckiest person on the planet - I keep winning lotteries!

Here's the latest notification - straight from Aunty Beeb herself, the BBC.

Nigerian government website falls at hands of Brazilian defacement

Nigerian government website falls at hands of Brazilian defacement

The official website of the Nigerian government has been defaced by hackers.

Security breach: Kernel.org and Linux Foundation remain "temporarily unavailable"

Linux world in security spinout as Linux Foundation and Kernel.org remain "temporarily unavailable"

The Linux world is in a bit of a security spinout at the moment.

Could this be the moment that you finally decide to try OpenBSD?

GlobalSign gives itself clean bill of health after Iranian hacker's braggadocio

doffinghat-square

Digital certificate authority GlobalSign rather gutsily took itself out of business last week following a burst of online braggadocio from an Iranian hacker claiming to have "owned" the company.

GlobalSign is back. Looks like the self-serving hacker was nothing more than that.

Missing dots from email addresses opens 20GB data leak

Missing dots from email addresses opens 20GB data leak

Security researchers have captured 120,000 emails intended for Fortune 500 companies by exploiting a basic typo.

The emails included trade secrets, business invoices, personal information about employees, network diagrams and passwords.

NBC News Twitter account hacked with fake news of 9/11 Ground Zero attack

NBC News Twitter account hacked with fake news of 9/11 Ground Zero attack

Sick-minded hackers have broken into the Twitter account of NBC News and posted messages claiming that there has been a terrorist attack at Ground Zero in New York.

Apple releases update to remove DigiNotar from trusted list

ApplePatch250

Apple have released an update for OS X Lion and Snow Leopard to revoke the digital certificates that were compromised by hackers at DigiNotar last week.Be sure you are currently on 10.6.8 or 10.7.1 for full protection.

Nicole's baby kicking video is a Facebook scam

Nicole's baby kicking video is a Facebook scam

A video of baby kicking inside his mother's pregnant belly is the latest lure being used by Facebook scammers.

It's un-belly-ievable..

SkyNET: DIY drone helicopter WiFi attacks for less than $600

SkyNet: DIY drone helicopter WiFi attacks for less than $600

Could malicious hackers break into WiFi networks and commandeer computers into a botnet - not via the internet, but using a DIY drone helicopter that costs less than $600?

Researchers, who have built a prototype, say yes.

Google tells Iranian users to check if their Gmail accounts have been hacked

Google tells Iranian users to check their Gmail accounts haven't been hacked

Google is advising *all* its users in Iran to change their Gmail passwords, and check that their accounts have not been compromised.

Stanford Hospital leaks 20,000 patient records

CCDoNotLickStanfordHospital245

Stanford hospital lost 20,000 sensitive records through a mistake made by a third party billing company. When will our electronic health records be properly safeguarded?

Researchers extend Firesheep to exploit Google Search data leak

Firesheep infiltrates Google

A pair of security researchers have created their own version of the notorious Firesheep plugin to expose a data leak in the world's favourite search engine.

The proof-of-concept plugin exploits the use of unencrypted cookies by Google's Web History feature.