Monthly Archives: November 2011

SSCC 77 - Thanksgiving patching, SCADA, Google WiFi mapping and Android security

Sophos Security Chet Chat

Paul Ducklin joins Chet to talk about this week's news including giving your friends and family a hand at Thanksgiving, Android security, SCADA hacking and Google's WiFi mapping opt-out scheme.

13 million MapleStory players at risk after hack - casting a shadow over Nexon's IPO

13 million MapleStory players at risk after hack

If you're about to float your video game company on the stock exchange, probably the last thing you want is for a hacker to break into the personal details of some 13 million of your players.

Will the UK Cyber Security Strategy make a difference?

uk-security-thumb

The British government has today published its Cyber Security Strategy detailing how it plans to protect national security and the public from internet threats, and (hopefully) support the British economy at the same time.

Reason to be careful if 'PayPal' says you have changed your email address

Reason to be careful if 'PayPal' says you have changed your email address

Have you received a notification claiming that your PayPal email address has changed?

Spammed out messages attempt to steal personal information from PayPal users.

The Conficker worm, three years and counting

conficker-sun250

This week marks the third anniversary of Conficker's assault on our PCs. Where do we stand after doing 36 months of battle with this worm?

Phone hacking scandal: computer hacker suspect arrested

voicemail

Yesterday, British police arrested an unnamed 52-year-old man in Milton Keynes for computer hacking related to the News of the World phone hacking fiasco.

Fake iTunes gift certificate delivers a load of malware for Black Friday shoppers

itunes-card-250

Watch out for shopping scams as the seasonal shopping frenzy ramps up over the US Thanksgiving weekend.

Thanksgiving: eat the bounty, hang out with family and update web browsers

IE 6 logo and hand turkey

Thanksgiving is coming up this weekend in the US. It's a holiday of gluttony and family time, and, according to The Atlantic, a chance to update your family's internet browsers.

Google's open source geezer gets shirty about security

Google's open source geezer gets shirty about security

Google's hackerishly hirsute Open Source Programs Manager, Chris DiBona, stormed the IT headlines this week.

He stuck his paddle into the computer security world and stirred...

SOPA undermines security while not solving any problems

USCongress250

The proposed SOPA law before the US Congress will not just restrict speech, it will make the internet less secure.

Xbox Live customers not hacked but phished

A wireless black Microsoft Xbox 360 controller with white background.

Xbox Live customers are the latest gamers to fall victim to an online attack with thousands of accounts hit across 35 countries.

Hackers target AT&T wireless users

at&t logo2

Telecommunications giant AT&T admitted that hackers organised an attack against 1% of its 100.7 million wireless account customers.

Interview with SCADA hacker pr0f about the state of infrastructure security

Goatse hacker pleads guilty to stealing iPad user data

After writing about the hacking of SCADA systems I was contacted by one of the hackers, pr0f. I interviewed him via email to get his thoughts on how secure our critical infrastructure really is.

Cloud storage's hazy security lining at SC Congress NYC

whatis_icloud250

With the bring your own device (BYOD) gaining momentum, do you know how your users are managing to move their data to and fro? In all likelihood they are using the cloud. Read on for the risks and strategies to protect your sensitive information in the cloud.

UK police foiled attack on royal wedding website

CCWillandKateanonlinegreenworld250

UK police were able to foil attempts at disrupting the international web presence of the royal wedding. The site remained online despite record interest in the ceremony.

US SCADA infrastructure woefully unprotected

CCWaterTowerchristinejwarner250

An attack that allegedly destroyed a pump at a municipal water processing facility has raised alarms about the security of critical infrastructure in the United States.

Will Do Not Track make a difference to web privacy?

Private sign

Earlier this week the World Wide Web Consortium (W3C) released the first drafts of two new privacy standards aimed at simplifying and standardising how websites read and comply with web users’ privacy settings. So is it going to make a difference?

Google controversially forces users to opt-out of Wi-Fi snooping

wifi-thumb

If you can figure out how to rename your router SSID to include "_nomap," Google is going to skip your wireless access point in its location-gobbling location services. Once again, a company that should be requesting our opt-in has pushed the onus to the user with an opt-out model.

Facebook will no longer tell you everything it knows about you

facebook-cd-rom

The social network, swamped by data requesters inspired by the Europe vs. Facebook campaign, is now directing users to a page where they can download their own archives. The categories of data it’s releasing has shrunk to less than half of what it was disclosing until recently, as Facebook flips on an autoreply “we won’t talk about it any more” mode.