Articles by Chester Wisniewski
Interview with 'We are Anonymous' author Parmy Olson [PODCAST]
In this podcast Chester interviews Parmy Olson author of "We are Anonymous" about her thoughts on LulzSec, their sentencing and the Anonymous movement. Parmy also shares some of her thoughts on Firefox OS and other developments from Mobile World Congress 2013.
Apple fixes 41 iTunes security flaws, some more than a year old
Apple released the latest update to iTunes today, version 11.0.3, fixing 41 vulnerabilities in the Windows version and 1 in the OS X version. Many of these flaws are rated critical and we advise you update as soon as possible.
May Patch Tuesday critical for users of Internet Explorer and web-based services
Microsoft has just released its monthly updates for May 2013. The zero-day IE flaw used on the Dept of Labor website was fixed, as well as an IE 10 hole used at PWN2OWN.
Critical fixes for Adobe Reader, Flash Player and ColdFusion also hit the streets today.
Facebook Home - Great if you think privacy is dead
Facebook has introduced a new way to utilize its services on Android mobile phones. Facebook Home streamlines keeping in touch with friends, their photos, Likes and shares. The issue is how it impacts your privacy, even if you choose not to use it yourself.
Microsoft fixes 9 flaws, Adobe 3 in April's Tuesday update
As expected Microsoft released seven important and two critical fixes for Windows, Internet Explorer and other Microsoft products. Adobe followed suite releasing fixes for ColdFusion, Flash and Shockwave. Patch now!
Ukrainian and Russian police arrest banking Trojan masterminds
Ukrainian newspaper Kommersant reported on a joint operation by the Ukrainian and Russian federal police arresting 20 people allegedly behind the Carberp banking malware. Is this a sign that we may see more arrests by the FSB and SBU in the future?
Is security really dead? Perhaps it's your lack of depth
There is a lot of talk in the security industry about how much everything sucks. While no individual solution is a silver bullet for solving your security woes, but we shouldn't forget that an effective defense requires depth.
Massive DDoS attack against anti-spam provider impacts millions of internet users
The largest recorded DDoS attack has been ongoing for over eight days now, causing slowdowns and errors throughout the internet. Is this a one time scenario or does this expose a greater weakness in the world's largest network?
Interview with Writer/Director of "Code 2600" and BSides Austin organizers [PODCAST]
Chet inteviews the writer and director of hacker film "Code 2600" and Austin BSides organizers/consultants Michael Gough and Ian Robertson. We also introduce the new Kickstarter Hackers in Uganda.
Helping users make better security decisions by design
When we think of secure programs we think about things like buffer overflows, null pointer dereferences and other technical jargon. Adam Shostack of Microsoft explained the importance of designing usable interfaces to help users make smart security decisions at last week's BSides conference in Vancouver Canada.
Apple's own Macs bitten by Java-based malware attack
Apple released a statement today acknowledging that they were victims of the same attackers that Facebook talked about last week. A zero-day Java vulnerability infected Apple Mac developers through a drive-by attack.
Burger King dethroned in Presidents Day Twitter hack
Burger King has had its Twitter account hacked, and is now promoting its arch-rival "McDonald's".
Monster super-critical Patch Tuesday for February 2013
Microsoft has released 12 patches covering 56 vulnerabilities as part of the February monthly "Patch Tuesday" update. Five of these patches are rated critical and code allow criminals to drive-by install malware onto Windows systems.
UPnP flaws turn millions of firewalls into doorstops
Researcher HD Moore published a paper last week showing that more than 23 million routers, TVs, cameras and printers are vulnerable to a remote code execution flaw in UPnP.
Super Bowl scamday: survey scammers target Twitter
Twitter users mentioning the Super Bowl are being bombarded with scam tweets, don't click links promising free Super Bowl info.
WhatsApp's privacy investigated by joint Canadian-Dutch probe
Privacy commissions in Canada and The Netherlands have investigated poor privacy practices in the popular mobile phone application WhatsApp. What's the problem and what should you do?
Apple updates iOS fixing 27 vulnerabilities and TURKTRUST revocation
Apple has released updates for users of the iPod Touch, iPhone, iPad and Apple TV products that fix critical vulnerabilities. Apple users should update their devices to iOS 6.1 as soon as possible.
Vote Naked Security for best security blog
Naked Security and the Sophos Security Chet Chat could be nominated for awards at this year's Social Security Blogger Awards. Will you help us out by voting for us?
Apple and Mozilla - 'Just say no to Java'
After the recent discovery of a zero-day vulnerability in Oracle's Java Web Start plugin Apple and Mozilla are now disabling Java by default until fixes are made available.
Microsoft and Adobe issue first Patch Tuesday of 2013
The first Patch Tuesday of 2013 is here and there are plenty of important fixes to download including two critical Windows flaws and critical updates to Adobe Reader and Adobe Flash Player.
![Password security infomerical leaves Ellen DeGeneres in disbelief.. and it will you too [VIDEO]](http://sophosnews.files.wordpress.com/2013/04/ellen-thumb.jpg?w=75&h=75&crop=1)
