Data loss

(get it in RSS or Atom)

Apple pushes out iOS 8.1 - kills the mobile POODLE and closes some, ahem, "backdoors"

8dot1-250

The marquee vulnerablity fixed in iOS 8.1 is, as you might expect, POODLE.

But there are other cryptographic fixes in iOS 8.1 that are equally important...because cryptography is notoriously hard to get right first time.

Facebook prowls the internet looking for your password

Facebook prowls the internet looking for your password

Facebook explains that it's keeping its eye out for credentials - email, password combinations - dropped on sites after data breaches, running them against its own users' credentials to see if password reuse is going to land its users in trouble.

"Oops! I'm sorry about that" - 60 Sec Security [VIDEO]

60ss-video-250

Here it is - this week's 60 Second Security video.

News that will amuse, and it only takes a minute...

'The Snappening’: stolen Snapchat photos site defaced, details of site owner published

Snappening fans deface Snapchat photos site after it comes down

Owner of TheSnappening.org photo site, Mudit Grover, took the stolen Snapchat images and the site down. But within hours, attackers identifying themselves as "Team Danny" allegedly took over the domain and published Grover's personal details.

POODLE attack takes bytes out of your encrypted data - here's what to do

Heartbleed, Shellshock, Sandworm...and now POODLE.

It's a security hole that could let crooks read your encrypted web traffic.

Paul Ducklin takes you through how it works, and what you can do to avoid it, in plain (well, plain-ish) English...

Snapchat to address sketchy third-party apps with public API ... at some point

Snapchat logo

Oh, those darn third-party apps, their home-brewed APIs and their photo-leaking ways, Snapchat moaned on Wednesday morning, promising to cook up a public API to fix the situation... sooner or later.

South Korean ID system faces overhauls following 10 years of data thefts

South Korea flag. Image courtesy of Shutterstock

The South Korean government is considering reissuing national identity card ID numbers for every citizen over the age of 17, at the cost of billions of US dollars.

Attacker takes over Facebook page set up for 'Bucket List Baby' Shane, posts porn

Attacker takes over Facebook page set up for 'Bucket List Baby' Shane, posts porn

A Facebook page set up to chronicle the extremely short life of a baby with the rare, terminal condition of anencephaly was hijacked within days of the infant's death and set to display lewd images. The parents, who had lost their child mere days before, fell for one of the most vile phishing attacks ever.

Dropbox passwords leaked, third-party services blamed

Dropbox logo

Hundreds of Dropbox logins were posted on Pastebin and Reddit, but it turns out they were stolen from a third-party service months ago, Dropbox says. So why did some of those passwords work, as Reddit users claimed? Think password reuse.

5 steps to lock down your webmail account

5 steps to lock down your webmail account

For most people Gmail, Outlook.com or Yahoo! Mail is their main personal account. Here are some of the most important steps to keep unwanted people out of your web-based email account.

Kmart becomes the latest retail data breach victim

Kmart_logo_250

Kmart has been confirmed as the latest retail chain to be breached after its parent company admitted that some customers’ debit and credit card numbers had been compromised.

Backoff malware gang hits Dairy Queen stores

Backoff malware gang hits Dairy Queen stores

Customers' payment card details may have been whipped out of nearly 400 Dairy Queen stores in the US. It's just the latest in a string of PoS malware infections that have been slamming US retailers.

Mummy, my schoolbooks are spying on me! 60 Sec Security [VIDEO]

60ss-video-250

Here's our latest 60 Second Security video for your viewing pleasure.

The wry side of the week's news, in just a minute...

SSCC 168 - Amaze your friends by ruining all their USB drives! [PODCAST]

chet-chat-logo-featured-250

Here's the latest Chet Chat security podcast for your listening pleasure.

Sophos experts Chester Wisniewski and Paul Ducklin take apart the latest computer security stories to turn them into news you can use.

AT&T hit by insider breach; "change your passcode" it warns

AT&T hit by insider breach; "change your passcode" it warns

AT&T, the giant US telecom, says it fired an insider for having thumbed through customer accounts without authorization and potentially slurping customers' taxpayer IDs, driver license numbers and more.

Top 5 celebrity hacks

Hacked off: 5 biggest celebrity hacks

There have been many episodes of celebrities being targeted by cybercriminals. Let's take a look at some of the worst cases of celebrity data loss…

Bugzilla bug tracker fixes zero-day bug revealing bug

bugzilla-250

If we are allowed to smile at security holes, this bug-revealing bug in Bugzilla is wryly amusing...

Celebgate continues, nude celebrity photos posted of Winona Ryder, Hulk Hogan's son

Celebgate continues, nude celebrity photos posted of Winona Ryder, Hulk Hogan's son

Yet another crop of nude photos has been released. More will come. The salacious are still as thrilled as ever, but much of the internet is just hitting the snooze button and rolling over. Why do we stop caring about theft and privacy invasion?