Malware
Only 36% of small firms apply security patches. No wonder cybercrooks are stealing their cash
Small businesses are under constant attack from malware, scams and online fraud. They are simply woefully under-prepared to keep their assets safe. Despite reorganisation and redirected priorities, the police can still do little to help. Here are some general tips from the FSB to help firms better protect themselves.
Why Twitter's two-factor authentication isn't going to stop media organisations from being hacked
Twitter's new two factor authentication system will be welcomed by some users, but ignored by others who will find it a nuisance.
Notably, it's unlikely to be much use at all to media companies who have suffered at the hands of hackers, as Graham Cluley explains.
NYPD detective charged with hiring email hackers to break into colleagues' personal accounts
A NYPD detective has been arrested for hiring an email hacking service to pinch the login details for at least 43 personal email accounts and one cell phone belonging to at least 30 individuals.
It's VKontakte, *not* Vikontakte. Twitter phishing, Soviet-style
With a cybercrime plan as poorly thought out as this, maybe it's no wonder the Soviet Union didn't survive.
Breakfast malware at Tiffany's? Trojan horses spammed out widely
Little blue boxes from Tiffany & Co. are the stuff of dreams for many. Don't let an unexpected email delivery - apparently from the company - make you so giddy with an excitement that you end up with a computer nightmare.
Small businesses beware! Point-of-sale malware is after you
Malware targeting point-of-sale (POS) systems has been a major trend for the last six months. With easy pickings to be had from mom-and-pop shops, this pattern is only going to grow until people start fighting back with better system security, and ideally better payment card systems.
Virus Bulletin's Technical Director John Hawes takes a look....
Operation Aurora hack was counterespionage, not China picking on Tibetan activists
Claims are made that the Aurora hackers weren't just Chinese-sponsored hackers bent on messing with Tibetan activists.
Rather it was a Chinese counterintelligence operation that sought to discover if the US had uncovered the identity of clandestine agents operating within its borders.
Inside the "PlugX" malware with SophosLabs - a fascinating journey into a malware factory...
Join SophosLabs Principal Researcher Gabor Szappanos as he takes you on a fascinating journey into the latest "product" from the PlugX malware factory.
Monday review - the hot 24 stories of the week
In case you missed any recent stories, here's everything we wrote in the last seven days.
FT hacked. Syrian Electronic Army hijacks Financial Times blogs and Twitter accounts
The Syrian Electronic Army has struck again - this time adding the scalp of the prestigious Financial Times to its collection of hijacked accounts belonging to well-known media organisations.
Opinion: No, the LulzSec hackers weren't noble
Graham Cluley argues that it's not cool, or funny, to hack into companies, expose the private information of members of the general public, and to launch denial of service attacks.
Jail for the LulzSec hacking gang members
BREAKING NEWS: Members of the notorious LulzSec hacking gang have been sentenced at Southwark Crown Court in London.
Have your say - LulzSec: helpful, harmless or hideous? [VOTE NOW]
![Have your say - LulzSec: helpful, harmless or hideous? [VOTE NOW]](http://sophosnews.files.wordpress.com/2013/05/lulzsec-poll-thumb.jpg?w=115&h=115&crop=1)
LulzSec are about to be sentenced, which will tell us what the judge thinks.
But why not tell us what you think, right here, right now?
How to measure the biggest and most dangerous threats
Just about every security company publishes some sort of prevalence data - those little bar charts and top tens showing the most important and widespread threats. The raw data behind these easy-to-consume representations can be very useful to security experts and testers.
The LulzSec hackers who boasted they were "Gods" await their sentence
Four members of the notorious LulzSec hacking gang, who attacked websites belonging to the likes of the CIA, the NHS and the Serious Organised Crime Agency (SOCA), are due to be sentenced by the UK authorities.
Outbreak! Fake Amazon UK emails spammed out, delivering malware
Although there has been increased talk recently on drive-by-downloads and compromised websites being used to deliver malware, it's worth remembering that email-based malware is far from dead.
Doctor Who episode leaks out early: exterminate spoilers!
The BBC America shop accidentally shipped an episode of Doctor Who to thousands of US fans before it was broadcast on television. Even as you read this, battles are being waged against spoiler hackers, while fan site Kasterborous suggests fans just unplug from the internet.
Phishers waste woman's £1m life savings on cheeseburgers, champagne and gold
Crooks who swindled a woman out of her £1 million ($1.5 million) life savings, and blew their ill-gotten gains on cheeseburgers, gold and computers, are now facing jail time.
Monday review - the hot 19 stories of the week
It's that time of the week again - here's your roundup of everything we wrote in the last seven days.
An unholy alliance - Fake Anti-Virus, meet Bogus Support Call!
What happens when a scammer decides to marry fake anti-virus and bogus support calls?
Paul Ducklin has a bit of a weekend chuckle at the result...
![Password security infomerical leaves Ellen DeGeneres in disbelief.. and it will you too [VIDEO]](http://sophosnews.files.wordpress.com/2013/04/ellen-thumb.jpg?w=75&h=75&crop=1)
