Security threats

(get it in RSS or Atom)

SSCC 165 - "U2 or not U2," that is the question [PODCAST]

chet-chat-logo-featured-250

It's Chet Chat time!

Here's this week's episode of our news-you-can-use security podcast...

Apple adds two-step verification for iCloud, effective immediately

icloud-250

Apple has listened, and extended its two-step verification system to iCloud.

It's a great start...but does it go far enough?

From the Labs: VBA is definitely not dead - in fact, it's undergoing a resurgence

Fake Sophos Encryption

Our most recent detection statistics show that using Visual Basic code in malicious documents is a trend on the rise. So why have malware authors turned to Visual Basic to do their bidding?

"Shocking" Android browser bug could be a "privacy disaster": here's how to fix it

browser-250

The Metasploit crew is calling this Android Browser bug a "privacy disaster.”

Here's what you can do to avoid trouble...

Man buys old servers, accuses Ernst & Young of data breach

Broken lock. Image courtesy of Shutterstock

Mark Morris claims he picked up some old servers for $300 and recently found out they're full of customer data. Ernst & Young wants the data deleted or just to get the servers back, but Morris says whoa, not so fast - time is money!

Firefox sneaks out an "inbetweener" update, with security improvements rather than fixes

Usually, if everything goes according to plan, Firefox updates appear every six weeks.

But if needs must, Mozilla delivers in-between updates, too, and that's what has happened here, bumping Firefox from version 32.0 to 32.0.1.

Why would we let you say "No" to something that's free? 60 Sec Security [VIDEO]

60ss-video-250

Here's our latest 60 Second Security video for your viewing pleasure.

Enjoy...

Target tops the list of most epic privacy fails

Target privacy fail

Our readers ranked Target’s data breach ahead of Adobe, Snapchat, Google Glass, and Talking Angela for the biggest privacy failure of the past year.

Serial hacker pleads guilty to bank bitcoin blackmail

Hacker. Image courtesy of Shutterstock

A 22-year-old with a lengthy history of convictions pleaded guilty last week to charges of blackmail and fraud, after threatening to reveal details of thousands of phished bank accounts if the bank involved refused to pay up.

SSCC 164 - Spend Bitcoins using Apple Pay? *NOW* you've got me interested! [PODCAST]

chet-chat-logo-featured-250

Here's this week's Sophos Security Chet Chat for your listening pleasure.

Our weekly computer security podcast with the News You Can Use...

Bitcoin inventor's identity allegedly under threat after claimed "Satoshi Nakamoto" email hijack

Bitcoin_SS_250

An anonymous internet user claims to have hacked the email account of Satoshi Nakamoto, the creator of virtual currency Bitcoin, and is threatening to unveil Nakamoto's identity for 25 Bitcoins.

Patch Tuesday wrap-up, September 2014 - why even a single-bit data leak is worth fixing

patch-tuesday-denim-250

Here's what you need to know about the September 2014 Patch Tuesday updates from Microsoft and Adobe...

Home Depot says, "Er, yes, we did have a breach actually"‏

Home Depot

Just how big and bad it will turn out to be is still unknown...all we know so far is that Home Depot has officially confirmed that, yes, there was indeed a breach.

HealthCare.gov breached, injected with malware

HealthCare.gov breached, injected with DoS malware

Federal health officials have discovered that the US insurance exchange site HealthCare.gov was breached in July, when an intruder uploaded malware with the apparent motive of using the system to launch cyberattacks against other sites.

How far would your sysadmins go to fix a problem? 60 Sec Security [VIDEO]

60ss-video-250

Here it is - this week's 60 Second Security video.

News that will amuse, and it only takes a minute...

Apple iCloud - 3 tips for keeping your photos and other data safe

iCloud

Apple confirmed it found no evidence of a security breach, but that some individual celebrity iCloud accounts were compromised. With that in mind, here are 3 tips to help protect you when using iCloud:

Is it thumbs up to Barclays bank's finger-vein-reading authentication?

Is it thumbs up to Barclays' finger-vein-reading authentication?

Barclays Bank has announced plans to introduce biometric authentication based on vein patterns in fingers for its UK business customers, which could signal a major shift in how we access online banking systems.

Why is Google sending insecure browsers back in time?

Why is Google sending insecure browsers back in time?

Google's search page has seemingly gone back in time - but only for users stuck in the last decade. If you're using an internet antique, take Google's hint and upgrade now.

Twitter adds unlimited payouts to its bug bounty program

Twitter adds unlimited payouts to its bug-bounty program

The social media buzz bucket announced on Wednesday that cash will be added to the profound gratitude it's doled out since the bug-reporting program started in June.

5 things you should know about email unsubscribe links before you click

Envelope. Image courtesy of Shutterstock

We all get emails we don’t want and cleaning them up can be as easy as clicking 'unsubscribe' at the bottom of the email. However, some of those handy little links can cause more trouble than they solve.