Data loss

(get it in RSS or Atom)

"You're under arrest for possession of an insecure phone" - 60 Sec Security [VIDEO]

60ss-video-250

Here's this week's 60 Second Security video.

News you can use in a format you can enjoy...all in 60 seconds!

The UPS Store breach - what went wrong and what UPS got right

UPS apologizes for data breach

Data breaches at 51 UPS Stores in two dozen US states have put as many as 100,000 customers at risk of identity theft and credit card fraud, after malware was found on the stores' networks.

Clearly something went wrong, but here's what UPS got right ...

SSCC161 - What do you mean, "Trade him for Edward Snowden"? [PODCAST]

chet-chat-logo-featured-250

Here's the latest Chet Chat security podcast!

Sophos experts Chester Wisniewski and Paul Ducklin once again turn plain old news into advice you can use.

5 excuses for doing nothing about computer security!

Here are five security excuses that we hear a lot, both from individuals and from small businesses.

We've given you some advice to help you argue back that security really does matter...

US won't release Russian MP's son being held on PoS hacking charges

US won't release Russian MP's son being held on PoS hacking charges

A US federal court has refused to release Roman Seleznev, arrested in the Maldives under suspicion of rigging retail PoS systems to rip off credit card details. Prosecutors say he was caught with over 2 million stolen cards on his laptop and that he'd been searching the US federal court electronic filing system for charges against him.

Supervalu says it was breached - is it the next Target?

supermarket-credit-card-250

US retailer Supervalu is warning customers that an intrusion of its network may have resulted in the theft of credit and debit card account numbers from up to 200 of its stores.

Meanwhile, a related data breach affected another 800 stores for which Supervalu provides IT services. Could this be the next Target?

The EPIC edition - 60 Sec Security [VIDEO]

60ss-video-250

One less opt-in app, one more Android virus, and a bunch of EPIC failures...

All in this week's 60 Second Security.

The top 5 privacy failures - what's the most epic fail of all? [POLL]

Epic privacy fails

The list of culprits in our eroding privacy is long, but some privacy fails stand out above the rest. So we're calling out five privacy killers that deserve an extra level of shaming.

Take our poll, and help us crown the most epic privacy fail of all ...

Android "Heart App" virus spreads quickly, author arrested within 17 hours

Q. How to attract the attention of the police if you're a bored student on summer vacation?

A. Write a virus that unleashes 20,000,000 SMSes, infects 100,000 devices, and steals personal data...

Monday review - the hot 20 stories of the week

dow-250

It's weekly roundup time!

Here's all the great stuff we've written in the past seven days.

The data breach apocalypse that wasn't - 60 Sec Security [VIDEO]

60ss-video-250

Malware, spam and hacking - and not all bad news, either!

Watch 60 Second Security for Aug 9, 2014...

Sophos Techknow - Firewalls Demystified [PODCAST]

techknow-logo-250-150

The word firewall has a lot more shades of meaning in 2014 than it did in 1994.

So...who better to help us to demystify the modern firewall than Sophos security expert Chester Wisniewski?

SSCC 159 - What can we learn from the "honeybot"? [PODCAST]

chet-chat-logo-featured-250

For your listening pleasure!

Here's this week's episode of the Sophos Security Chet Chat podcast...

1.2 billion logins scooped up by CyberVor hacking crew - what you need to do

sql-billions-250x250

Hackers have amassed a vast collection of stolen data, including 1.2 billion unique username/password pairs, by compromising over 420,000 websites using SQL injection techniques. This data haul may yet turn out to be a 'Heartbleed' moment for website owners who assume their sites are too small to be of interest to hackers.

HP finds that "Internet of Things" gadgets are sitting ducks

70% of internet gadgets are sitting ducks for attackers

TVs, webcams, thermostats, remote power outlets, sprinkler controllers, door locks, home alarms, scales and garage door openers: they're all flunking Security 101, with issues as bad as "Sure, go ahead, we consider '1234' to be a perfectly acceptable password."

Apple faces class action suit for tracking users without consent

Apple faces class action suit over location tracking

A Californian plaintiff says that nobody at Apple ever told her about tracking her whereabouts, nor did anybody ever ask for her permission. She says she only found out about it by watching a recent Chinese state TV report about iPhone being a security risk to the state.

Mozilla database leaks 76,000 email addresses, 4,000 passwords

Mozilla database leaks 76,000 email addresses, 4,000 passwords

Email addresses and encrypted passwords of thousands of Mozilla developers were accidentally exposed for a month - and there are no guarantees that they were not snaffled up by those with ill intent.

Monday review - the hot 22 stories of the week

dow-250

Make sure you're up to date with everything we wrote in the last seven days - it's weekly roundup time.

Bad passwords on PoS terminals lead to card stealing Backoff malware

MS-RDP250

This time the crooks are distributing their point-of-sale malware through remote control applications like Microsoft's RDP. No exploits, no social engineering, just good, old-fashioned password guessing.