Malware

(get it in RSS or Atom)

SSCC 166.5 - Special edition from the Virus Bulletin 2014 conference [PODCAST]

chet-chat-logo-featured-250

Sophos security expert Chester Wisniewski was at the Virus Bulletin 2014 conference in Seattle.

In this special edition of the Chet Chat, Paul Ducklin puts Chet on the other side of the mic to find out more about both the technology and the ethics of anti-malware research.

3 essential security tasks - have you done them yet?

Do These 3 More

Tomorrow marks a year since we published our '3 essential security tasks', so we thought we'd revisit it to ask if you've done them all. If you haven't, there's still time!

Point-of-Sale vendor loses password, causes breaches at 324 US restaurants

In its own words, a US point-of-sale vendor "acts to Block Payment Card Security Incident."

Bit late for the 324 restaurants that were breached for between 3 days and 3 months in the incident...

Are you tired of weak or fake zero-day exploits? 60 Sec Security [VIDEO]

60ss-video-250

Watch our latest 60 Second Security video!

An entertaining but insightful look at the week's security woes - in just one minute...

Kim Kardashian, Vanessa Hudgens, et al. targeted in latest naked celebrity photo leak

Celebgate redux: Alleged nudies of Kim Kardashian, Vanessa Hudgens et al. doxed

Early on Saturday morning, Celebgate flooded the same sites as it did three weeks ago - 4Chan and Reddit, among others - as cyber crooks again posted nude celebrity photos, despite the scuffle of threatened lawsuits and attention from the FBI.

Home Depot breach totals: 56 million credit cards exposed, $62 million in losses

Home Depot data breach

Lots of people who speculated about the credit card data breach at the Home Depot turned out to be wrong.

But those who suggested that Home Depot's breach might end up bigger than Target's turned out to be spot on.

SSCC 165 - "U2 or not U2," that is the question [PODCAST]

chet-chat-logo-featured-250

It's Chet Chat time!

Here's this week's episode of our news-you-can-use security podcast...

From the Labs: VBA is definitely not dead - in fact, it's undergoing a resurgence

Fake Sophos Encryption

Our most recent detection statistics show that using Visual Basic code in malicious documents is a trend on the rise. So why have malware authors turned to Visual Basic to do their bidding?

Why would we let you say "No" to something that's free? 60 Sec Security [VIDEO]

60ss-video-250

Here's our latest 60 Second Security video for your viewing pleasure.

Enjoy...

SSCC 164 - Spend Bitcoins using Apple Pay? *NOW* you've got me interested! [PODCAST]

chet-chat-logo-featured-250

Here's this week's Sophos Security Chet Chat for your listening pleasure.

Our weekly computer security podcast with the News You Can Use...

Patch Tuesday wrap-up, September 2014 - why even a single-bit data leak is worth fixing

patch-tuesday-denim-250

Here's what you need to know about the September 2014 Patch Tuesday updates from Microsoft and Adobe...

Home Depot says, "Er, yes, we did have a breach actually"‏

Home Depot

Just how big and bad it will turn out to be is still unknown...all we know so far is that Home Depot has officially confirmed that, yes, there was indeed a breach.

HealthCare.gov breached, injected with malware

HealthCare.gov breached, injected with DoS malware

Federal health officials have discovered that the US insurance exchange site HealthCare.gov was breached in July, when an intruder uploaded malware with the apparent motive of using the system to launch cyberattacks against other sites.

Why is Google sending insecure browsers back in time?

Why is Google sending insecure browsers back in time?

Google's search page has seemingly gone back in time - but only for users stuck in the last decade. If you're using an internet antique, take Google's hint and upgrade now.

Racing Post let off with stern warning after data breach

Racing Post let off with stern warning after data breach (Cheryl Ann Quigley / Shutterstock.com)

The Racing Post, which suffered a data breach affecting over 677,000 users late last year, has been slacking off on its security arrangements since at least 2007. It's been given until the end of February 2015 to get its house in order.

SSCC 162 - What are *you* doing to fight cybercrime in the next 12 months? [PODCAST]

chet-chat-logo-featured-250

Here's this week's Chet Chat podcast!

Chester caught Duck half way up a mountain to talk about why we need synergy to fight cybercrime...

Massive cyber attack on oil and energy industry in Norway

Massive cyber attack on 300 Norwegian oil and energy industry

As many as 300 oil and energy companies have been targeted in the largest ever coordinated cyber attack in Norway.

Duping the machine - the cunning malware that throws off researchers

Malware. Image courtesy of Shutterstock

Traditionally, when malware detects that it is not running in a genuine victim setting, it will simply exit immediately. But there's a certain subset of malware families that are more cunning when they detect an analysis environment...

Secret Service says "Backoff" malware hit 1000 businesses - 6 tips to keep your data safe

Backoff malware strike 1,000 US businesses

In a security advisory from the US Secret Service, the government said the malware known as Backoff has struck more than 1000 US companies since October 2013...

Monday review - the hot 21 stories of the week

dow-250

Catch up with everything we wrote in the last seven days - it's weekly roundup time...