The US Department of Justice (DOJ) has charged nine individuals over their alleged involvement in a criminal organisation that stole millions of dollars from victims' bank accounts.
We'd like to urge any of you who are thinking of sending out "heartbleed" password reset emails: *please avoid those login links*.
Help us to help everyone get geared up to avoid phishing attacks.
Fallout from the epic Target data breach continues, as state lawmakers seek to hold retailers liable for financial damages caused by breaches spawned by their businesses, rather than financial institutions who issue credit and payment cards.
In all the excitement over the End of Windows XP and next Tuesday's Ultimate Update...
...we sort of forgot to write about Apple.
Here's the scoop on the lates OS X Safari browser update, patching 27 vulnerabilities.
A war of words that started out as a fairly stinging criticism of Amazon has mellowed out into praise for the cloud services behemoth.
It seems that Amazon is checking mobile apps for security risks, and heaping advice on developers who have wandered off the straight and narrow...
Chet and Duck get together once again to look at the week's news with their usual blend of humor, insight and informed intensity....
Take a listen to the latest episode of our weekly quarter-hour podcast!
In another case of a tech support cold calling scam, it seems Microsoft's free basic anti-malware was being installed for a fee ranging from £35 to £150. The owner of the support company insisted that his Indian call centre staff had carried out the scams against his wishes.
What should you do about the latest Word zero-day? What does Mr Rockefeller think of SnapChat? And is that MS-DOS I see before me?
Watch 60 Sec Security for 29 March 2014, and find out!
An identity theft focused spam campaign is doing the rounds pretending to be a winning notification from the American "green card lottery". Worse yet, the spammers decided to utilize imagery hosted on Naked Security.
Booby-trapped RTF files have been found in the wild, exploiting a zero-day hole in Microsoft Word.
Microsoft has issued an alert.
Paul Ducklin gives you four tips for long-term safety against this sort of attack...
Last week, SophosLabs alerted us to a Bitcoin phish orchestrated by email.
This week, it's a Bitcoin phish that relies on typosquatting.
Paul Ducklin offers some tips to keep you safe...
How do you get spyware on your victim, er, target's phone? Have Mac users changed their attitude to security? And how deep does privacy run at WhatsApp?
Find out in 60 seconds!
Security for Macs is often a hotly-debated topic, perhaps because Apple has a reputation for security that is based more on a brand promise than reality.
Don't panic. Here are five simple tips to help you get serious about security on OS X...
Is a browser less secure if more people like to hack it? Is it OK to ignore alerts simply because you get too many? Do you back yourself to spot every single phish? And just how smart is the Google Play Store?
Chester and Duck dissect these issues with their usual style in this week's Chet Chat podcast...
Jared James Abrahams, 20, a college student studying computer science, was sentenced to 18 months in federal prison on Monday - only the latest in a string of sextortionists to face jail time in Southern California as the law tracks them down.
Target's sophisticated security system went on full alert after detecting malware on the company’s network on 30 November last year and could have prevented the theft of 40 million credit and debit card numbers a few days later, according to a new report.
Here are the PWN2OWN results from Day Two, and an overview of the final payouts.
Chrome and Safari didn't get picked for Day One, but both of them were pwned on Day Two - twice for Chrome and once for Safari....
Join the dynamic duo for another entertaining quarter-hour on security.
There's Patch Tuesday, the impending end of XP, Advanced Persistent Threatitis, and some astonishing statistics about CryptoLocker.
In my day job as a tester of anti-malware solutions, I often get asked the same question: how do I plan to test against Advanced Persistent Threats, aka APTs? These threats are very different from your everyday malware, and testing protection against them turns out to be a very different kind of task.
SophosLabs expert Gabor Szappanos has written a highly-recommended report entitled "Advanced Persistent Threats - the new normal?"
Szappi explains how exploits once seen only in APTs are appearing ever more widely in money-making malware, and why that puts us all at ever greater risk.