Technologies

(get it in RSS or Atom)

Samsung Galaxy S5 fingerprint reader hacked - it's the iPhone 5s all over again!

samsung_galaxy_s5_fingerprint_scanner-250

The Samsung Galaxy S5 fingerprint scanner can be fooled with wood glue, just like Apple's "Touch ID" sensor in the iPhone 5s.

So why are both Apple and Samsung touting fingerprint scanners as more secure than passwords?

No Heartbleed holes in Java, but here comes a sea of patches anyway

hb-no-250

Oracle's quarterly Patch Tuesday updates are out.

Java gets 37 fixes, 35 of them what Oracle calls "Remote Exploit without Authentication".

The silver lining? No Heartbleed bug in Java Standard Edition...

Heartbleed, Google Play and XP - 60 Sec Security [VIDEO]

2014-04-12-thumb-250

How hard is Heartbleed recovery? How hard does Google Play try to keep the garbage out? And how hard are you trying to get over XP?

60 Second Security has the answers in a short, fun security video.

SSCC 142 - Heartbleed explained, Patches assessed, Apple chastised [PODCAST]

sscc-142-250

Chet and Duck explain what you can do about the big ticket security news items of the past week.

The epic "Heartbleed" bug in OpenSSL, the last patches ever for XP and Office 2003, and Apple's attitude to updates and support all come under the microscope.

Google takes down fake anti-virus app that duped 10,000 users on Play Store

virus-shield-250

The Virus Shield app cost $3.99 and claimed to be a scanner that protected Android devices from viruses, while promising to never annoy users with pop-up ads found on many free apps.

Too bad for the 10,000 people who paid for it - Virus Shield was a fake.

Fancy a free upgrade from XP to Windows 8.1? Here's how...

winzero-250

Don't get too excited.

If you're one of those XP users who thinks that Microsoft should support you forever, for nothing, this isn't for you.

But there *are* free Windows licences up for grabs.

Patch Tuesday for April 2014 - it's Goodbye, Farewell and Amen for Windows XP

pt-2014-04-250

The date's been in our diaries since 2007.

But even with seven years to prepare for it, you'll be forgiven for approaching the April 2014 Patch Tuesday with a bit of a lump in your throat.

Adieu, XP.

Apple patch out, Fake support bust, Liquor store leak - 60 Sec Security [VIDEO]

2014-04-05-justice-250

How long did Apple leave holes in Safari? What punishment can a convicted support call scammer expect? And what happens when a liquor store springs a leak?

Find out in 60 Second Security. the security news video that only takes a minute...

Google takes aim at deceptive advertising of Play Store apps

play-250

Google has announced updates to its developer policies for the Play Store app market to ban certain types of misleading and underhanded advertising behavior.

We look at three apps that use now-forbidden promotional tactics, plus we offer security tips to help you avoid unwanted and malicious apps.

Apple updates OS X Safari - patches a year's worth of holes, but not on Snow Leopard

safari-250

In all the excitement over the End of Windows XP and next Tuesday's Ultimate Update...

...we sort of forgot to write about Apple.

Here's the scoop on the lates OS X Safari browser update, patching 27 vulnerabilities.

Is Amazon hacking our apps? Or doing us all a security favour?

aws-1-250

A war of words that started out as a fairly stinging criticism of Amazon has mellowed out into praise for the cloud services behemoth.

It seems that Amazon is checking mobile apps for security risks, and heaping advice on developers who have wandered off the straight and narrow...

SellHack browser plugin ceases squeezing LinkedIn for hidden email addresses

SellHack logo

The free extension promised to "hack" LinkedIn profiles to get at what should be users' tucked-away, private email addresses. Much to LinkedIn's chagrin, it was doing just that (albeit spottily) until it got LinkedIn's cease and desist order, took the plugin offline and pledged to shape it into something that passes terms of service muster.

Kill-switch for mobile phones could save US consumers $2.6B per year, says report

Kill-switch for mobile phones could save US consumers $2.6B per year, says report

US consumers are spending CRAZY money to replace stolen phones and to insure the pocket-sized thief magnets, says a new report from Creighton University.

SSCC 141 - Adobe revisited, MS-DOS, Word, XP, Snapchat and backup [PODCAST]

sscc-141-thumb-250

Chet and Duck get together once again to look at the week's news with their usual blend of humor, insight and informed intensity....

Take a listen to the latest episode of our weekly quarter-hour podcast!

42 days to go for XP - 8 tips if you aren't going to make it

42-250

A. 42.

Q. How many days left in Windows XP?

Bitcoin, Snapchat and XP as you've never heard them before - special coverage for April the First!

naksec-verse-250

Instead of doing an April Fool, we've gone for some April Fun.

We took three recent computer security stories, and turned them into poems!

Monday review - the hot 21 stories of the week

dow-250

Make sure you're up to date with everything we wrote in the last seven days - it's weekly roundup time.

SSCC 140 - Does Windows have more holes than OS X? Whither messaging privacy? [PODCAST]

sscc-140-thumb-250

How bad is the latest Microsoft Word 0-day? Does OS X really need patching less often than Windows? What does Gmail's move to HTTPS-only really mean? And if WhatsApp has privacy coded into its DNA, is it coded into its app, too?

Chet and Duck get stuck in...

Spyware app turns the privacy tables on Google Glass wearers

Google Glass

A spyware app developed by two researchers has shown that Google Glass can be used to secretly take photos of whatever a Glass wearer is looking at without their knowledge - making the Glass user the one whose privacy and security is potentially compromised.

Microsoft issues alert for Word zero-day - booby-trapped RTF files already used in attacks

wordhazard-250

Booby-trapped RTF files have been found in the wild, exploiting a zero-day hole in Microsoft Word.

Microsoft has issued an alert.

Paul Ducklin gives you four tips for long-term safety against this sort of attack...