http://nakedsecurity.sophos.com Computer Security · News · Opinion · Advice · Research Wed, 22 May 2013 01:06:54 +0000 en hourly 1 http://wordpress.com/ http://s2.wp.com/i/buttonw-com.png http://nakedsecurity.sophos.com http://nakedsecurity.sophos.com/2013/05/20/monday-review-2/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed http://nakedsecurity.sophos.com/2013/05/20/monday-review-2/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed#comments Mon, 20 May 2013 09:53:48 +0000 Anna Brading http://nakedsecurity.sophos.com/?p=226640 ]]> http://nakedsecurity.sophos.com/2013/05/20/monday-review-2/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed/feed/ 0 Monday review annabrading http://nakedsecurity.sophos.com/2013/05/17/apple-fixes-41-itunes-security-flaws-some-more-than-a-year-old/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed http://nakedsecurity.sophos.com/2013/05/17/apple-fixes-41-itunes-security-flaws-some-more-than-a-year-old/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed#comments Thu, 16 May 2013 23:52:21 +0000 Chester Wisniewski http://nakedsecurity.sophos.com/?p=226524 ]]> http://nakedsecurity.sophos.com/2013/05/17/apple-fixes-41-itunes-security-flaws-some-more-than-a-year-old/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed/feed/ 12 iTunes-11-250 chesterwisniewski iTunes-11-170 Webkit_Logo170 http://nakedsecurity.sophos.com/2013/05/14/mozilla-pushes-out-new-firefox-and-thunderbird-8-security-advisories-3-critical-fixes/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed http://nakedsecurity.sophos.com/2013/05/14/mozilla-pushes-out-new-firefox-and-thunderbird-8-security-advisories-3-critical-fixes/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed#comments Tue, 14 May 2013 22:30:23 +0000 Paul Ducklin http://nakedsecurity.sophos.com/?p=226259 ]]> http://nakedsecurity.sophos.com/2013/05/14/mozilla-pushes-out-new-firefox-and-thunderbird-8-security-advisories-3-critical-fixes/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed/feed/ 3 pducklin http://nakedsecurity.sophos.com/2013/05/14/may-patch-tuesday-critical-for-users-of-internet-explorer-and-web-based-services/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed http://nakedsecurity.sophos.com/2013/05/14/may-patch-tuesday-critical-for-users-of-internet-explorer-and-web-based-services/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed#comments Tue, 14 May 2013 19:26:11 +0000 Chester Wisniewski http://nakedsecurity.sophos.com/?p=226224 ]]> http://nakedsecurity.sophos.com/2013/05/14/may-patch-tuesday-critical-for-users-of-internet-explorer-and-web-based-services/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed/feed/ 3 Patch Tuesday chesterwisniewski patchtuesday170 ie-170 adobe-170 http://nakedsecurity.sophos.com/2013/05/13/monday-review-the-hot-19-stories-of-the-week/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed http://nakedsecurity.sophos.com/2013/05/13/monday-review-the-hot-19-stories-of-the-week/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed#comments Mon, 13 May 2013 09:52:16 +0000 Anna Brading http://nakedsecurity.sophos.com/?p=226037 ]]> http://nakedsecurity.sophos.com/2013/05/13/monday-review-the-hot-19-stories-of-the-week/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed/feed/ 0 Monday review annabrading http://nakedsecurity.sophos.com/2013/05/09/redkit-exploit-kit-part-2/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed http://nakedsecurity.sophos.com/2013/05/09/redkit-exploit-kit-part-2/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed#comments Thu, 09 May 2013 11:03:49 +0000 Fraser Howard http://nakedsecurity.sophos.com/?p=225752 ]]> http://nakedsecurity.sophos.com/2013/05/09/redkit-exploit-kit-part-2/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed/feed/ 5 A closer look at the malicious Redkit exploit kit fraserhoward Red eye. Image from Shutterstock Obfuscated payload URL passed into Java Java code to decode payload URL Security bypass in Redkit Reversed AES/CBC/NoPadding string Start of encrypted, downloaded file Decryption key and iv parameter within the Java code Java code to check for marker in decoded file Logic to save and execute one or two payload executables Decoded payload showing marker separating the two malicious executables Summary of Redkit exploitation process http://nakedsecurity.sophos.com/2013/05/09/nordstrom-tracking-customer-smartphones-wifi-sniffing/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed http://nakedsecurity.sophos.com/2013/05/09/nordstrom-tracking-customer-smartphones-wifi-sniffing/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed#comments Thu, 09 May 2013 09:46:37 +0000 Lisa Vaas http://nakedsecurity.sophos.com/?p=225765 ]]> http://nakedsecurity.sophos.com/2013/05/09/nordstrom-tracking-customer-smartphones-wifi-sniffing/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed/feed/ 20 Nordstrom tracking customer movement via smartphones' WiFi sniffing nslisavaas Wifi in shopping cart. Image from Shutterstock Smartphone with wifi. Image from Shutterstock http://nakedsecurity.sophos.com/2013/05/09/microsoft-rushes-out-cve-2013-1347-fix-it-for-the-latest-internet-explorer-zero-day/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed http://nakedsecurity.sophos.com/2013/05/09/microsoft-rushes-out-cve-2013-1347-fix-it-for-the-latest-internet-explorer-zero-day/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed#comments Thu, 09 May 2013 09:19:13 +0000 Paul Ducklin http://nakedsecurity.sophos.com/?p=225813 ]]> http://nakedsecurity.sophos.com/2013/05/09/microsoft-rushes-out-cve-2013-1347-fix-it-for-the-latest-internet-explorer-zero-day/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed/feed/ 4 fixit-250 pducklin Click on the image to leap to the Microsoft SWI blog post... Click on the image to leap to the Microsoft SWI blog post... http://nakedsecurity.sophos.com/2013/05/07/pentagon-oks-androids-blackberrys-for-soldiers/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed http://nakedsecurity.sophos.com/2013/05/07/pentagon-oks-androids-blackberrys-for-soldiers/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed#comments Tue, 07 May 2013 13:26:18 +0000 Lisa Vaas http://nakedsecurity.sophos.com/?p=225586 ]]> http://nakedsecurity.sophos.com/2013/05/07/pentagon-oks-androids-blackberrys-for-soldiers/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed/feed/ 2 Pentagon OKs Androids, BlackBerrys for soldiers nslisavaas US Department of Defense Logo First unit readies for Afghanistan with new network http://nakedsecurity.sophos.com/2013/05/06/monday-review-the-hot-20-stories-of-the-week-4/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed http://nakedsecurity.sophos.com/2013/05/06/monday-review-the-hot-20-stories-of-the-week-4/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed#comments Mon, 06 May 2013 11:30:44 +0000 Anna Brading http://nakedsecurity.sophos.com/?p=225573 ]]> http://nakedsecurity.sophos.com/2013/05/06/monday-review-the-hot-20-stories-of-the-week-4/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed/feed/ 0 Monday review annabrading