Technologies

(get it in RSS or Atom)

Monday review - the hot 22 stories of the week

by Anna Brading on April 22, 2013 | Leave a comment
Monday review - the hot stories of the week

In case you missed any recent stories, here's everything we wrote in the last seven days.

Apple updates Safari, gives better control over Java applets

by Paul Ducklin on April 18, 2013 | 1 Comment
safari-250

Apple has pushed out a Safari update to go along with this week's "Java Tuesday" fix.

It's supposed to give you finer-grained control over Java in your browser.

Paul Ducklin puts it through its paces...

Snapchat sexting spam - how to stop messages from Honey Crush 9 and her friends

by Graham Cluley on April 18, 2013 | 4 Comments
Snapchat sexting spam - did you get a message from Honey Crush 9?

Many Snapchat users complain that they were sent photos from scantily-clad women with names such as "Honey.Crush9" inviting them to join them in a Skype conversation.

Here's what happened, and how to stop it from happening again.

Oracle and Apple ship critical Java updates - get yours today!

by Paul Ducklin on April 17, 2013 | 12 Comments
java-now-250

The security-beleaguered Java ecosystem usually gets updates just once every four months, in February, June and October.

But this year, Oracle has adapted that schedule a number of times, and this is one of them...

Researcher rewarded over $30,000 for nailing three Chrome OS security flaws

by Lisa Vaas on April 16, 2013 | 3 Comments
Researcher rewarded $30K+ for nailing three Chrome OS flaws

The high-risk bugs must have been poisonous indeed, given that researcher Ralf-Philipp Weinmann is looking at a $31,336 thank-you.

FAA and security researchers at odds over airplane hack security

by Lisa Vaas on April 16, 2013 | 8 Comments
Airplane. Image from Shutterstock

The avionics bigwigs FAA and EASA have said "bunk!" to a researcher's claims that his new Android app could potentially hack planes.

OK, says fellow plane hacker "Renderman," if that's true, there's no harm in giving public access to your test labs, now is there?

Monday review - the hot 21 stories of the week

by Anna Brading on April 15, 2013 | Leave a comment
Monday review

In case you missed anything, here's everything we wrote in the past seven days.

Facebook Home - Great if you think privacy is dead

by Chester Wisniewski on April 14, 2013 | 9 Comments
FacebookHome250

Facebook has introduced a new way to utilize its services on Android mobile phones. Facebook Home streamlines keeping in touch with friends, their photos, Likes and shares. The issue is how it impacts your privacy, even if you choose not to use it yourself.

Planes can be hacked remotely with Android app, researcher claims

by Lisa Vaas on April 12, 2013 | 7 Comments
Planes can be hacked remotely with Android app, researcher claims

A security research has cooked up an exploit framework and Android app that can be used, at least theoretically, to hack a plane, including changing its destination or even crashing the aircraft.

Microsoft tells all Windows 7 users to uninstall security patch, after some PCs fail to restart

by Graham Cluley on April 12, 2013 | 60 Comments
Microsoft tells all Windows 7 customers to uninstall security patch, after some users report crashes

Microsoft has advised all users of Windows 7 who installed a security update to uninstall it, after some customers found their computers would not restart or applications would not load.

Microsoft fixes 9 flaws, Adobe 3 in April's Tuesday update

by Chester Wisniewski on April 9, 2013 | 3 Comments
Patch Tuesday

As expected Microsoft released seven important and two critical fixes for Windows, Internet Explorer and other Microsoft products. Adobe followed suite releasing fixes for ColdFusion, Flash and Shockwave. Patch now!

SSCC 106 - US DoD and BYOD, "scanner" malware, 2FA, and browser wars revisited [PODCAST]

by Paul Ducklin on April 9, 2013 | 1 Comment
sscc-106-250

For your listening pleasure, here's the latest episode in our popular "Chet Chat" series.

Senior Security Advisor Chester Wisniewski discusses the latest security news with regular guest Paul Ducklin in an entertaining and easily-digested quarter-hour podcast.

Windows XP death watch: 365 days remaining

by Joshua Long on April 8, 2013 | 35 Comments
Windows XP death watch: 365 days remaining

On April 8th, 2014, Microsoft will terminate Extended Support for Windows XP.

That means no more security updates. Be prepared and upgrade now.

Monday review - the hot 17 stories of the week

by Anna Brading on April 8, 2013 | Leave a comment
Monday review - the hot stories of the week

Catch up with everything we've written in the last seven days - it's weekly roundup time.

Microsoft to issue 9 security updates on Tuesday, critical for all IE versions, reboot required

by Paul Ducklin on April 7, 2013 | 12 Comments

Microsoft has issued its usual advance notification for the coming week's Patch Tuesday.

If you use Windows you're probably affected, and you'll probably need to reboot all your PCs and most of your servers...

Google announces brand new web browser core, so does Mozilla

by Paul Ducklin on April 4, 2013 | 5 Comments

When you wait ages for a bus, and then three come along at once, it's not a coincidence: it's a side-effect of queuing and traffic lights.

But what about when three browser vendors make announcements on the same day?

The biggest Mac malware attack of all time - blogger names suspected mastermind

by Graham Cluley on April 3, 2013 | 13 Comments
Suspected mastermind behind biggest Mac malware attack of all time

Award-winning security blogger Brian Krebs has shared details of his investigation into who might have been behind Flashback - which hit more than 600,000 Mac computers in early 2012

Firefox 20 arrives - new version, some security improvements, no known vices

by Paul Ducklin on April 2, 2013 | 14 Comments
ff20-250

Firefox 20.0 was released today.

The buglist page enumerates 3054 official changes, with eleven patched vulnerabilities, three at "Critical" level.

Paul Ducklin takes a quick look...

Mobile device security in the US military comes under fire

by Beth Jones on April 2, 2013 | 7 Comments
Mobile device security in the US military comes under fire

A recent report by the US Inspector General revealed staggering flaws in the US military's management of mobile devices, and a severe lack of basic IT security protection in place for such devices.

SSCC 105 - HP printers, Google blocks ad blockers, Apple does the 2-step, and more...

by Paul Ducklin on March 27, 2013 | 1 Comment
sscc-105-250

Have you joined thousands of others, and become a loyal listener to the "Chet Chat" yet?

Here's the latest Naked Security podcast, Sophos Security Chet Chat 105, discussing a range of recent and newsworthy topics from the world of computer security.