Uncategorized

(get it in RSS or Atom)

eBay's StubHub ransacked for over $1 million, international crime ring arrested

StubHub logo

US police have indicted six people across four countries on charges of defrauding eBay's StubHub for over $1 million in pilfered tickets for things like Jay-Z and Justin Timberlake concerts. eBay says its servers weren't broken into; rather, password reuse and account holders' PCs being riddled with malware are to blame.

Car hackers build anti-car-hacking gadget

Cars. Image courtesy of Shutterstock.

Besides yet more white-knuckled car-jacking stunts, security researchers Charlie Miller and Chris Valasek also plan to unveil at next month's Black Hat conference a prototype device meant to foil the type of hacks they've been throwing at cars.

"Rickmote" box Rickrolls Chromecast, forcibly earworms hapless victims

Image courtesy of Dan Petro, Bishop Fox IT

Never gonna give you up, Never gonna let you down, Never gonna run around and desert you.

DARPA dissects Twitter, Facebook, Reddit to extract propaganda how-to's

DARPA

The internet found out last week that Facebook's been dissecting us. Now, it looks like DARPA's been at it too, with research on users of Facebook, Twitter, Reddit, Pinterest, Kickstarter and Digg.

Revenge porn hits two high profile boyfriends where it hurts

Voodoo doll. Image courtesy of Shutterstock

Former NSA analyst and vocal NSA supporter John Schindler had his pink parts exposed by a lover in an extramarital affair, and a state representative's chief of staff was outed by a porn star ex-girlfriend and subsequently resigned. Revenge porn might typically target women, but these cases clearly show that we're all vulnerable when it comes to sharing explicit content.

22-year-old "organized crime" cybercrook convicted under racketeering law gets TWENTY years

justice-250

David Ray Camez was just 17 when he embarked on life as a cyberfraudster, ending up in prison for seven years. But he was subsequently also convicted under racketeering laws, which provide for stiffer penalties.

Now he's been sentenced...

US Navy sailor allegedly led team that hacked government computers

Navy. Image courtesy of Shutterstock.

A US Navy systems administrator stationed on the nuclear aircraft carrier USS Harry S. Truman acted as ringleader for a gang of anti-government cyber crooks, prosecutors alleged last week.

Cops get serious about cybercrime, and not before time

handcuffed-250

The world's police forces are, it seems, starting to appreciate the scale and significance of the cybercrime problem.

Let's hope the process of international co-operation continues to pick up the steam we've been seeing in the last few weeks.

Patch Tuesday April 2014 - XP's last breath

istock_patchtuesday250

Patch Tuesday for April 2014 is here. In addition to being the final Windows XP fix released by Microsoft we have fixes for all versions of Windows, Office and even an Adobe Flash update.

Online clothing store Witchery lets customers view - and edit! - each other's personal information

According to a News Limited report, customers visiting clothing retailer Witchery's mobile website were able to get at the PII of other users via a feature called "track my order."

Customers could also view every order currently being processed, not just their own...

US local police department pays CryptoLocker ransom

Police advice if you are hit by CryptoLocker is to take it on the chin, and not to pay up.

That's a pretty hard demand to make of anyone, and all but impossible to insist on for everybody, but you would at least expect the police themselves to follow it...

Please don't spread the Facebook "giraffe picture" hoax!

giraffe-250

A bizarre warning is circulating on Facebook urging you not to change your profile picture to a giraffe.

It's a hoax - so please don't spread it, even if you think it's amusing: false alarms just make us collectively less likely to react when there really is a problem.

Good morning, Las Vegas! Some genuinely serious hints to finish the #sophospuzzle in time!

win-250

C'mon BlackHatters! You're way behind the Rest Of World in solving the #sophospuzzle.

There's still time to win that 3D printer!

With these hints, there is no excuse...

Sysadmin day? *SYSADMIN DAY*? Angry techie takes against Naked Security...

dearnaksec-250

No sooner had we launched our "Worst things to ask a sysadmin" poll than we received an anonymous email from a disgruntled sysadmin called Simon Oliver Meone.

He questioned the relevance of the questions in the poll...

AT&T hacker and internet troll 'Weev' appeals 41-month prison sentence

AT&T hacker/Internet troll 'Weev' appeals 41-month prison sentence

The EFF has filed an appeal seeking to free the hacker and self-described internet troll, who exploited a hole in AT&T's publicly facing website to siphon the personal data of more than 100,000 iPad owners.

Monday review - the hot 15 stories of the week

Monday review

It's weekly roundup time. Here's all the great stuff we've written in the past seven days.

Beware Twitter "password check" sites - there are fakes, and there are fake fakes!

fakefake-250

After a widely publicised hack or data breach, you'll often find "password check" sites springing up.

Some of them are legitimate, but other password check sites are as bogus as they sound on the surface...

Monday review - the hot 31 stories of the week

Here you go.

All the stories we wrote in the past seven days, in case you missed anything (or just want to read them again).

Sophos staff win Movember contest while raising money for prostate cancer research

Onur Komili from Team Mophos

Sophos Vancouver steps up to raise funds for men's health research and wins some contests in the process.

Shh/Updater-B false positive by Sophos anti-virus products

Default image

Some Sophos customers have reported detections today of Shh/Updater-B. Sophos would like to reassure users that these are false positives and are not a malware outbreak.