(get it in RSS or Atom)

Bitcoin, Snapchat and XP as you've never heard them before - special coverage for April the First!


Instead of doing an April Fool, we've gone for some April Fun.

We took three recent computer security stories, and turned them into poems!

SSCC 139 - PWN2OWN, browser updates, Target alerts, PCI DSS and phishing [PODCAST]


Is a browser less secure if more people like to hack it? Is it OK to ignore alerts simply because you get too many? Do you back yourself to spot every single phish? And just how smart is the Google Play Store?

Chester and Duck dissect these issues with their usual style in this week's Chet Chat podcast...

Anatomy of a Bitcoin phish - don't be too quick before you click!


Paul Ducklin looks at a recent Bitcoin phish, and offers some tips on how not to get suckered in just because things look familiar...

Where have all the Bitcoins gone?


The Bitcoin infrastructure isn't perfect - for example, it has a cryptographic problem known euphemistically as "transaction malleability."

But can this alone explain missing Bitcoins to the tune of $500,000,000?

­Silk Road 2.0 emptied out by a hole in its Bitcoin pocket

­Silk Road 2.0 emptied out by a hole in its Bitcoin pocket

With three other Silk Road copycat sites having run off with users' funds since the original Silk Road was shut down, the dark web is turning into a glum place to shop for drugs, firearms and forged IDs.

Million-dollar fine for sneaky Bitcoin botnet builders


New Jersey has slapped a million-dollar fine on an on-line gaming company that sneakily used its own anti-cheating software to mine Bitcoins on its customers' computers.

The company is paying under protest, claiming a "deep misunderstanding of the nature of our business."

SSCC 126 - Zero-day, Bitcoins, passwords and randomness [PODCAST]

Turn bad news into good with "what you can do better" advice from Chet and Duck.

Learn from: an XP zero-day, a spate of Bitcoin "bank robberies," the outcome of a European user security survey, and yet another cryptographic blunder, this time from Drupal.

Bitcoin online bank robbery - "because that's where the money is"


Paul Ducklin looks why hackers are more than merely interested in online Bitcoin repositories - and why you need more than just a hunch about a repository's trustworthiness before you hand over your Bitcoin data.

Bitcoin forum hacked in aftermath of Silk Road takedown

Bitcoin forum hacked in aftermath of Silk Road takedown was hacked on Wednesday, just hours after the FBI shut down online marketplace Silk Road. The site's administrator, who admitted that the attack was "worse than I thought", is offering 50 Bitcoins (around $6,500) to the first person to explain in detail how the attack occurred.

Monday review - the hot 20 stories of the week


It's weekly roundup time!

Here's all the great stuff we've written in the past seven days.

Android randomness, Sniffer dustbins, Unpatch Wednesday, ATM skimming - 60 Sec Security [VIDEO]


How does a bug in Android put your Bitcoins at risk? Why did the City of London bin its bins? What was Unpatch Wednesday? What to do with a 3D printer after you've made your own gun?

Find out in 60 seconds!

SSCC 114 - Bitcoins and randomness, OpenX and trust, Email and privacy [PODCAST]


News, opinion, advice and research!

Chet and Duck bring you their unique and entertaining combination of all four in their regular quarter-hour podcast.

Android random number flaw implicated in Bitcoin thefts


Bitcoin is in the news again.

Seems that a random number problem on the Android platform is letting crooks get away with cryptographic fraud to make off with other people's BTCs...

Digital currency Liberty Reserve shut down by US governement


This week US authorities shut down Liberty Reserve, an online currency favored by cybercriminals. Will enforcement actions have any real impact on the underground economy?

SSCC 108 - WW2 crypto, Bitcoin mining, internet cameras, password breaches [PODCAST]


Chester calls home from Interop in Las Vegas to record the latest episode of the Sophos Security Chet Chat.

Join Chester and guest Paul Ducklin in their regular quarter-hour podcast as they laugh about (and lament) the latest goings-on in the world of computer security.

Monday review - the hot 20 stories of the week

Monday review

Get up to date with everything we wrote in the past seven days - it's weekly roundup time.

Network gaming company uses its "cheat-prevention" client to build a Bitcoin botnet


One problem with network games: how do you trust the other people in the contest?

You could build a network that requires your customers to installed a special "cheat-blocker" client...

...and then use the client to mine Bitcoins.

Anatomy of a problem - Bitcoin loses 25% in value due to a long-missed bug

We've written before about Bitcoin problems caused by the exchanges that let you trade real money into and out of bitcoins.

This time, it wasn't the surrounding ecosystem that turned out to have feet of clay, but the software behind Bitcoin itself...

SSCC 98 - RSA keys, Blackhole exploits, Nitol botnets and Apache takes potshots at Microsoft

SSCC 98 - RSA key safety, Blackhole exploit kit updated, Nitol botnet takedown and Apache takes potshots at Microsoft

Duck joins Chet to take on the latest security news.

As usual, they don't mince their words, so take a listen and enjoy a quarter-hour mix of news, opinion, advice and research..

Monday review: the hot 20 stories of the week

Monday review: the hot 26 stories of last week

In case you missed any of these stories, here's everything we wrote in the last seven days.