The Bitcoin infrastructure isn't perfect - for example, it has a cryptographic problem known euphemistically as "transaction malleability."
But can this alone explain missing Bitcoins to the tune of $500,000,000?
The Gameover botnet gang has been trying new techniques lately: most recently comes the introduction of a kernel-mode rootkit called Necurs, making the malware harder to find and remove.
Senior Researcher James Wyke of SophosLabs investigates...
Where do you find Extreme Spammers? Can you find the exploit unicorn? And how did Target get breached?
Find out in 60 Sec Security for 08 Feb 2014...
Unlike conventional sporting events such as the Superbowl, the Six Nations or the Bundesliga, the SPAMPIONSHIP is one title that no team wants to win.
Find out who finished where...
What's the best way to deal with botnets? Should you use your bank's mobile app? Why all these data breaches? What about Patch Tuesday? Do you really *have* to update your Mac to Mavericks?
Listen as Chet and Duck dissect and explore the week's security stories...
The Target data breach story has turned into a bit of a bus: it's big, has lots of momentum, and three just came along at once.
First: 40M payment card details stolen. Second: 70M names, addresses and the like stolen. Third: looks like there was a specialised botnet involved.
Botnets, short for "robot networks", are more than just malware: they're the money making machinery of modern cybercriminals.
Paul Ducklin and James Wyke help you to understand the What, How and Why of this troublesome topic...
Since Microsoft took positive action against the ZeroAccess botnet at the beginning of December, SophosLabs has been paying close attention to see if the owners would attempt to revitalise the botnet and return it to profitability.
James Wyke looks into what happened...
Microsoft, in conjunction with Europol and the FBI, has successfully taken down the click fraud servers used by ZeroAccess, disrupting one of the world's largest and most resilient botnets.
New Jersey has slapped a million-dollar fine on an on-line gaming company that sneakily used its own anti-cheating software to mine Bitcoins on its customers' computers.
The company is paying under protest, claiming a "deep misunderstanding of the nature of our business."
The UK's National Crime Agency has put out a CryptoLocker ransomware alert - the malware is still a huge problem, even after weeks of high profile coverage.
Here's what YOU can do to help prevent it...
This article explains how the CryptoLocker ransomware works, including a short video showing you what it does.
The article tells you about prevention, cleanup, and recovery, and explains how to improve your security against this sort of threat in future.
Another calendar quarter is behind us, so it is once again time to wade into our spam traps and work out the latest SPAMPIONSHIP standings.
That's where we look at the sources of spam in order to calculate the Dirty Dozen spam sending countries.
Argentinian police have arrested a teenager, dubbed "the superhacker", who was allegedly bleeding $50,000 (£31,500) per month out of international money transfer and gambling websites.
Once every three months, we tot up our country-by-country spamtrap statistics for the previous quarter and calculate the Dirty Dozen.
Of course, this is one "competition" in which getting promoted into the Premier Division - the SPAMMIERSHIP - is a cause for disappointment, not jubilation...
Last week, Microsoft took aim at more than 1,400 Citadel botnets by sinkholing their command and control infrastructure.
What was the actual effect of this takedown? SophosLabs takes a look...
Graham Cluley argues that it's not cool, or funny, to hack into companies, expose the private information of members of the general public, and to launch denial of service attacks.