(get it in RSS or Atom)

Google reports new shenanigans in ongoing Turkish internet blockade


Turkey recently blocked Twitter and YouTube, as well as Google's free Public DNS servers that many people used to get around the blockade.

Now Google reports another layer of "active intervention" by Turkish ISPs...

SSCC 134 - Patching, foisting, hacking and obfuscating [PODCAST]


Here's our latest security podcast, featuring Sophos experts Chester Wisniewski and Paul Ducklin.

Join the dynamic duo as they turn the latest news into a quarter-hour podcast that is informative, entertaining and educational.

SEA attempts to hack Facebook and other MarkMonitor domain customers

Facebook Photo Sync: Nine things you should know

The group known as the Syrian Electronic Army (SEA) attempted to commandeer the DNS records of Facebook, but were thwarted by DNS provider MarkMonitor. Are the basic protocols up to the task of protecting us in 2014?

Google Palestine hijacked: hackers say rename Israel to Palestine, listen to RiRi


Google's domain serving the Palestinian territories, Google Palestine, was hijacked on Monday by hackers urging Google to rename Israel to Palestine in Google Maps (and the rest of us to listen to Rihanna).

Syrian Electronic Army brings down Twitter and The New York Times through domain name provider hack


The Syrian Electronic Army attacked an internet domain name provider today taking down for a short time the websites of The New York Times and Twitter for some users,

The LinkedIn hack that wasn't


Bryan Berg, the co-founder of microblogging site App.net, pronounced earlier today that LinkedIn had been hacked.

That turned out to be not quite correct, as Paul Ducklin explains.

Hacked Go Daddy sites infecting users with ransomware


Computer users are getting infected with ransomware because criminals have managed to hack the DNS records of Go Daddy hosted websites.

Google disappears for Irish internet users - but was it a nameserver hack or admin screwup?

Google disappears for Irish internet users - but was it a nameserver hack or admin screwup?

Thousands of Google users in Ireland found that they were unable to access the site earlier today when the nameservers for google.ie began to point to a third-party site based in Indonesia.

But was it an admin cockup or the result of a malicious hack?

Microsoft settles lawsuit against 3322 dot org, reveals scale of Nitol botnet in China


Just over two weeks ago, we wrote enthusiastically about Microsoft's legal action against 3322 dot org.

That lawsuit has now been settled, with 3322 dot org's operator agreeing to a range of security-related conditions to get his domain back.

How millions of DSL modems were hacked in Brazil, to pay for Rio prostitutes

How millions of ADSL modems were hacked in Brazil to pay for Rio prostitutes

Brazilian hackers remotely took over 4.5 million home routers, and compromised their DNS settings in their plot to make a fortune.

And what did they spend the money on? Well, in some cases, Rio prostitutes..

Microsoft gets control of zombie domain, warns about malware "in the supply chain"

Microsoft gets control of zombie domain, warns about malware "in the supply chain"

Microsoft has announced, with perfectly rightful excitement, that a court in Virginia, USA, has given it control over the domain 3322 dot org.

This is one of the most prevalent call-home locations used by the Nitol malware - a family with tens of thousands of known variants.

Go Daddy largely unavailable for over 4 hours - Hacker revenge or SNAFU?


Today Go Daddy, the worlds largest domain name registrar, was unavailable for over four hours in the middle of the North American working day. Was it a malicious hacker or simple a colossal infrastructure failure?

Phishing without a webpage - researcher reveals how a link *itself* can be malicious

Phish without a web page? Yes you can!

Can you phish without a phishing page? Research by a student at the University of Oslo in Norway finds that, with the help of a trusty URI, ‘Yes, you can.’

Has Google said your PC is infected with DNS Changer malware?


Google is warning searchers that they could lose internet access on July 9th if they were hit by the DNS Changer malware - but could cybercriminals mimic the internet giant's warning for their own nefarious ends?

Internet doomsday on July 9th? Don't panic!

Internet doomsday on July 9th? Don't panic!

Users may not realise now that their computers are using rogue DNS servers to access the internet... but come July 9th, things might be rather different.

Find out how to check your computer, and how Sophos products can help.

Gumming up the internet: When DNS servers attack..


Operation Blackout's plan to shut down the internet this weekend may have come to nothing, but there is a way in which DNS servers can be used as part of a malicious attack.

Professor Alan Woodward explains more.

Has TechCrunch been hacked?

Has TechCrunch been hacked?

One of TechCrunch's web servers is serving up pages which definitely don't belong at TechCrunch!

But it may not be the result of malicious hacking..

Mystery flaw crashing DNS servers across the internet


A zero-day vulnerability is being exploited in-the-wild to crash BIND 9 DNS servers all over the internet. The flaw, a Denial of Service vulnerability described as an "as-yet unidentified network event" affects all of the currently supported versions of BIND.

FBI Operation Ghost Click takes out DNS Changer malware network operators


The FBI is cock-a-hoop today, having just announced the bust of six Estonians for malware-related cybercrimes.

The case goes back to 2007, with the investigation itself apparently having taken two years.

Apple fakery, DNS hack, DigiNotar, Linux, Wikileaks - 60 Sec Security


Lots of readers said they'd like to see our 'news-with-a-conscience' videos more than once a month.

So here you go. 60 Second Security, once every two weeks.