Encryption

(get it in RSS or Atom)

Child abuse photo collector forgets to encrypt his USB stick - Bad security is a good thing

Child abuse photo collector forgets to encrypt his USB stick - Bad security is a good thing

Sometimes some good can come from poor computer security.

Woman gets 2.5 years in prison for managing ATM-sucking gang of fraudsters

Woman gets 2.5 years in prison for managing ATM-sucking gang of fraudsters

Over $9 million was stolen from cash machines in 280 cities around the world in less than 12 hours, using a mixture of a gang of low-level operatives and high-tech hacking.

How to keep Apple Geniuses from pouring whiskey into your Mac

whiskey glass_thumb

Back up, encrypt, and beware, since your data and your gadgets are sitting ducks when they're in the repair shop, a recent bad-Apple store story reminds us.

SSCC 95 - Oracle patches, lost USB sticks, App Store shenanigans and WiFi heists

Sophos Security Chet Chat

Chet and Duck take on the week's news once again in their inimitable and informative style.

You'll be glad to hear that there are several "good news" stories this week - data that didn't leak, malware that didn't infect, and cybercriminals who didn't get away with it!

Lost USB keys back in the spotlight in Privacy Commission report

Lost USB keys back in the spotlight in Privacy Commission report

In late 2011, we published our analysis of a bunch of USB keys we'd bought at a lost property auction.

We got a number of surprises - not least that the Privacy Commissioner decided he wanted a word with us. Find out what happened next...

FBI claims that Tor stymied child abuse investigation

child alone_thumb

A recently published Freedom of Information Act (FOI) request has revealed that in at least one case, the US police's hunt for online child pornographers has been hindered by Tor.

Interest in Cryptocat spikes following developer's interrogation at US border

cryptocat_thumb

Interest in a free, encrypted web chat service called Cryptocat has spiked following the detainment and interrogation of its developer at the US border.

Ex-MI5 boss loses laptop at Heathrow airport

Ex-MI5 boss loses laptop at airport

Stella Rimington, the former Director-General of MI5 has had her laptop stolen after landing at Heathrow airport.

Is the data on your laptop properly secured?

Serco reports 123,000 US government employees' personal information stolen

Serco reports 123,000 US government employees' personal information stolen

Serco, a large international government services provider, disclosed a compromise of its systems that may have led to 123,000 people's Social Security Numbers and other sensitive details to be in the hands of criminals. A rather unusual way to celebrate Memorial Day for our dedicated government workers, postal workers and military.

State of Utah outlines mistakes made allowing theft of 780K records

State of Utah outlines mistakes made allowing theft of 780K records

After losing nearly 800,000 residents personal information the State of Utah admits to not encrypting the data, leaving default passwords in place and not performing regular audits to find the mistakes.

Osama Bin Laden didn't encrypt his computer files - not such a mastermind then..

Osama Bin Laden didn't encrypt his computer files - not such a mastermind then..

Ooops. If you're running a terrorist organisation, it might make sense to encrypt your files.

Clearly Osama Bin Laden didn't realise that - as some of the documents seized during the raid on his hideout in Pakistan have been made public for the first time.

MasterCard and Visa payment processor compromised, up to 10 million cards stolen

Image of credit card terminal courtesy of Shutterstock

Over 10 million credit cards may have been stolen by criminals who compromised a credit card processing company last month. Read on to find out what happened and what actions you may wish to take to protect yourself.

Cloud storage data risks and encryption

clouds-thumb

Are you encrypting the data you keep in the cloud? Or are you trusting the cloud storage providers to do a decent job at security?

SSCC 84 - Cookie-gate, laptop security advice, Stratfor malicious emails and Facebook hacker advice

Sophos Security Chet Chat

Paul Ducklin hosts this week's Chet Chat with the tables turned... Chet is the guest. They discussed the recent Google cookie-gate incident, House Intelligence Committee advice on using laptops while traveling and the malicious emails sent to leaked Stratfor subscriber email addresses.

Alleged fraudster has until next week to decrypt her hard drive for prosecutors

Alleged fraudster has until next week to decrypt her hard drive for prosecutors

Prosecutors are keen to discover what is on the encrypted laptop of Ramona Fricosu, a Colorado woman accused of committing financial fraud.

The case has raised interesting questions of whether you can be forced by law to hand over your password, or decrypt your computer.

Mac FileVault 2's full disk encryption can be bypassed in less than 40 minutes

Mac FileVault 2's full disk encryption can be broken in less than 40 minutes

A company claims it can bypass Apple's FileVault 2 disk encryption "in minutes," as well as volumes encrypted with TrueCrypt.

Despite what you may think, IT security *is* your business

3D illustration of grey office for routine work

If you spend a lot of time paying attention to IT (in)security it can drive you to rant on occasion. This is one of those occasions, as too many companies are putting their future and their customers at risk thinking that "IT security isn't our busniess".

Stratfor's back, defiant but blushing over unencrypted subscriber data

iStock_BrokenHardDrive250

George Fried,an, CEO of Stratfor, came forth with a public statement explaining what happened in the attacks against his company last December. He admitted fault, took responsibility and accused Anonymous of censorship that doesn't come openly from governments, but rather from people hiding behind masks.

Can you be forced by law to decrypt your computer? US v. Fricosu court case rages on

Passwords screenshot

Ramona Fricosu, accused of committing financial fraud, is currently in a court battle fighting to keep her encrypted data private. The prosecution say that if the government fail to demand data decryption, it will harm public interests. This article looks at the arguments for both sides and asks whether this would be possible under UK law.

Researchers find many weak Stratfor passwords

passwords250

A professor at Utah Valley University analyzed the leaked password hashes stolen by Anonymous from security firm Stratfor and determined even their security minded customers choose weak passwords.