How long does it take a trendy cloud company to apologise? Do you really need HTTPS for webmail? OS X Mavericks - should you stay or should you go? And who won our crossword competition?
60 Second Security - 11 Jan 2014.
Yahoo, following the lead of Google and Microsoft, has now enabled HTTPS encryption for all Yahoo Mail users by default.
In January this year, after a head-scratchingly long time, Yahoo Mail finally rolled out the option of protecting users' privacy with HTTPS. It's now confirmed it'll make it the default setting on 8 January 2014.
Malware rarely gets into your network without some sort of tell-tale signs beforehand.
Learning to spot the metaphorical smoke that precedes the fire of a malware infection is a handy metaphor for keeping your network safe.
"Honey, why are the lights flashing 'URPWN3D' in Morse code?"
If you spent a cool $60 each on light globes (bulbs) from the Apple store...
...how much security would you expect?
A whole lot has been talked, over the past week, about BREACH, a newly-documented attack against HTTPS.
Paul Ducklin digs into the theory, shows how it works in practice, and suggests how to soften the blow...
It's one thing to say, "Turn it on for everybody everywhere by default!" But actually getting to ubiquitous HTTPS was a pain in the … umm... browser.
But now, Facebook says, after a load of blood, sweat and programming tears, and with the exception of some mobile phones, it's a "dream come true."
News, opinion, advice and research: Chet and Duck bring you their unique and entertaining combination of all four in their regular quarter-hour podcast.
Why not give it a quick listen?
Are you an IT administrator still caring for Windows XP computers that are running Internet Explorer?
Google's latest announcement brings another good reason to upgrade your systems or switch to an alternative browser.
Last year, a Googler named Dr. Elie Bursztein noticed that Apple's App Store protocols were using HTTP where HTTPS would have been much better.
Some time later, Apple has changed its ways.
Paul Ducklin explains why it matters...
Are you a "safe surfer"?
What about sites that were perfectly good yesterday, but today are serving phishing pages for the crooks?
Paul Ducklin takes you on a four-country phishing trip...
It has taken Yahoo a ridiculously long time, but it is finally rolling out an option that will help protect users' privacy when accessing their web-based email - HTTPS.
Thumbs up to Facebook, which has announced it is finally enabling HTTPS by default for its users.
We celebrate by giving away some T-shirts..
The FTC has settled with web analytics company Compete, Inc. over poor security. Compete has agreed not to do it again, and to audit itself every two years for 20 years.
What do you think? Is that a stiff enough penalty? Have your say in our comments section...
The latest release of Firefox has been called "unlucky version 13" because it creates web page thumbnails even of secure content, sparking privacy fears.
But is this really a bug? And if so, do any of the "fixes" circulating online actually work? Paul Ducklin finds out.