Mobile

(get it in RSS or Atom)

Mobile malware, Gameover, CryptoLocker, and SSL/TLS holes - 60 Sec Security [VIDEO]

2014-06-07-thumb-250

How long has mobile malware been around? Is it really game over for Gameover and CryptoLocker? Which cryptographic security libraries need patching?

It'll only take a minute to find out...

SSCC 150 - TrueCrypt, Gameover, CryptoLocker and whither mobile malware? [PODCAST]

sscc150-thumb-250

This week, Chet and Duck dig into the bafflement of the disappearing TrueCrypt encryption software: did it jump, or was it pushed?

They also look at the takedown of Gameover and CryptoLocker, and look into what we can learn from ten years of mobile malware.

Unhappy birthday to you - mobile malware turns 10

10yomm-feat-3-250

It's 10 years since June 2004, when the first mobile malware appeared.

We don't want to *celebrate* this anniversary, you understand, but we thought we'd look back to see what we can learn...

"Open the iPhone door, Siri!" - Apple's digital helper coughs up another lock screen hole

iphone-5-lock-screen-250

A hacker has found a way to bypass the iPhone 5 lock screen to get at your contacts. Ironically, he got in by asking Siri, Apple's voice-activated "helper."

Here's how to close the hole while you wait for Apple's fix...

SSCC 140 - Does Windows have more holes than OS X? Whither messaging privacy? [PODCAST]

sscc-140-thumb-250

How bad is the latest Microsoft Word 0-day? Does OS X really need patching less often than Windows? What does Gmail's move to HTTPS-only really mean? And if WhatsApp has privacy coded into its DNA, is it coded into its app, too?

Chet and Duck get stuck in...

MasterCard aims to reduce card fraud with smartphone geo-location technology

MasterCard logo

MasterCard and Syniverse are running a pilot scheme that aims to reduce credit card fraud by making sure that a customer's card and mobile phone are in the same location when the card is used.

Are you safe against mobile threats? Check out our tips for keeping the crooks away...

mstr-250

Do you use a mobile device? (Of course you do!)

Read Sophos researcher Vanja Svajcer's paper, "Mobile Security Threat Report," and check out our expert tips for keeping the crooks away...

Another breach, sneaky Android malware, and the Privacy Plan Diet - 60 Sec Security [VIDEO]

2014-02-01-3-step-250

Surely not another payment card breach? Android malware that jumps the airgap? And what's this about a Privacy Plan Diet?

60 Sec Security - 01 Feb 2014.

Leaks in logfiles, malware on Macs and Korean credit compromise - 60 Sec Security [VIDEO]

2014-01-25-mac-malware-250

Leaky logic leaves logins loose in logfiles; mendacious mails menace Macs with Mavericks malware, and criminal contractor compromises Korean credit company!

60 Sec Security - 25 Jan 2014...

Naked Security talks about Festive Season Security on BBC Radio 5 Live's "Outriders" show...

bbcr5-outriders-250

Outriders is a BBC Radio 5 Live programme that describes itself as "exploring the frontiers of the web."

On this week's show, host Jamillah Knowles interviewed Naked Security's Paul Ducklin about security and safety on line over the festive season...

"Smarter, shadier, stealthier" - Security Threat Report 2014 helps you understand the enemy

str2014-250

Our latest Security Threat Report is out!

It's a free download (no registration required), and we think you're going to love it, because it paints a fascinating picture of the evolving threat from cybercrime...

Online clothing store Witchery lets customers view - and edit! - each other's personal information

According to a News Limited report, customers visiting clothing retailer Witchery's mobile website were able to get at the PII of other users via a feature called "track my order."

Customers could also view every order currently being processed, not just their own...

Advertising in mobile apps - how much is too much?

buyme-250

At this week's Virus Bulletin conference in Berlin, two SophosLabs researchers will present a paper on ads and adware in the mobile ecosystem.

We'd love to put *your* questions and comments to them from the conference floor - so here's your chance to have your say...

UK to trial national emergency alerts via mobile phones - what are the risks?

mobile-phone-250

The UK is to trial a national emergency alerting system based on text messaging to your mobile phone.

Other countries have already done this, so it sounds uncontroversial - but can it be made to work safely and securely?

PWN2OWN for mobile devices - $300,000 in prizes for stealing data, eavesdropping or making covert calls

zdi-250

There's $300,000 up for grabs at HP's Mobile Pwn2Own contest to be held in Tokyo in November 2013.

Paul Ducklin runs through the options of how to get your hands on the cash...

Size doesn't matter - at least, not quite as much as smartphone privacy

smartphone-300

A new study finds that privacy is more of a concern for smartphone users than screen size, phone brand, weight, or camera resolution.

Meanwhile, 80% of users won't download apps they don't trust. (Hurray! Let us now nag the other 20%.)

Facebook Home - Great if you think privacy is dead

FacebookHome250

Facebook has introduced a new way to utilize its services on Android mobile phones. Facebook Home streamlines keeping in touch with friends, their photos, Likes and shares. The issue is how it impacts your privacy, even if you choose not to use it yourself.

SSCC 106 - US DoD and BYOD, "scanner" malware, 2FA, and browser wars revisited [PODCAST]

sscc-106-250

For your listening pleasure, here's the latest episode in our popular "Chet Chat" series.

Senior Security Advisor Chester Wisniewski discusses the latest security news with regular guest Paul Ducklin in an entertaining and easily-digested quarter-hour podcast.

Was Alicia Keys hacked, or is she cheating on BlackBerry with iPhone this Valentine’s Day?

Alicia Keys_thumb

Newly appointed BlackBerry Global Creative Director and musician, Alicia Keys, claims her Twitter account was hacked after a tweet was sent from an iPhone. NOT a BlackBerry.

Monday review - the hot 18 stories of the week

Here you go.

All the stories we wrote in the past seven days, in case you missed anything (or just want to read them again).