(get it in RSS or Atom)

Google's open source geezer gets shirty about security

Google's open source geezer gets shirty about security

Google's hackerishly hirsute Open Source Programs Manager, Chris DiBona, stormed the IT headlines this week.

He stuck his paddle into the computer security world and stirred...

Nimda, Lion hole, scam bust, dot CZ dot CC and RIP Steve - 60 Sec Security

Nimda, Lion hole, scam bust, .CZ.CC  and RIP Steve - 60 Sec Security

Enjoy the latest security news in brief by watching 60 Second Security!

This episode: learning from the 10-year-old Nimda virus, finding a password hole in Lion, taking down support scammers and the dot CZ dot CC domain, and farewelling Steve Jobs.

Memories of the Nimda virus

Memories of the Nimda virus

This weekend is the tenth anniversary of the infamous and pervasive Nimda virus.

It taught us lessons - about programming, about trust, and about patching. But did we learn?

Could hackers set fire to your Apple battery with a virus?


Modern battery packs have their own processor and firmware. Along with many other peripherals in your computer, your battery is field-reprogrammable.

So is an "incendiary" virus really possible for your Macbook battery, as some stories seem to suggest?

Another Japanese malware arrest - file-sharing vigilante suspect nabbed

Another Japanese malware arrest - file-sharing vigilante suspect nabbed

Japanese newspaper The Daily Yomiuri reports that a 38-year-old Japanese man has been arrested "on suspicion of storing a computer virus on his personal computer without legitimate reasons."

It seems he wanted to teach file-sharers a lesson.

Popureb - a small rootkit with a big reputation


New variants of the Popureb rootkit clobber your Master Boot Record (MBR). Initial reports from Microsoft even suggested the only recovery was to reinstall Windows.

Fortunately, that's not true.

Japan makes virus creation illegal

Japan makes virus creation illegal

People who write or deliberately spread malware can expect to be fined or receive up to three years in prison, under laws enacted by the Japanese parliament today.

Apple support to infected Mac users: "You cannot show the customer how to stop the process"


ZDNet reports that Apple is instructing tech support contractors not to help customers who are infected with Mac Defender fake anti-virus. This builds on ZDNet's report from last week, but provides insights that 60,000 or more Apple users may be affected.

Commodore 64 viruses - time for a comeback?

Commodore 64 viruses - time for a comeback?

The classic Commodore 64 is making a comeback!

But what about viruses on these much-loved home computers from the 1980s?

Memories of the Anna Kournikova worm


It's ten years since the Anna Kournikova worm spread around the world.

Graham Cluley reminisces about the worm, and tells the story behind one of the world's biggest virus outbreaks.

A funny virus outbreak in the Microbiology lab

A funny virus outbreak in the Microbiology lab

You see?

Viruses can be fun in the workplace. Especially if you work in a Microbiology lab.

October roundup - "90 Second News"


Don't just read the latest computer security news - watch it in just 90 seconds! This month: international success for law enforcement; rumour of the month pimps Adobe's shares by 17%; Google's CEO puts his privacy foot in his mouth yet again; and Facebook does something good!

Apple iPad and iPhone infection risk?

Apple iPad and iPhone infection risk?

Major Australian media outfit Fairfax ran a story throughout the weekend warning about "Apple store infection risk". This was understandably a hot story across most of its dailies, including the Sydney Morning Herald, Melbourne Age, Brisbane Times and WA Today. Read more…

'Here you have' virus interest exploited by YouTube scammers

'Here you have' virus interest exploited by YouTube scammers

The big news on the security front at the end of the working week was the widely-reported "Here you have" virus which arrived in inboxes with a waft of nostalgia, in the style of old-school mass-mailing malware. What has brought Read more…

Japanese virus writer arrested.. again

Japanese virus writer arrested.. again

According to media reports, a previously convicted Japanese virus writer has been arrested over allegations that he has again distributed a virus. The 27-year-old is accused of writing malware known locally as "ika-tako" (squid-octopus) which was spread via the Winny Read more…

Sality Links and shortcut exploit

Shortcut exploit: protect against it with this free tool

Shortcut exploits have made the news in malware circles this month. After Stuxnet first used them, it wasn't long before other malware started exploiting the zero-day vulnerability - Sality is among their numbers. The authors of the Sality family added Read more…

Certified uncertainty

Screenshot of Stuxnet stolen certificates

Just when we thought we understood what was happening with the Stuxnet rootkit the plot thickens. As I reported in my original story, the rootkit component and several other pieces were signed with a legitimate digital certificate from Realtek Semiconductor. Read more…

CPLINK Shortcut mitigation and certificate revocation

Default image

I have spent the last three days looking at how we can best protect ourselves against the latest Windows zero day vulnerability, aside from running up to date anti-virus software. We have named this exploit CPLINK within SophosLabs referring to Read more…

Windows zero-day vulnerability uses shortcut files on USB

Malicious link

The security community was buzzing today about a potential new zero-day vulnerability in Windows. The attack that exploits the vulnerability was originally discovered by VirusBlokAda in Belarus. It contains several components and is still being analyzed by SophosLabs. It starts Read more…

PDF spam phones home to Sality malware family

Europe leapfrogs Asia as top spam-relaying continent

Remember all those long distance phone calls we made? No, me neither - so if you see an email asking you that same question, don't open it. The spam messages have a subject of "phone calls" and look like this: Read more…