Latest articles

If the "Deep Web" becomes searchable, is it still deep? 60 Sec Security [VIDEO]

Watch the latest episode of our only-takes-a-minute security roundup video!

This week: From old crypto bugs to the latest Windows security holes...

SSCC 194 - Patch early? Patch often? This time, "Patch NOW!" [PODCAST]

Join Sophos experts Chester Wisniewski and Paul Ducklin for the latest episode of our weekly security podcast.

From the very latest Update Tuesday to how we get rid of 10-year-old security holes, here's the security news you can use.

Google fixes potential revenue-stealing "comment cloning" YouTube bug

Two Egyptian security researchers figured out how to clone other people's YouTube comments.

You could "borrow" approvals and positive reviews so that they appeared to promote your videos, too.

WikiLeaks publishes massive searchable archive of hacked Sony documents

WikiLeaks publishes massive searchable archive of hacked Sony documents

Julian Assange of the whistle-blowing site, WikiLeaks, says that Sony Pictures' data should be publicly available due to its links with "geo-political conflict".

Could a hacker *really* bring down a plane from a mobile phone in seat 12C?

A recent document about Air Traffic Control from the US Government Accountability Office has caused quite a stir.

Could a passenger get the plane to do a barrel roll without even turning off the in-flight movie?

UN asks if robots should be allowed to kill humans

MQ-9 Reaper

As military software becomes more mature and more powerful it is increasingly trusted to act autonomously, but there is one crucial decision that we've not yet ceded; the decision to end human lives.

Target's settlement with MasterCard costs retailer $19 million

Target settles

Target says it reached a $19 million settlement with MasterCard to cover some of the damages to financial institutions after its December 2013 data breach. How much more is this breach going to cost?

Tampering with US voting machine as easy as 'abcde', says Virginia report

Tampering with US voting machine as easy as 'abcde', says Virginia report

All it would take to compromise it is to sit in the parking lot with a laptop, some free tools, and a dropper full of tech smarts.

Practical IT: What you need to know about email encryption

it-sins-unencrypted-email-250

When email was invented over 40 years ago, no one thought about how to ensure the integrity of messages. Here's what you need to know about securing email with the right kind of encryption.

Lost your Android? Now you can Google it!

Now you can Google your lost (Android) phone

Just do a Google search on "Find My Phone," and presto! It will show up on a Google map. Then, you can get it to ring its head off.

Get into RSA 2015 for free, hear eye-opening talks!

The annual RSA Conference in San Francisco is next week, starting on Monday 20 April 2015.

Get a free expo pass on us...

US lawmaker who's pushing anti-swatting bill gets swatted

US lawmaker who's pushing anti-swatting bill gets swatted

"Some sick, evil person thought it would be funny to send the police to my house on one of these false reports," he said.

EU accuses Google of abusing search dominance, opens Android investigation

google EU_250

The European Commission has accused Google of abusing its status as the 800-lb. search gorilla and has launched a separate investigation into its Android mobile operating system.

Update Tuesday, April 2015 - Urgent action needed over Microsoft HTTP bug

We don't usually focus on one vulnerability and say, "Do that first." But this month, we're willing to make an exception.

The Microsoft HTTP stack has a bug that could let attackers straight in with a simple HTTP request...

Toxin-buying teen finds police waiting for him on the dark web

Toxin. Image courtesy of Shutterstock

A 16-year-old boy who attempted to buy a deadly toxin from the deep web to "commit suicide" was charged after finding police waiting for him on the deep web.

Interpol announces successful takedown of "Simda" botnet

Interpol just announced a botnet takedown that has neutralised the operation of the "Simda" malware. For now, anyway.

Paul Ducklin takes a look...

Hot Lotto security director suspected of tinkering with computer to win $14.3m

Lottery balls. Image courtesy of Shutterstock

What's luckier than a four-leaf clover? Maybe a rootkit on a handy thumb drive, with access to security cameras that can be tampered with.

New algorithm could auto-squash trolls

trolls-250_ss_167049470

Researchers have come up with a tool that spots troll behaviour and low readability 80% of the time. That's 20% "oops." Worth it?

TLS certificate blunder revisited - whither China Internet Network Information Center?

cnnic-250

Just under three weeks ago, we wrote about a TLS certificate blunder by a Root Certificate Authority called CNNIC.

We thought we'd revisit that story today to see how the Big Four browser makers responded to the lapse...

Teen charged after using teacher's admin password to access school computer

Florida teen charged with felony after shoulder-surfing teacher's password

He's been charged with trespassing on his school's computer system after snooping away an administrative password and swapping a teacher's desktop wallpaper with an image of two men kissing.