Monthly Archives: September 2013

Advertising in mobile apps - how much is too much?


At this week's Virus Bulletin conference in Berlin, two SophosLabs researchers will present a paper on ads and adware in the mobile ecosystem.

We'd love to put *your* questions and comments to them from the conference floor - so here's your chance to have your say...

Sextortionist who preyed on Miss Teen USA, Cassidy Wolf, turns himself in

Sextortionist who preyed on Miss Teen USA has turned himself in

The 19-year-old Californian man turned himself in to FBI agents on Thursday. If found guilty, he's looking at up to two years in federal prison on the charge of extortion after allegedly hacking more than a dozen women's computers, taking nude images via their webcams, and contacting then in an attempt to get more images out of them.

LA schoolchildren found having too much fun on their hacked iPads

LA schoolchildren found dangerously having fun on their hacked iPads

It took students one week to dismantle the security keeping them away from online candy such as Twitter and Facebook. That leaves one very peeved school system, dismayed at the fact that its kids are smarter than the adults who tried to corral them into this dreary thing called "the curriculum." The verdict: No more iPads for YOU!

Monday review - the hot 22 stories of the week

Monday review

Catch up with the last seven days of security stories in our weekly roundup.

Microsoft releases latest Law Enforcement Requests Report - no Skype content handed over


Microsoft has published its second "Law Enforcement Requests Report", covering the first half of 2013.

John Hawes takes a look at what the numbers tell us...

£1.01 billion kept out of cybercrooks' hands, claim UK e-cops


The UK's Police Central e-crime Unit (PCeU) is claiming to have kept an astonishing £1.01 billion out of the hands of cybercrooks over the past two-and-a-half years.

But just how accurate is that figure?

John Hawes investigates...

Copying fingerprints, Firefox trusted, Facebook not, Yahoo recycles - 60 Sec Security [VIDEO]


How do you copy fingerprints? Which is the most trustworthy browser? Who will use Facebook for payments? How long does an email address live?

Satisfy your curiosity with this week's 60 Second Security!

Facebook finally wins $3 million payout in Power Ventures spam lawsuit

Facebook finally wins $3 million payout in Power Ventures spam lawsuit

Power Ventures lured Facebook users into handing over access to their contact lists, then spammed everyone they knew with emails urging them to join their site. Now that Facebook has won its five-year legal battle, has it earned back some trust?

Game apps under fire from consumer law makers

Game apps under fire from consumer law makers

The UK's Office of Fair Trading has investigated how apps and browser-based games comply with consumer law. Alarmed by their findings, they're recommending new developer guidelines around in-app purchases and language inciting children to pay for in-game rewards.

Online dating scam costs lovelorn Canadian $500k

Lovelorn Canadian conned out of $500k in online dating scam

The rise of online dating has been spotted by cyber-crooks looking to exploit every weakness of the web-using world. Poor "Tony" lost $500,000 (CAD) to online scammers after being pulled into a complex, long-term fake romance con by a man he met on a dating site.

How to avoid being one of the "73%" of WordPress sites vulnerable to attack

How to avoid being one of the 73% of WordPress sites vulnerable to attack

Researchers have concluded that 73% of the 40,000 most popular websites that use WordPress software are vulnerable to attack. But they admit they might be wrong. Even so, they still highlight an important security issue which isn't diminished one iota by their sketchiness.

Sky-high error in Apple Maps leads drivers onto airport runway

Runway image courtesy of Shutterstock.

Two motorists using their iPhone Maps application followed it right across one of the runways - as in, where airplanes might have squashed them - and onto the airport ramp side of the passenger terminal.

Schoolboy arrested over Spamhaus DDoS, world's biggest cyber attack

London schoolboy arrested in Spamhaus DDoS, world's biggest cyber attack

Police are linking the 16-year-old to the March DDoS attack against Spamhaus - an attack of unprecedented force that rippled through the internet, affecting the London Internet Exchange and causing worldwide disruption.

Apple releases iOS 7.0.2 - swiftly squashing two lockscreen bugs


Apple has quickly fixed two lockscreen bugs that it introduced with iOS 7.

Well done, Cupertino!

(To all hardcore Apple fans reading this: that's not irony. I really mean it.)

"Mailbox" app on iPads and iPhones runs JavaScript from emails - vulnerability or feature?


Italian computer scientist Michele Spagnuolo recently wrote about what he considered a security issue in the popular iPhone and iPad email app "Mailbox."

Not everyone agreed with him...

Data-stealing botnets found in major data brokers' servers

Data-stealing botnets found in major public records servers

Servers at Lexis-Nexis, Dun & Bradstreet, and Kroll Background America/HireRight show up in the dashboard of a small, effective botnet run by a service that sells vital personal information on US residents, an investigation has revealed.

Using heartbeats as passwords to secure medical devices

Using heartbeats as passwords to secure medical devices

It is time to start thinking of our hearts as random number generators that can serve as passwords to secure medical devices that are vulnerable to hacking, US researchers at Rice University have proposed.

Fake reviews land SEO companies in hot water

Fake reviews land SEO companies in hot water

They've flooded Yelp and other consumer review sites with puffery, and now they have to pay, to the tune of $350,000.

Siri offers the latest backdoor into your iPhone - just ask nicely!


We really didn't want to write another Apple iOS 7 story.

But with reports surfacing that HAL's smooth-talking stepsister Siri lets you *talk* your way into a locked iPhone, we couldn't help it.