Latest articles

RIP Leonard Nimoy: a hero to Trekkies, but so much more than "Spock"

Leonard Nimoy photo courtesy of Vicki L. Miller / Shutterstock.com.

Leonard Nimoy was beloved by millions, including many of us at Naked Security and at Sophos. So it is with great sadness that we acknowledge his passing on Friday, at the age of 83, and offer this modest tribute.

Facebook Bug Bounty report for 2014: $1.3M paid out to more than 700 bug finders

Facebook just released details of how much it paid out in bug bounties for 2014.

Rewards ranged from $500 to over $50,000...

Europol takedown of Ramnit botnet frees 3.2 million PCs from cybercriminals' grasp

Ramnit botnet

In an international operation coordinated with multiple law enforcement and industry partners, Europol led a takedown of the infrastructure of the Ramnit botnet that infected 3.2 million Windows computers.

Facebook comes up with new ways to reach out to the suicidal

Facebook comes up with new ways to reach out to the suicidal

Where would you turn, and what would you do, if you saw a post that seemed suicidal from a Facebook friend? Facebook has some answers.

Say hello to net neutrality - FCC votes to "protect the open internet"

FCC votes in favor of net neutrality in the US

The FCC has voted in favor of net neutrality. Broadband is now a US public utility, free of blocking, throttling or paid prioritization, and also subject to greater government regulation.

Anthem healthcare breach is smaller - and bigger - than first thought

There's good and bad news about Anthem's recent data breach.

The bad news includes the risk to between 8.8M and 18M non-customers who were in Anthem's database anyway...

Barclays to launch Twitter payments through Pingit mobile app

Barclays to launch Twitter payments through Pingit mobile app

A new service from Barclays bank will allow its 'Pingit' users to send money to each other over Twitter.

How nine out of ten healthcare pages leak private data

Medical cross. Image courtesy of Shutterstock.

A recent study has shown that nine out of ten visits to health-related web pages result in data being leaked to third parties like Google, Facebook and Experian. That's not new, so why do we care now? And how does it happen in the first place?

SSCC 187 - The cryptography edition [PODCAST]

chet-chat-logo-featured-250

Sophos expert John Shier sits in for regular presenter Chester Wisniewski in this episode.

John and Paul Ducklin dissect the latest security issues, which were dominated this week by some thorny matters of cryptography.

Koppie Koppie sells photos of your kids to prove you shouldn't post them online

Image of mother and little baby taking selfie courtesy of Rasstock / Shutterstock.com.

Two "privacy advocates" running an online store that sells mugs printed with pictures of children are intentionally stirring up controversy by grabbing photos from Flickr. The duo behind Koppie Koppie say it's perfectly legal, but they hope you get mad about it anyway.

Google turns Pwnium into an all-year, unlimited-rewards bug-hunting contest

Bug. Image courtesy of Shutterstock.

Google's new thinking around bug hunting: get it to us ASAP, from wherever you are.

Not just celebrity nude photos, Reddit bans all "involuntary porn"

Reddit bans "Involuntary Porn": Sexual material's not OK without an OK

Reddit blew it with The Fappening, but a new privacy policy enables even us nobodies to request image removal.

$3m reward offered for alleged Gameover Zeus kingpin

Evgeniy Mikhailovich Bogachev

The US State Department has offered a $3m reward for the arrest or conviction of alleged Gameover Zeus admin Evgeniy Mikhailovich Bogachev.

From the Labs: more advances in Advanced Persistent Threats

apt-scene-250

SophosLabs researcher Gabor Szappanos is back.

He presents another insightful installment in the ongoing saga of PlugX and other "malware factories" that are part of the Advanced Persistent Threat scene.

LinkedIn settles class action suit over 2012 unsalted password leak

LinkedIn settles class action suit over 2012 unsalted password leak

LinkedIn is privately settling the 2012 unsalted password leak. Were you one of the 800,000 affected users? Here's what you need to know.

Google bans sexually explicit content on Blogger

Nude ban. Image courtesy of Shutterstock.

Unless the content has "public benefit," it will be bumped out of public view as of 23 March (if it's already been published) and banned outright after that date.

10,000 motorists' names and addresses published online by parking fine company

10,000 motorists' names and addresses published online

Parking fine collection firm PaymyPCN.net accidentally published a database containing 10,000 drivers' names, addresses, photos and emails.

"PowerSpy" - can crooks really track you by the power your phone is using?

Can power usage alone, as your phone moves around in the mobile network, give away your location?

Sort of, say Stanford computer scientists...

Burning Man festival to cancel tickets of cheaters who used website hacks

Image of Burning Man effigy courtesy of John Chandler/Flickr - Creative Commons license

Burning Man says it will cancel festival tickets purchased by approximately 200 individuals who managed to use a flaw in the ticketing website to jump ahead of the line.

Snapchat tells teens: Keep your clothes on!

Snapchat to teens: Keep your clothes on!

Somebody should have told the kids whose racy snap went viral: Snapchat's got a new Safety Center that nixes nudity and sex, at least for minors.