(get it in RSS or Atom)

Information-stealing 'Vawtrak' malware evolves, becomes more evasive

Skull. Image courtesy of Shutterstock.

SophosLabs has recently observed some cunning changes made by the authors of the dangerous banking malware 'Vawtrak'.

James Wyke explains.

SSCC 172 - Ransomware's not dead! [PODCAST]

Here's the latest episode of our weekly security podcast.

News you can use!

Forget trick-or-treating – Kill a Zombie this Halloween


The crooks can't have a botnet without the bots to join it.

So let's take their bots away!

Killing computer zombies is the perfect sort of altruism: you help the global internet community simply by helping yourself.

How bots and zombies work, and why you should care


You probably have a firewall that blocks inbound network connections by default.

So how come cybercrooks can send commands to your computer if it's infected with a bot or zombie?

The "Dirty Dozen" SPAMPIONSHIP - who's got the biggest zombie problem?

Our latest quarterly SPAMPIONSHIP charts are out, showing which countries have the most zombies, and therefore send the most spam.

Take a look, and then ask yourself, "What can I do to help?"

Simple: Kill a Zombie today!

The EPIC edition - 60 Sec Security [VIDEO]

One less opt-in app, one more Android virus, and a bunch of EPIC failures...

All in this week's 60 Second Security.

Snowden: NSA working on 'MonsterMind' cyberwar bot

Snowden: NSA working on 'MonsterMind' cyberwar bot

The cyber defense system would instantly and autonomously neutralize foreign cyberattacks against the US and could also be used to launch retaliatory strikes. To do so, it would have to control and analyze all traffic entering the US - a chilling prospect that was the last straw, the whistleblower says.

SSCC 160 - That's not just any old malware - that's a TRUE VIRUS! [PODCAST]

Ready for listening...

Here's this week's Sophos Security Chet Chat podcast.

Android "Heart App" virus spreads quickly, author arrested within 17 hours

Q. How to attract the attention of the police if you're a bored student on summer vacation?

A. Write a virus that unleashes 20,000,000 SMSes, infects 100,000 devices, and steals personal data...

Monday review - the hot 20 stories of the week


It's weekly roundup time!

Here's all the great stuff we've written in the past seven days.

The data breach apocalypse that wasn't - 60 Sec Security [VIDEO]

Malware, spam and hacking - and not all bad news, either!

Watch 60 Second Security for Aug 9, 2014...

SSCC 159 - What can we learn from the "honeybot"? [PODCAST]

For your listening pleasure!

Here's this week's episode of the Sophos Security Chet Chat podcast...

1.2 billion logins scooped up by CyberVor hacking crew - what you need to do


Hackers have amassed a vast collection of stolen data, including 1.2 billion unique username/password pairs, by compromising over 420,000 websites using SQL injection techniques. This data haul may yet turn out to be a 'Heartbleed' moment for website owners who assume their sites are too small to be of interest to hackers.

How to send 5 million spam emails without even noticing


Before you read the article, see if you can guess, to the nearest million, how many spams a 10,000-strong botnet might realistically send each week.

Commit yourself first, and then read the story of the SophosLabs "honeybot"!

Hacking, spamming, rogue SMSes and browsers - 60 Sec Security [VIDEO]

The week's security news, turned into an entertaining lesson, turned into a 1-min video...

60 Sec Security, 26 July 2014

SSCC 157 - Routers, Browsers, Zombies and Sysadmins [PODCAST]

Here it is...this week's Chet Chat security podcast.

In this episode: fixing routers, trusting browsers, killing zombies and showing TLC to sysadmins.

It's all about trust! 60 Sec Security [VIDEO]

Watch 60 Second Security for 19 July 2014 - it's all about trust!

Notorious Shylock banking malware taken out by law enforcement


Law enforcement action led by the National Crime Agency (NCA) in the UK has knocked out the infrastructure of a banking malware known as Shylock, because of excerpts from Shakespeare's Merchant of Venice hidden in its code.

Here's how to check to make sure you weren't among the more than 30,000 PCs that were infected.

SSCC 156 - Warbiking in Manhattan, hubris for Google, and how less can be more [PODCAST]

Sophos experts Chester Wisniewski and Paul Ducklin are back with this week's security podcast, turning plain old news into advice you can use.

"Gameover" malware revival - is it really up from the canvas?


Is the recent re-appearance of the Gameover malware a flash in the pan, or part of a concerted effort at reviving the threat?

What do we need to do to knock it out altogether?