(get it in RSS or Atom)

Which web browser do you trust? [Poll]


We no longer choose our web browsers based on bells and whistles. These days its all about privacy and security and we'd like to know which browser (and which vendor) you trust to be your companion on the web.

Look! A Fraud Fighting Ferret! [Chet Chat Podcast 212]

Chester Wisniewski is back from Down Under to resume our podcast series.

From fraud-fighting ferrets to a convicted "Spam King" - enjoy!

Google Chrome will block Flash from tomorrow...well, sort of

Adobe's Flash will face a double setback on 1 September 2015, when both Amazon and Google shift into "HTML5 is way better for ads" mode.

Dmail promises self-destructing Gmail messages

Dmail promises self-destructing Gmail messages

After an email has been "destroyed" (or, rather, encrypted), recipients will see a message that the email has been killed. Should we trust it will do what it says with personal data?

NOT OK, Google! Privacy advocates take on the Chromium team and win...

Privacy advocates were unsurprisingly unimpressed that Google's Chromium project silently downloaded a proprietary add-on...

...that listened to your microphone.

Google Chrome "bad link" detection bypass - found, fixed

Here's a small and simple XSS detection hole in Google Chrome - a reminder that even determined programmers sometimes overlook the obvious.

Monday review - the hot 22 stories of the week

Here are last week's stories in one convenient place so you can catch up on what you missed!

"Pwn2Own" competition pops Flash, Reader and four browsers, pays out over $550K [POLL]

Pwn2Own has become something of an institution on the North American computer security conference circuit.

Come and vote in our poll to tell us what you think of security contests like this...

Google turns Pwnium into an all-year, unlimited-rewards bug-hunting contest

Bug. Image courtesy of Shutterstock.

Google's new thinking around bug hunting: get it to us ASAP, from wherever you are.

Google adds deceptive software warnings to Safe Browsing service

Warning sing. Image courtesy of Shutterstock.

The days of having your homepage switched or suddenly discovering a mysterious toolbar in your browser may be set to come to an end following an announcement from Google yesterday. From next week, Chrome will display a message whenever a piece of software attempts to do anything sneaky or unexpected with your browser or computer.

SSCC 158 - What do you mean, "Don't knit your own remote authentication"? [PODCAST]

Here's this week's Chet Chat security podcast for your listening pleasure.

Chester Wisniewski and Paul Ducklin of Sophos dissect the week's security news to see what we can learn from other people's mistakes...

Monday review - the hot 27 stories of the week

Monday review

Get yourself up to date with everything we've written in the last seven days - it's weekly roundup time.

Hacking, spamming, rogue SMSes and browsers - 60 Sec Security [VIDEO]

The week's security news, turned into an entertaining lesson, turned into a 1-min video...

60 Sec Security, 26 July 2014

SSCC 139 - PWN2OWN, browser updates, Target alerts, PCI DSS and phishing [PODCAST]


Is a browser less secure if more people like to hack it? Is it OK to ignore alerts simply because you get too many? Do you back yourself to spot every single phish? And just how smart is the Google Play Store?

Chester and Duck dissect these issues with their usual style in this week's Chet Chat podcast...

Browsers pwned, Korean megabreach, hackers phoiled, and Chet Chat turns 4! [VIDEO]


Which browser plugin withstood PWN2OWN? How big was the latest South Korean megabreach? What happens when hackers attack phishers?

Find out in 60 Second Security...

PWN2OWN Day Two - Chrome and Safari join the losers


Here are the PWN2OWN results from Day Two, and an overview of the final payouts.

Chrome and Safari didn't get picked for Day One, but both of them were pwned on Day Two - twice for Chrome and once for Safari....

PWN2OWN Day One - Reader, IE, Flash and Firefox felled, Java left standing


PWN2OWN Day One results are in!

The target that sounded easiest - Oracle Java, with prize money less than a third of the supposedly much tougher IE 11 - was the only one left standing at the end of the first half...

PWN2OWN 2014 - Find the "exploit unicorn" and win $150,000


It's called PWN2OWN because if you successfully pwn, or hack into, the competition laptop, you own it *literally* - you get to take it home with you.

But there's also $645,000 in cash up for grabs, including a Grand Prize for finding, wait for it, an "exploit unicorn"...

SSCC 122 - Facebook hoax, Microsoft 0-day, Android hole and Firefox going forward [PODCAST]


What a coincidence! A Facebook hoax claming that images can infect your computer...and then a Microsoft zero-day that uses images to infect your computer.

Chet and Duck talk you through the latest news...