(get it in RSS or Atom)

Best Corporate Security Blog awarded to Naked Security at RSA


The Social Security Blogger Awards was held once again at RSA in San Francisco last week and Naked Security is proud to have taken home another trophy.

SSCC 84.33 - RSA first impressions

Sophos Security Chet Chat

RSA special Chet Chat sharing Chester's and Duck's first impressions of the first day of the RSA 2012 conference in San Francisco.

Take on the RSA 2012 #sophospuzzle and win a NERF gun!


Join in with those attending RSA 2012 and get in the running to win a NERF N-STRIKE Vulcan EBF-25.

You don't have to be at the show to enter and win!

Researchers take another crack at SSL

Researchers take another crack at SSL

Just how unique is is your private key?

Is there a chance that someone else, without any malice aforethought, might unexpectedly end up with a key pair that is identical or at least dangerously similar to yours?

SSCC 83 - Patch Tuesday, Apple app privacy and RSA

Sophos Security Chet Chat

This week's Chet Chat finds Paul Ducklin and Chester Wisniewski discussing the vulnerabilities patched this Tuesday in Microsoft, Adobe and Oracle products, mobile phone application privacy issues and upcoming events RSA and Anatomy of an Attack in Portland, OR and Wellington, NZ.

Calling Californians: Get into RSA 2012 in San Francisco for free!

Get into RSA 2012 in San Francisco for free!

Are you interested in security? Would you like to have some technofun for free?

If so, you can sign up for a free RSA 2012 Expo pass, using the code SC12SPH. Then stop by Booth #1817 for our cool puzzle T-shirt!

Security firm RSA blames nation state for attack on its servers

Security firm RSA blames nation state for attack on its servers

RSA has revealed that it believes two groups, working on behalf of a single nation state, hacked into its servers and stole information related to the company's SecurID two-factor authentication products.

But for some reason it's declining to say which country..

Apple, RSA, Facebook, spyware, scareware, DDoS - 90 Sec News - June 2011


Don't just read the latest computer security news - watch it in 90 seconds!

Looking back over last month: Apple does anti-virus, RSA replaces tokens, Facebook stays opt-out, Macbook Peeping Tom caught, Scareware gang busted, DDoSer sentenced.

SSCC 63 - RSA, Sony, Facebook faces and the future of Mac security

Sophos Security Chet Chat 41

In this week's Chet Chat Rich Baldry joins Chet to discuss the future of Mac OS X security. They also discuss the week's news including RSA, Sony, software patches and Facebook's introduction of facial recognition software

Hackers hit IMF with 'sophisticated cyberattack', reports claim

Hackers hit IMF with 'sophisticated cyberattack'

The International Monetary Fund (IMF) has been hit by a major hack, according to media reports.

FLAMING RETORT - Three words for RSA. Promptness. Clarity. Openness.

FLAMING RETORT - Three words for RSA. Promptness. Clarity. Openness.

It's no good having mandatory data breach disclosure laws if all they teach us is to admit we had a breach. We also need to convey information of obvious practical value to all affected parties.

Three words. Promptness. Clarity. Openness.

RSA to replace all SecurID tokens - or perhaps not


The internet is abuzz with news that beleaguered security company RSA is offering to replace its customers' security tokens in the light of recent security compromises.

Or is it?

Strike three: Speculation rises that another US military contractor has been hit by hackers


US military contractor Northrop Grumman may have suffered a hacking attack on its networks, according to Fox News.

L-3 defense supplier targeted in RSA SecurID hack attack, report claims

L-3 defense supplier targeted with RSA SecurID hack attack?

US military contractor L-3 Communications, whose customers include the US Department of Defense, has been named in a news report as having been targeted in attacks by external hackers.

And, once again, it is the RSA SecurID security breach that is being blamed.

US military contractors hacked - possible link with RSA SecurID breach

US military contractors hacked - possible link with RSA SecurID breach, reports claim

Hackers have broken into the network of Lockheed Martin and several other US military contractors, according to media reports.

IE6, Tsunami scams, Pwn2own, RSA hack, Epsilon breach - 90 Sec News - March 2011

IE6, Tsunami scams, Pwn2own results, RSA hacked, Epsilon breached - 90 Sec News - March 2011

Don't just read the latest computer security news - watch it in 90 seconds!

This month: help get rid of IE6, avoid tsunami scams, check out Pwn2own, be surprised at RSA, and groan at Epsilon.

SSCC 55 - More SSL CA problems, RSA update and Chrome blocking more dangerous content

Sophos Security Chet Chat 41

Tony Ross joins Chester Wisniewski this week to discuss the latest news on SSL Certificate Authorities ignoring signing guidelines. They also talk about the RSA breach, the Epsilon email leakage, Chrome adding malicious download filtering and more.

RSA release a few details on their big security breach

secureID thumb drive

On Friday - ironically April Fool's day - Uri Rivner, head of new technologies and consumer identity protection, at RSA, released additional details on the RSA security breach. Here, we detail the bare bones of the attack.

SSCC 53 - RSA advice, RIM advises on JavaScript and Chrome patches Flash before Adobe

Sophos Security Chet Chat 41

This week's Chet Chat discusses the recent breach of RSA Security, advice from RIM on securing your BlackBerries post Pwn2Own and Google's speedy security updates to their Chrome web browser. Settle in for 10 minutes and keep up on the latest security news,

Privacy International's accusations against Skype - Paul Ducklin responds


Naked Security's own Paul Ducklin was a guest on this week's Risky Business podcast by Patrick Gray. Paul provides a well reasoned opinion on the accusations leveled at Skype by Privacy International as well as his thoughts on the recent breach of RSA Security.