Naked Security

MongoDB ransom threats step up from blackmail to full-on wiping

Naked Security - Thu, 07/02/2020 - 10:49am
Still thinking "the crooks probably won't find me if I make a security blunder"?
Categories: Naked Security

133m records for sale as fruits of data breach spree keep raining down

Naked Security - Thu, 07/02/2020 - 6:22am
Databases can be had for as little as $100, on up to $1,100. Most, if not all, are being sold by the hacking group Shiny Hunters.
Categories: Naked Security

Microsoft issues critical fixes for booby-trapped images – update now!

Naked Security - Wed, 07/01/2020 - 9:26am
Booby-trapped images could be used to attack Windows 10 and Windows Server 2019 - update now!
Categories: Naked Security

Google stops pushing scam ads on Americans searching for how to vote

Naked Security - Wed, 07/01/2020 - 8:20am
No US entity charges citizens for registering to vote, but plenty of Google ads were happy to do so - and to grab your PII in the process.
Categories: Naked Security

Firefox 78 is out – with a mysteriously empty list of security fixes

Naked Security - Wed, 07/01/2020 - 7:02am
TLS 1.0 and TLS 1.1 are now considered security risks and blocked by default.
Categories: Naked Security

Google joins Apple in limiting web certificates to one year

Naked Security - Tue, 06/30/2020 - 12:53pm
Is it fair to expect everyone to renew all their web certificates every year? Apple says yes, and now Google does too.
Categories: Naked Security

iOS 14 flags TikTok, 53 other apps spying on iPhone clipboards

Naked Security - Tue, 06/30/2020 - 7:11am
TikTok, for one, promised to knock this off months ago but was caught red-handed, still at it, by the new clipboard notification in iOS 14.
Categories: Naked Security

Beware “secure DNS” scam targeting website owners and bloggers

Naked Security - Mon, 06/29/2020 - 10:15am
If you run a website or a blog, watch out for emails promising "DNSSEC upgrades" - these scammers are after your whole site.
Categories: Naked Security

Satori IoT botnet author sentenced to 13 months in prison

Naked Security - Mon, 06/29/2020 - 5:37am
Kenneth Schuchman, the creator of the massive Satori botnet of enslaved devices, will be spending 13 months behind bars.
Categories: Naked Security

Monday review – the hot 10 stories of the week

Naked Security - Mon, 06/29/2020 - 5:32am
Get yourself up to date with everything we've written in the last seven days - it's weekly roundup time.
Categories: Naked Security

Fancy hacking a PlayStation? Sony announces its bug bounty program

Naked Security - Fri, 06/26/2020 - 8:24am
Got a PS4? Like to hack?
Categories: Naked Security

REvil gang threaten to auction celebrity data from Mariah Carey, Lebron James, MTV and more

Naked Security - Fri, 06/26/2020 - 5:06am
The ransomware gang is threatening to auction celebrities' legal documents stolen from the law firm it paralyzed in May.
Categories: Naked Security

Patch time! NVIDIA fixes kernel driver holes on Windows and Linux

Naked Security - Thu, 06/25/2020 - 9:24am
Kernel driver bugs often let crooks take over your entire system from even the weediest foothold.
Categories: Naked Security

Twitter apologizes for leaking businesses’ financial data

Naked Security - Thu, 06/25/2020 - 6:21am
Twitter emailed business clients to tell them that their financial data may have been seen by the uninvited.
Categories: Naked Security

Glupteba – the bot that gets secret messages from the Bitcoin blockchain

Naked Security - Wed, 06/24/2020 - 12:50pm
And you thought the Bitcoin blockchain was all about cryptocurrency!
Categories: Naked Security

iOS 14, macOS Big Sur, Safari to give us ‘No, thanks!’ option for ad tracking

Naked Security - Wed, 06/24/2020 - 5:20am
At WWDC, Apple promised to double down on data protection in its upcoming iOS 14, macOS Big Sur, and Safari releases.
Categories: Naked Security

United States wants HTTPS for all government sites, all the time

Naked Security - Tue, 06/23/2020 - 10:33am
Making .GOV domains secure - it'll take "a few years" yet
Categories: Naked Security

‘BlueLeaks’ exposes sensitive files from hundreds of police departments

Naked Security - Tue, 06/23/2020 - 8:01am
The journalist collective DDoSecrets published nearly 270GB of data on Juneteenth: the date commemorating the end of US enslavement.
Categories: Naked Security

Anatomy of a survey scam – how innocent questions can rip you off

Naked Security - Mon, 06/22/2020 - 11:48am
We take part in a fraudulent survey so you don't have to. Show your friends and family how these scams unfold.
Categories: Naked Security

Hacker indicted for stealing 65K employees’ PII in medical center hack

Naked Security - Mon, 06/22/2020 - 8:55am
The Detroit man allegedly bragged about wanting to "play with Peoplesoft" - the HR management software he called "basically HR in a box."
Categories: Naked Security