Naked Security
MongoDB ransom threats step up from blackmail to full-on wiping
Still thinking "the crooks probably won't find me if I make a security blunder"?
Categories: Naked Security
133m records for sale as fruits of data breach spree keep raining down
Databases can be had for as little as $100, on up to $1,100. Most, if not all, are being sold by the hacking group Shiny Hunters.
Categories: Naked Security
Microsoft issues critical fixes for booby-trapped images – update now!
Booby-trapped images could be used to attack Windows 10 and Windows Server 2019 - update now!
Categories: Naked Security
Google stops pushing scam ads on Americans searching for how to vote
No US entity charges citizens for registering to vote, but plenty of Google ads were happy to do so - and to grab your PII in the process.
Categories: Naked Security
Firefox 78 is out – with a mysteriously empty list of security fixes
TLS 1.0 and TLS 1.1 are now considered security risks and blocked by default.
Categories: Naked Security
Google joins Apple in limiting web certificates to one year
Is it fair to expect everyone to renew all their web certificates every year? Apple says yes, and now Google does too.
Categories: Naked Security
iOS 14 flags TikTok, 53 other apps spying on iPhone clipboards
TikTok, for one, promised to knock this off months ago but was caught red-handed, still at it, by the new clipboard notification in iOS 14.
Categories: Naked Security
Beware “secure DNS” scam targeting website owners and bloggers
If you run a website or a blog, watch out for emails promising "DNSSEC upgrades" - these scammers are after your whole site.
Categories: Naked Security
Satori IoT botnet author sentenced to 13 months in prison
Kenneth Schuchman, the creator of the massive Satori botnet of enslaved devices, will be spending 13 months behind bars.
Categories: Naked Security
Monday review – the hot 10 stories of the week
Get yourself up to date with everything we've written in the last seven days - it's weekly roundup time.
Categories: Naked Security
Fancy hacking a PlayStation? Sony announces its bug bounty program
Got a PS4? Like to hack?
Categories: Naked Security
REvil gang threaten to auction celebrity data from Mariah Carey, Lebron James, MTV and more
The ransomware gang is threatening to auction celebrities' legal documents stolen from the law firm it paralyzed in May.
Categories: Naked Security
Patch time! NVIDIA fixes kernel driver holes on Windows and Linux
Kernel driver bugs often let crooks take over your entire system from even the weediest foothold.
Categories: Naked Security
Twitter apologizes for leaking businesses’ financial data
Twitter emailed business clients to tell them that their financial data may have been seen by the uninvited.
Categories: Naked Security
Glupteba – the bot that gets secret messages from the Bitcoin blockchain
And you thought the Bitcoin blockchain was all about cryptocurrency!
Categories: Naked Security
iOS 14, macOS Big Sur, Safari to give us ‘No, thanks!’ option for ad tracking
At WWDC, Apple promised to double down on data protection in its upcoming iOS 14, macOS Big Sur, and Safari releases.
Categories: Naked Security
United States wants HTTPS for all government sites, all the time
Making .GOV domains secure - it'll take "a few years" yet
Categories: Naked Security
‘BlueLeaks’ exposes sensitive files from hundreds of police departments
The journalist collective DDoSecrets published nearly 270GB of data on Juneteenth: the date commemorating the end of US enslavement.
Categories: Naked Security
Anatomy of a survey scam – how innocent questions can rip you off
We take part in a fraudulent survey so you don't have to. Show your friends and family how these scams unfold.
Categories: Naked Security
Hacker indicted for stealing 65K employees’ PII in medical center hack
The Detroit man allegedly bragged about wanting to "play with Peoplesoft" - the HR management software he called "basically HR in a box."
Categories: Naked Security