Clik here to view.
Latest OpenSSL flaws can lead to information leakage, code execution and DoS
Only two months after the Heartbleed vulnerability in OpenSSL captured global headlines we have another critical update for OpenSSL fixing 6 new flaws.
View ArticleClik here to view.
Medical centre staff post woman’s STD diagnosis on Facebook
A woman whose medical record was posted to a Facebook group named "Team No Hoes" is suing the University of Cincinnati Medical Center, two employees and a former boyfriend who allegedly talked the...
View ArticleClik here to view.
Phish or legit – Can you tell the difference?
If a legitimate email looks like a phishing email, then how are you supposed to spot what is genuine and what isn't? John Shier takes a look.
View ArticleClik here to view.
UK hackers could “face the justice they deserve” with up to life in jail
A proposed amendment to the Computer Misuse Act 1990 will carry a sentence of up to lifetime imprisonment. The current Act only allows for a maximum sentence of 10 years behind bars, which ministers...
View ArticleClik here to view.
What we learned from Edward Snowden
Tapping the conversations of world leaders, facial recognition, PRISM, Tempura, Upstream, XKeyscore... Whether you think Snowden's a hero or a traitor, there's no denying that revelations about...
View ArticleClik here to view.
Snowden, one year on, and it’s still not 1984
It's a year since Snowden lifted the lid on PRISM and everything that followed. We've spent a year looking for Big Brother while we uploaded more of our lives into the care of giant media corporations...
View ArticleClik here to view.
Mobile malware, Gameover, CryptoLocker, and SSL/TLS holes – 60 Sec Security...
How long has mobile malware been around? Is it really game over for Gameover and CryptoLocker? Which cryptographic security libraries need patching? It'll only take a minute to find out...
View ArticleClik here to view.
Patch Tuesday for June 2014 – 7 bulletins, 3 RCEs, 2 critical, and 1 funky...
You'll be patching and rebooting everything this month. Paul Ducklin gives you a brief overview to help you prepare. He also explains some vulnerability terminology you might not have heard before...
View ArticleClik here to view.
Monday review – the hot 25 stories of the week
Get yourself up to date with everything we've written in the last seven days - it's weekly roundup time.
View ArticleClik here to view.
Feds swoop in, snatch mobile phone tracking records away from ACLU
After the Feds seized the surveillance records, US Marshals then moved the physical records 320 miles away, meaning the ACLU wouldn't be able to learn how, and how extensively, police use snooping...
View ArticleClik here to view.
Gameover and CryptoLocker revisited – the important lessons we can learn
Which is worse - Gameover or CryptoLocker? What can we learn from the recent US-led takedown of this notorious crimeware? More importantly, what advice should we be passing on to other people?
View ArticleClik here to view.
Facebook stupidity leads to largest gang bust in NYC history
Social media was the perfect place to brag about four years of alleged stabbings, assaults, robberies, shootings and murders, via hundreds of Facebook updates, direct messages, mobile phone videos, and...
View ArticleClik here to view.
Google to flag ‘right to be forgotten’ censored search results
Google is reportedly planning to put an alert on the bottom of every page where links have been removed in the wake of the recent "right to be forgotten" court ruling.
View ArticleClik here to view.
Kim Dotcom offers $5M (£3M) for whistleblower help
Megaupload's founder is offering mega-bucks to anybody who can help him prove his long-argued contention that Hollywood studios illegally set US authorities on him.
View ArticleClik here to view.
Ransom-taking iPhone hackers busted by Russian authorities
The mystery of the ransom messages from "Oleg Pliss," and the iDevice locking attack that popped up in Australia and the US last month, appears to have been solved.
View ArticleClik here to view.
"Turing Test" allegedly defeated - is it time to welcome your robot overlords?
There's a lot of hype around the news that a computer has passed the "Turing Test" at last. But what is a Turing Test, and what does it teach us? Paul Ducklin digs into the story behind the story...
View ArticleClik here to view.
14-year-olds find manual online, hack an ATM during their school lunch hour
The bank didn't believe the kids - who are both commendable white hats! - until they presented documents showing things like how much cash was in the machine.
View ArticleClik here to view.
Patch Tuesday wrap-up, June 2014 – both Adobe and Microsoft close “remotable”...
Microsoft fixed 59 vulnerabilities in Internet Explorer alone this month. Is that worryingly bad, or pleasingly good? Paul Ducklin investigates what actually came down the chute in the June 2014 Patch...
View ArticleClik here to view.
P.F. Chang’s investigates possible credit card breach
Restaurant chain P.F. Chang's China Bistro says it is investigating claims of a data breach which may have led to debit and credit card details being posted on an underground forum.
View ArticleClik here to view.
Twitter jumps to block XSS worm in Tweetdeck
A cross-site scripting flaw was disclosed this morning affecting the popular Twitter application Tweetdeck. It has now been fixed, but not before it wormed its way through thousands of browsers.
View Article