Clik here to view.
Saudi Aramco, Saudi Arabia's national oil company, has had its Twitter hacked
Saudi Aramco, the national oil company of Saudi Arabia, has had its official Twitter account compromised by hackers. The hackers have changed the firm's avatar and are tweeting out a series of messages.
View ArticleClik here to view.
Oracle ships out-of-band Java fix, Apple follows suit
Oracle recently published an emergency update for Java, and Apple quickly followed suit for the version of Java it still officially supports. Paul Ducklin tries to guess where Oracle's Java patch cycle...
View ArticleClik here to view.
Last-minute pre-Pwnium Chrome update closes numerous holes...
Google just slammed the door on a number of vulnerabilities in Chrome. Just two days before its flagship browser was due to go under public hacking scrutiny at a Canadian security conference...
View ArticleClik here to view.
Anatomy of a bug - the five minute insecurity window in the sudo command
An authentication-related bug was patched recently in the Unix sudo command. Ironically, the bug was more likely to affect those users who were more security-conscious. Paul Ducklin explains...
View ArticleClik here to view.
Browser choice - How a "technical error" cost Microsoft over $700 million
"OK, Microsoft... no more Mr. Nice Guy," the European Commission said to the company that just can't seem to figure out how to give PC users a browser choice.
View ArticleClik here to view.
Can multiple moving cursors really hide your password from spyware and...
Japanese boffins think they might have found an imaginative way to stop malware stealing your passwords as you enter them online. But will it really work?
View ArticleClik here to view.
Malware attack poses as security warning from Microsoft Digital Crimes Unit
A cybercriminal attack uses the fear of vulnerabilities and malware infection to trick users into unwittingly compromising their Windows computers.
View ArticleClik here to view.
PWN2OWN results - Java, Chrome, IE 10 and Firefox owned on Day One
Of the Big Four browsers, only Apple's Safari has so far survived the onslaught of the browser-breakers at PWN2OWN 2013. Java fell three times today; Adobe's Flash and Reader meet their attackers...
View ArticleClik here to view.
$5 million class action lawsuit over LinkedIn data breach dismissed
No real damage was done, a judge ruled, and besides, paying for premium membership isn't a guarantee that you'll get premium security. Ouch! So much for promises made in privacy policies.
View ArticleClik here to view.
PWN2OWN results Day Two - Adobe Reader and Flash owned, Java felled yet again
PWN2OWN 2013 finished off today. A second scheduled attack on IE 10 didn't happen, so IE 10 didn't get owned again, but Flash and Reader fell once each, and Java was exploited for the fourth time in...
View ArticleClik here to view.
Germans bombarded in malware attack, shipment firm caught in crossfire forced...
A hard-hitting malware attack is hitting German email inboxes, and causing a headache for an innocent shipment firm mentioned in the messages.
View ArticleClik here to view.
Firefox and Chrome patched ALREADY after Pwn2own - now the pressure is on for...
Mozilla and Google have already pushed out patches to stop the exploits that got past their browsers at this year's PWN2OWN competition! That certainly throws down the gauntlet to Microsoft, whose...
View ArticleClik here to view.
Apple finally adopts HTTPS for the App Store - here's why it matters
Last year, a Googler named Dr. Elie Bursztein noticed that Apple's App Store protocols were using HTTP where HTTPS would have been much better. Some time later, Apple has changed its ways. Paul Ducklin...
View ArticleClik here to view.
Monday review - the hot 26 stories of the week
In case you missed it: Here's everything we wrote last week.
View ArticleClik here to view.
Helping users make better security decisions by design
When we think of secure programs we think about things like buffer overflows, null pointer dereferences and other technical jargon. Adam Shostack of Microsoft explained the importance of designing...
View ArticleClik here to view.
Google Doodle celebrates Douglas Adams and HHGttG - remember, "DON'T PANIC!"
Today's Google Doodle celebrates what would have been the 61st birthday of Douglas Adams, the British satirical author who gave the world The Hitchhiker's Guide to the Galaxy...
View ArticleClik here to view.
Microsoft to patch security vulnerabilities on Tuesday - including some rated...
Patch Tuesday is bringing seven security fixes, with Microsoft deeming four of them "drop-everything-and-fix-this-now" critical in Windows, IE, Silverlight, Office and Microsoft Server.
View ArticleClik here to view.
iPhone thief posts picture of himself seemingly smoking pot on victim's...
Do you recognise this man? If so, the police would like to hear from you.
View ArticleClik here to view.
Colin Powell's Facebook account has been hacked
Former US Secretary of State Colin Powell is the latest public figure to have fallen victim to hackers, with a series of out-of-character messages posted to his Facebook page.
View ArticleClik here to view.
SSCC 104 - Probably (be fair, definitely!) the best 15-minute podcast you'll...
Have your joined thousands of others, and become a loyal listener to the "Chet Chat" yet? Here's the latest Naked Security podcast, Sophos Security Chet Chat 104, discussing a range of recent and...
View Article