News aggregator

Apple fighting pirate app developers, will insist on 2FA for coders

Sophos - Naked Security - Fri, 15/02/2019 - 11:28
Are you an Apple developer? Care about security? Using 2FA? You will be soon...

Judge won’t unseal legal docs in fight to break Messenger encryption

Sophos - Naked Security - Fri, 15/02/2019 - 10:51
The Feds tried—and failed—to force Facebook to break its encryption so investigators could listen in on suspected MS-13 gang conversations.

Should we profit from the sale of our personal data?

Sophos - Naked Security - Fri, 15/02/2019 - 10:42
Don't spend that 30 cents all in one place!

WARNING – New Phishing Attack That Even Most Vigilant Users Could Fall For

THN - Fri, 15/02/2019 - 09:34
How do you check if a website asking for your credentials is fake or legit to log in? By checking if the URL is correct? By checking if the website address is not a homograph? By checking if the site is using HTTPS? Or using software or browser extensions that detect phishing domains? Well, if you, like most Internet users, are also relying on above basic security practices to spot if that

Chinese facial recognition database exposes 2.5m people

Sophos - Naked Security - Fri, 15/02/2019 - 08:41
A company operating a facial recognition system in China has exposed millions of residents’ personal information online.

Photography site 500px resets 14.8 million passwords after data breach

Sophos - Naked Security - Fri, 15/02/2019 - 08:24
Photography website 500px has become the latest site to admit suffering a serious data breach.

Hacker Breaches Dozens of Sites, Puts 127 Million New Records Up for Sale

THN - Fri, 15/02/2019 - 06:56
A hacker who was selling details of nearly 620 million online accounts stolen from 16 popular websites has now put up a second batch of 127 million records originating from 8 other sites for sale on the dark web. Last week, The Hacker News received an email from a Pakistani hacker who claims to have hacked dozens of popular websites (listed below) and selling their stolen databases online. <!

Inside a GandCrab targeted ransomware attack on a hospital

Sophos - Naked Security - Thu, 14/02/2019 - 15:03
A recent attack on a US hospital gives us a colourful picture of both how a targeted ransomware attack happens, and how it can be stopped.

What’s behind this 1,000-character phishing URL?

Sophos - Naked Security - Thu, 14/02/2019 - 11:09
Bleeping Computer learned of a strange phishing campaign which uses an unusually long URL - but why?

Apple App Store stuffed with hardcore porn and gambling apps

Sophos - Naked Security - Thu, 14/02/2019 - 10:59
The apps, which violate content policies, got in there via the same Enterprise Certificate program that Facebook and Google exploited.

Google paid out $3.4m in bug bounties last year

Sophos - Naked Security - Thu, 14/02/2019 - 10:47
317 researchers from 78 countries turned 2018 into a worldwide bug-crunching spree.

Update now! Microsoft and Adobe’s February 2019 Patch Tuesday is here

Sophos - Naked Security - Thu, 14/02/2019 - 10:39
Internet Explorer (IE) may have launched way back in 1995 but nearly a quarter of a century later it’s still creating work for Microsoft and Windows users.

Ex-US Intelligence Agent Charged With Spying and Helping Iranian Hackers

THN - Thu, 14/02/2019 - 08:00
The United States Department of Justice has announced espionage charges against a former US Air Force intelligence officer with the highest level of top-secret clearance for providing the Iranian government classified defense information after she defected to Iran in 2013. Monica Elfriede Witt, 39, was a former U.S. Air Force Intelligence Specialist and Special Agent of the Air Force Office

Top tips for Valentine’s Day – and the rest of the year! [VIDEO]

Sophos - Naked Security - Wed, 13/02/2019 - 20:58
Our top tips for Valentine's Day and beyond - all in just 5 minutes. Enjoy!

Snapd Flaw Lets Attackers Gain Root Access On Linux Systems

THN - Wed, 13/02/2019 - 13:32
Ubuntu and some other Linux distributions suffer from a severe privilege escalation vulnerability that could allow a local attacker or a malicious program to obtain root privileges and total control over the targeted system. Dubbed "Dirty_Sock" and identified as CVE-2019-7304, the vulnerability was discovered by security researcher Chris Moberly, who privately disclosed it to Canonical, the

Another flaw found in macOS Mojave’s privacy protection

Sophos - Naked Security - Wed, 13/02/2019 - 13:16
Ever since Apple announced enhanced privacy protection for macOS Mojave 10.14 last September, a dedicated band of researchers has been poking away at it looking for security flaws. Here's another.

Evil USB O.MG Cable opens up Wi-Fi to remote attacks

Sophos - Naked Security - Wed, 13/02/2019 - 13:15
... and enables de-authenticaton attacks that could knock targeted systems off the Wi-Fi and onto one of these nefarious cables.

Ep. 019 – Android holes, iOS screengrabbing and USB poo [PODCAST]

Sophos - Naked Security - Wed, 13/02/2019 - 12:18
Here's the latest Naked Security podcast - enjoy!

620 million records from 16 websites listed for sale on the Dark Web

Sophos - Naked Security - Wed, 13/02/2019 - 11:26
Some of the breaches are new, while some were reported last year. The sites include MyFitnessPal, MyHeritage, Whitepages and more.

Security firm beats Adobe by patching reader flaw first

Sophos - Naked Security - Wed, 13/02/2019 - 11:11
Adobe has patched a flaw that enabled attackers to slurp a user’s network authentication details - but not before someone else patched it first.


Subscribe to Shiga Tecnologia aggregator