You are here

Sophos - Naked Security

Subscribe to Sophos - Naked Security feed Sophos - Naked Security
Computer Security News, Advice and Research
Updated: 3 hours 3 min ago

Rogue websites can turn vulnerable browser extensions into back doors

Tue, 22/01/2019 - 10:46
A researcher has found that websites can use some extensions to bypass security policies, execute code, and even install other extensions.

Bicycle-riding hitman convicted with Garmin GPS watch location data

Tue, 22/01/2019 - 09:28
Location data extracted from the athletic hitman's Garmin GPS watch and TomTom sat nav led to his conviction in two gangland murders.

WhatsApp fights the spread of deadly fake news with recipient limit

Tue, 22/01/2019 - 08:28
WhatsApp has capped the number of people you can forward messages to, after India was seized by rumour-inspired mob lynchings.

DNC targeted by Russian hackers beyond 2018 midterms, it claims

Tue, 22/01/2019 - 05:02
The Democratic National Committee has filed a civil complaint accusing Russia of trying to hack its computers as recently as November 2018.

Is the Ten Year Challenge a Facebook scam???

Mon, 21/01/2019 - 11:35
Get a grip.

Twitter bug exposed some Android private tweets to public view

Mon, 21/01/2019 - 11:17
The latest privacy glitch, which went unnoticed for over four years, may trigger yet another EU privacy probe.

Attackers used a LinkedIn job ad and Skype call to breach bank’s defences

Mon, 21/01/2019 - 11:05
A Chilean Senator has taken to Twitter with alarming news – the company running the country’s ATM network suffered a serious cyberattack.

State agency exposes 3TB of data, including FBI info and remote logins

Mon, 21/01/2019 - 10:39
Oklahoma’s Department of Securities (ODS) exposed 3TB of files in plain text containing sensitive data on the public internet this month.

Tim Cook demands a way for users to delete their personal data

Mon, 21/01/2019 - 09:33
The Apple CEO wants the FTC to set up a data-broker clearinghouse so people can see the data that companies have collected on them.

Monday review – the hot 23 stories of the week

Mon, 21/01/2019 - 08:07
From WhatsApps that aren't meant for you to the highly promising USB-C authentication, and everything in between. It's weekly roundup time.

Serious Security: What 2000 years of cryptography can teach us

Sat, 19/01/2019 - 22:08
Here's a fascinating history of cryptography that has plenty to teach you - and you don't need a degree in mathematics to follow along!

Vast data-berg washes up 1.16 billion pwned records

Fri, 18/01/2019 - 10:33
Have I Been Pwned? (HIBP) has revealed a huge cache of breached email addresses and passwords, which it has named Collection #1.

Google cracks down on access to your Android phone and SMS data

Fri, 18/01/2019 - 10:16
Android apps that want access to your call and SMS data now have to pass muster with Google's team of reviewers.

Did you know you can see the ad boxes Facebook sorts us into?

Fri, 18/01/2019 - 09:49
...or that they can edit the (often inaccurate) pigeon-holes Facebook likes to put us in, a study found.

Ep. 015 – USB anti-hacking, bypassing 2FA and government insecurity [PODCAST]

Fri, 18/01/2019 - 09:22
Here's the latest Naked Security podcast - enjoy!

YouTube bans dangerous and harmful pranks and challenges

Fri, 18/01/2019 - 08:33
The platform can't keep us from driving while blindfolded, but at least it can remove videos that glorify our more brainless moments.

Microsoft font gives away forgery in bankruptcy case

Thu, 17/01/2019 - 12:34
In a case that could be straight out of a legal TV drama, a computing font has cost a couple two houses in a Canadian bankruptcy case.

Email crooks swindle woman out of $150K from home sale

Thu, 17/01/2019 - 12:13
She sent her bank account details three times, she said. Unfortunately, they wound up in crooks' hands, and her money wound up in their pockets.

Change your password! VoIP provider leaves huge database exposed online

Thu, 17/01/2019 - 11:28
A researcher has discovered an exposed database containing gigabytes of call logs, SMS data, and internal system credentials belonging to US Voice-over-IP (VoIP) service provider VOIPo.com.

Two charged with hacking company filings out of SEC’s EDGAR system

Thu, 17/01/2019 - 09:51
They're charged with phishing and inflicting malware to get into the EDGAR filing system, stealing thousands of filings, and selling access.

Pages