You are here

Sophos - Naked Security

Subscribe to Sophos - Naked Security feed Sophos - Naked Security
Computer Security News, Advice and Research
Updated: 1 hour 50 min ago

S2 Ep 41: Super-sized ransomware, FBI v Apple and AirPods hot or not – Naked Security Podcast

Thu, 28/05/2020 - 11:04
The latest Naked Security podcast is out now!

Pablo Escobar’s brother sues Apple for $2.6b over FaceTime flaw

Thu, 28/05/2020 - 10:06
Roberto Escobar says a FaceTime eavesdropping bug led to his address being leaked, assassination threats, and being forced into hiding.

Android ‘StrandHogg 2.0’ flaw lets malware assume identity of any app

Thu, 28/05/2020 - 08:13
A critical security flaw in Android could be used by attackers to “assume the identity” of legitimate apps in order to carry out on-device phishing attacks, say researchers.

Apple sends out 11 security alerts – get your fixes now!

Wed, 27/05/2020 - 13:15
Apple's current round of updates have been officially anounced in the company's latest Security Advisory emails.

Open source libraries a big source of application security flaws

Wed, 27/05/2020 - 07:27
How many vulnerabilities lurk inside the open source libraries that today’s developers happily borrow to build their applications?

Google may soon add end-to-end encryption for RCS

Wed, 27/05/2020 - 06:44
The dogfood version of the recently updated app shows multiple references to encryption for RCS, the feature-rich successor to SMS messaging.

New iPhone jailbreak released

Tue, 26/05/2020 - 13:38
Apple’s latest iOS versions have only been out for a week, but there's already a jailbreak available.

Internet giants unite to stop warrantless snooping on web histories

Tue, 26/05/2020 - 13:01
7 internet giants, including Mozilla, Reddit and Twitter, asked the House to do what the Senate narrowly missed doing: protect browsing history.

Docker Desktop danger discovered, patch now

Tue, 26/05/2020 - 11:56
Docker has fixed a vulnerability that could have allowed an attacker to gain control of a Windows system using its service.

What is the dark web? Your questions answered, in plain English

Mon, 25/05/2020 - 07:06
Watch this new video from our YouTube channel - the dark web explained without jargon or judgment.

Monday review – the hot 16 stories of the week

Mon, 25/05/2020 - 06:04
From virtual machine ransomware to changes in Signal secure messaging - and everything in between. It's your weekly roundup time.

The ransomware that attacks you from inside a virtual machine

Fri, 22/05/2020 - 13:07
In a recent attack, Ragnar Locker ransomware was seen encrypting victim's files while shielded from security software inside a virtual machine.

Signal secure messaging can now identify you without a phone number

Fri, 22/05/2020 - 13:00
Signal decouples its secure messaging service from your phone number - a bit.

Apple and Google launch COVID-19 contact tracing API

Fri, 22/05/2020 - 09:39
The first phase of Apple and Google's contact tracing framework allows public health authorities across the world to connect their apps with data that could help them identify people at risk from coronavirus.

Adobe “out of band” critical patch – get your update now!

Thu, 21/05/2020 - 10:42
Looks as though at least one of these patches was supposed to come out a week ago but ended up delayed until now...

Scammers target COVID-19 CARES Act relief scheme

Thu, 21/05/2020 - 10:07
US states are being flooded by fraudulent unemployment applications in a scam run by a sophisticated cybergang.

Chrome 83 adds DNS-over-HTTPS support and privacy tweaks

Thu, 21/05/2020 - 08:20
This week sees the early arrival of Chrome 83 with a longer list of new security features than originally planned.

Beware of emails with “horrible charts” about Covid-19

Wed, 20/05/2020 - 13:23
These charts aren't "horrible" because of their coronavirus data - they're horrible because they could let criminals conquer your computer.

Office 365 exposed some internal search results to other companies

Wed, 20/05/2020 - 09:48
It’s not clear how many accounts were involved, but Microsoft is said to have made URLs and metadata available so admins can investigate.