Sophos Naked Security


News, opinion, advice and research on computer security threats from Sophos
Aktualizace: 1 min 1 sek zpět
Chrome zero-day: “This exploit is in the wild”, so check your version now
Chrome 0-day patched now, Edge patch coming soon.
Kategorie: Hacking & Security, Viry a Červi
MOVEit zero-day exploit used by data breach gangs: The how, the why, and what to do…
Little Bobby Tables is back!
Kategorie: Hacking & Security, Viry a Červi
Researchers claim Windows “backdoor” affects hundreds of Gigabyte motherboards
It's a backdoor, Jim, but not as we know it... here's a sober look at this issue.
Kategorie: Hacking & Security, Viry a Červi
S3 Ep137: 16th century crypto skullduggery
Lots to learn, clearly explained in plain English... listen now! (Full transcript inside.)
Kategorie: Hacking & Security, Viry a Červi
Serious Security: That KeePass “master password crack”, and what we can learn from it
Here, in an admittedly discursive nutshell, is the fascinating story of CVE-2023-32784. (Short version: Don't panic.)
Kategorie: Hacking & Security, Viry a Červi
Serious Security: Verification is vital – examining an OAUTH login bug
What good is a popup asking for your approval if an attacker can bypass it simply by suppressing it?
Kategorie: Hacking & Security, Viry a Červi
S3 Ep136: Navigating a manic malware maelstrom
Latest episode - listen now. Full transcript inside...
Kategorie: Hacking & Security, Viry a Červi
Ransomware tales: The MitM attack that really had a Man in the Middle
Another traitorous sysadmin story, this one busted by system logs that gave his game away...
Kategorie: Hacking & Security, Viry a Červi
PyPI open-source code repository deals with manic malware maelstrom
Controlled outage used to keep malware marauders from gumming up the works. Learn what you can do to help in future...
Kategorie: Hacking & Security, Viry a Červi
Phone scamming kingpin gets 13 years for running “iSpoof” service
Site marketing video promised total anonymity, but that was a lie. 170 arrested already. Potentially 1000s more to follow.
Kategorie: Hacking & Security, Viry a Červi
Apple’s secret is out: 3 zero-days fixed, so be sure to patch now!
All Apple users have zero-days that need patching, though some have more zero-days than others.
Kategorie: Hacking & Security, Viry a Červi
S3 Ep135: Sysadmin by day, extortionist by night
Laugh (sufficiently), learn (efficiently), and then let us know what you think in our comments (anonymously, if you wish)...
Kategorie: Hacking & Security, Viry a Červi
US offers $10m bounty for Russian ransomware suspect outed in indictment
"Up to $10 million for information that leads to the arrest and/or conviction of this defendant."
Kategorie: Hacking & Security, Viry a Červi
Belkin Wemo Smart Plug V2 – the buffer overflow that won’t be patched
Yes, it's a buffer overflow bug. No, it's not going get fixed.
Kategorie: Hacking & Security, Viry a Červi
Zut alors! Raclage crapuleux! Clearview AI in 20% more trouble in France
We asked you once, we told you twice, now we're ordering you for the third time...
Kategorie: Hacking & Security, Viry a Červi
Whodunnit? Cybercrook gets 6 years for ransoming his own employer
Not just an active adversary, but a two-faced one, too.
Kategorie: Hacking & Security, Viry a Červi
S3 Ep134: It’s a PRIVATE key – the hint is in the name!
Latest episode - listen now! (Full transcript inside.)
Kategorie: Hacking & Security, Viry a Červi
Bootkit zero-day fix – is this Microsoft’s most cautious patch ever?
When blocking buggy bootup modules, you have to be really careful not to lock your keys inside the car...
Kategorie: Hacking & Security, Viry a Červi