NEWS & Updates


    Black Friday and Cyber Monday – here’s what you REALLY need to do!

    22 NOV 2021 0Malware, Phishing Previous: Github cookie leakage – thousands of Firefox cookie files uploaded by mistake by Paul Ducklin   As we’ve explained before, the opposite (or perhaps we mean the inverse) of Black Friday wouldn’t be White Friday, it would be Red Friday. The word “black” in the context of the big retail surge that typically follows […]

    Read more

    Github cookie leakage – thousands of Firefox cookie files uploaded by mistakeHello

    18 NOV 2021 2Data loss Previous: S3 Ep59: Emotet, an FBI hoax, Samba bugs, and a hijackable suitcase [Podcast] by Paul Ducklin   Remember when people used to upload their SSH keys onto Github and similar code sharing sites by mistake? Two years ago, we wrote about the fact that incautious software developers had uploaded hundreds of thousands of private […]

    Read more

    Apple’s Privacy Protection feature – watch out if you have a Watch!

    17 NOV 2021 0Apple, Privacy Previous: The self-driving smart suitcase… that the person behind you can hijack! by Paul Ducklin   Tommy Mysk and Talal Haj Bakry describe themselves as “two iOS developers and occasional security researchers on two continents.” In other words, although cybersecurity isn’t their core business, they’re doing what we wish all programmers would do: not taking application or operating […]

    Read more

    The self-driving smart suitcase… that the person behind you can hijack!

    16 NOV 2021 0IoT Previous: Emotet malware: “The report of my death was an exaggeration” by Paul Ducklin   The Internet of Things (IoT) has become infamous for providing us, in a worrying number of cases, with three outcomes: Connected products that we didn’t know we needed. Connected products that we purchased anyway. Connected products that ended up disconnected in a […]

    Read more

    FBI email hack spreads fake security alerts. Here’s what to do…

    13 NOV 2021 0Law & order Previous: Samba update patches plaintext password plundering problem by Naked Security writer   Well-known email tracking organisation Spamhaus, which maintains lists of known senders of spams and scams, is warning of a fraudulent “FBI/Homeland Security” alert that has apparently been widely circulated to network administrators and other IT staff in North America. Indeed, some […]

    Read more

    Samba update patches plaintext passwork plundering problem

    12 NOV 2021 0Cryptography Previous: S3 Ep58: Faces on Facebook, scams that pose as complaints, and a Kaseya bust [Podcast] by Paul Ducklin   If you use the venerable Samba open source tool anywhere on your network, you’ll want to read up on the latest update, version 4.15.2. Samba is the closest pronounceable word to SMB that Andrew Tridgell, who […]

    Read more