SSCC 164 – Spend Bitcoins using Apple Pay? *NOW* you’ve got me interested! [PODCAST]
Here’s this week’s Sophos Security Chet Chat for your listening pleasure. Our weekly computer security podcast with the News You Can Use…more…
SSCC 164 – Spend Bitcoins using Apple Pay? *NOW* you’ve got me interested! [PODCAST]
Here’s this week’s Sophos Security Chet Chat for your listening pleasure. Our weekly computer security podcast with the News You Can Use…more…
Security tops CIO worries; IT budgets, turnover on the rise
CIOs are spending more on IT, worrying most about security and privacy, and staying on the job a little longer, according to the latest data from the Society for Information Management (SIM). read moremore…
Resolved: Yammer Service Interruption
All Yammer services are now restored. Yammer is still investigating the root cause of this issue and continue to monitor.more…
Website Security – Compromised Website Used To Hack Home Routers
What if we told you that a compromised website has the ability to hack your home router? Yesterday we were notified that a popular newspaper in Brazil (politica.estadao.com.br) was hacked and loading several iFrames. These iFrames were trying to change the DNS configuration on the victim’s DSL router by Brute Forcing the admin credentials. Sucuri – […]more…
Vulnerability in popular Joomla e-commerce extension puts online shops at risk
A critical vulnerability in a popular e-commerce extension for the Joomla content management system allows malicious users to gain super-admin privileges to sites that run the software. read moremore…
India’s biometric ID project is back on track
The new Indian government has indicated strong support for a controversial project to require residents to have biometric IDs in order to collect government benefits, setting a target of 1 billion enrollments by 2015. read moremore…
2014 – An Explosion of Data Breaches and PoS RAM Scrapers
The computer security industry will always remember 2013 as the year the U.S. suffered one of the largest data breaches in history. In a targeted attack, U.S. retailer Target was compromised during the Christmas shopping season using the BlackPOS malware, a PoS RAM scraper family. According to estimates, cybercriminals stole 40 million credit and debit card numbers as well […]more…
Twitter, Netflix, Reddit, Foursquare et al. protest end to net neutrality
Those sites and many more simulated a slowdown of their sites and services by doing things such as posting the dreaded spinning wheel of death. The internet didn’t really slow down; the companies were, rather, trying to illustrate what the internet would be like if the US passes rules proposed by ISPs.more…
Xiaomi under investigation for sending user info back to China
After an information security company accused Xiaomi of sending user information without consent back to servers in mainland China, the privacy authority of the Hong Kong Special Administrative Region government announced that it has launched an investigation on the Chinese phone maker, as Apple Daily reported on September 9. Tags: Xiaomimore…
Cloud security: We’re asking the wrong questions
In the wake of the celebrity photo breach, the media is humming with stories disparaging the safety of the cloud. Many longtime cloud critics are crowing, “I told you so!” and waiting for the world to go back to on-premises solutions only. News flash: 1) the cloud was never touted as being perfectly secure and […]more…
Uncovering Malicious Browser Extensions in Chrome Web Store
Months ago, Google published a blog post informing users of Google Chrome that they cannot install browser extensions from third parties. The reason: security. By only permitting extensions from official Chrome Web Store, Google claims they would be able to police these extensions in order to prevent malicious ones. Unfortunately, such tactics aren’t enough to […]more…
List of five million ‘Gmail passwords’ leaked
It might be time to change some of your passwords – again. But if you’ve used a Gmail password that’s unique from other accounts, you might not have to worry. A list of almost 5 million combinations of Gmail addresses and passwords was posted online on Tuesday. But the passwords seem to be old, and […]more…