Naked Security

Get ready. A brand new season arrives Thursday, October 8th. 

Join us for the first episode in our brand new Series 3! This week we wonder whether Cybersecurity Awareness Month is a waste of time, explain the concept of "linkless phishing", ask if it's ever OK to pay a ransomware demand, and advise what to do when the CEO won't stop looking at naughty sites.

With Paul Ducklin, Kimberly Truong and Doug Aamoth

Tips for National Cybersecurity Awareness Month https://nakedsecurity.sophos...

In this episode: we investigate a smartwatch for kids with a creepy set of functions, discuss Microsoft's short-lived takedown of Trickbot, explain how to avoid the Windows "Ping of Death" bug, and (oh no!) find the source of mysterious beeping from every computer in the office.

With Kimberly Truong, Doug Aamoth and Paul Ducklin

***

Creepy covert camera “feature” found in popular smartwatch for kids https://nakedsecurity.sophos...

This week: the DOJ's attempt to reignite the Battle to Break Encryption; the story of the Russian hackers behind the Sandworm Team; a zero-day bug just patched in Chrome; and (oh no!) why your vocabulary needs the word "restore" even more than it needs "backup".

With Kimberly Truong, Doug Aamoth and Paul Ducklin

***

US Department of Justice reignites the Battle to Break Encryption https://nakedsecurity.sophos...

This week: Facebook scammers trick you with fake copyright notices, voice scammers automate their attacks on the vulnerable, how to tune up your mobile privacy, and (oh! no!) the best/worst IT helpdesk call ever.

With Kimberly Truong, Doug Aamoth and Paul Ducklin

***

Facebook “copyright violation” tries to get past 2FA – don’t fall for it https://nakedsecurity.sophos...

On Wednesday, the FBI, CISA and HHS released an unprecedented warning against "an increased and imminent cybercrime threat to U.S. hospitals and healthcare providers." In this quick mini-sode, Chester Wisniewski (Principal Research Scientist at Sophos) discusses what the threat is, what this advisory means, and why this warning is a warning for everyone...

In this episode: a zero-day bug in Chrome for Android, the imminent death of Adobe Flash, the evolution of "malware-as-a-service", and the malware risks from image search. Also (oh! no!), why you should take care before you pair.

With Kimberly Truong, Doug Aamoth and Paul Ducklin

https://nakedsecurity.sophos.com/another-chrome-zero-day-this-time-on-android

https://nakedsecurity.sophos...

In this episode: When payments go astray, why "just in case" cybersecurity warnings do more harm than good, how to shop safely on Black Friday and beyond, and (oh no!) what to do when all your emails disappear.

With Kimberly Truong, Doug Aamoth and Paul Ducklin

***

To register for the Sophos Evolve event: https://sophos.com/evolve

Smishing attack tells you “mobile payment problem” – don’t fall for it https://nakedsecurity.sophos...

In this episode: we say thanks to companies that refuse to pay ransomware hush money, dig into the new Sophos 2021 Threat Report, and take a quick look inside a malicious Linux kernel driver. Also, a sneak preview of our upcoming podcast interview with bug bounty pioneer Katie Moussouris.

With Kimberly Truong, Doug Aamoth and Paul Ducklin

***

Cult videogame company Capcom pays a big round $0.00 to ransomware crooks https://nakedsecurity.sophos...

How do you go from pentester to creator of Microsoft’s bug bounty program? Find out from hacker and vulnerability disclosure pioneer, Katie Moussouris. Join us for a fascinating interview with Katie about her journey, the bugs in bug bounty programs, and the people who inspired her along the way.

With Kimberly Truong and special guest Katie Moussouris (@k8em0 on Twitter), Founder and CEO of Luta Security...