Naked Security

Naked Security

We take an expert look at the latest cybersecurity incidents, how they happened, and why. Tune in weekly to learn what you can do to stop bad things from happening to you! Got questions/suggestions/stories to share? Email: tips@sophos.com Twitter: @NakedSecurity Instagram: @NakedSecurity

https://podcasters.spotify.com/pod/show/naked-security

Eine durchschnittliche Folge dieses Podcasts dauert 16m. Bisher sind 620 Folge(n) erschienen. Jede Woche gibt es eine neue Folge dieses Podcasts.

Gesamtlänge aller Episoden: 8 days 20 hours 5 minutes

Technology
subscribe
share






claim!
report

episode 25: S3 Ep25: Drained accounts, ransomware attacks and Linux badware

How a social engineer ripped off a victim lured in by one of those "small outstanding fee to pay" home delivery scams. The ransomware crooks targeting networks that still haven’t done their Hafnium patches. And the Linux kernel security holes that lay there undiscovered for 15 years.

Related articles that we refer to in the show:
https://nakedsecurity.sophos.com/beware-the-dhl-delivery-message
https://nakedsecurity.sophos.com/watch-out-scummy-scammers
https://nakedsecurity...

share








 March 25, 2021  47m
 
 

episode 26: S3 Ep26: Apple 0-day, crypto vulnerabilities and PHP backdoor

Why Apple had to rush out a security update for iDevices. Two cryptographic security holes patched in OpenSSL. How PHP nearly got backdoored by crooks.


With Doug Aamoth and Paul Ducklin.


Original music by Edith Mudge


Got questions/suggestions/stories to share?

Email tips@sophos.com

Twitter @NakedSecurity

Instagram @NakedSecurity

share








 April 1, 2021  37m
 
 

episode 27: S3 Ep27: Census scammers, beg bounties and data breach fines

How scammers copied a government website almost to perfection. What to do about those fake "bug" hunters who ask for payment for finding "vulnerabilities" that aren't. Why the Dutch data protection authority fined Booking.com for not sending in a data breach disclosure fast enough.


Useful podcasts and videos mentioned in this episode:

https://nakedsecurity.sophos.com/s3-ep12-a-chat-with-social-engineering-hacker-rachel-tobac

https://nakedsecurity.sophos...

share








 April 8, 2021  46m
 
 

episode 28: S3 Ep28: Pwn2Own hacks, dark web hitmen and COVID-19 privacy

We look at the big-money hacks from the 2021 Pwn2Own competition. We investigate the difficulties of hiring an assassin via the dark web. We wrestle with some of the privacy issues relating to COVID-19 infection tracking apps.


With Kimberly Truong, Doug Aamoth and Paul Ducklin.


Original music by Edith Mudge


Got questions/suggestions/stories to share?

Email tips@sophos...

share








 April 14, 2021  48m
 
 

episode 28: S3 Ep28.5: Hacking back - is attack an acceptable form of defence?

Sophos cybersecurity expert Chester Wisniewski provides excellent, topical and timely commentary on the FBI’s recent use of a malware-like method to forcibly clean up hundreds of servers still infected in the Hafnium aftermath.


With Paul Ducklin and Chester Wisniewski


Original music by Edith Mudge


Got questions/suggestions/stories to share?

Email tips@sophos.com

Twitter @NakedSecurity

Instagram @NakedSecurity

share








 April 16, 2021  19m
 
 

episode 29: S3 Ep29: Anti-tracking, rowhammer problems and IoT vulns

How Firefox showed the hand to a widely abused online tracking trick. Why reading from one part of your computer's memory can paradoxically (and sneakily) let you write to another part. And yet more IoT bugs, this time a whole slew of them that go by the moniker "name:wreck".


With Kimberly Truong, Doug Aamoth and Paul Ducklin.


Original music by Edith Mudge


Got questions/suggestions/stories to share?

Email tips@sophos...

share








 April 22, 2021  48m
 
 

episode 30: S3 Ep30: AirDrop worries, Linux pests and ransomware truths

We investigate whether AirDrop is really as dangerous as researchers claimed. We discuss the pestiferous problem of fake Linux bugs submitted as an academic exercise. We review the latest Sophos Ransomware Report and uncover uncomfortable truths about paying up.


With Kimberly Truong, Doug Aamoth and Paul Ducklin.


Original music by Edith Mudge


Got questions/suggestions/stories to share?

Email tips@sophos...

share








 April 29, 2021  47m
 
 

episode 31: S3 Ep31: Apple zero-days, Flubot scammers and PHP supply chain bug

We look into Apple's recent emergency updates that closed off four in-the-wild browser bugs. We explain how the infamous "Flubot" home delivery scam works and how to stop it. We investigate a recent security bug that threatened the PHP ecosystem.


With Kimberly Truong, Doug Aamoth and Paul Ducklin.


Original music by Edith Mudge


Got questions/suggestions/stories to share?

Email tips@sophos...

share








 May 6, 2021  38m
 
 

episode 32: S3 Ep32: AirTag jailbreak, Dell vulns, and the never-ending scam

Apple's brand new AirTag product got hacked already. Things you can learn from Colonial Pipeline's ransomware misfortune. Why Dell patched a bunch of driver bugs going back more than a decade. And the "Is it you in the video?" scam just keeps on coming back.

Additional links you will find useful:

https://news.sophos.com/en-us/using-sophos-edr-to-identify-endpoints-impacted-by-dell

https://nakedsecurity.sophos.com/ransomware-dont-expect-a-full-recovery

https://www...

share








 May 13, 2021  38m
 
 

episode 33: S3 Ep33: Eufy camera leak, Afterburner crisis, and AirTags (again)

We look into an unnerving case of mixed-up video feeds. We warn you against "going rogue" when you can't get the download you want from the regular place. We explain how Apple's new AirTag product got hacked (again).


With Doug Aamoth and Paul Ducklin.


Original music by Edith Mudge


Got questions/suggestions/stories to share?

Email tips@sophos.com

Twitter @NakedSecurity

Instagram @NakedSecurity

share








 May 20, 2021  38m