Gesamtlänge aller Episoden: 8 days 20 hours 5 minutes
How a social engineer ripped off a victim lured in by one of those "small outstanding fee to pay" home delivery scams. The ransomware crooks targeting networks that still haven’t done their Hafnium patches. And the Linux kernel security holes that lay there undiscovered for 15 years.
Related articles that we refer to in the show:
https://nakedsecurity.sophos.com/beware-the-dhl-delivery-message
https://nakedsecurity.sophos.com/watch-out-scummy-scammers
https://nakedsecurity...
Why Apple had to rush out a security update for iDevices. Two cryptographic security holes patched in OpenSSL. How PHP nearly got backdoored by crooks.
With Doug Aamoth and Paul Ducklin.
Original music by Edith Mudge
Got questions/suggestions/stories to share?
Email tips@sophos.com
Twitter @NakedSecurity
Instagram @NakedSecurity
How scammers copied a government website almost to perfection. What to do about those fake "bug" hunters who ask for payment for finding "vulnerabilities" that aren't. Why the Dutch data protection authority fined Booking.com for not sending in a data breach disclosure fast enough.
Useful podcasts and videos mentioned in this episode:
https://nakedsecurity.sophos.com/s3-ep12-a-chat-with-social-engineering-hacker-rachel-tobac
https://nakedsecurity.sophos...
We look at the big-money hacks from the 2021 Pwn2Own competition. We investigate the difficulties of hiring an assassin via the dark web. We wrestle with some of the privacy issues relating to COVID-19 infection tracking apps.
With Kimberly Truong, Doug Aamoth and Paul Ducklin.
Original music by Edith Mudge
Got questions/suggestions/stories to share?
Email tips@sophos...
Sophos cybersecurity expert Chester Wisniewski provides excellent, topical and timely commentary on the FBI’s recent use of a malware-like method to forcibly clean up hundreds of servers still infected in the Hafnium aftermath.
With Paul Ducklin and Chester Wisniewski
Original music by Edith Mudge
Got questions/suggestions/stories to share?
Email tips@sophos.com
Twitter @NakedSecurity
Instagram @NakedSecurity
How Firefox showed the hand to a widely abused online tracking trick. Why reading from one part of your computer's memory can paradoxically (and sneakily) let you write to another part. And yet more IoT bugs, this time a whole slew of them that go by the moniker "name:wreck".
With Kimberly Truong, Doug Aamoth and Paul Ducklin.
Original music by Edith Mudge
Got questions/suggestions/stories to share?
Email tips@sophos...
We investigate whether AirDrop is really as dangerous as researchers claimed. We discuss the pestiferous problem of fake Linux bugs submitted as an academic exercise. We review the latest Sophos Ransomware Report and uncover uncomfortable truths about paying up.
With Kimberly Truong, Doug Aamoth and Paul Ducklin.
Original music by Edith Mudge
Got questions/suggestions/stories to share?
Email tips@sophos...
We look into Apple's recent emergency updates that closed off four in-the-wild browser bugs. We explain how the infamous "Flubot" home delivery scam works and how to stop it. We investigate a recent security bug that threatened the PHP ecosystem.
With Kimberly Truong, Doug Aamoth and Paul Ducklin.
Original music by Edith Mudge
Got questions/suggestions/stories to share?
Email tips@sophos...
Apple's brand new AirTag product got hacked already. Things you can learn from Colonial Pipeline's ransomware misfortune. Why Dell patched a bunch of driver bugs going back more than a decade. And the "Is it you in the video?" scam just keeps on coming back.
Additional links you will find useful:
https://news.sophos.com/en-us/using-sophos-edr-to-identify-endpoints-impacted-by-dell
https://nakedsecurity.sophos.com/ransomware-dont-expect-a-full-recovery
https://www...
We look into an unnerving case of mixed-up video feeds. We warn you against "going rogue" when you can't get the download you want from the regular place. We explain how Apple's new AirTag product got hacked (again).
With Doug Aamoth and Paul Ducklin.
Original music by Edith Mudge
Got questions/suggestions/stories to share?
Email tips@sophos.com
Twitter @NakedSecurity
Instagram @NakedSecurity