Naked Security - Sophos

Patching your business, Yahoo breach, Google Glass, DDoS-for-hire – 60 Sec Security [VIDEO]

Paul Ducklin — Sat, 25 May 2013 09:53:48 +0000

Our 60 Second Security videos are back! We're aiming for a weekly roundup that's quick, fun and useful. But there is a serious side: security anecdotes to use in your own "elevator advocacy."

Cybercrooks siphon $800,000 from US fuel distribution firm

Lisa Vaas — Fri, 24 May 2013 16:49:52 +0000

Thieves drained $800,000 from a fuel distribution company in the US state of North Carolina earlier this month - a loss that the company attributes to its bank's having recently upgraded security systems. Unfortunately, its insurance policy won't come close to covering its losses.

Vermont slaps patent troll with first-ever suit of its kind

Lisa Vaas — Fri, 24 May 2013 14:09:49 +0000

Vermont's State Governor has signed the United States' first-ever anti-patent trolling law. Which could be bad news for the patent troll who sent thousands of letters demanding payment from small businesses who - get this - used scanners.

Only 36% of small firms apply security patches. No wonder cybercrooks are stealing their cash

John Hawes — Fri, 24 May 2013 09:14:50 +0000

Small businesses are under constant attack from malware, scams and online fraud. They are simply woefully under-prepared to keep their assets safe. Despite reorganisation and redirected priorities, the police can still do little to help. Here are some general tips from the FSB to help firms better protect themselves.

Sophos RED scoops “Protector Award” at this year’s AusCERT conference

Paul Ducklin — Thu, 23 May 2013 20:38:52 +0000

We're proud to say that at this evening's 2013 Information Security awards at the AusCERT conference in Australia, Sophos scooped the "Protector Award" with its Sophos RED product. Paul Ducklin says, "Well done" to the techies behind the technology...

Cyber security in US power system suffering from reactive, self-policed rules

John Hawes — Thu, 23 May 2013 14:45:00 +0000

John Hawes argued that what's needed is carefully considered defensive strategies combined with fast responses to new, unforeseen vulnerabilities. Sadly when government and big business intersect, pragmatism and speedy reactions are rarely in evidence.

Why Twitter’s two-factor authentication isn’t going to stop media organisations from being hacked

Graham Cluley — Thu, 23 May 2013 13:57:47 +0000

Twitter's new two factor authentication system will be welcomed by some users, but ignored by others who will find it a nuisance. Notably, it's unlikely to be much use at all to media companies who have suffered at the hands of hackers, as Graham Cluley explains.

NYPD detective charged with hiring email hackers to break into colleagues’ personal accounts

Lisa Vaas — Thu, 23 May 2013 10:00:47 +0000

A NYPD detective has been arrested for hiring an email hacking service to pinch the login details for at least 43 personal email accounts and one cell phone belonging to at least 30 individuals.

It’s VKontakte, not Vikontakte. Twitter phishing, Soviet-style

Graham Cluley — Wed, 22 May 2013 14:53:13 +0000

With a cybercrime plan as poorly thought out as this, maybe it's no wonder the Soviet Union didn't survive.

Breakfast malware at Tiffany’s? Trojan horses spammed out widely

Graham Cluley — Wed, 22 May 2013 13:45:19 +0000

Little blue boxes from Tiffany & Co. are the stuff of dreams for many. Don't let an unexpected email delivery - apparently from the company - make you so giddy with an excitement that you end up with a computer nightmare.