News

NHS service accidentally reveals identities of HIV patients in email blunder

An NHS health board has found itself in the awkward position of apologising to 37 HIV patients, after accidentally disclosing their identities.


1 min read

Bella Thorne releases her own topless photos after hacker threats

Actress refuses to play into hacker’s hands, and publishes topless images of herself.


2 min read

tripwire.com

DDoS attack that knocked Telegram secure messaging service offline linked to Hong Kong protests

An attack which targeted users of the Telegram app on Wednesday might be linked to protests in Hong Kong that turned violent.

Read more in my article on the Tripwire State of Security blog.


0 sec read

Smashing Security #132: CBP cyber attack, an iPhone privacy boost, and Twitter list abuse

United States Customs and Border Protection had sensitive data stolen, but the hackers didn’t have to breach its network. Apple has ambitious plans to make iPhone users safer online. And trolls are using Twitter lists to target their victims.

All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Maria Varmazis.


1 min read

bitdefender.com

La Liga fined €250,000 after Android app spied on football fans

The Spanish football league La Liga has been hit with a fine after its official Android app was found sneakily listening to people’s surroundings when soccer matches were being played.

Read more in my article on the Hot for Security blog.


0 sec read

Donald Trump accidentally reveals “secret” plan by waving document around

The President of the United States took to the sunshine-filled garden of the White House to wave around what he claimed was a secret agreement on migration with Mexico.

It wasn’t a secret for long…


35 sec read

Radiohead refuses to pay $150,000 ransom for ‘hacked’ recordings, releases them instead

How do you stop a hacker from making a fortune out of the files they have stolen from you? Files that thousands of people are probably desperate to own?

Simple. You make the files readily available to anyone on the internet to access.


1 min read

bitdefender.com

Email blackmailer threatens to have your website blocked forever

Scammers have contacted websites demanding a ransom message be paid or else they will ensure the site will be blacklisted for aggressive spamming activities.

Read more in my article on the Hot for Security blog.


0 sec read

BlueKeep – everyone agrees, you should patch PCs running legacy versions of Windows

I have this horrible feeling that the only way we’re going to wake the world up to the need to patch their ageing versions of Windows against the BlueKeep vulnerability is to wait until a malicious worm begins to spread around the world.

Prove me wrong. Patch now.


1 min read

Umm.. that’s not a movies password update. That’s a downgrade

A cinema chain has given customers a password that any mischief-maker with half a brain cell could deduce.


53 sec read

tripwire.com

Cryptocurrency wallet GateHub hacked, nearly $10 million worth of Ripple (XRP) stolen

Cryptocurrency wallet service GateHub has warned that over 100 customers have had their ledger wallets hacked and funds stolen.

Read more in my article on the Tripwire State of Security blog.


0 sec read

Radisson Rewards may have leaked your data… again

If you’ve ever stayed at a Radisson Hotel and joined the Radisson Rewards loyalty program then your loyalty to the brand may be tested somewhat by an email they have been sending some members today.


1 min read

Smashing Security #131: Zap yourself from the net, and patch now against BlueKeep

Microsoft issues warning to unpatched Windows users about worm risk, and how do you delete all traces of yourself off the internet after you murder your podcast co-host?

All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault.


1 min read

Smashing Security named the Best Security Podcast

“Smashing Security” has been named the Best Security Podcast 2019 at an awards ceremony in London.


37 sec read

Facebook lawyer argues you should have ‘no expectation of privacy’

Next time someone connected to Facebook tries to convince you that it’s now really serious about privacy you know they’re pulling your leg.


1 min read

Data protection authority reports itself to itself after data breach

The Dutch Data Protection Authority has confessed to making the same kind of mistake that many others have made before – sending out an email with a long list of email addresses listed for all to see in the Cc: rather than hidden away via the Bcc: field.


56 sec read