Phishing

Google Chrome users met with ‘Not secure’ warnings when visiting HTTP sites

If you’re still running a website that is using insecure HTTP then it’s probably too late.

Some of your website’s visitors are going to be greeted with a message that tells them that they can’t trust your website to be secure.


1 min read

bitdefender.com

Suspected Syrian Electronic Army hackers indicted for conspiracy and identity theft

But don’t imagine that the two suspected hackers will be defending themselves in a US court anytime soon…

Read more in my article on the Hot for Security blog.


0 sec read

Smashing Security #078: Hounds hunt hackers, too-human Google AI, and ethnic recognition tech – WTF?

Dogs are trained to sniff out hackers’ hard drives, facial recognition takes an ugly turn, and do you trust Google to book your hair appointment?

All this and more is discussed in the latest edition of the “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by investigative journalist Geoff White.


1 min read

Paris Hilton’s hacker sentenced to 57 months in prison

Celebrity heiress Paris Hilton says she no longer trusts the iCloud.


3 min read

welivesecurity.com

Ethereum cryptocurrency wallets raided after Amazon’s internet domain service hijacked

Approximately US $150,000 worth of Ethereum-based cryptocurrency stolen from MyEtherWallet users.

Read more in my article on the We Live Security blog.


0 sec read

bitdefender.com

Hackers continue to exploit hijacked MailChimp accounts in cybercrime campaigns

MailChimp, a service that millions of people around the world use to send out email newsletters, is being abused by hackers to spam out malware.

Read more in my article on the Hot for Security blog.


0 sec read

bitdefender.com

Know who hacked the Binance cryptocurrency exchange? Earn $250,000

Binance, one of the world’s biggest cryptocurrency exchanges by trading volume, has offered a reward equivalent to $250,000 to anyone providing information that leads to the arrest of hackers who attacked the platform last week.

Read more in my article on the Hot for Security blog.


0 sec read

Hope Hicks hacked

So-called “Trump Whisperer” Hope Hicks claims that she has fallen victim to email hackers, and so cannot provide emails requested by the House Intelligence Committee.


1 min read

bitdefender.com

Apple issues advice on how to spot App Store and iTunes phishing scams

Apple has responded to a spate of legitimate-looking App Store and iTunes phishing emails by releasing a new support document, outlining how customers can better protect themselves.

Read more in my article on the Hot for Security blog.


0 sec read

bitdefender.com

Form W-2 data thefts are rocketing, warns FBI

Businesses beware! Online criminals have ramped up their attempts to steal W-2 information from the finance and human resources departments of organisations, according to a warning issued by the FBI.

Read more in my article on the Hot for Security blog.


0 sec read

How to protect your browser from Unicode domain phishing attacks

Phishers and other online crooks are taking advantage of Unicode domain names in their pursuit of your passwords and other sensitive information. Here’s a simple way to protect yourself.


2 min read

Smashing Security #066: Passwords, pirates, and postcards

Flight simulators packed with password-grabbing malware, Facebook fighting Russian trolls, and how vulnerability researchers fear being sued.

All this and much much more is discussed in the latest edition of the “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, who are joined this week by special guest Dave Bittner from The CyberWire podcast.


1 min read

tripwire.com

How a Bitcoin phishing gang made $50 million with the help of Google AdWords

A cybercrime gang based in Ukraine is estimated to have made as much as $50 million after tricking Bitcoin investors into handing over the login credentials for their online wallets.

Read more in my article on the Tripwire State of Security blog.


0 sec read

Google is bringing AMP to email

We need to keep an eye on this. Making email “richer” in terms of features has always brought new security challenges.


1 min read

Smashing Security #064: So just a ‘teeny tiny’ security issue then?

A Namecheap vulnerability allows strangers to make subdomains for your website, Troy Hunt examines password length, and ex-Google and Facebook employees are fighting to protect kids from social media addiction.

All this and much much more is discussed in the latest edition of the “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, who are joined this week by special guest HaveIBeenPwned’s Troy Hunt.


1 min read

One year later, the UK’s Active Cyber Defence is seeing good results

The National Cyber Security Centre (NCSC), which tasks itself with “helping to make the UK the safest place to live and do business online”, has published an impressive report into the progress it has made with what it calls its “Active Cyber Defence” programme.


2 min read