Phishing

Smashing Security #066: Passwords, pirates, and postcards

Flight simulators packed with password-grabbing malware, Facebook fighting Russian trolls, and how vulnerability researchers fear being sued.

All this and much much more is discussed in the latest edition of the “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, who are joined this week by special guest Dave Bittner from The CyberWire podcast.


1 min read

tripwire.com

How a Bitcoin phishing gang made $50 million with the help of Google AdWords

A cybercrime gang based in Ukraine is estimated to have made as much as $50 million after tricking Bitcoin investors into handing over the login credentials for their online wallets.

Read more in my article on the Tripwire State of Security blog.


0 sec read

Google is bringing AMP to email

We need to keep an eye on this. Making email “richer” in terms of features has always brought new security challenges.


1 min read

Smashing Security #064: So just a ‘teeny tiny’ security issue then?

A Namecheap vulnerability allows strangers to make subdomains for your website, Troy Hunt examines password length, and ex-Google and Facebook employees are fighting to protect kids from social media addiction.

All this and much much more is discussed in the latest edition of the “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, who are joined this week by special guest HaveIBeenPwned’s Troy Hunt.


1 min read

One year later, the UK’s Active Cyber Defence is seeing good results

The National Cyber Security Centre (NCSC), which tasks itself with “helping to make the UK the safest place to live and do business online”, has published an impressive report into the progress it has made with what it calls its “Active Cyber Defence” programme.


2 min read

Smashing Security podcast #056: Peeping Toms, prison hacks, and parliamentary passwords

Why you should check your Airbnb for hidden cameras, a hacker attempts a different kind of jailbreak, and British MPs prove that they really are clueless when it comes to cybersecurity.

All this and much much more is discussed in the latest edition of the “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, who are joined this week by special guest Ian Whalley.


1 min read

welivesecurity.com

Think you deleted that embarrassing WhatsApp message you sent? Think again

if there’s one thing we should all have learnt from our years on the internet it’s this – once you say something somewhere, it’s very hard to take it back and pretend it never happened.

Read more in my article on the We Live Security blog.


0 sec read

Can you see why this WhatsApp message can’t be trusted?

Take a look at this WhatsApp message. Can you see why you should be wary of clicking?


1 min read

Smashing Security #049: Hacking funeral homes, crypto mining websites, and careful with that hairspray

Scammers show a lack of imagination after hacking a funeral home, more websites are secretly stealing visitors’ resources to mine for cryptocurrency, and everyone is very confused about the USA’s airline laptop ban.

All this and much much more is discussed in the latest edition of the “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by The Register’s John Leyden.


1 min read

Equifax: Umm, actually hackers stole records of 15.2 million Brits, not 400,000

Equifax has confirmed that a recent data breach exposed a file containing 15.2 million UK personal information records.

David Bisson reports.


1 min read

tripwire.com

How a missing smiley foiled a $70,000 email fraud

When hackers sent an email designed to steal thousands of dollars, they failed to make their message entirely convincing…

Read more in my article on the Tripwire State of Security blog.


0 sec read

‘Phish for the Future’ spearphishing campaign set digital civil liberty activists in its sights

One attack masqueraded as a YouTube comment to a legitimate video uploaded by the targe. Another posed as the target’s husband under the pretense of sharing family photos.

David Bisson reports.


1 min read

welivesecurity.com

Equifax confirms up to 400,000 UK consumers at risk after data breach

Credit reporting agency Equifax has revealed more details of just how many people are affected in the UK, as consumers are warned of the risk of phishing attacks.

Read more in my article on the We Live Security blog.


0 sec read

Guess what happened after VEVO told its hackers to ‘f**k off’…

A hacking gang posted 3.12 terabytes of VEVO’s internal files online, after it discovered the company was being reckless with its security.

David Bisson reports.


1 min read

Smashing Security #040: The show that cost Troy Hunt 14 dollars

Are public figures lying about being hacked? What were online criminals doing with 711 million email addresses? And how could scammers profit from Hurricane Harvey?

All this and more is discussed in the latest edition of the “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by HaveIBeenPwned’s Troy Hunt.


43 sec read

welivesecurity.com

Don’t fall for Hurricane Harvey charity scams!

Merciless scammers have no qualms about exploiting people’s kind-hearted nature by spreading their attacks via social networks and email, linking to counterfeit charity websites designed to steal the public’s payment card details.

Read more in my article on the We Live Security blog.


0 sec read