BlueKeep: What you need to know

Currently BlueKeep attacks have been causing computers to crash, and drawing attention to themselves.

But that may be about to change…

Read more in my article on the Tripwire State of Security blog.

0 sec read

Hackers poison Asus software updates, may have infected one million PCs

Hundreds of thousands of Asus PCs may have been infected with malware installed by Asus’s own automatic Live Update tool.

2 min read

Android apps infected with umm… *Windows* malware

Security researchers at Palo Alto Networks recently discovered 145 apps in the official Google Play Android store that were “infected by malicious Microsoft Windows executable files.”

Yes, you read that correctly. Android apps carrying malicious Windows executables.

1 min read

Patch now! Microsoft fixes over 50 serious security flaws

This week saw the second Tuesday of the month, and everyone who is responsible for protecting Windows computers knows what that means: another bundle of security patches have been released by Microsoft.

Read more in my article on the We Live Security blog.

0 sec read

Spectre? Meltdown? F*CKWIT? Calm down and make yourself some tea

There is not much that consumers can do other than wait for security patches and mitigations to be released, and then apply them as a matter of priority.

2 min read

The F*CKWIT Intel chip flaw. Ready yourself for patches

A newly-discovered design flaw has been found on Intel CPU hardware that could allow malicious code to access information supposedly held in “protected” areas of your computer’s memory.

1 min read

Smashing Security podcast #058: Face ID, Firefox, and Windows SNAFUs, plus Bitcoin FOMO

Is Face ID racist? Has Mr Robot infected your Firefox browser? Has Microsoft pushed a buggy password manager onto your Windows PC?

All this and much much more is discussed in the special first birthday edition of the “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by original co-host Vanja Švajcer.

2 min read

Smashing Security #029: Exploits to get your English teeth into

Microsoft gives us a Patch Tuesday shock, malware grows up for the Mac, and your mouse movements might reveal if you’re an identity thief.

All this and more is discussed in the latest edition of the “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by special guest Javvad Malik of AlienVault.

45 sec read

Windows XP ‘did not contribute much’ to WannaCry infection totals

Even in the absence of encrypted files, no one wants a Blue Screen of Death.

David Bisson reports.

2 min read

Victims’ real details helping hackers trick victims into installing banking malware

Remember to always be wary of opening unsolicited email attachments and clicking on unknown links. Clicking before you think could lead to your downfall.

David Bisson reports.

1 min read

Gatekeeper-like feature for Windows 10 only allows apps to be installed from the Microsoft Store

A new feature could see Windows 10 behaving like Apple’s Gatekeeper by blocking app installations that occur outside the Microsoft Store.

David Bisson reports.

1 min read

If you’re going to use Windows, it makes security sense to use Windows 10

Wouldn’t it be great if modern operating systems hardened their defences, and did a better job in the first place at protecting against these types of security issues even when they are unknown?

Read more in my article on the Hot for Security blog.

0 sec read

Microsoft has patched the zero-day security hole disclosed by Google

This Patch Tuesday update includes a fix for the vulnerability that Google engineers controversially chose to make public last week.

56 sec read

Microsoft: Google has put our customers at potential risk

Google shares details of unpatched zero-day vulnerability in Windows, just ten days after telling Microsoft about it.

1 min read

Uninstall your anti-virus says Amazon, if you want to work for us from home

You may want to earn money working from home as a customer service rep for Amazon, but they have some worrying rules about what you should (and shouldn’t) be running on your computer.

Watch my latest video to learn more.

1 min read

How an attacker could exploit Windows Safe Mode to steal users’ passwords

Safe mode doesn’t necessarily mean secure mode.

David Bisson reports.

2 min read