Wednesday, December 8, 2021

S3 Ep61: Call scammers, cloud insecurity, and facial recognition creepiness

Call scammers and cryptocoin treachery. Cloud insecurity and yet more cryptocoin treachery. Facial recognition creepiness. And the wannabe wizard that went to school with a trainee Sith. https://nakedsecurity.sophos.com/us-government-securities-watchdog-spoofed https://nakedsecurity.sophos.com/cloud-security-dont-wait-until-your-next-bill https://nakedsecurity.sophos.com/controversial-face-matchers-clearview-set-to-be-fined With Paul Ducklin and Doug Aamoth. Original music by Edith Mudge (https://www.edithmudge.com) Got questions/suggestions/stories to...

S3 Ep60: Exchange exploit, GoDaddy breach and cookies made public

Cybercsecurity tips for the holiday season and beyond. Exchange at risk from public exploit. GoDaddy loses passwords for 1.2m users. Longest-lived Windows version ever. Don't make your cookies public. And the day that umbrellas became an anti-DDoS tool. https://nakedsecurity.sophos.com/black-friday-and-cyber-monday-heres-what https://nakedsecurity.sophos.com/check-your-patches-public-exploit-now-out https://nakedsecurity.sophos.com/godaddy-admits-to-password-breach-check https://nakedsecurity.sophos.com/github-cookie-leakage-thousands-of-firefox-cookie-files With Paul...

S3 Ep59: Emotet, an FBI hoax, Samba bugs, and a hijackable suitcase

The infamous Emotet malware makes a comeback. Crooks smirk at the world with a fake FBI warning. Why tubes are also valves. Samba fixes an intriguing bug. The suitcase that needs no handle. And a virtual-versus-real monitor mixup. https://nakedsecurity.sophos.com/emotet-malware-the-report-of-my-death https://nakedsecurity.sophos.com/dhs-warning-about-hackers-in-your-network https://nakedsecurity.sophos.com/samba-update-patches-plaintext-passwork-plundering https://nakedsecurity.sophos.com/the-self-driving-smart-suitcase With Paul...

S3 Ep58: Faces on Facebook, scams that pose as complaints, and a Kaseya bust

We enjoy the Sophos 2022 Threat Report. The world's {oldest, coolest} continously maintained browser. Facebook folds up its Face Recognition feature. Crooks combine a new social engineering scam with a new way of packaging malware. Kaseya ransomware suspect busted....

S3 Ep57: Europol v. Ransomware, Shrootless bug, and Linux browser flamewars

Norbert (huzzah for Norbert!) does tech support. Europol digs into the ransomware scene. Microsoft finds a wacky bug in Apple's shell. The Morris worm turns 33. Edge on Linux phans the phlames. Ola! Gibberish peculiarity textual solvage. https://nakedsecurity.sophos.com/europol-announce-targeting-of-12-suspects https://nakedsecurity.sophos.com/microsoft-documents-shrootless-hack https://nakedsecurity.sophos.com/memories-of-the-internet-worm https://nakedsecurity.sophos.com/microsoft-edge-finally-arrives-on-linux With Paul Ducklin...

S3 Ep56: Cryptotrading rodent, ransomware hackback, and a Docusign phish

Bliss is a hill in wine country. Lessons from a cryptotrading hamster. Ransomware gang hacked back. Docusign phishers go after 2FA codes. Sleep mode considered harmful. https://nakedsecurity.sophos.com/revil-ransomware-gang-allegedly-forced-offline https://nakedsecurity.sophos.com/banking-scam-uses-docusign-phish https://nakedsecurity.sophos.com/to-the-moon-cryptocurrency-hamster-mr-goxx With Paul Ducklin and Doug Aamoth. Original music by Edith Mudge (https://www.edithmudge.com) Got something to share?...

S3 Ep55.8: Purple teaming – learning to think like your adversaries

Special minisode! Michelle Farenmci has a tough gig, being a cybersecurity practitioner inside a cybersecurity company! She explains why thinking like an attacker makes you a better defender.

S3 Ep55.6: Cyberinsurance – help or hindrance?

Special minisode! Dr Jason Nurse, Associate Professor in Cybersecurity at the University of Kent, takes on the controversial topic of cyberinsurance. Full transcript: https://nakedsecurity.sophos.com/becybersmart-2021-cyberinsurance

S3 Ep55.4: Supply chain attacks and how to avoid them

Special minisode! Chester Wisniewski, Principal Research Scientist at Sophos, gives you useful and actionable advice to reduce the risk of supply chain attacks. Full transcript: https://nakedsecurity.sophos.com/becybersmart-2021-supply-chain-attacks

S3 Ep55.2: Malware – the never-ending story

Special Minisode! Fraser Howard, Director of Threat Research at Sophos, talks about malware and how to fight it. Fraser's breadth and depth of knowledge in the threat-fighting field is second to none. Full transcript: https://nakedsecurity.sophos.com/becybersmart-2021-week4

S3 Ep55: Live malware, global encryption, dating scams, and secret emanations

Hook up with our forthcoming Live Malware Demo presentation. Why we think you should celebrate Global Encryption Day. A whole new twist on bogus online "friendships". How to stop your network cables giving you away. And why superglue is...

S3 Ep54: Another 0-day, double Apache patch, and Fight The Phish

Apple (you guessed it!) fixes yet another iPhone 0-day. Apache patches an embarrassing bug and then has to patch the patch. It's Fight The Phish week. And the user who got punched right in the nose by a recalcitrant...

S3 Ep53: Apple Pay, giftcards, cybermonth, and ransomware busts

Apple Pay gets hacked (sort of). DOJ busts four gift card scamming suspects. We give you our top tips for #Cybermonth. Ukrainian Cyberpolice take on ransomware crooks. And, believe it or not, the user that volunteered to RTFM!? https://nakedsecurity.sophos.com/how-to-steal-money-via-apple-pay https://nakedsecurity.sophos.com/gift-card-fraud-four-suspects-hit https://nakedsecurity.sophos.com/gift-card-hack-exposed https://nakedsecurity.sophos.com/becybersmart-2021-week1 https://nakedsecurity.sophos.com/europol-announces-two-more-ransomware-busts With Paul...

S3 Ep52: Let's Encrypt, Outlook leak, and VMware exploit

Let's Encrypt brings HTTPS to everyone. Researchers rediscover an Outlook data leakage issue. VMware keeps it real. And when the mouse is away, the cat will play. https://nakedsecurity.sophos.com/serious-security-lets-encrypt-gets-ready-to-go-it-alone https://nakedsecurity.sophos.com/how-outlook-autodiscover-could-leak-your-passwords https://nakedsecurity.sophos.com/vmware-patch-bulletin-warns-this-needs-your-immediate-attention With Paul Ducklin and Doug Aamoth. Original music by Edith Mudge (https://www.edithmudge.com) Got questions/suggestions/stories to...

S3 Ep51: OMIGOD a gaping hole, waybill scams, and Face ID hacked

A scarily exploitable hole in Microsoft open source code. A simpler take on delivery scams. A Face ID bypass hack, patched for the initial release of iOS 15. And how not to get locked in a cabling closet. https://nakedsecurity.sophos.com/omigod-an-exploitable-hole https://sophos.com/intelix https://nakedsecurity.sophos.com/back-to-basics-as-courier-scammers-skip-fake-fees https://nakedsecurity.sophos.com/ios-15-includes-face-id-fix With Paul...

Emotet’s Behavior & Spread Are Omens of Ransomware Attacks

The botnet, which resurfaced last month on the back of TrickBot, can now directly install Cobalt Strike on infected devices, giving threat actors direct access to targets.

Google disrupts major malware distribution network Glupteba

Working with several internet infrastructure and hosting providers, including Cloudflare, Google disrupted the operation of an aggressive Windows botnet known as Glupteba that was being distributed through fake ads. It also served itself as a distribution network for additional...
SecurityWeek

Private Equity Firm Permira to Acquire Mimecast in $5.8 Billion Deal

Mimecast on Tuesday announced that private equity firm Permira wants to acquire it in an all-cash transaction that values the email security company at roughly $5.8 billion. Permira, which plans on taking Mimecast private, has entered into a definitive agreement...
SecurityWeek

What a Departure Email Can Teach Us About Security

When someone leaves their job to pursue other opportunities, we often receive an email about their departure. Many times, the departure email praises the person who has given notice. This would seem to be a courteous tradition when someone...
IBM Security

What to Do When a Ransomware Group Disappears

It’s your company’s worst nightmare: attackers managed to sneak ransomware onto your servers. Now, you’re locked out of every file unless you agree to pay whatever price they’re asking. As if the situation couldn’t get any worse, the attackers...