China Takes Security In-House, Kicks Kaspersky And Symantec
Government spying, whilst frowned upon by many, may be an essential part of a nation’s security program these days, but the way in which it is implemented could have a knock-on effect for businesses. Whilst there is plenty of commentary about the NSA and, to a lesser extent, GCHQ and other security agencies spying on […]
Raspberry Pi, Wearables And The Low Cost Of Surveillance
Are you whiling the time away until you get your first smartwatch or preparing to run to the local store to buy the latest fitness tracker? If so, you may wish to know that snoops can track such devices and at a fraction of the prices you will be paying for the latest in wearable tech. […]
Proofpoint: "IoT Will Be The Next Industrial Revolution For Cybercriminals"
My own interest in security began several years ago after I offered to help friends and family members who had become flummoxed by various computer problems they were experiencing. For the most part, the issues they had were centred around getting games to work (the youth of today don’t know how lucky they are with […]
MailPoet Update Goes Unnoticed, Up To 50,000 Websites Compromised So Far
Users of the popular MailPoet plugin for WordPress are being urged to update it after it was revealed that up to 50,000 websites may have been compromised. As I reported at the beginning of June, the vulnerability in MailPoet allows attackers to remotely upload files to a website without the need for authentication. MailPoet released […]
Advanced Fee Fraud Now Plagued By RATs
From: The Boys from Lagos, Somewhere entirely different to where they claim, Dear Sir, I am writting to you in respect of your recent attempt to settle the modalities concerning your quatation for Iran May Order (see attachment). As you will know doubt see, there has been a problem with the Randam Access Tables (RAT) in […]
Are We The Architects Of Our Own Insecurity?
Its a well known fact that people men are obsessed with something. (Note to self: make that two things but don’t mention the first). Go to any shopping centre on a Saturday and you’ll notice all manner of sideways glances, secret peeks and longing stares as men of all ages centre their attention on anything […]
Rogue SSL Certs – Microsoft Issues Out-Of-Band Patch
Microsoft has issued an emergency security update – “Improperly Issued Digital Certificates Could Allow Spoofing” – just two days after its regular monthly Patch Tuesday release cycle in order to address forged security certificates that could have been used to spoof Google and Yahoo websites. The forged certificates had been generated by India’s National Informatics […]
1 In 5 Organisations Have Experienced An APT Attack
“Advanced persistent threat (APT) is a term that has been used frequently in the course of security threat discussions; however, confusion exists as to what an APT is and how to manage the risk associated with it. Although the study reveals that a large number of respondents feel that APTs are a significant threat and have […]
MailPoet Newsletters Plugin For WordPress Vulnerable, Update Available
If you have responsibility for a corporate blog (or run your own) and it runs on WordPress and has a newsletter then I would suggest that you check how your newsletters are handled. If you find that your blog relies upon MailPoet (a plugin that has been downloaded over 1.7 million times) then you need to be […]
Google Glass Didn't Kill The Video Star
Have you just splurged £1,000 on Google Glass? If so, you may be tempted to wear your expensive fashion faux pas everywhere in order to show off how much of a [insert appropriate adjective here] you really are. But one place you won’t be able to wear the headset is in your local cinema. The UK’s […]