We’ve moved! For the full archive of Naked Security articles and to continue getting the latest Sophos security insights, visit news.sophos.com or @SophosXOps
- Tweets 19,538
- Following 189
- Followers 84,379
- Likes 1,771
Literally all I do as a cybersecurity news site:
Use 2FA
Use 2FA
Use 2FA
Use 2FA
They're surveilling you
Use 2FA
They've been breached
Use 2FA
Use 2FA
Use 2FA
He's been arrested
Patch RDP now!!!
Use 2FA
Use 2FA
Use 2FA
Literally all I do as a CPU:
push rbp
mov rbp, rsp
mov rax, [rbp - 8]
mov [rbp - 8], rax
mov rax, [rbp - 8]
mov [rbp - 8], rax
mov rax, [rbp - 8]
mov [rbp - 8], rax
xor rax, rax
pop rbp
ret
9
82
311
Australians who refuse to unlock their phones could face 10 years in jail. nakedsecurity.sophos.com/201…
32
235
203
ISPs call Mozilla ‘Internet Villain’ for promoting DNS privacy wp.me/p120rT-1SRa
1
54
96
WannaCry hero gets off lightly, avoids prison – was justice done? wp.me/p120rT-1TeJ
24
25
91
Judge decides we don’t have any right to privacy wp.me/p120rT-1njE
1
12
68
The penny has finally dropped inside ISPs and governments that a privacy technology called DNS over HTTPS (DoH), backed by Google, Mozilla and Cloudflare, is about to make web surveillance a lot more difficult. nakedsecurity.sophos.com/201…
4
54
77
Happy #SysAdminDay! Today we're saying 'thanks' to our server room saviours by celebrating the style, self expression and social signalling of the sysadmin.
Yes, we want to see your tees! Get out your phone or turn on your webcam and send us your t-shirts of IT.
#TshirtsofIT
9
12
60
You can only choose one web browser and coding language, which are you choosing? Let us know with your numbers and letters in the comments below!👇
110
13
60
So, is Wi-Fi still safe to use? We'll be live at 4.45pm GMT today (11.45am EST, 8.45am PST). Join us at facebook.com/SophosSecurity/
3
21
57
Office DDE attack works in Outlook too. Here’s what to do wp.me/p120rT-1CHZ
1
65
57
Computer scientist and code breaker Alan Turing is set to be the new face of the £50 note in 2021.💷
1
22
60
Russian ISPs plan internet disconnection test for entire country wp.me/p120rT-1Qmt
10
31
51
Adobe security team posts public key – together with private key wp.me/p120rT-1C2s
73
54
We shouldn't say this, because it's malware... but don't you wish your website was this cool?
2
48
54
We won Best Cybersecurity Vendor Blog. Woohoo! 🥳#EUSecBloggerAwards20
5
5
51
EFF plans to cut down on email snooping with STARTTLS Everywhere wp.me/p120rT-1Iz2
26
44
Dark Overlord hackers release alleged 9/11 lawsuit documents wp.me/p120rT-1PvU
1
35
33
Microsoft's acquiring GitHub?
Finally, we're going to get some help with that impenetrable git syntax!
2
17
46
You know your user interface design is on point when a 2-year-old or a chimp can pick it up and use it...
2
30
50
Apple AirTags hacked again – free internet with no mobile data plan! nakedsecurity.sophos.com/202…
28
47
Here’s a 30-second video you can show your friends and family if they freak out after receiving a scam email apparently from themselves…
35
46
The crooks love it when you take shortcuts.
#WorldPasswordDay
35
42
Serious Chrome zero-day – Google says update “right this minute” wp.me/p120rT-1QNV
1
53
44
Internet of Ships falling down on security basics. There are multiple ways for disaster to happen on modern ships. soph.so/jEdH30fXh4I
39
41
Having completely solved the problem of securing the Internet of Things by 2019, humans felt ready to move to the next step...
1
11
36
Hooray! We won Best Security Video Blog at the European Blogger Awards 🤗 Thanks to everyone who voted for us.
2
7
42
Vevo hacked, 3.12TB of data leaked. OurMine says it leaked data after being told "f*ck off, you don't have anything" soph.so/jDCv30ffbfT
2
43
32
At a time and date during 2019 yet to be confirmed, Russia’s major ISPs will in unison temporarily disconnect their servers from the internet, effectively cutting the country off from the outside world wp.me/p120rT-1Qmt
6
36
34
The people behind Cambridge Analytica have closed the company.
In unrelated news the people behind Cambridge Analytica have started a new company.
2
35
38
Popular #photo editing app #Meitu harvests your personal data: #GPS location and sim, Wi-Fi details & network info. nakedsecurity.sophos.com/201…
18
36
Tor takes on the question, “What if one of us is using loaded dice?” wp.me/p120rT-1mwL
1
25
36
ICYMI Apple security updates are out with a total of 87 CVE-rated software bugs patched.
Several are listed with a warning that the bug might “lead to arbitrary code execution”, or be exploitable “to execute arbitrary code with kernel privileges”.
nakedsecurity.sophos.com/202…
1
19
37
Over the past 3 months, Matt setup and monitored 10 honeypots located across 5 different continents. These have been waiting patiently for SSH login attempts to better understand how often you face cybercriminals knocking at your network’s metaphorical front door.
3
21
39
When someone saw the Wi-Fi network 'remote detonator' they evacuated a gym. #tellSophos the wackiest Wi-Fi network name you've ever seen. A webcam cover for the one that makes us LOL...
36
16
36
Love your privacy on #ValentinesDay
❤️Retweet to remind the people you care about.
#Valentines2019
1
35
38
Latest on CVE-2021-40444 🚨
Details are scarce so far, but Microsoft is warning Office users about a bug that’s dubbed CVE-2021-40444, and described as Microsoft MSHTML Remote Code Execution Vulnerability.
1/6
1
17
38
🥳 📽️We now have our very own Naked Security YouTube channel!
Our experts give you the latest security news and advice without all the technical jargon.
Subscribe to stay up to date with our latest videos.
piped.video/watch?time_conti…
2
14
35
What are VPNs? ...and what are they not? Join us live to discuss at 4.45pm GMT (11.45am EST, 8.45am PST) over on facebook.com/SophosSecurity/
1
13
34
Christmas is the time for family, goodwill and SCAMS 😟
We'll be live at 4.45pm GMT today (11.45am EST, 8.45am PST) to tell you how you and your family can stay safe this season. Join us facebook.com/SophosSecurity/
2
11
33
The “passwordless web” is one step closer now that the World Wide Web Consortium has approved WebAuthn as a standard...
...so here’s what you need to know, written in plain English.
nakedsecurity.sophos.com/the…
13
33
Vevo hacked, 3.12 TB of data leaked wp.me/p120rT-1BR9
1
63
32
World’s most popular #email server praised as ‘near-impenetrable’. Exhaustive audit found only three minor flaws. nakedsecurity.sophos.com/201…
9
25
Back to the future! 1990s Windows File Manager! NOW OPEN SOURCE!
You can now build the 1990s Microsoft Windows “File Manager” app for Windows 10. But why? BECAUSE YOU CAN! soph.so/EaSj30jqSsz
21
32
Log4Shell explained – how it works, why you need to know, and how to fix it nakedsecurity.sophos.com/202…
13
34
Today is #DataPrivacyDay. To celebrate, we asked our security experts to share their top tips for protecting your privacy online.
#DataProtectionDay #PrivacyAware
1
23
34
BREAKING NEWS: The FBI has issued a #VPNFilter cyberattack warning,
"The FBI recommends any owner of small office and home office routers power cycle (reboot) the devices." See full alert: ic3.gov/media/2018/180525.as…
And here's more on what we know: nakedsecurity.sophos.com/201…
65
34
You waited 13 years for this feature in Google Authenticator. Now researchers are advising you to wait a while longer...
...just to be sure, to be sure. nakedsecurity.sophos.com/202…
19
30
6,011
What to do:
1️⃣ Keep your eye on your security key.
2️⃣ If you think your key has been tampered with, assume that it has!
3️⃣ Ask your account providers if they track FIDO key counters.
4️⃣ Don’t stop using your Titan keys.
nakedsecurity.sophos.com/202…
16
29
"Zero day" attack - update Firefox ASAP!
3.45pm UK time today (16:30 CET, 10:30 EST)
Harry and Duck go live on Facebook to discuss Mozilla's
warning about "attacks in the wild" against Firefox.
What are zero days, why do they matter, and what to do?
3
29
30
Donald Daters app for pro-Trump singles exposes users’ data at launch wp.me/p120rT-1NFF
1
8
33
Google says our Google Assistant recordings are anonymous, but these whistleblowers proved otherwise.
nakedsecurity.sophos.com/201…
1
30
30
Somebody accidentally swapped the the left and right hand fingerprints of 228,000 e-passport holders.
nakedsecurity.sophos.com/201…
28
25
IP address errors lead to wrongful arrests wp.me/p120rT-1Eh1
3
48
30
Uber suffered massive data breach, then paid hackers to keep quiet wp.me/p120rT-1Dpa
51
31
Start-up accused of undermining popular open-source tools wp.me/p120rT-1AqM
2
20
Sextortionists demand $100-$1000 or your porn habit gets revealed - they even quote your phone number (that they got from a data breach). DON'T PAY, DON'T PANIC, DON'T REPLY. Just hit [Delete]...
2
38
29
Check your router – list of routers affected by VPNFilter just got bigger wp.me/p120rT-1I7z
2
38
31
Mozilla bug throws Tor Browser users into chaos wp.me/p120rT-1RR9
33
30
Android phones are full of "bloatware" - those pre-installed apps that can be unwanted, invasive and sometimes downright malicious.
nakedsecurity.sophos.com/201…
1
20
28
A UK cybercrime vigilante was so incensed by tech support scammers he reverse-hacked the call centre in India to reveal CCTV footage of perpetrators as they ripped off their victims in real-life calls. ☎️
1
14
28
#tellSophos what’s the weirdest scam you’ve ever received? The weirdest gets a Nigerian Prince crown (beanie) 👑 #CyberAware Month.
8
16
21
The police eventually realised there were no hostages at the homes of Instagram CEO Adam Mosseri.
nakedsecurity.sophos.com/202…
19
27
#Equifax says 400,000 people in the UK affected and a "process failure" led to UK data being stored in the USA
8
44
24
A researcher has discovered an alarming way that an attacker controlling a Microsoft Exchange mailbox account could potentially elevate their privileges to become a Domain Administrator.
nakedsecurity.sophos.com/201…
29
28
UPDATE NOW! Critical, remote, ‘wormable’ Windows vulnerability wp.me/p120rT-1S08
4
31
27
Even in Apple's and Google's "walled gardens", there are plenty of 2FA apps that are either dangerously incompetent, or unrepentantly malicious. (Or perhaps both.)
We explain the problem, and why it really matters! nakedsecurity.sophos.com/202…
1
21
27
6,257
Facebook: turn off SMS 2FA if you don’t want your number used for ads wp.me/p120rT-1Mmp
2
38
26
Sacked IT guy annihilates 23 of his ex-employer’s AWS servers wp.me/p120rT-1R7c
2
25
30
Sweden bans cameras on drones, deeming it illegal surveillance wp.me/p120rT-1taV
1
27
25
Micfo fraudulently obtained 757,000 rare IPv4 addresses, worth up to $14 million. Micfo now has to hand them back, pay legal costs, and the owner faces 20 years in jail for wire fraud.
nakedsecurity.sophos.com/201…
1
13
28
Twitter shuts down 10,000 ISIS-linked accounts in one day wp.me/p120rT-1c4Q
2
38
26
DNS over HTTPS is coming whether ISPs and governments like it or not wp.me/p120rT-1RF7
20
29
Wanna Decrypter 2.0 ransomware attack: what you need to know wp.me/p120rT-1yeY
43
24
Linux distro hacked on GitHub, “all code considered compromised” wp.me/p120rT-1IEf
37
27
RFID repeater used to steal Mercedes with keys locked inside a house. Relay attacks intercept a fob’s signals without a key or a scratch.soph.so/dcgb30gX6GP
1
22
24
Heard the news about the LastPass breach? Here’s a plain English explanation, plus three simple tips on what you can do…
nakedsecurity.sophos.com/202…
1
15
27
7,836
Change your Facebook password now! wp.me/p120rT-1R7j
2
32
26
Office DDE attack works in Outlook too – here’s what to do wp.me/p120rT-1CHZ
51
27
Apple Macs have gaping root hole – here’s a superquick way to check and fix it wp.me/p120rT-1DEV
1
45
24
Google’s stealthy reCAPTCHA v3 detects humans – no questions asked wp.me/p120rT-1O07
18
25
Cloudflare mistakes own 1.1.1.1 DNS for DDoS attack wp.me/p120rT-1I01
18
21
Did you lose your USB while kayaking in New Zealand? Scientists found an unencrypted and undamaged USB in the poo of a leopard seal. They were able to access and view the data and are now searching for its owner.
nakedsecurity.sophos.com/201…
2
21
23
Update WhatsApp now! One call could give spies access to your phone wp.me/p120rT-1RYy
26
22
The Naked Security Podcast is back.
Each week we discuss the latest cybersecurity news with lots of laughs along the way.
Subscribe and listen now!
nakedsecurity.sophos.com/201…
1
15
26
When something really important that ought to be easy and cheap turns out costly and complicated… it takes a special sort of person to turn the situation around 🙏
nakedsecurity.sophos.com/202…
2
14
25
URGENT! Microsoft Exchange double zero-day – “like ProxyShell, only different” nakedsecurity.sophos.com/202…
1
21
27
Urgent! Update your Mac again, right now… wp.me/p120rT-1Cly
2
46
24
The Brave browser has been caught redirecting searches to affiliate links that earned it commission. nakedsecurity.sophos.com/202…
1
23
26
It’s a death that's been well-rehearsed by Microsoft.
nakedsecurity.sophos.com/201…
2
11
23
I am deeply in love with my Mac
It’s a system that no one can hack
Well, that’s what they said
But it seems that instead
I’ve been downed by a cyberattack!
#NCSAM #BeCyberSmart
5
16
27
