Helpful Tech Articles
From our team to yours, we want to demystify your tech questions.
Subscribe to email updates
The “Cloud Snooper” malware that sneaks into your Linux servers
by Paul Ducklin SophosLabs has just published a detailed report about a malware attack dubbed Cloud Snooper. The reason for the name is not so much that the attack is cloud-specific (the technique could be used against pretty much any server, wherever it’s...
Smart speakers mistakenly eavesdrop up to 19 times a day
by Danny Bradbury That smart home speaker isn’t listening to everything you say, according to new research – but it is listening a lot more than it should. Researchers have found some speakers activating by mistake up to 19 times each day. Virtual...
Google denies illegally slurping data off free student Chromebooks
by Lisa Vaas New Mexico Attorney General Hector Balderas is suing Google over its alleged slurping of students’ data off of the free Chromebooks it passes out to needy schools and from its free G Suite for Education products, including Gmail, Calendar, Drive,...
KidsGuard stalkerware leaks data on secretly surveilled victims
by Lisa Vaas “KidsGuard?” What an inappropriate name. It should be called KidsStalk-N-Dox, given that the makers of this consumer-grade stalkerware left a server open and unprotected, regurgitating the private data it slurped up from thousands of...
Google purges 600 Android apps for “disruptive” pop-up ads
by Lisa Vaas You know those ads that obscure your whole screen when you’re trying to make a phone call, unlock your device or use your phone’s GPS? Technically, they’re called disruptive or out-of-app ads, and they maddeningly pop up outside of the...
Apple chops Safari’s TLS certificate validity down to one year
by John E Dunn Barely noticed by web users, the life expectancy of SSL/TLS certificates has lowered dramatically over the last decade. Used as the foundation of HTTPS authentication, just over a decade ago domain registrars were selling SSL/TLS certificates that were...
Monday review – the hot 25 stories of the week
by Naked Security writer Get yourself up to date with everything we’ve written in the last seven days – it’s weekly roundup time. Monday 17 February 2020 Tuesday 18 February 2020 Wednesday 19 February 2020 Thursday 20 February 2020 Friday 21 February...
The Amazon Prime phishing attack that wasn’t…
by Paul Ducklin Earlier this week, we received a moderately believable Amazon Prime phish via email. The scam had an Account Locked subject line, with a warning that we wouldn’t be able to buy or sell anything via Amazon’s services until we verified our...
S2 Ep27: Bluetooth holes, dodgy Chrome extensions and forgotten passwords – Naked Security Podcast
by Alice Violet This week we discuss why Google abruptly pulled more than 500 Chrome extensions from its Web Store, the case of a man held in custody for refusing to decrypt two hard drives, and research detailing a number of security holes in Bluetooth chipsets. Greg...
