Helpful Tech Articles
From our team to yours, we want to demystify your tech questions.
Subscribe to email updates
Serious Security: Linux full-disk encryption bug fixed – patch now!
by Paul Ducklin Lots of people “run Linux” without really knowing or caring – many home routers, navigational aids, webcams and other IoT devices are based on it; the majority of the world’s mobile phones run a Linux-derived variant called Android; and many, if not...
REvil ransomware crew allegedly busted in Russia, says FSB
by Naked Security writer According to the FSB, Russia’s Federal Security Bureau (ФСБ), the ransomware gang known in both Russian and English by the nickname “REvil” has been taken down: ФСБ России установлен полный состав преступного сообщества «REvil» FSB Russia has...
![S3 Ep65: Supply chain conniption, NetUSB hole, Honda flashback, FTC muscle [Podcast + Transcript]](https://www.netsafesolutions.com/wp-content/uploads/2022/01/ns-1200-logo-podcast-with-mic.png){kind=logo}
S3 Ep65: Supply chain conniption, NetUSB hole, Honda flashback, FTC muscle [Podcast + Transcript]
by Paul Ducklin LISTEN NOW Click-and-drag on the soundwaves below to skip to any point. You can also listen directly on Soundcloud. With Doug Aamoth and Paul Ducklin. Intro and outro music by Edith Mudge. You can listen to us on Soundcloud, Apple Podcasts, Google...
Wormable Windows HTTP hole – what you need to know
by Paul Ducklin Yesterday was the first Patch Tuesday of 2022, with more than 100 security bugs fixed. We wrote up an overview of the updates, as we do every month, over on our sister site news.sophos.com: First Patch Tuesday of 2022 repairs 102 bugs. For better or...
Home routers with NetUSB support could have critical kernel hole
by Paul Ducklin Now that a patch has been circulated to vendors, researchers at Sentinel One have released details of a worrying bug in an IoT software driver called NetUSB. The product comes from a Taiwanese hardware and software maker called Kcodes, which describes...
JavaScript developer destroys own projects in supply chain “lesson”
by Paul Ducklin You’ve probably seen the news, even if you’re not sure what happened. Unless you’re a JavaScript programmer and you relied on either or both of a pair of modules called faker.js and colors.js. If you were a user of either of those projects, and if you...
Honda cars in flashback to 2002 – “Can’t Get You Out Of My Head”
by Paul Ducklin Owners of Honda cars of a certain age – apparently somewhere between 10 and 16 years old – have spent the first few days of the New Year reporting a weird “millennium bug style” problem. Apparently, for many cars that are a decade or so old, New Year’s...
Log4Shell-like security hole found in popular Java SQL database engine H2
by Paul Ducklin “It’s Log4Shell, Jim,” as Commander Spock never actually said, “But not as we know it.” That’s the briefest summary we can come up with of the bug CVE-2021-42392, a security hole recently reported by researchers at software supply chain management...
S3 Ep64: Log4Shell again, scammers keeping busy, and Apple Home bug [Podcast + Transcript]
by Paul Ducklin LISTEN NOW Click-and-drag on the soundwaves below to skip to any point. You can also listen directly on Soundcloud. With Doug Aamoth and Paul Ducklin. Intro and outro music by Edith Mudge. You can listen to us on Soundcloud, Apple Podcasts, Google...