Feedback & Followups Listener and community feedback, developments in recently covered stories, and developments in long-running stories we’re tracking over time. The recent wave of malicious Google ads targeting software downloads continues, this time it’s malicious versions of the popular Secure FTP client WinSCP — thehackernews.com/… 
Action Alerts Calls to action, if any stories […]
Author: Bart Busschots
Going Phablet with iPhone 15 Pro Max — Bart Busschots
Bart joins me this week on the show to discuss the tradeoffs he made in buying an iPhone 15 Pro Max. Here are some of the thoughts he’ll share. After decades of resisting big phones, and being ‘that guy’ who was cranky when the iPhone X made the smallest modern phone notably bigger, it’s finally […]
Continue readingSecurity Bits — 12 November 2023
Feedback & Followups Listener and community feedback, developments in recently covered stories, and developments in long-running stories we’re tracking over time. Attackers continue to succeed in getting Google to host their malicious ads: Google ads push malicious CPU-Z app from fake Windows news site — www.bleepingcomputer.com/… A final twist in the SolarWinds mega-hack saga: SEC […]
Continue readingSecurity Bits — 29 October 2023
Feedback & Followups Listener and community feedback, developments in recently covered stories, and developments in long-running stories we’re tracking over time. Passkeys continue to roll out: Google Adopts Passkeys as Default Sign-in Method for All Users — thehackernews.com/… Amazon adds passkey support as new passwordless login option — www.bleepingcomputer.com/… Deep Dive 1 — iLeakage TL;DR […]
Continue readingSecurity Bits — 1 October 2023
Feedback & Followups Listener and community feedback, developments in recently covered stories, and developments in long-running stories we’re tracking over time. LastPass are finally forcing users to strengthen their master passwords — krebsonsecurity.com/… (Note that this provides zero protection to what ever was in user’s vaults when the big breach happened last year!) Passkeys continue […]
Continue readingSecurity Bits — 17 September 2023
Feedback & Followups Listener and community feedback, developments in recently covered stories, and developments in long-running stories we’re tracking over time. UK backs down from nonsensical law after threats from Apple, WhatsApp — appleinsider.com/… (in a dishonest way, but better than nothing) Deep Dive — LastPass Vaults are Being Cracked (Follow the Money!) It was […]
Continue readingSecurity Bits — 3 September 2023
Feedback & Followups Listener and community feedback, developments in recently covered stories, and developments in long-running stories we’re tracking over time. An excellent overview of the NightOwl saga we mentioned last time: Did the NightOwl app really join Macs to a botnet army? — www.intego.com/… A fresh campaign has been launched to try pressure Apple […]
Continue reading
Bicycling with Wahoo Tickr Fit Heart Rate Monitor
The Problem to be Solved In theory, when everything is working well, when you use the Apple Watch to track a workout it will take regular heart rate readings, display them, and use them to calculate your calorie burn accurately. But to balance battery life and accuracy, the frequency of the checks is tuned for […]
Continue readingSecurity Bits — 5 August 2023
Feedback & Followups Listener and community feedback, developments in recently covered stories, and developments in long-running stories we’re tracking over time. Another twist in the NSO Group/Pegasus story: FBI admits it accidentally used NSO Group tools — appleinsider.com/… (The tool was Landmark not Pegasus, but it was after the US government’s import ban on NSO […]
Continue readingSecurity Bits — 30 July 2023
Deep Dive 1 — The Updated EU ⬌ US Data Sharing Framework Since the European Court of Justice struck down the Privacy Shield framework that large US-based tech companies relied on to easily transfer data on European citizens to the US in 2020, quiet negotiations have been ongoing to try replace it with an updated […]
Continue reading