Followups Apple CEO Tim Cook Is Calling For Bloomberg To Retract Its Chinese Spy Chip Story — www.buzzfeednews.com/… 🇬🇧 Facebook fined £500K for Cambridge Analytica saga — nakedsecurity.sophos.com/… Mirai Co-Author Gets 6 Months Confinement, $8.6M in Fines for Rutgers Attacks — krebsonsecurity.com/…
Continue readingMore TagTag: hack
Security Bits – Google Plus Data Breach, SSH Vulnerability, WhatsApp and D-Link Vulnerabilities, Apple Privacy Portal
Followup The Facebook hack: Facebook October 2018 security breach: Everything you need to know — www.imore.com/… Facebook opens up about data breach details — nakedsecurity.sophos.com/…
Continue readingMore TagSecurity Bits – Facebook Token Hack, Bloomberg Amazon & Apple Servers & China, Facebook Uses 2FA Numbers for Advertising
Security Bits – 5 October 2018 Followups 🇺🇸 The CA IoT security law discussed previously has been signed into law — www.theverge.com/… Google have announced plans to further limit what browser plugins can do in an attempt to crack down on the explosion in plugin-based malware we talked about last time — arstechnica.com/… & nakedsecurity.sophos.com/…
Continue readingMore TagSecurity Bits – Zero-Day on macOS, Facebook Rates User Trustworthiness, Facebook’s VPN Was Tracking Users, Excessive Google Tracking, Teenager Hacks Apple
Followups More speculation-based flaws in Intel Chips (Editorial by Bart: as with other recent Spectre/Meltdown variants, there’s no need for home users to panic, just keep your OSes patched. It’s cloud providers that really need to worry about these flaws.) L1 Terminal Fault AKA L1TF – Intel have released mitigations, and they don’t have significant […]
Continue readingMore TagSecurity Bits – VPNFilter, CallKit Removal in China, No Telegram Updates in App Store, End of Flash & Silverlight, Papua New Guinea Turns Off Facebook
Followups Spectre & Meltdown Details have been released of a new Spectre variant named Speculative Store Bypass, or SSB. The vulnerability affects AMD, ARM & Intel chips. Thankfully it can be mitigated quite easily, so it’s just a matter of applying software, OS, firmware, and microcode updates as they are released — arstechnica.com/…
Continue readingMore TagSecurity Bits – Facebook/Cambridge Analytica, GDPR, Security Updates, Greyshift Backdoor, UPnProxy
DNS Correction On Chit Chat #533, Bart did a deep dive into how the Domain Name System works and in that session, he suggested a hybrid approach where your mobile devices had the improved DNS along with your home router. It turns out it’s not possible to set system-wide DNS settings on iOS or Android. […]
Continue readingMore TagSecurity Bits – Even More Cambridge Analytica/Facebook, WebAuthn
Followup 1 — Meltdown/Spectre Intel won’t fix Spectre flaws in older chips — nakedsecurity.sophos.com/… AMD systems gain Spectre protection with latest Windows fixes — arstechnica.com/… Followup 2 — The Cambridge Analytica/Facebook Kerfuffle
Continue readingMore Tag
NC #661 Verizon Credits, No Flash Hack, Security Bits on Meltdown & Spectre
I’ve got a couple of announcements to tell you, then a listener story from David Bogdan from Japan, and one from Denise Crown. At that point, I’m going to hand you over to Bart and me in Security Bits because there was so much to talk about with so many big stories. We’ll talk about […]
Continue readingMore TagNo Flash Hack with Responsive Design Mode – by David Bogdan
Hello Allison and Happy New Year from Japan! I kind of had a problem to be solved to which listening to Allison’s podcast this morning may have provided the solution.
Continue readingMore TagNC #565 Judiciary Hearing FBI vs Apple, Nuke and Pave vs OmniDiskSweeper, Security Bits
I watched the entire five hours of the Judiciary Committee Hearings in the case of the FBI vs. Apple, so you didn’t have to. I think you’ll like what you hear, it’s actually optimistic about our government officials. Next up I’ll tell you how I did not do a nuke and pave, and why you […]
Continue readingMore Tag