The Naked Security blog is part of my history.
Now, as Sophos makes cut-backs, it might be history for all of us.
Author Archives: Graham CLULEY
The scammer who tried to launder over $500,000 through Business Email Compromise
A 64-year-old man has pleaded guilty in a Texan court to charges of money laundering after a series of attacks that defrauded companies, including Electrolux, out of hundreds of thousands of dollars.
Read more in my article on the Tripwire State of Security blog.
The scammer who tried to launder over $500,000 through Business Email Compromise
A 64-year-old man has pleaded guilty in a Texan court to charges of money laundering after a series of attacks that defrauded companies out of hundreds of thousands of dollars. Kenenty Hwan Kim (who sometimes went by the name Myung Kim) took advantage of a simple trick that has proven highly effective to fraudsters in […]… Read More
The post The scammer who tried to launder over $500,000 through Business Email Compromise appeared first on The State of Security.
Smashing Security podcast #181: Anti-cybercrime ads, tricky tracing, and a 5G Bioshield
Police are hoping to stop kids becoming cybercriminals by bombarding them with Google Ads, phishers rub their hands in glee at the NHS track and trace service, and just how does a nano-layer of quantum holographic catalyzer technology make a USB stick cost hundreds of pounds?
All this and much much more is discussed in the latest edition of the “Smashing Security” podcast.
Coincheck cryptocurrency exchange targeted by hackers, customer emails exposed
Japanese cryptocurrency exchange Coincheck has announced that earlier this week hackers managed to access some emails sent to the firm by its customers, after its domain name registrar account was compromised.
Read more in my article on the Hot for Security blog.
What the NHS Test and Trace scheme could learn from banks about stopping scams
I’m concerned that fraudsters will disguise themselves as the NHS Test and Trace Service, and trick people into giving over sensitive personal information – and maybe even some money.
Maybe something could be learnt from the banks?
Apparently Coronavirus-tracing scammers won’t sound professional… (Yeah, right!)
Some members of the UK public will soon start receiving text messages and emails claiming to come from the NHS Test and Trace Service, as part of the country’s fight against the Coronavirus pandemic.
The problem is that many of them won’t know if the communication is genuine, or from a scammer.
And the UK Government’s advice isn’t helping.
Pablo Escobar’s brother says FaceTime flaw revealed his address, sues Apple for a publicity stunt (and $2.6 billion)
As YouTubers warn the public not to buy smartphones from Escobar Inc, the notorious drug lord’s brother orchestrates a publicity stunt.
Read more in my article on the Hot for Security blog.
OPSEC fail! “Super-hacker” accidentally outs himself through careless clues left on social media
Hacker VandaTheGod didn’t realise he was leaving clues scattered across Facebook and Twitter that helped security researchers uncover his true identity.
Microsoft warns of PonyFinal ransomware attacks
Malware experts at Microsoft have warned businesses to be on their guard against hackers plotting to plant the PonyFinal ransomware on compromised IT systems.
Read more in my article on the Hot for Security blog.
NetWalker ransomware – what you need to know
The NetWalker gang are infecting corporations’ computer systems, encrypting and stealing data, and holding it to ransom.
And they’re looking for criminals to join their affiliate scheme.
Read more in my article on the Tripwire State of Security blog.
NetWalker Ransomware – What You Need to Know
What is NetWalker? NetWalker (also known as Mailto) is the name given to a sophisticated family of Windows ransomware that has targeted corporate computer networks, encrypting the files it finds, and demanding that a cryptocurrency payment is made for the safe recovery of the encrypted data. Ransomware is nothing new. Why should I particularly care […]… Read More
The post NetWalker Ransomware – What You Need to Know appeared first on The State of Security.
Smashing Security podcast #180: Taking care of Clare
On this special splinter episode of the podcast, we’re joined by actor and comedian Clare Blackwood in the hope of convincing her that cybersecurity is no laughing matter.
Hear what happens in the latest edition of the “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault.
26 million LiveJournal users warned that their passwords have been breached
On underground criminal marketplaces the email addresses and plaintext passwords of over 26 million LiveJournal blogging accounts are being traded, despite LiveJournal’s owners refusing to acknowledge that any security breach has occurred.
Read my article on the Hot for Security blog.
How EasyJet customers could make money out of the airline being hacked
If you were one of the many EasyJet customers who received an email from the airline disclosing that your personal information may have been accessed by hackers, you might be eligible for compensation.
Here’s one way you might try to do that.
The Civil Service’s rogue tweet about “Truth Twisters”
You can have a strong, unique password, you can have multi-factor authentication in place, but good luck preventing a member of your social media team ‘going rogue’.
As hackers sell 8 million user records, Home Chef confirms data breach
Meal kit and food delivery company Home Chef has confirmed that hackers breached its systems, making off with the personal information of customers.
But only after a hacking group put the stolen data up for sale…
Read more in my article on the Hot for Security blog.
EasyJet’s breach notification email to customers – a closer look
Let’s take a closer look at the email EasyJet is sending to customers affected by its recent security breach.
Including a brief exploration of how EasyJet’s definition of “recent” might differ from yours or mine…
BlockFi hacked following SIM swap attack, but says no funds lost
For just under 90 minutes last Thursday, hackers were able to compromise the systems of cryptocurrency lending platform BlockFi, and gain unauthorised access to users’ names, email addresses, dates of birth, address and activity history.
Read more in my article on the Tripwire State of Security blog.
BlockFi Hacked Following SIM Swap Attack, But Says No Funds Lost
For just under 90 minutes last Thursday, hackers were able to compromise the systems of cryptocurrency lending platform BlockFi, and gain unauthorised access to users’ names, email addresses, dates of birth, address and activity history. In an incident report published on its website, BlockFi was keen to stress that the hacker’s activity had been logged […]… Read More
The post BlockFi Hacked Following SIM Swap Attack, But Says No Funds Lost appeared first on The State of Security.
Mitsubishi hackers may have stolen details of prototype missile
Hackers exploited vulnerabilities in one of Trend Micro’s anti-virus products last year to steal information from Japanese manufacturer Mitsubishi Electric.
Now, the Japanese Defense Ministry believes the state-sponsored hackers may have been after details of a prototype missile.
Smashing Security podcast #179: Deepfake Jay-Z, and beer apps spilling your data
Apps that belch out sensitive military information, what could the world learn from South Korea’s digital response to the Coronavirus pandemic, and who has been deepfaking Bill Clinton, Jay-Z, and Donald Trump… and why?
All this and much much more is discussed in the latest episode by computer security veterans Graham Cluley and Carole Theriault, joined this week by Brian Klaas of the “Power Corrupts” podcast.
EasyJet hack impacts nine million passengers
The personal details of nine million customers of budget airline EasyJet have been accessed by hackers in what the budget airline is describing as a “highly sophisticated attack.”
FBI warns hackers are planting card skimmers on online stores running a vulnerable Magento plugin
The FBI has issued a “flash alert” warning that hackers are planting Magecart-style credit card-skimming code on Magento-powered online stores running an out-of-date plugin.
Prioritize alerts and jump-start your investigations with Recorded Future’s free browser extension. Sign up now.
Graham Cluley Security News is sponsored this week by the folks at Recorded Future. Thanks to the great team there for their support! Drowning in alerts from many different sources and systems? Spending too much valuable time researching potential threats and vulnerabilities? You need Recorded Future Express, a new browser extension from the experts at […]
Hackers steal $10M in “wonderfully done” fraud from Norway’s State Investment Fund
Norfund, the Norwegian state-owned investment fund for developing countries, has revealed that it has been swindled out of $10,000,000 intended for an institution in Cambodia.
Read more in my article on the Bitdefender Business Insight blog.
The ProLock ransomware doesn’t tell you one important thing about decrypting your files
Have your computers been hit by the ProLock ransomware? You might want to read this before you pay any money to the criminals behind the attack.
Edison Mail bug exposed iPhone users’ email accounts to complete strangers
The makers of a popular iOS email app have warned their users that their accounts may have been compromised after a buggy software update made it possible to see strangers’ emails.
Read more in my article on the Hot for Security blog.
An outbreak of Coronavirus trojans and scams
Recent weeks have seen a spate of scams an dattacks associated with the Coronavirus pandemic, and there is little evidence of the end being in sight.
The most-targeted security vulnerabilities – despite patches having been available for years
Newly-discovered zero-day vulnerabilities may make the biggest headlines, but that doesn’t mean that they’re necessarily the thing that will get your company hacked.
This week, US-CERT has published its list of the “Top 10 Routinely Exploited Vulnerabilities”.
Read more in my article on the Tripwire State of Security blog.
The top 10 most-targeted security vulnerabilities – despite patches having been available for years
Newly-discovered zero-day vulnerabilities may generate the biggest headlines in the security press, but that doesn’t mean that they’re necessarily the thing that will get your company hacked. This week, US-CERT has published its list of what it describes as the “Top 10 Routinely Exploited Vulnerabilities” for the last three years. The list is designed to […]… Read More
The post The top 10 most-targeted security vulnerabilities – despite patches having been available for years appeared first on The State of Security.
Smashing Security #178: Office pranks, meat dresses, and robocop dogs
Graham shares stories of email storms, Carole describes the steps being taken by firms as they try to coax employees back to the office, and special guest Lisa Forte details a hack that has impacted Lady Gaga and other celebrities.
All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast with computer security veterans Graham Cluley and Carole Theriault.
Info on NHS Coronavirus app leaks out via Google Drive snafu
Sensitive documents about the UK’s Coronavirus-tracing app have reportedly been carelessly leaked via a publicly accessible Google Drive link.
Password security is critical in a remote work environment – see where businesses are putting themselves at risk
Graham Cluley Security News is sponsored this week by the folks at LastPass. Thanks to the great team there for their support! LastPass has analyzed over 47,000 businesses to bring you insights into security behavior worldwide. The takeaway is clear: Many businesses are making significant strides in some areas of password and access security – […]
Hacking group puts millions of Zoosk dating profiles up for sale
If you have been trying to find love on the Zoosk app I’ve got some bad news for you.
Hackers are offering for sale what they claim is the stolen account information of millions of online daters who have used the popular app.
Chatbooks security breach. Users told to change their passwords
A hacking group known as ShinyHunters is claiming to be responsible for the security breach, and is offering to sell stolen customer records for US $3,500 via an underground web marketplace.
Read more in my article on the Hot for Security blog.
Could this be the world’s most harmless IoT botnet?
When researchers investigate suspected malware on an IoT device they normally expect to find a cryptominer to earn a hacker digital cash or perhaps botnet code to launch DDoS attacks against websites.
But that wasn’t the case with the Cereals botnet.
Read more in my article on the Bitdefender BOX blog.
TalkTalk’s ex-CEO Dido Harding heads up the UK’s Coronavirus tracing app…
Imagine you’re the UK Government in the middle of the biggest crisis the country has faced since World War II.
How are you going to instill some confidence that citizens should install a new Coronavirus tracing app?
Over 300 websites taken down in just two weeks as UK public report suspicious emails
The National Cyber Security Centre (NCSC), which tasks itself with “helping to make the UK the safest place to live and do business online,” is making impressive inroads against scam websites.
For six years Samsung smartphone users have been at risk from critical security bug. Patch now
Samsung has released a security update for its popular Android smartphones which includes a critical fix for a vulnerability that affects all devices sold by the manufacturer since 2014.
Read more in my article on the Tripwire State of Security blog.
Smashing Security #177: Elon Musk, Roblox, and Love Bug author found
What can X Æ A-12 Musk teach us about passwords? How did our guest finally hunt down in Manila the author of one of history’s biggest virus outbreaks? And what on earth is a hacker doing breaching Roblox security?
All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by technology journalist Geoff White.
Kaiji – a new strain of IoT malware seizing control and launching DDoS attacks
Kaiji, a new botnet campaign, created from scratch rather than resting on the shoulders of those that went before it, is infecting Linux-based servers and IoT devices with the intention of launching distributed denial-of-service (DDoS) attacks.
Read more in my article on the Bitdefender BOX blog.
Tarkett floored by cyber attack
French flooring company Tarkett has revealed that it was hit by a cyber attack on April 29th, and that its operations continue to be disrupted as a result.
Prioritize alerts and jump-start your investigations with Recorded Future’s free browser extension
Graham Cluley Security News is sponsored this week by the folks at Recorded Future. Thanks to the great team there for their support! Access real-time security intelligence from any web-based SIEM, vulnerability solution, or webpage. Stop opening multiple browser tabs and pivoting between them to collect all of your data manually. Recorded Future Express does […]
It was 20 years ago today… The Love Bug remembered
It was twenty years ago today, that the Love Bug hit computer systems worldwide.
Which means I know what I was doing exactly twenty years ago!
James Griffiths at CNN interviewed me about my memories of that historic day…
My old-fashioned view on the terms “blacklist” and “whitelist”
The UK’s National Cyber Security Centre (NCSC) has said that it will be changing the terminology it uses on its website, causing some to describe it as “political correctness gone mad.”
Here’s what I think…
Ghost blogging platform suffers security breach
Scary stuff as hackers exploit Salt vulnerability in attempt to mine cryptocurrency on breached blogging platform’s servers.
Cybercriminals are using Google reCAPTCHA to hide their phishing attacks
Security researchers say that they are seeing cybercriminals deploying Google’s reCAPTCHA anti-bot tool in an effort to avoid early detection of their malicious campaigns.
Read more in my article on the Hot for Security blog.
Newly-discovered Android malware steals banking passwords and 2FA codes
Security researchers are warning of a new mobile banking trojan that steals details from over 200 financial apps and intercepts SMS messages to bypass two-factor authentication mechanisms.
Read more in my article on the Tripwire State of Security blog.