Feedback & Followups Listener and community feedback, developments in recently covered stories, and developments in long-running stories we’re tracking over time. Remain vigilant for pandemic-related scams: COVID-19 tests, PPE and antiviral drugs find a home on the dark web — nakedsecurity.sophos.com/… Beware of emails with “horrible charts” about Covid-19 — nakedsecurity.sophos.com/… 🇺🇸 Scammers target COVID-19 […]
Continue readingMore TagCategory: Security Bits
Security Bits — 17 May 2020
Feedback & Followups Listener and community feedback, developments in recently covered stories, and developments in long-running stories we’re tracking over time. Work continues on Apple & Google’s Exposure Notification API: Apple releases concepts for how exposure notification could look on iOS — www.imore.com/… Apple and Google to ban location tracking in contact tracing apps — […]
Continue readingMore TagSecurity Bits — 3 May 2020
Feedback & Followups Listener and community feedback, developments in recently covered stories, and developments in long-running stories we’re tracking over time. Zoom continues to respond positively to problems with and criticisms of their platform: Zoom announces 5.0 update with tougher encryption and new security features — www.imore.com/… Last time Bart was not sure of the […]
Continue readingMore TagSecurity Bits — 19 April 2020
Feedback & Followups Listener and community feedback, developments in recently covered stories, and developments in long-running stories we’re tracking over time. Correction: — the microphone cut-off switch in the new iPad Pros is not a physical disconnect, but it is completely independent of iOS and can’t be affected by malware because it’s in the T2 […]
Continue readingMore TagSecurity Bits — 5 April 2020
Feedback & Followups Listener and community feedback, developments in recently covered stories, and developments in long-running stories we’re tracking over time. Cloudflare’s WARP VPN Enters Beta for macOS, Windows — www.macobserver.com/… Related: WireGuard, the new and very promising open source VPN protocol that powers WARP VPN has reached 1.0, and has been added to the […]
Continue readingMore TagSecurity Bits — 22 March 2020
Feedback & Followups Listener and community feedback, developments in recently covered stories, and developments in long-running stories we’re tracking over time. Following on from the iOS clipboard security weakness discussed in the previous instalment, security researchers have now observed many popular iOS apps periodically polling the clipboard for no apparent reason, and it’s not known […]
Continue readingMore TagSecurity Bits — 8 March 2020
Feedback & Followups Listener and community feedback, developments in recently covered stories, and developments in long-running stories we’re tracking over time. FireFox are continuing their roll-out of DoH, enabling it by default for new installs in the US — nakedsecurity.sophos.com/… Google stops indexing WhatsApp chats; other search engines still at it — nakedsecurity.sophos.com/… HomeKit Router […]
Continue readingMore TagSecurity Bits — 23 February 2020
Feedback & Followups Listener and community feedback, developments in recently covered stories, and developments in long-running stories we’re tracking over time. Developments in the Avast Browser History Data Sales story: Avast kills off Jumpshot, the subsidiary that sold all your Web data — arstechnica.com/… 🇨🇿 Czech Authorities to Investigate Avast Over Sale of Users’ Browser […]
Continue readingMore TagSecurity Bits — 9 February 2020
Feedback & Followups Listener and community feedback, developments in recently covered stories, and developments in long-running stories we’re tracking over time. 🧯Intel have released a fix for yet another named bug in performance-enhancing features of their CPUs. This one is named CacheOut because it involves cache evictions. The key takeaway is that like the other […]
Continue readingMore TagSecurity Bits — 26 January 2020
Feedback & Followups Following on from Apple’s introduction of support for FIDO2 in iOS 13, Google now allow you to use an iPhone as a hardware security token — nakedsecurity.sophos.com/… 🇺🇸 Following on from YouTube’s recent $170 million fine for breaching COPPA, a bi-partisan bill has been introduced in the US House of Representatives named […]
Continue readingMore Tag