Feedback & Followups Listener and community feedback, developments in recently covered stories, and developments in long-running stories we’re tracking over time. Watering hole attacks targeting Python developers are continuing, with attacks targeting the PyPi package repo getting so bad the site has temporarily suspended new account signups — www.bleepingcomputer.com/… Attackers are continuing to succeed in […]
Continue readingMore TagTag: vulnerabilities
Security Bits — 3 March 2024
Feedback & Followups Listener and community feedback, developments in recently covered stories, and developments in long-running stories we’re tracking over time. Another defeat for the NSO group: 🇺🇸 U.S. Court Orders NSO Group to Hand Over Pegasus Spyware Code to WhatsApp — thehackernews.com/… 🇺🇸 Microsoft have finally followed through on their promise to the US […]
Continue readingMore Tag
NC #970 Android with a Mac, MacWhisper 2-3X Faster, Baseus Blade HD Power Bank, Security Bits
Hi, this is Allison Sheridan of the NosillaCast Apple Podcast, hosted at Podfeet.com, a technology geek podcast with an EVER so slight Apple bias. Today is Sunday, December 10, 2023, and this is show number 970. mp3 download CCATP #780 — Jason Howell on Using Android with a Mac CCATP #781 — Bart Busschots on […]
Continue readingMore TagSecurity Bits — 11 June 2023
Deep Dive — Security & Privacy Highlights from WWDC As with most things WWDC, this is a glimpse of the future rather than new tools we get to use today, but I think it’s still worth taking a little time to look at some of the security and privacy enhancements Apple announced. Apple’s current Communications […]
Continue readingMore Tag
Security Bits — 19 March 2023
Deep Dive — Critical Android Base-Band Vulnerabilities❗ TL;DR: this is bad — remote code execution without user interaction over the cellular network, combined with the usual level of security confusion that goes with Android’s model. Unless your Android device is on the list of known-patched devices, or unless your vendor has explicitly announced that they […]
Continue readingMore TagSecurity Bits — 5 Feb 2023
Feedback & Followups Listener and community feedback, developments in recently covered stories, and developments in long-running stories we’re tracking over time. Anker admits that Eufy cameras were never encrypted — appleinsider.com/… Apple have released their support for hardware Fido tokens for iCloud 2FA — sixcolors.com/… Editorial by Bart: remember that this feature comes with a […]
Continue readingMore TagSecurity Bits — 25 September 2022
Feedback & Followups Listener and community feedback, developments in recently covered stories, and developments in long-running stories we’re tracking over time. 🇺🇸 Google have gotten SEC approval to pilot their controversial political ad spam by-pass feature with a limited number of campaigns in this year’s US mid-term elections — appleinsider.com/… 🇺🇸 The recent revelations of […]
Continue readingMore TagSecurity Bits — 3 August 2022
❗ Action Alerts Calls to action, if any stories in this section are relevant to you there is some action you should take. SAMBA have patched a critical bug in their open source implementation of Microsoft’s Active Directory, if you use SAMBA, patch ASAP! — nakedsecurity.sophos.com/… The commonly used open source crypto library GnuTLS has […]
Continue readingMore TagNC #890 Choosing a VPN, Security Bits with Bart Busschots
Hi, this is Allison Sheridan of the NosillaCast Apple Podcast, hosted at Podfeet.com, a technology geek podcast with an EVER so slight Apple bias. Today is Sunday, May 29, 2022, and this is show number 890. mp3 download June 6th is the WWDC Keynote, and as always, Steve and I will be in the live […]
Continue readingMore TagSecurity Bits — 9 January 2022
Feedback & Followups Listener and community feedback, developments in recently covered stories, and developments in long-running stories we’re tracking over time. Log4Shell (Log4J): Log4Shell-like security hole found in popular Java SQL database engine H2 — nakedsecurity.sophos.com/… 🇺🇸 FTC threatens “legal action” over unpatched Log4j and other vulns — nakedsecurity.sophos.com/… 🇬🇧 Meta (né Facebook) have decided […]
Continue readingMore Tag