February 2, 2011 - A couple of weeks ago two students conducting security research contacted me about a vulnerability which they believed they had found with Facebook. Rui Wang and Zhou Li said that they had found a vulnerability which allowed malicious websites to access (continue reading...) Read more
February 1, 2011 - This week's Chet Chat took on political overtones as a result of the tense situation in Egypt. Michael Argast and I surveyed the security (continue reading...) Read more
January 30, 2011 - The Facebook platform appears to be hacked on the French version of the site at Facebook.fr. When setting your language to French and choosing the option (continue reading...) Read more
January 30, 2011 - Intel's Chief Technology Officer, Justin Rattner, has been pretty gung-ho with the world's technology press in the past week. His approach seems to have worked, if even a few (continue reading...) Read more
January 28, 2011 - Microsoft has just released security advisory 2501696 acknowledging a new zero day flaw (continue reading...) Read more
January 27, 2011 - There was a lot of hoo-ha and speculation yesterday after Mark Zuckerberg's official Facebook fan page was updated with an unauthorised post. Initially, Facebook declined to comment on what - at first glance (continue reading...) Read more
January 26, 2011 - The website of the Mail & Guardian, a weekly South African newspaper, has been shut down following an attack by hackers. A message posted on the popular news website explained (continue reading...) Read more
January 24, 2011 - I'm giving a free webcast on Thursday, organised by the folks from Dark Reading, discussing the (continue reading...) Read more
January 20, 2011 - Greetings, Naked Security readers. Michael Argast has joined me for this week's Chet Chat after a six week hiatus. Michael has been very generous (continue reading...) Read more
January 19, 2011 - Sophos has today published its annual Security Threat Report, looking back at the last twelve months (continue reading...) Read more
January 17, 2011 - Finding Patch Tuesday on the calendar can be a bit like working out Easter. The date of Easter is determined by a combination (continue reading...) Read more
January 13, 2011 - After powering through the holiday season and keeping the Chet Chat on time, I have stumbled into 2011 and fallen a little behind in (continue reading...) Read more
January 13, 2011 - Added to the resources blog at http://blog.eset.com/2011/01/03/stuxnet-information-and-resources: Report of a Stuxnet-unrelated vulnerability in SCADA software A speculative cyberwar link Some links on Iranian post-Stuxnet "cybermilitia" recruitment. http://www.itworld.com/security/133469/iran-responds-stuxnet-expanding-cyberwar-militia http://blogs.forbes.com/jeffreycarr/2011/01/12/irans-paramilitary-militia-is-recruiting-hackers/?boxes=financechannelforbes David Harley CITP FBCS CISSP Read more
January 12, 2011 - Security Art's Iftach Ian Amit discusses targeted attacks and how you should go beyond just technology to defend against them. Some people might be surprised to hear that most targeted attacks aren't directed at a (continue reading...) Read more
January 11, 2011 - In the first Patch Tuesday of 2011, Microsoft published just two security bulletins, unsurprisingly named MS11-001 and MS11-002, fixing three vulnerabilities with two patches. All Microsoft security (continue reading...) Read more
January 6, 2011 - The blogosphere is abuzz with talk of convergence between the smartphone, tablet and laptop device markets. Apple, who have led innovation in at least two of those areas, (continue reading...) Read more
January 4, 2011 - A must read interview for anyone who is interested in evaluating web vulnerability scanners. In this interview we discuss the process of choosing a web vulnerability scanner and underline several factors that should be taken into consideration in the decision-making (continue reading...) Read more
December 30, 2010 - The WordPress team has alerted WordPress users to a critical XSS flaw in versions 3.0.3 and previous. WordPress has not sent out many alerts of (continue reading...) Read more
December 30, 2010 - The last podcast of the year is here and my guest this week (on his vacation!) was Tony Ross, one of our Global Product Specialists. To wrap (continue reading...) Read more
December 26, 2010 - Many people around the world awoke on Christmas morning with anticipation of gifts under the tree. But that's not the only thing that was waiting (continue reading...) Read more