Unsuspecting users of Office 365 are being tricked by a cybercriminal gang into calling a bogus call centre, with the eventual intention of installing ransomware onto their computers. Read more in my article on the Hot for Security blog.
Ramon Olorunwa Abbas, also known as "Ray Hushpuppi," might have imagined he had it all. The self-proclaimed "Billionaire Gucci Master", flamboyantly boasted about his luxurious life of expensive cars, private jets, and designer clothes to his 2.3 million Instagram followers. But he left a digital trail online which has resulted in him facing a prison sentence of up to 20 years. Read more in my article on the Hot for Security blog.
A new ransomware gang that calls itself BlackMatter has launched itself on the dark web, and is actively attempting to recruit criminal partners and affiliates to attack large organisations in the United States, UK, Canada, and Australia. Read more in my article on the Tripwire State of Security blog.
Pygmy hippopotamus bugs, DEF CON's data slip-up, and phishing fraudsters have their collars felt. All this and much more is discussed in the latest edition of the award-winning "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Naked Security's Paul Ducklin.
Twitter has revealed that the vast majority of its users have ignored advice to protect their accounts with two-factor authentication (2FA) - one of the simplest ways to harden account security. Read more in my article on the Hot for Security blog.
Apple has released a major security update for its devices, after finding a zero-day flaw that the company indicates has been the focus of in-the-wild attacks by hackers, and might have been used to plant malware. Read more in my article on the Hot for Security blog.
Kaseya hasn't paid anyone for the decryptor it managed to get its paws on last week, and is offering to customers hit by a massive ransomware attack. Which only raises the question - who did?
The latest research finds that ransomware attackers are attempt to extort, on average, a smaller amount of money through their criminal activities.
The No More Ransom website has become one of the first ports of call for any individual or company whose computer has been hit by a ransomware attack.
It seems my boss here at “Grahamcluley” has decided that I deserve a wage increase. This is not only terrific news for my bank balance, but also terribly exciting as I never knew I even had a boss – let alone that my company had a human resources department and accounts team...
Stay sharp this summer with security tips from the experts – sign up to 1Password’s Security Summer School today
Graham Cluley Security News is sponsored this week by the folks at 1Password. Thanks to the great team there for their support! Learn from security experts at top organizations, hear about new security and technology trends, and get quick tips for building a culture of security at work and at home – all in four … Continue reading "Stay sharp this summer with security tips from the experts – sign up to 1Password’s Security Summer School today"
The Instagram account of SBS Australia - a group of free-to-air TV and radio stations down under - has been hacked by someone who clearly loves "Vikings".
Dutch police have arrested suspected members of a notorious cybercrime gang known as "Fraud Family," following a spate of sophisticated phishing attacks that have targeted users in the Netherlands and Belgium. Read more in my article on the Hot for Security blog.
IT service firm Kaseya says that it has "obtained" a universal decryptor for customers hit by the REvil ransomware gang earlier this month. REvil had earlier offered to sell the decryptor for $70 million...
British man arrested in connection with Twitter mega-hack that posted cryptocurrency scam from celebrity accounts
Police in Spain have arrested a British man in connection with what many consider the worst hack in Twitter's history. Read more in my article on the Tripwire State of Security blog.
17 domains used in Business Email Compromise (BEC) scams have been seized by Microsoft's Digital Crimes Unit (DCU), following an investigation by the software giant into attacks that could have stolen millions of dollars from innocent firms. Read more in my article on the Hot for Security blog.
Spy software known as Pegasus has been used to carry out surveillance on the smartphones of journalists, activists, and political leaders. Can a “Freedom Phone” be trusted? And a ransomware-hit law firm demonstrates how not to keep its customers informed. All this and much more is discussed in the latest edition of the award-winning “Smashing … Continue reading "Smashing Security podcast #237: NuNa, NuNu, NaNa"
No, your Grindr activity is not necessarily private – just ask the senior Catholic priest who was outed and lost his job
A senior official of the US Catholic Church has resigned after a blog revealed it had cellphone data that showed he was a regular user of the gay dating app Grindr.
Get trending threat insights delivered to your inbox with Recorded Future’s free Cyber Daily newsletter
Graham Cluley Security News is sponsored this week by the folks at Recorded Future. Thanks to the great team there for their support! Recorded Future provides deep, detailed insight into emerging threats by automatically collecting, analyzing, and organizing billions of data points from the Web. The FREE Cyber Daily email, highlights trending threats selected from … Continue reading "Get trending threat insights delivered to your inbox with Recorded Future’s free Cyber Daily newsletter"
Instagram has rolled out a new feature in the hope of better securing its one billion monthly active users' accounts. Is your account properly protected? Read more in my article on the Hot for Security blog.