title

Naked Security Podcast

Sophos

9
Followers
36
Plays
Naked Security Podcast

Naked Security Podcast

Sophos

9
Followers
36
Plays
OVERVIEWEPISODESYOU MAY ALSO LIKE

Details

About Us

Podcast by Sophos

Latest Episodes

S2 Ep27: Bluetooth vulnerabilities, dodgy Chrome extensions and forgotten encryption passwords

This week we discuss why Google abruptly pulled over 500 Chrome extensions from its Web Store, the case of a man held in custody for refusing to decrypt two hard drives and research detailing a number of security holes in Bluetooth chips from several different vendors. Greg Iddon plays host and Producer this week and is joined by fellow Sophos experts Paul Ducklin and Peter Mackenzie. Listen now! Related articles: Google pulls 500 malicious Chrome extensions after researcher tip-off: https://nakedsecurity.sophos.com/2020/02/17/google-pulls-500-malicious-chrome-extensions-after-researcher-tip-off/ Suspect who refused to decrypt hard drives released after four years: https://nakedsecurity.sophos.com/2020/02/17/google-pulls-500-malicious-chrome-extensions-after-researcher-tip-off/ Bluetooth bugs – researchers find 10 “Sweyntooth” security holes: https://nakedsecurity.sophos.com/2020/02/14/bluetooth-bugs-researchers-find-10-sweyntooth-security-holes/

37 MIN4 d ago
Comments
S2 Ep27: Bluetooth vulnerabilities, dodgy Chrome extensions and forgotten encryption passwords

S2 Ep26: Robbin Hood ransomware, Twitter parodies and SMS 2FA WHAT?

This week we welcome back Peter who discusses RobbinHood - the ransomware that brings its own bug. Greg explains how a student's Twitter account was handed over to their college and Duck talks SMS 2FA. Host Anna Brading is joined by Sophos experts Peter Mackenzie, Paul Ducklin and Greg Iddon. Listen now! Related articles: RobbinHood – the ransomware that brings its own bug: https://nakedsecurity.sophos.com/2020/02/07/robbin-hood-the-ransomware-that-brings-its-own-bug/ Living off another land: Ransomware borrows vulnerable driver to remove security software: https://news.sophos.com/en-us/2020/02/06/living-off-another-land-ransomware-borrows-vulnerable-driver-to-remove-security-software/ Apple proposes simple security upgrade for SMS 2FA codes: https://nakedsecurity.sophos.com/2020/02/03/apple-proposes-simple-security-upgrade-for-sms-2fa-codes/ Twitter hands over student’s account to his college: https://nakedsecurity.sophos.com/2020/02/04/twitter-gave-access-to-students-account-to-...

46 MIN1 w ago
Comments
S2 Ep26: Robbin Hood ransomware, Twitter parodies and SMS 2FA WHAT?

S2 Ep25: You've seen WHAT on public Trello boards?

Over the past couple of years, Sophos' Director of Security Craig Jones has discovered a worrying amount of personal data on public Trello boards. Mark says companies shouldn’t microchip their employees and Duck discusses a bug that could have blown a hole in OpenSMTPD. Host Anna Brading is joined by Sophos experts Paul Ducklin, Mark Stockley and special guest Craig Jones. Listen now! Related articles: Trello exposed! Search turns up huge trove of private data: https://nakedsecurity.sophos.com/2020/01/30/trello-exposed-search-turns-up-huge-trove-of-private-data/ Employers can’t force you to get microchipped, Indiana reps say https://nakedsecurity.sophos.com/2020/01/30/employers-cant-force-you-to-get-microchipped-indiana-reps-say/ Serious Security – How ‘special case’ code blew a hole in OpenSMTPD https://nakedsecurity.sophos.com/2020/01/31/serious-security-how-special-case-code-blew-a-hole-in-opensmtpd/

48 MIN2 w ago
Comments
S2 Ep25: You've seen WHAT on public Trello boards?

S2 Ep24: Tinder, angry customers and weleakinfo takedown

This week we discuss 70,000 images being stolen from Tinder, the weleakinfo.com FBI bust and how Sonos annoyed its longstanding customers. Host Anna Brading is joined by Sophos experts Mark Stockley, Greg Iddon and producer Alice Duckett. Listen now! Related articles: Sonos’s tone-deaf legacy product policy angers customers: https://nakedsecurity.sophos.com/2020/01/23/sonoss-tone-deaf-legacy-product-policy-angers-customers/ FBI seizes credentials-for-sale site: https://nakedsecurity.sophos.com/2020/01/20/fbi-seizes-credentials-for-sale-site-weleakinfo-com/ What do online file sharers want with 70,000 Tinder images? https://nakedsecurity.sophos.com/2020/01/21/what-do-online-file-sharers-want-with-70000-tinder-images/

52 MIN3 w ago
Comments
S2 Ep24: Tinder, angry customers and weleakinfo takedown

S2 Ep23: Snake ransomware, VPN vulnerabilities and is your phone listening to you?

This week we cover Snake ransomware, VPN vulnerabilities and decide whether our phones are spying on us. Mark also revisits his growing list of pet peeves and Anna tests whether getting deep fake feet to your phone via SMS is real. Host Anna Brading is joined by Sophos experts Mark Stockley, Greg Iddon and Producer Alice Duckett. Listen now! Related articles: Snake alert! This ransomware is not a game… https://nakedsecurity.sophos.com/2020/01/13/snake-alert-this-ransomware-is-not-a-game/ Browser zero day: Update your Firefox right now! https://nakedsecurity.sophos.com/2020/01/09/browser-zero-day-update-your-firefox-right-now/ REvil ransomware exploiting VPN flaws made public last April: https://nakedsecurity.sophos.com/2020/01/08/revil-ransomware-exploiting-vpn-flaws-made-public-last-april/ Windows 7 computers will no longer be patched after today: https://nakedsecurity.sophos.com/2020/01/14/windows-7-computers-will-no-longer-be-patched-after-today/

51 MINJAN 16
Comments
S2 Ep23: Snake ransomware, VPN vulnerabilities and is your phone listening to you?

S2 Ep22: Word doc stops fraud, bye bye Python 2, latest from the ransomware swamp

This week we discuss the IT exec who scammed his employer out of $6m with fake invoices and the death of Python 2. Peter also shares two of his latest investigations from the ransomware swamp. Producer Alice Duckett is joined by Mark Stockley, Greg Iddon and Peter Mackenzie in this week's episode. Thank you to everyone who gives us feedback on the podcast and helps us promote it on social media, it really helps us reach more people. Listen now! Related articles: IT exec sets up fake biz to scam his employer out of $6m: https://nakedsecurity.sophos.com/2020/01/07/it-exec-sets-up-fake-biz-to-scam-his-employer-out-of-6m/ Python is dead. Long live Python! https://nakedsecurity.sophos.com/2020/01/03/python-is-dead-long-live-python/

44 MINJAN 8
Comments
S2 Ep22: Word doc stops fraud, bye bye Python 2, latest from the ransomware swamp

S2 Ep21 - Plundervolt, domain name gunfight and Facebook snubs Congress

Here are the week's top stories - we explain the Plundervolt attack, look into a gunfight over a domain name, and explore the encryption drama that's unfolding between Facebook and Congress. Host Anna Brading is joined by Sophos experts Mark Stockley, Paul Ducklin and Greg Iddon. Listen and share! Related articles: https://nakedsecurity.sophos.com/doitforstate-domain-name-thief-gets-14-years-for-pistol-whipping-plot https://nakedsecurity.sophos.com/plundervolt-stealing-secrets-by-starving-your-computer-of-voltage https://nakedsecurity.sophos.com/facebook-refuses-to-break-end-to-end-encryption

44 MIN2019 DEC 19
Comments
S2 Ep21 - Plundervolt, domain name gunfight and Facebook snubs Congress

S2 Ep20 - Why don't they send ransomware on floppies anymore?

As always, we pick the top three cybersecurity stories of the week to discuss. This week we talk about open-source supply chain madness, Snatch ransomware and iPhone 11 tracking concerns. Host Anna Brading is joined by Sophos experts Mark Stockley, Peter Mackenzie and Paul Ducklin. Listen and share! Related articles: Will the new iPhone 11 track you even if you tell it not to? https://nakedsecurity.sophos.com/2019/12/09/will-the-new-iphone-11-track-you-even-if-you-tell-it-not-to/ Snatch ransomware pwns security using sneaky ‘safe mode’ reboot https://nakedsecurity.sophos.com/2019/12/10/snatch-ransomware-pwns-security-using-sneaky-safe-mode-reboot/ Machine-raiding Python libraries squashed by community https://nakedsecurity.sophos.com/2019/12/05/machine-raiding-python-libraries-squashed-by-community/

42 MIN2019 DEC 11
Comments
S2 Ep20 - Why don't they send ransomware on floppies anymore?

S2 Ep19 - One of us just prevented a ransomware attack

Peter Mackenzie saved a casino from a ransomware attack, a children's smartwatch leaks location data and HPE warns of impending SSD disk doom. Host Anna Brading is joined by Peter Mackenzie, Paul Ducklin and Mark Stockley. Related articles: Children's smartwatch: https://nakedsecurity.sophos.com/2019/11/28/kids-smartwatch-security-tracker-can-be-hacked-by-anyone/ SSD disk impending doom: https://nakedsecurity.sophos.com/2019/11/28/hpe-warns-of-impending-ssd-disk-doom/

42 MIN2019 DEC 4
Comments
S2 Ep19 - One of us just prevented a ransomware attack

S2 Ep18 – Missing cryptoqueen, festive phishing and can the web be saved?

This week we discuss the large scale crypto-scam which tricked people into investing $400m, Tim Berners-Lee's proposed principles to save the web from a 'digital dystopia' and how to stay safe online during the festive season. Producer Alice Duckett hosts the show with Sophos experts Paul Ducklin and Peter Mackenzie. Listen now! Related articles: Crypto-scam: https://nakedsecurity.sophos.com/2019/11/25/onecoin-crypto-scam-lawyer-found-guilty-of-worldwide-400m-fraud/ Web principles: https://nakedsecurity.sophos.com/2019/11/26/sir-tim-berners-lee-publishes-plan-to-save-the-web-from-digital-dystopia/ Festive scams: https://nakedsecurity.sophos.com/2019/11/19/ho-ho-ouch-there-are-4x-more-fake-retailer-sites-than-real-ones/

47 MIN2019 NOV 27
Comments
S2 Ep18 – Missing cryptoqueen, festive phishing and can the web be saved?

Latest Episodes

S2 Ep27: Bluetooth vulnerabilities, dodgy Chrome extensions and forgotten encryption passwords

This week we discuss why Google abruptly pulled over 500 Chrome extensions from its Web Store, the case of a man held in custody for refusing to decrypt two hard drives and research detailing a number of security holes in Bluetooth chips from several different vendors. Greg Iddon plays host and Producer this week and is joined by fellow Sophos experts Paul Ducklin and Peter Mackenzie. Listen now! Related articles: Google pulls 500 malicious Chrome extensions after researcher tip-off: https://nakedsecurity.sophos.com/2020/02/17/google-pulls-500-malicious-chrome-extensions-after-researcher-tip-off/ Suspect who refused to decrypt hard drives released after four years: https://nakedsecurity.sophos.com/2020/02/17/google-pulls-500-malicious-chrome-extensions-after-researcher-tip-off/ Bluetooth bugs – researchers find 10 “Sweyntooth” security holes: https://nakedsecurity.sophos.com/2020/02/14/bluetooth-bugs-researchers-find-10-sweyntooth-security-holes/

37 MIN4 d ago
Comments
S2 Ep27: Bluetooth vulnerabilities, dodgy Chrome extensions and forgotten encryption passwords

S2 Ep26: Robbin Hood ransomware, Twitter parodies and SMS 2FA WHAT?

This week we welcome back Peter who discusses RobbinHood - the ransomware that brings its own bug. Greg explains how a student's Twitter account was handed over to their college and Duck talks SMS 2FA. Host Anna Brading is joined by Sophos experts Peter Mackenzie, Paul Ducklin and Greg Iddon. Listen now! Related articles: RobbinHood – the ransomware that brings its own bug: https://nakedsecurity.sophos.com/2020/02/07/robbin-hood-the-ransomware-that-brings-its-own-bug/ Living off another land: Ransomware borrows vulnerable driver to remove security software: https://news.sophos.com/en-us/2020/02/06/living-off-another-land-ransomware-borrows-vulnerable-driver-to-remove-security-software/ Apple proposes simple security upgrade for SMS 2FA codes: https://nakedsecurity.sophos.com/2020/02/03/apple-proposes-simple-security-upgrade-for-sms-2fa-codes/ Twitter hands over student’s account to his college: https://nakedsecurity.sophos.com/2020/02/04/twitter-gave-access-to-students-account-to-...

46 MIN1 w ago
Comments
S2 Ep26: Robbin Hood ransomware, Twitter parodies and SMS 2FA WHAT?

S2 Ep25: You've seen WHAT on public Trello boards?

Over the past couple of years, Sophos' Director of Security Craig Jones has discovered a worrying amount of personal data on public Trello boards. Mark says companies shouldn’t microchip their employees and Duck discusses a bug that could have blown a hole in OpenSMTPD. Host Anna Brading is joined by Sophos experts Paul Ducklin, Mark Stockley and special guest Craig Jones. Listen now! Related articles: Trello exposed! Search turns up huge trove of private data: https://nakedsecurity.sophos.com/2020/01/30/trello-exposed-search-turns-up-huge-trove-of-private-data/ Employers can’t force you to get microchipped, Indiana reps say https://nakedsecurity.sophos.com/2020/01/30/employers-cant-force-you-to-get-microchipped-indiana-reps-say/ Serious Security – How ‘special case’ code blew a hole in OpenSMTPD https://nakedsecurity.sophos.com/2020/01/31/serious-security-how-special-case-code-blew-a-hole-in-opensmtpd/

48 MIN2 w ago
Comments
S2 Ep25: You've seen WHAT on public Trello boards?

S2 Ep24: Tinder, angry customers and weleakinfo takedown

This week we discuss 70,000 images being stolen from Tinder, the weleakinfo.com FBI bust and how Sonos annoyed its longstanding customers. Host Anna Brading is joined by Sophos experts Mark Stockley, Greg Iddon and producer Alice Duckett. Listen now! Related articles: Sonos’s tone-deaf legacy product policy angers customers: https://nakedsecurity.sophos.com/2020/01/23/sonoss-tone-deaf-legacy-product-policy-angers-customers/ FBI seizes credentials-for-sale site: https://nakedsecurity.sophos.com/2020/01/20/fbi-seizes-credentials-for-sale-site-weleakinfo-com/ What do online file sharers want with 70,000 Tinder images? https://nakedsecurity.sophos.com/2020/01/21/what-do-online-file-sharers-want-with-70000-tinder-images/

52 MIN3 w ago
Comments
S2 Ep24: Tinder, angry customers and weleakinfo takedown

S2 Ep23: Snake ransomware, VPN vulnerabilities and is your phone listening to you?

This week we cover Snake ransomware, VPN vulnerabilities and decide whether our phones are spying on us. Mark also revisits his growing list of pet peeves and Anna tests whether getting deep fake feet to your phone via SMS is real. Host Anna Brading is joined by Sophos experts Mark Stockley, Greg Iddon and Producer Alice Duckett. Listen now! Related articles: Snake alert! This ransomware is not a game… https://nakedsecurity.sophos.com/2020/01/13/snake-alert-this-ransomware-is-not-a-game/ Browser zero day: Update your Firefox right now! https://nakedsecurity.sophos.com/2020/01/09/browser-zero-day-update-your-firefox-right-now/ REvil ransomware exploiting VPN flaws made public last April: https://nakedsecurity.sophos.com/2020/01/08/revil-ransomware-exploiting-vpn-flaws-made-public-last-april/ Windows 7 computers will no longer be patched after today: https://nakedsecurity.sophos.com/2020/01/14/windows-7-computers-will-no-longer-be-patched-after-today/

51 MINJAN 16
Comments
S2 Ep23: Snake ransomware, VPN vulnerabilities and is your phone listening to you?

S2 Ep22: Word doc stops fraud, bye bye Python 2, latest from the ransomware swamp

This week we discuss the IT exec who scammed his employer out of $6m with fake invoices and the death of Python 2. Peter also shares two of his latest investigations from the ransomware swamp. Producer Alice Duckett is joined by Mark Stockley, Greg Iddon and Peter Mackenzie in this week's episode. Thank you to everyone who gives us feedback on the podcast and helps us promote it on social media, it really helps us reach more people. Listen now! Related articles: IT exec sets up fake biz to scam his employer out of $6m: https://nakedsecurity.sophos.com/2020/01/07/it-exec-sets-up-fake-biz-to-scam-his-employer-out-of-6m/ Python is dead. Long live Python! https://nakedsecurity.sophos.com/2020/01/03/python-is-dead-long-live-python/

44 MINJAN 8
Comments
S2 Ep22: Word doc stops fraud, bye bye Python 2, latest from the ransomware swamp

S2 Ep21 - Plundervolt, domain name gunfight and Facebook snubs Congress

Here are the week's top stories - we explain the Plundervolt attack, look into a gunfight over a domain name, and explore the encryption drama that's unfolding between Facebook and Congress. Host Anna Brading is joined by Sophos experts Mark Stockley, Paul Ducklin and Greg Iddon. Listen and share! Related articles: https://nakedsecurity.sophos.com/doitforstate-domain-name-thief-gets-14-years-for-pistol-whipping-plot https://nakedsecurity.sophos.com/plundervolt-stealing-secrets-by-starving-your-computer-of-voltage https://nakedsecurity.sophos.com/facebook-refuses-to-break-end-to-end-encryption

44 MIN2019 DEC 19
Comments
S2 Ep21 - Plundervolt, domain name gunfight and Facebook snubs Congress

S2 Ep20 - Why don't they send ransomware on floppies anymore?

As always, we pick the top three cybersecurity stories of the week to discuss. This week we talk about open-source supply chain madness, Snatch ransomware and iPhone 11 tracking concerns. Host Anna Brading is joined by Sophos experts Mark Stockley, Peter Mackenzie and Paul Ducklin. Listen and share! Related articles: Will the new iPhone 11 track you even if you tell it not to? https://nakedsecurity.sophos.com/2019/12/09/will-the-new-iphone-11-track-you-even-if-you-tell-it-not-to/ Snatch ransomware pwns security using sneaky ‘safe mode’ reboot https://nakedsecurity.sophos.com/2019/12/10/snatch-ransomware-pwns-security-using-sneaky-safe-mode-reboot/ Machine-raiding Python libraries squashed by community https://nakedsecurity.sophos.com/2019/12/05/machine-raiding-python-libraries-squashed-by-community/

42 MIN2019 DEC 11
Comments
S2 Ep20 - Why don't they send ransomware on floppies anymore?

S2 Ep19 - One of us just prevented a ransomware attack

Peter Mackenzie saved a casino from a ransomware attack, a children's smartwatch leaks location data and HPE warns of impending SSD disk doom. Host Anna Brading is joined by Peter Mackenzie, Paul Ducklin and Mark Stockley. Related articles: Children's smartwatch: https://nakedsecurity.sophos.com/2019/11/28/kids-smartwatch-security-tracker-can-be-hacked-by-anyone/ SSD disk impending doom: https://nakedsecurity.sophos.com/2019/11/28/hpe-warns-of-impending-ssd-disk-doom/

42 MIN2019 DEC 4
Comments
S2 Ep19 - One of us just prevented a ransomware attack

S2 Ep18 – Missing cryptoqueen, festive phishing and can the web be saved?

This week we discuss the large scale crypto-scam which tricked people into investing $400m, Tim Berners-Lee's proposed principles to save the web from a 'digital dystopia' and how to stay safe online during the festive season. Producer Alice Duckett hosts the show with Sophos experts Paul Ducklin and Peter Mackenzie. Listen now! Related articles: Crypto-scam: https://nakedsecurity.sophos.com/2019/11/25/onecoin-crypto-scam-lawyer-found-guilty-of-worldwide-400m-fraud/ Web principles: https://nakedsecurity.sophos.com/2019/11/26/sir-tim-berners-lee-publishes-plan-to-save-the-web-from-digital-dystopia/ Festive scams: https://nakedsecurity.sophos.com/2019/11/19/ho-ho-ouch-there-are-4x-more-fake-retailer-sites-than-real-ones/

47 MIN2019 NOV 27
Comments
S2 Ep18 – Missing cryptoqueen, festive phishing and can the web be saved?
hmly
himalayaプレミアムへようこそ聴き放題のオーディオブックをお楽しみください。