Author Archives: Paul Ducklin

Online ticketing company “See” pwned for 2.5 years by attackers

Posted on October 26, 2022 by Paul Ducklin

Don’t be a cybersecurity slowcoach – you need to spot possible attacks as soon as you can. Continue reading Online ticketing company “See” pwned for 2.5 years by attackers→

Clearview AI image-scraping face recognition service hit with €20m fine in France

Posted on October 26, 2022 by Paul Ducklin

“We told you to stop but you ignored us,” said the French regulator, “so now we’re coming after you again.” Continue reading Clearview AI image-scraping face recognition service hit with €20m fine in France→

Apple megaupdate: Ventura out, iOS and iPad kernel zero-day – act now!

Posted on October 24, 2022 by Paul Ducklin

Ventura hits the market with 112 patches, Catalina’s gone missing, and iPhones and iPads get a critical kernel-level zero-day patch… Continue reading Apple megaupdate: Ventura out, iOS and iPad kernel zero-day – act now!→

Serious Security: You can’t beat the house at Blackjack – or can you?

Posted on October 24, 2022 by Paul Ducklin

What if you could guess the next card correctly twice as often as you should? Continue reading Serious Security: You can’t beat the house at Blackjack – or can you?→

When cops hack back: Dutch police fleece DEADBOLT criminals (legally!)

Posted on October 21, 2022 by Paul Ducklin

Crooks: Show us the money! Cops: How about you show us the decryption keys first? Continue reading When cops hack back: Dutch police fleece DEADBOLT criminals (legally!)→

S3 Ep105: WONTFIX! The MS Office cryptofail that “isn’t a security flaw” [Audio + Text]

Posted on October 20, 2022 by Paul Ducklin

The coolest video game ever! And lots of solid cybersecurity advice – listen now! Continue reading S3 Ep105: WONTFIX! The MS Office cryptofail that “isn’t a security flaw” [Audio + Text]→

Women in Cryptology – USPS celebrates WW2 codebreakers

Posted on October 19, 2022 by Paul Ducklin

What did you do in the war, Mom? Oh, y’know, a bit of this and that… Continue reading Women in Cryptology – USPS celebrates WW2 codebreakers→

Zoom for Mac patches sneaky “spy-on-me” bug – update now!

Posted on October 18, 2022 by Paul Ducklin

Hey! That back door isn’t supposed to be there at all, let alone propped open… Continue reading Zoom for Mac patches sneaky “spy-on-me” bug – update now!→

Dangerous hole in Apache Commons Text – like Log4Shell all over again

Posted on October 18, 2022 by Paul Ducklin

Third time unlucky. Time to put your patching boots on again… Continue reading Dangerous hole in Apache Commons Text – like Log4Shell all over again→

Serious Security: Microsoft Office 365 attacked over feeble encryption

Posted on October 14, 2022 by Paul Ducklin

How 2022 is your encryption? Continue reading Serious Security: Microsoft Office 365 attacked over feeble encryption→