Author Archives: Paul Ducklin

Post-quantum cryptography – new algorithm “gone in 60 minutes”

Posted on August 3, 2022 by Paul Ducklin

And THIS is why you don’t knit your own home-made encryption algorithms and hope no one looks at them. Continue reading Post-quantum cryptography – new algorithm “gone in 60 minutes”→

Cryptocoin “token swapper” Nomad loses $200 million in coding blunder

Posted on August 2, 2022 by Paul Ducklin

Transactions were only approved, it seems, if they were initiated by… errrrr, by anyone. Continue reading Cryptocoin “token swapper” Nomad loses $200 million in coding blunder→

GnuTLS patches memory mismanagement bug – update now!

Posted on August 1, 2022 by Paul Ducklin

GnuTLS may well be the most widespread cryptographic toolkit you’ve never heard of. Learn more… Continue reading GnuTLS patches memory mismanagement bug – update now!→

How to celebrate SysAdmin Day!

Posted on July 29, 2022 by Paul Ducklin

I’ve just popped in to wish you all/The best SysAdmin Day! Continue reading How to celebrate SysAdmin Day!→

S3 Ep93: Office security, breach costs, and leisurely patches [Audio + Text]

Posted on July 28, 2022 by Paul Ducklin

Latest episode – listen now! Continue reading S3 Ep93: Office security, breach costs, and leisurely patches [Audio + Text]→

Critical Samba bug could let anyone become Domain Admin – patch now!

Posted on July 27, 2022 by Paul Ducklin

It’s a serious bug… but there’s a fix for it, so you know exactly what to do! Continue reading Critical Samba bug could let anyone become Domain Admin – patch now!→

Mild monthly security update from Firefox – but update anyway

Posted on July 27, 2022 by Paul Ducklin

You’re probably thinking we’re going to say, “Don’t delay/Do it today”… and that’s exactly what we are saying! Continue reading Mild monthly security update from Firefox – but update anyway→

T-Mobile to cough up $500 million over 2021 data breach

Posted on July 25, 2022 by Paul Ducklin

Technically, it’s not a fine, and the lawyers will get a big chunk of it. But it still adds up to a half-billion-dollar data breach. Continue reading T-Mobile to cough up $500 million over 2021 data breach→

Office macro security: on-again-off-again feature now BACK ON AGAIN!

Posted on July 23, 2022 by Paul Ducklin

20 years to turn it on, then 20 weeks to turn it off, then just 2 weeks to turn it back on again. That’s progress! Continue reading Office macro security: on-again-off-again feature now BACK ON AGAIN!→

S3 Ep92: Log4Shell4Ever, travel tips, and scamminess [Audio + Text]

Posted on July 21, 2022 by Paul Ducklin

Latest episode – listen, read or both! Continue reading S3 Ep92: Log4Shell4Ever, travel tips, and scamminess [Audio + Text]→