Author Archives: Paul Ducklin

S3 Ep60: Exchange exploit, GoDaddy breach and cookies made public [Podcast]

Posted on November 25, 2021 by Paul Ducklin

Latest episode – listen now! Solid cybersecurity advice in plain English. Continue reading S3 Ep60: Exchange exploit, GoDaddy breach and cookies made public [Podcast]→

US government securities watchdog spoofed by investment scammers – don’t fall for it!

Posted on November 24, 2021 by Paul Ducklin

Those numbers that show up on your phone to tell you who’s calling? Treat them as SUGGESTIONS, never as PROOF. Continue reading US government securities watchdog spoofed by investment scammers – don’t fall for it!→

Check your patches – public exploit now out for critical Exchange bug

Posted on November 23, 2021 by Paul Ducklin

It was a zero-day bug until Patch Tuesday, now there’s an anyone-can-use-it exploit. Don’t be the one who hasn’t patched. Continue reading Check your patches – public exploit now out for critical Exchange bug→

GoDaddy admits to password breach: check your Managed WordPress site!

Posted on November 23, 2021 by Paul Ducklin

GoDaddy found crooks in its network, and kicked them out – but not before they’d been in there for six weeks. Continue reading GoDaddy admits to password breach: check your Managed WordPress site!→

Black Friday and Cyber Monday – here’s what you REALLY need to do!

Posted on November 22, 2021 by Paul Ducklin

The world fills up with cybersecurity tips every year when Black Friday comes round. But what about the rest of the year? Continue reading Black Friday and Cyber Monday – here’s what you REALLY need to do!→

Github cookie leakage – thousands of Firefox cookie files uploaded by mistake

Posted on November 18, 2021 by Paul Ducklin

Be aware before you share! That’s a good rule for developers and techies, just as much as it is for social media addicts. Continue reading Github cookie leakage – thousands of Firefox cookie files uploaded by mistake→

S3 Ep59: Emotet, an FBI hoax, Samba bugs, and a hijackable suitcase [Podcast]

Posted on November 18, 2021 by Paul Ducklin

Latest episode – listen now! Continue reading S3 Ep59: Emotet, an FBI hoax, Samba bugs, and a hijackable suitcase [Podcast]→

Apple’s Mail Privacy Protection feature – watch out if you have a Watch!

Posted on November 17, 2021 by Paul Ducklin

Apple’s “Protect Mail Activity” is a handy privacy enhancement for your messaging habits. As long as you know its limitations… Continue reading Apple’s Mail Privacy Protection feature – watch out if you have a Watch!→

The self-driving smart suitcase… that the person behind you can hijack!

Posted on November 16, 2021 by Paul Ducklin

Apparently, we need a self-driving IoT Bluetooth robot suitcase. Who knew? Continue reading The self-driving smart suitcase… that the person behind you can hijack!→

Emotet malware: “The report of my death was an exaggeration”

Posted on November 16, 2021 by Paul Ducklin

“Old malware rarely dies.” The best way to predict the future is to look at the past… if it worked before, it will probably work again. Continue reading Emotet malware: “The report of my death was an exaggeration”→