Stories by Liam Tung

After celeb hack, Apple patches password guessing weakness in iCloud

By Liam Tung | 02 September, 2014 09:44

On Monday Apple fixed a serious flaw in its iCloud service that could have been used by hackers to nab private celebrity pics leaked this week.

Drupal offers bounty for breaking its new two-factor authentication

By Liam Tung | 28 August, 2014 23:43 | 4 Comments

Developers behind the popular open source content management system, Drupal, want hackers to break its two-factor authentication system for drupal.org before it goes live.

SynoLocker victims who paid but still couldn’t unlock files get a second crack

By Liam Tung | 25 August, 2014 09:26 | 2 Comments

If you paid $350 fee to unlock your files on a SynoLocker trapped storage device but still couldn’t access them, there may be hope thanks to a new tool from Finnish security vendor F-Secure.

Amazon tricks up CloudFront encryption with anti-spy feature

By Liam Tung | 22 August, 2014 12:56

Spies and hackers will find it harder to unseal encrypted communications if they’ve already captured packets sent across Amazon’s content distribution network, CloudFront.

Should Tor fork Chrome instead of playing security catchup on Firefox?

By Liam Tung | 20 August, 2014 09:12

The project behind Tor, the online anonymity network, has a long, expensive and tricky road ahead before its browser bundle offers users the best defence against attacks from police and spy agencies.

Foreign Minister Julie Bishop’s mobile hacked during MH17 talks

By Liam Tung | 18 August, 2014 09:29 | 2 Comments

Foreign Minister Julie Bishop’s phone was hacked during talks she led overseas for access to the MH17 crash site in the Ukraine.

UK government has one answer to top 10 security threats: antivirus

By Liam Tung | 14 August, 2014 09:37 | 2 Comments

Want citizens to actually read the government’s advice to counter information security risks? A top 10 threat list on Buzzfeed with one simple answer might do the trick.

Xiaomi issues fix addressing concerns over contact slurping

By Liam Tung | 11 August, 2014 08:41

Chinese smartphone upstart Xiaomi has released a software update to allay concerns over its devices sending contact lists to the company’s headquarters in Beijing.

Synology says SynoLocker hasn't hit NAS servers on DSM 5.0

By Liam Tung | 07 August, 2014 01:16 | 1 Comment

The nasty SynoLocker ransom ware that has hit scores of Synology network attached storage devices appears to have exploited a flaw that was patched in December.

SynoLocker demands 0.6 Bitcoin to decrypt Synology NAS devices

By Liam Tung | 04 August, 2014 09:53 | 21 Comments

Synology network attached storage (NAS) devices, capable of storing terabytes of data, have been targeted by ransomware that encrypts victims’ files.

Microsoft loses appeal to protect offshore email from US warrant

By Liam Tung | 01 August, 2014 13:11

A US judge has upheld a US warrant demanding Microsoft hand over a user’s email, despite it being stored offshore.

Firefox gains Chrome-like malicious file defences

By Liam Tung | 28 July, 2014 08:27

Mozilla has implemented Google’s application reputation feature in Firefox, bringing its browser closer to Chrome’s capacity to detect and block malware on the Web.

Google details Knox-inspired enterprise ‘managed profiles’ for Android L

By Liam Tung | 23 July, 2014 09:21

Google and Samsung have clarified that Knox features destined for Android L won’t include the best parts of the Korean company’s enterprise security features for Android.

Microsoft finds US public supports its fight against US warrant for offshore email

By Liam Tung | 17 July, 2014 09:20

A new survey commissioned by Microsoft has found that most Americans agree with the reasons it's resisting a US warrant for it to cough up emails stored in its Irish data centre.

Apple responds to China’s claim iPhone is a ‘national security threat’

By Liam Tung | 14 July, 2014 09:10

Apple has issued a cautious rebuttal to claims in a Chinese state media report that the iPhone is a national security threat due to a feature that keeps tabs on frequently visited locations.

CSO Corporate Partners
  • f5
  • Webroot
  • Trend Micro
  • NetIQ
rhs_login_lockGet exclusive access to CSO, invitation only events, reports & analysis.
CSO Directory

ZENworks® Endpoint Security Management

Secure, identity-based protection for your endpoints

Security Awareness Tip
Security ABC Guides

Warning: Tips for secure mobile holiday shopping

I’m dating myself, but I remember when holiday shopping involved pouring through ads in the Sunday paper, placing actual phone calls from tethered land lines to research product stock and availability, and actually driving places to pick things up. Now, holiday shoppers can do all of that from a smartphone or tablet in a few seconds, but there are some security pitfalls to be aware of.