Latest news from Naked Security (2018/04/30)

Google adds SSO verification check to G Suite

Last May, around one million Gmail and G Suite users using SAML single sign-on (SSO) were targeted by a clever type of phishing attack that Google seemed keen for everyone to know it had shut down within hours. The speed of response was reassuring but also, in another way, unnerving. What was going on that […]

YouTube snags millions of bad videos, but is it getting the right ones?

You don’t have to look far to find objectionable content

DNA in genealogy database leads to arrest of suspected serial killer

If one of your relatives uploads their DNA data, much of yours goes with it.

No, Mark Zuckerberg isn’t messaging you about winning a Facebook lottery

Beware lottery scams on Facebook and Instagram

Monday review – the hot 19 stories of the week

From Microsoft’s Google’s Project Zero deadline and how to set up Gmail’s prompt-based 2FA to the mysterious “double kill” IE zero-day, and more!

Latest news from Naked Security (2018/04/27)

Getting an Amazon Echo app to silently eavesdrop on you

Researchers make an Alexa skill that turns your Echo into a eavesdropper

Infamous revenge porn site Anon-IB seized by police

The internet just got a little bit better

Apple’s latest updates are out – APFS password leakage bug squashed

Two critical browser patches for iPhones and Macs – plus a quiet patch for a Mac password disclosure glitch we wrote about recently.

Know what Instagram knows – here’s how you download your data

Thank you GDPR.

Latest news from Naked Security (2018/04/26)

20 years ago today! What we can learn from the CIH virus…

The 20-year-old CIH virus, aka “Chernobyl”, isn’t just a museum curiosity. It still has plenty of lessons to teach us today.

Access denied! World’s largest denial of service site busted

The site’s down and at least four of its admins have been arrested

Yahoo fined $35m for staying quiet about mega breach

The smallest thing about the Yahoo mega-breach is the fine

Gmail users, here’s how (and why) you should set up prompt-based 2FA

2FA just got better so don’t be like everyone else – actually use it!