Latest news from Naked Security (2019/02/27)

Ep.021 – Leaked calls, a social media virus and passwords exposed [PODCAST]

Here’s the latest Naked Security podcast – enjoy!

Nvidia patches eight security flaws in graphics products

Chip maker Nvidia has released a security update, fixing eight CVE flaws in its Windows and Linux graphics display drivers.

Researchers break e-signatures in 22 common PDF viewers

Researchers have discovered a flaw in some PDF document viewers that allows new content to be added to documents without breaking the electronic signatures.

Police bust their own radio shop manager for dodgy software updates

Police allege that he updated radios with fraudulent software from a radio enthusiast who allegedly hacked encrypted radios for drug cartels.

Millions of utilities customers’ passwords stored in plain text

Plain-text, unencrypted passwords were sent instead of having users reset them. There was no breach, the firm claims, but how would it know?

Latest news from Naked Security (2019/02/26)

Mozilla fears encryption law could turn its employees into insider threats

Mozilla has told the Australian government that its anti-encryption laws could turn its own employees into insider threats.

ICANN demands DNSSEC combats DNS hijacking

DNS security is under serious threat from cyberattackers and domain overseer ICANN wants internet companies to do something about it.

Facebook apps secretly sending sensitive data back to the mothership

New York governor Andrew Cuomo has ordered an investigation into how Facebook is still allowing blabby apps to violate its privacy policies.

Android nudges passwords closer to the cliff edge with FIDO2 support

Android’s now on board with saying goodbye to passwords: more than a billion devices now support FIDO2.

Latest news from Naked Security (2019/02/25)

Missile warning sent from hijacked Tampa mayor’s Twitter account

Tampa’s mayor was trying to regain control of his Twitter account this week after it was used to post bomb threats and child sex abuse images.

Facebook tricked kids into in-game purchases, say privacy advocates

Unsealed court documents show that Facebook referred to big-spending kids as “whales” – a term borrowed from the casino industry.

Adobe patches the same critical Reader flaw twice in one week

Adobe has issued a new fix addressing a vulnerability in Reader it thought it had fixed on 12 February as part of Patch Tuesday.

Monday review – the hot 23 stories of the week

From leaky password managers to nearly 100 million new stolen data records, and everything in between. It’s weekly roundup time.

Nike’s $350 “Back to the Future” trainers crash, have feet of brick

Have you ever needed to boot a shoe that was a brick? Owners of Nike’s $350 “self-lacing” trainers say they have.