Author
Graham Cluley
Graham Cluley
Independent security analyst
Go to latest posts

Graham Cluley is an award-winning security blogger, researcher and public speaker. He has been working in the computer security industry since the early 1990s, having been employed by companies such as Sophos, McAfee and Dr Solomon’s. He has given talks about computer security for some of the world’s largest companies, worked with law enforcement agencies on investigations into hacking groups, and regularly appears on TV and radio explaining computer security threats.

In 2011 he was inducted into the InfoSecurity Europe Hall of Fame.

Follow him on Twitter at @gcluley

US court hits Russian PoS hacker with record 27 year jail sentence

Russian hacker receives the longest sentence ever handed down for hacking-related charges in the United States.

Top tip for botnet overlords: Don’t vacation in countries that can extradite you to the United States

There’s no doubt that a life of cybercrime can earn its most successful overlords a considerable amount of money, but you will always have to live with the fear that you could be apprehended and – if convicted – spend years in prison.

Malware campaign targets open source developers on GitHub

Be on your guard if you’re a developer who uses GitHub – someone could be trying to infect your computer with malware.

Apple underwhelmed by latest CIA exploits revealed by WikiLeaks

WikiLeaks’s revelations about security vulnerabilities in Apple products appear to be a damp squib.

US charges Russian FSB officials in connection with massive Yahoo security breach

The United States has charged four men, including two officials of Russia’s FSB intelligence agency, in connection with a hacking attack against Yahoo that saw the details of 500 million users stolen and the use of forged cookies to break into accounts.

WordPress webmasters urged to upgrade to version 4.73 to patch six security holes

Another day, another important security update for WordPress. If you’re running a self-hosted version of WordPress, you must update the software on your website now.

British man arrested after 900,000 broadband routers knocked offline in Germany

A 29-year-old man has been arrested at Luton airport by the UK’s National Crime Agency (NCA) in connection with a massive internet attack that disrupted telephone, television and internet services in Germany last November.

It’s too easy to steal a second-hand connected car

Until more effort is made by vendors to integrate the internet in a safe way into the myriad of devices that surround us, we are going to hear more and more stories of security breaking down like this.

Proof-of-concept ransomware to poison the water supply

Researchers have described how ransomware could potentially attack industrial control systems (ICS), and demonstratied how new malware threats might target core infrastructure, holding entire cities hostage.

100,000+ WordPress webpages defaced as recently patched vulnerability is exploited

Keep your WordPress site updated, or risk having hackers modify the content of any post or webpage.

Password-stealing security hole discovered in many Netgear routers

A security researcher has described how he uncovered a severe security hole in dozens of different Netgear routers, meaning that “hundreds of thousands, if not over a million” devices could be at risk of having their admin passwords stolen by hackers.

Apple issues security patches for … just about everything

If you have a piece of Apple technology in your house or office, chances are that it’s time you updated it.

Ransomware attack hits St Louis Public library

If you were trying to use the public computers at St Louis Public Library this week you may have experienced more than your fair share of problems.

Security scare over hackable heart implants

A US government probe into claims that certain heart implants are vulnerable to hacking attacks, has resulted in emergency security patches being issued for devices that cardiac patients have in their homes.

CERT warns Netgear routers can be easily exploited

It has not been a good year for the internet of things, security-wise.

The latest IoT devices found vulnerable to trivial exploitation? Netgear routers.

Yahoo flaw, now fixed, allowed hackers to access any user’s email

Malicious code could have been used to compromise an account, forward messages to an external account, or even spread a Yahoo Mail-infecting virus.

Hacker who stole celebrity emails, sex videos, movie scripts gets five years in prison

Alonzo Knowles was sentenced to five years in prison after being found guilty in a separate case involving the hacking of female celebrities’ online accounts

Dailymotion hacked, millions of user accounts exposed

Users are warned to be on the look out for spam emails and reminded to never re-use passwords, as popular video-watching site suffers a data breach.

900,000 Germans knocked offline, as critical router flaw exploited

As many as 900,000 Deutsche Telekom customers were knocked offline on Sunday and Monday as an attempt was made to hijack broadband routers into a botnet.

MailChimp accounts hacked to spam out malicious emails

Hackers broke into the MailChimp accounts of some businesses, and send out malicious invoice emails to subscribers… but that doesn’t mean that MailChimp suffered a serious security breach.

Once again, two-factor authentication could have saved users’ bacon.

Follow us

Copyright © 2017 ESET, All Rights Reserved.