The personal details of thousands of Lloyds Bank account holders have gone missing following the suspected theft of a data storage box. The breach affects any customers who made a claim under a Royal Sun Alliance (RSA) emergency home cover policy attached to their £25 a month Lloyds Premier bank account between 2006 and 2012. RSA said...

The Android vulnerability known as Stagefright is back in the limelight. Stagefright is a bug, or more accurately a series of similar bugs, in an Android programming library called libstagefright. Libstagefright is part of the operating system that handles media files such as movies. If you receive an MMS (Multimedia Messaging Service) message that links...

Deep in the bowels of the labyrinth that is the US’s Transportation Security Administration (TSA), luggage trundling along on conveyor belts gets barcoded, weighed, sniffed for traces of explosives, 3D imaged, and, if it appears suspicious, opened. As The Washington Post detailed in November 2014, TSA handlers have a set of master keys to open...

Self-driving cars may be the future of transportation – it’s possible that eventually they could be safer than vehicles with human drivers. But autonomous vehicles are going to need more and better defenses against the threat of hackers and cyberattacks. Uber has just hired a pair of renowned car hackers to help the alternative cab company develop security...

This week has already been a roller coaster ride for ad-block users – between Apple promising to open the flood gates to ad-blocking in the Safari browser on upcoming iPhones and iPads, and Chrome users groaning after it looked like Google was cutting the knees off AdBlock and forcing them to sit through video ads...

Do you keep databases with information about other people? Do you allow teleworkers, road warriors, suppliers, contractors and so on to connect in remotely? Do you accept payments, for example from credit cards or NFC devices? Do you make payments of your own online? Do you keep important business or personal data – tax returns,...

Thanks to Gabor Szappanos of SophosLabs for his behind-the-scenes work on this article. SophosLabs has drawn our attention to a new wave of malware attacks using a recent security bug in Microsoft Word. The bug, known as CVE-2015-1641, was patched by Microsoft back in April 2015 in security bulletin MS15-033. The vulnerability was declared to...

An attacker with access to security-sensitive information about the Firefox web browser went unnoticed for up to two years, putting hundreds of millions of users at risk. The attacker was able to spy on highly sensitive information by gaining access to a privileged account on Bugzilla@Mozilla, the bug tracking software the Mozilla corporation uses to...

– To encrypt, or not to encrypt? – Encryption is a hot topic in security circles these days. There are lots of different viewpoints about whether to encrypt or not. All of us here on Naked Security will tell you that you can’t have enough encryption. Wisely used, encryption gives you a valuable extra layer...

The US Department of Justice (DOJ) yesterday released a new and enhanced policy to cover the use of “stingrays” – tracking devices that mimic cell phone towers, tricking phones into connecting with them to reveal their precise location. The new policy, designed to “establish a higher and more consistent legal standard and increase privacy protections”, states that all...