Articles by

Paul Ducklin

Microsoft patches the Patch Tuesday patch that broke authentication – Naked Security

Two of the big-news vulnerabilities in this month's Patch Tuesday updates from Microsoft were CVE-2022-26923 and CVE-2022-26931which...

Apple patches zero-day kernel hole and much more – update now! – Naked Security

Apple's latest security updates have arrived. All still-supported flavors of macOS (Monterey, Big Sur and Catalina), as well...

Firefox out-of-band update to 100.0.1 – just in time for Pwn2Own? – Naked Security

Late last week, our Slackware Linux distro announced an update to follow the scheduled-and-expected Firefox 100 release,...

Learning from curl’s latest bug update – Naked Security

You may not have heard of Curl (or curlas it is more properly written), but it's one...

RubyGems supply chain rip-and-replace bug fixed – check your logs! – Naked Security

Popular package management site RubyGems.org, which stores and supplies hundreds of thousands of modules for the widely-used...

You didn’t leave enough space between ROSE and AND, and AND and CROWN – Naked Security

Remember the jokes (OK, they were sold as “jokes” when you were at school to add a...

World Password Day – the 1960s just called and gave you your passwords back – Naked Security

Back in the late 1960s and early 1970s (or so we've heard), primary school children in the...

GitHub issues final report on supply-chain source code intrusions – Naked Security

Early in April 2022, news broke that various users of Microsoft's GitHub platform had suffered unauthorized access...

Want to stay up to date with the latest news?

We would love to hear from you! Please fill in your details and we will stay in touch. It's that simple!