Subj : Sophos Virus News
To   : All
From : Daryl Stout
Date : Mon Feb 06 2023 14:20:38

Here is the latest information from the Naked Security Blog from Sophos.
You can go to nakedsecurity.sophos.com to read these. You can also sign
up to have these delivered to your email during the week.

***

Tracers in the Dark: The Global Hunt for the Crime Lords of Crypto

Hear renowned cybersecurity author Andy Greenberg's thoughtful commentary 
about the "war on crypto" as we talk to him about his new book...

***

Finnish psychotherapy extortion suspect arrested in France

Company transcribed ultra-personal conversations, didn't secure them. 
Criminal stole them, then extorted thousands of vulnerable patients.

***

OpenSSH fixes double-free memory bug that's pokable over the network

It's a bug fix for a bug fix. A memory leak was turned into a double-free 
that has now been turned into correct code...

***

S3 Ep120: When dud crypto simply won't let go [Audio + Text]

Latest episode - listen now!

***

Password-stealing "vulnerability" reported in KeyPass - bug or feature?

Is it a vulnerability if someone with control over your account can mess 
with files that your account is allowed to access anyway?

***

GitHub code-signing certificates stolen (but will be revoked this week)

There was a breach, so the bad news isn't great, but the good news isn't 
too bad...

***
--- SBBSecho 3.15-Win32
 * Origin: The Thunderbolt BBS - Little Rock, Arkansas (454:1/33)

.