How do you go from neuroscientist to DEFCON Social Engineering Capture the Flag champ? Find out from hacker and social engineering expert Rachel Tobac. Join us for a fascinating interview with Rachel about her journey, why you should always be “politely paranoid”, and the people who inspired her along the way.

With Kimberly Truong and special guest Rachel Tobac (@RachelTobac on Twitter), hacker and CEO of SocialProof Security.

Book mentioned by Rachel: The 6 principles of persuasion by Robert Cialdini.

Original music by Edith Mudge

***

Got questions/suggestions/stories to share?

Email [email protected]

Twitter @NakedSecurity

Instagram @NakedSecurity

We look at phishing tricks that really work, investigate a bizarre scam involving Subway sandwiches, and ask whether cybercriminals have lost their interest in the rest of us now they have coronavirus-related targets to go after.

With Kimberly Truong, Doug Aamoth and Paul Ducklin.

https://nakedsecurity.sophos.com/phishing-tricks-that-really-work

https://nakedsecurity.sophos.com/subway-sandwich-scam-mystifies

https://nakedsecurity.sophos.com/was-there-a-covid-19-vaccine-hack

Original music by Edith Mudge

***

Got questions/suggestions/stories to share?

Email [email protected]

Twitter @NakedSecurity

Instagram @NakedSecurity

Naked Security's Paul Ducklin interviews Sophos expert John Shier about his recently published paper, "20 years of cyberthreats that shaped information security."

Join John on a dizzying journey all the way from legendary viruses such as ILOVEYOU and Code Red, which flooded the internet in 2000, to present-day ransomware gangs like Ryuk and REvil, who are extorting millions of dollars in blackmail money per attack.

https://news.sophos.com/20-years-of-cyberthreats

Original music by Edith Mudge

Got questions/suggestions/stories to share?

Email [email protected]

Twitter @NakedSecurity

Instagram @NakedSecurity

We dig into research that figured out a way to steal data from iPhones wirelessly, we tell the fascinating story of how environmentalist divers in Germany came across an old Enigma cipher machine at the bottom of the Baltic sea, and we give you advice on how to talk to phone scammers.

With Kimberly Truong, Doug Aamoth and Paul Ducklin.

https://nakedsecurity.sophos.com/how-to-steal-photos-off-someones-iphone

https://nakedsecurity.sophos.com/german-divers-find-enigma-crypto-machine

https://nakedsecurity.sophos.com/vishing-criminals-let-rip-with-two-scams

Original music by Edith Mudge

Got questions/suggestions/stories to share?

Email [email protected]

Twitter @NakedSecurity

Instagram @NakedSecurity

We look at a network intrusion where the crooks tried to take over dozens of different online accounts from every user, we discuss the potential dangers of digital doorbells, and we give you some handy hints for improving your wireless security at home.

With Kimberly Truong, Doug Aamoth and Paul Ducklin.

https://nakedsecurity.sophos.com/gift-card-hack-exposed-you-pay-they-play

https://nakedsecurity.sophos.com/bzzzzzzt-how-safe-is-that-keenly-priced-digital-doorbell

https://nakedsecurity.sophos.com/home-wi-fi-security-tips-5-things-to-check

Original music by Edith Mudge

Got questions/suggestions/stories to share?

Email [email protected]

Twitter @NakedSecurity

Instagram @NakedSecurity

How do you go from pentester to creator of Microsoft’s bug bounty program? Find out from hacker and vulnerability disclosure pioneer, Katie Moussouris. Join us for a fascinating interview with Katie about her journey, the bugs in bug bounty programs, and the people who inspired her along the way.

With Kimberly Truong and special guest Katie Moussouris (@k8em0 on Twitter), Founder and CEO of Luta Security.

Original music by Edith Mudge

Got questions/suggestions/stories to share?

Email [email protected]

Twitter @NakedSecurity

Instagram @NakedSecurity

In this episode: we say thanks to companies that refuse to pay ransomware hush money, dig into the new Sophos 2021 Threat Report, and take a quick look inside a malicious Linux kernel driver. Also, a sneak preview of our upcoming podcast interview with bug bounty pioneer Katie Moussouris.

With Kimberly Truong, Doug Aamoth and Paul Ducklin

***

Cult videogame company Capcom pays a big round $0.00 to ransomware crooks https://nakedsecurity.sophos.com/cult-videogame-company-capcom-pays-a-big-round-0

The Sophos Threat Report 2021 https://nakedsecurity.sophos.com/sophos-threat-report-2021

The Cloud Snooper Malware https://nakedsecurity.sophos.com/the-cloud-snooper-malware

***

Original music by Edith Mudge

Got questions/suggestions/stories to share?

Email [email protected]

Twitter @NakedSecurity

Instagram @NakedSecurity

In this episode: When payments go astray, why "just in case" cybersecurity warnings do more harm than good, how to shop safely on Black Friday and beyond, and (oh no!) what to do when all your emails disappear.

With Kimberly Truong, Doug Aamoth and Paul Ducklin

***

To register for the Sophos Evolve event: https://sophos.com/evolve

Smishing attack tells you “mobile payment problem” – don’t fall for it https://nakedsecurity.sophos.com/smishing-attack-tells-you-mobile-payment-problem

“Instant bank fraud” hoax is back – don’t spread fake news https://nakedsecurity.sophos.com/instant-bank-fraud-hoax-is-back-dont-spread-fake-news

Black Friday – stay safe before, during and after peak retail season https://nakedsecurity.sophos.com/black-friday-stay-safe-before-during-and-after

***

Original music by Edith Mudge

Got questions/suggestions/stories to share?

Email [email protected]

Twitter @NakedSecurity

Instagram @NakedSecurity

In this episode: a zero-day bug in Chrome for Android, the imminent death of Adobe Flash, the evolution of "malware-as-a-service", and the malware risks from image search. Also (oh! no!), why you should take care before you pair.

With Kimberly Truong, Doug Aamoth and Paul Ducklin

https://nakedsecurity.sophos.com/another-chrome-zero-day-this-time-on-android

https://nakedsecurity.sophos.com/adobe-flash-its-the-end-of-the-end-of-the-end

https://nakedsecurity.sophos.com/buer-loader-malware-as-a-service-joins-emotet

Original music by Edith Mudge

Got questions/suggestions/stories to share?

Email [email protected]

Twitter @NakedSecurity

Instagram @NakedSecurity

On Wednesday, the FBI, CISA and HHS released an unprecedented warning against "an increased and imminent cybercrime threat to U.S. hospitals and healthcare providers." In this quick mini-sode, Chester Wisniewski (Principal Research Scientist at Sophos) discusses what the threat is, what this advisory means, and why this warning is a warning for everyone. 

With Kimberly Truong and special guest, Chester Wisniewski @chetwisniewski

RESOURCES:

Read the article from Naked Security https://nakedsecurity.sophos.com/2020/10/29/fbi-ransomware-warning-for-healthcare-is-a-warning-for-everyone/

Get tools and guidance to protect your organization https://www.sophos.com/en-us/content/healthcare-targeted-ransomware.aspx 

***

Original music by Edith Mudge

Got questions/suggestions/stories to share?

Email [email protected]

Twitter @NakedSecurity

Instagram @NakedSecurity