Tip:
Highlight text to annotate it
X
Hello everybody.
I'm Paul Ducklin, and this is 60 Second Security.
This month's Microsoft Patch Tuesday shows that Redmond is getting nippier.
The XP kernel hole from about two weeks ago
didn't make it, but the TIFF vulnerability
from only about five weeks back is now permanently patched.
Google found fake SSL certificates for its own domains, minted in France.
Turned out that the French Treasury created them
for content filtering purposes, but signed them so that the fakes
would be trusted by every computer in the world,
not just the Treasury's.
Definitely a security step too far.
Apparently, US nuclear missile launch codes were eight zeros
for many years.
Mind you, that was in the 60s and 70s, when 8-character passwords
were considered long enough.
And the latest Sophos Security Threat Report is out.
It paints a fascinating picture of the evolving threat from cybercrime
and it doesn't try to sell you anything except the idea
that forewarned is forearmed.
[FX: BELL RINGS]
It's at sophos.com/threatreport.
Thanks for listening, folks, and until next time, stay secure.