What online sex toys can teach you about secure coding

Like other IoT security flubs, this one is full of elementary errors that you're just not supposed to make any more.

Monday review – the hot 22 stories of the week

From California saying no to license plate covers and Discord shutting down AI celebrity porn channel to Bitcoin payments unmasking dark web users, and more!

Active Adobe Flash Zero-Day Exploit Active In-The-Wild

Adobe warns of Flash zero-day, patch to come next week

Adobe has announced that a zero-day Flash exploit has turned up in the wild - a patch should be ready early next week.

California says no, you can’t cover your license plate

The now-rejected SB-712 bill was meant to protect location data privacy from the spying electronic eyes of automated license plate readers

Deepfakes AI porn GIFs purged from Gfycat platform

Redditors are brainstorming where else they can upload nonconsensual, AI-made celebrity porn.

Over 700,000 bad apps removed from Google Play store in 2017

Google says that last year alone it removed 700,000 'bad apps' and stopped 100,000 bad app developers from sharing their apps on the Google Play store.

Hospital MRI and CT scanners at risk of cyberattack

A recent study has concluded that Medical Imaging Devices such as CT and MRI scanners have a number of vulnerabilities that make them attractive targets for cyberattacks.

Cryptomining – is it the new ransomware? [REPORT]

SophosLabs just published a technical report about cryptomining - on your Android device, via apps from Google Play, no less.

Facebook sued for not stopping killer who gave 4 minute notice

The killer called it an "Easter day slaughter," fatally shot a 74-year-old father of 10, then posted a video of the shooting to Facebook.

Facebook bans cryptocurrency ads

"Click here to learn about our no-risk cryptocurrency that enables instant payments to anyone in the world"? How about no?

What are “WannaMine” attacks, and how do I avoid them?

Combine the ETERNALBLUE exploit from WannaCry with a payload that mines cryptocoins, and you get "WannaMine" - here's what you need to know.

Bitcoin payments used to unmask dark web users

Researchers have discovered a way of identifying those who bought or sold goods on the dark web, by forensically connecting them to Bitcoin transactions.

Ban Facebook Messenger for Kids, urge children’s health advocates

A coalition of 97 advocates cites Facebook's numerous missteps, including research into targeting kids as young as 14 who feel "worthless."

My cryptocoin startup vanished and all I got was this lousy penis

Cryptocoin startup Prodeum exit-scammed its investors out of millions of dollars, leaving just one thing behind on its website.

Ransomware makes it into the Oxford English Dictionary

The 2018 "new words list" is out, when Oxford lexicographers tell you what's gone mainstream - EULAs, for instance; selfies; and ransomware.

Are organizations prepared for the ransomware threat?

Sophos commissioned a survey to find out the state of endpoint security and ransomware defense readiness in organizations spanning industries across five continents.

Secret Service warning: Jackpotting ATM attacks reach the US

The specific jackpotting attack that the Secret Service is warning financial institutions of uses the Ploutus.D malware, which has been actively in use for ATM jackpotting since 2013.

Deepfakes AI celebrity porn channel shut down by Discord

Reddit, birthplace of AI-generated deepfakes, hasn't made any such move to do the same, though it too has a policy against involuntary porn.

Bitcoin exchange robbed by real-life bank robbers with real-life guns

How very analog!

Secret military bases revealed by fitness app Strava

Want to work out where the US military personnel are stationed in foreign campaigns? ...track them via their Fitbits or smartphones.