A week in security (June 17 – 23)

Last week on the Malwarebytes Labs blog, we took a look at the growing pains of smart cities, took a deep dive into AI, jammed along to Radiohead, and looked at the lessons learned from Chernobyl in relation to critical infrastructure. We also explored a new Steam phish attack, and pulled apart a...

Radiohead’s ransom response shows novel approach for ransomware victims

Last week, British rock band Radiohead thwarted an attempted digital ransom, in which unnamed hackers stole roughly 18 hours of unreleased music dating back to the band’s recording of its studio album OK, Computer, revealing some less-than-ok computer security sorry. Instead of paying a ransom to...

Unheard recordings of Radiohead from Ok Computer hacked; refuses to pay ransom

By Waqas Popular British rock band Radiohead is in the news for all the wrong reasons. According to an announcement made by Radiohead this Tuesday, the band had to release 18 hours of unheard material from the studio sessions recorded in 1997 for their landmark album "Ok Computer." Guitarist Jonn...

Radiohead Gets ‘Hacked,’ a T-Mobile/Sprint Hiccup, and More News

Catch up on the most important news from today in two minutes or less...

Radiohead Dropped 18 Hours of Unreleased Music to Screw Pirates

You can listen to the OK Computer–era tracks right here...

CVE-2014-7756

The Radiohead fan aka nl.jborsje.android.bandnews.radiohead application 4.6.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

CVE-2014-7756

The Radiohead fan (nl.jborsje.android.bandnews.radiohead) Android app version 4.6.2 fails to verify X.509 certificates over TLS, allowing MITM attackers to spoof servers and obtain sensitive data via crafted certificates. The root cause is missing certificate validation in the app’s SSL/TLS handl...