Blogroll | Communications of the ACM

From Schneier on Security

Stalkerware Vendor Hacked

The stalkerware company LetMeSpy has been hacked: TechCrunch reviewed the leaked data, which included years of victims’ call logs and text messages dating back... Bruce Schneier
From Schneier on Security | June 28, 2023 at 07:17 AM

From Schneier on Security

Typing Incriminating Evidence in the Memo Field

Don’t do it: Recently, the manager of the Harvard Med School morgue was accused of stealing and selling human body parts. Cedric Lodge and his wife Denise were... Bruce Schneier
From Schneier on Security | June 27, 2023 at 04:36 PM

From Schneier on Security

Excel Data Forensics

In this detailed article about academic plagiarism are some interesting details about how to do data forensics on Excel files. It really needs the graphics to understand... Bruce Schneier
From Schneier on Security | June 26, 2023 at 11:36 AM

From Schneier on Security

Friday Squid Blogging: Giggling Squid

Giggling Squid is a Thai chain in the UK. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Read... Bruce Schneier
From Schneier on Security | June 23, 2023 at 05:06 PM

From Schneier on Security

UPS Data Harvested for SMS Phishing Attacks

I get UPS phishing spam on my phone all the time. I never click on it, because it’s so obviously spam. Turns out that hackers have been harvesting actual UPS delivery... Bruce Schneier
From Schneier on Security | June 23, 2023 at 10:55 AM

From Schneier on Security

AI as Sensemaking for Public Comments

It’s become fashionable to think of artificial intelligence as an inherently dehumanizing technology, a ruthless force of automation that has unleashed legionsprognostications... Bruce Schneier
From Schneier on Security | June 22, 2023 at 11:43 AM

From Schneier on Security

Ethical Problems in Computer Security

Tadayoshi Kohno, Yasemin Acar, and Wulf Loh wrote excellent paper on ethical thinking within the computer security community: “Ethical Frameworks and Computer Security... Bruce Schneier
From Schneier on Security | June 21, 2023 at 01:54 PM

From Schneier on Security

Power LED Side-Channel Attack

This is a clever new <a href=”https://www.nassiben.com/video-based-crypta>side-channel attack: The first attack uses an Internet-connected surveillance camera to... Bruce Schneier
From Schneier on Security | June 19, 2023 at 06:52 AM

From Schneier on Security

Friday Squid Blogging: Squid Can Edit Their RNA

This is just crazy: Scientists don’t yet know for sure why octopuses, and other shell-less cephalopods including squid and cuttlefish, are such prolific editors... Bruce Schneier
From Schneier on Security | June 16, 2023 at 05:13 PM

From Schneier on Security

Security and Human Behavior (SHB) 2023

I’m just back from the sixteenth Workshop on Security and Human Behavior, hosted by Alessandro Acquisti at Carnegie Mellon University in Pittsburgh. SHB is a small... Bruce Schneier
From Schneier on Security | June 16, 2023 at 03:07 PM

From Schneier on Security

On the Need for an AI Public Option

Artificial intelligence will bring great benefits to all of humanity. But do we really want to entrust this revolutionary technology solely to a small group ofretired... Bruce Schneier
From Schneier on Security | June 14, 2023 at 07:02 AM

From Schneier on Security

Identifying the Idaho Killer

The New York Times has a long article on the investigative techniques used to identify the person who stabbed and killed four University of Idaho students. Pay... Bruce Schneier
From Schneier on Security | June 13, 2023 at 07:03 AM

From Schneier on Security

AI-Generated Steganography

New research suggests that AIs can produce perfectly secure steganographic images: Abstract: Steganography is the practice of encoding secret information into innocuous... Bruce Schneier
From Schneier on Security | June 12, 2023 at 07:18 AM

From Schneier on Security

Friday Squid Blogging: Light-Emitting Squid

It’s a Taningia danae: Their arms are lined with two rows of sharp retractable hooks. And, like most deep-sea squid, they are adorned with light organs called photophores... Bruce Schneier
From Schneier on Security | June 9, 2023 at 05:05 PM

From Schneier on Security

Operation Triangulation: Zero-Click iPhone Malware

Kaspersky is reporting a zero-click iOS exploit in the wild: Mobile device backups contain a partial copy of the filesystem, including some of the user data and... Bruce Schneier
From Schneier on Security | June 9, 2023 at 07:12 AM

From Schneier on Security

Paragon Solutions Spyware: Graphite

Paragon Solutions is yet another Israeli spyware company. Their product is called “Graphite,” and is a lot like NSO Group’s Pegasus. And Paragon is working with... Bruce Schneier
From Schneier on Security | June 8, 2023 at 07:30 AM

From Schneier on Security

How Attorneys Are Harming Cybersecurity Incident Response

New paper: “Lessons Lost: Incident Response in the Age of Cyber Insurance and Breach Attorneys“: Abstract: Incident Response (IR) allows victim firms to detect,... Bruce Schneier
From Schneier on Security | June 7, 2023 at 07:06 AM

From Schneier on Security

Snowden Ten Years Later

In 2013 and 2014, I wrote extensively about new revelations regarding NSA surveillance based on the documents provided by Edward Snowden. But I had a more personal... Bruce Schneier
From Schneier on Security | June 6, 2023 at 07:17 AM

From Schneier on Security

The Software-Defined Car

Developers are starting to talk about the software-defined car. For decades, features have accumulated like cruft in new vehicles: a box here to control the antilock... Bruce Schneier
From Schneier on Security | June 5, 2023 at 07:14 AM

From Schneier on Security

Friday Squid Blogging: Squid Chromolithographs

Beautiful illustrations. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Read my blog postinghere... Bruce Schneier
From Schneier on Security | June 2, 2023 at 05:13 PM