From Schneier on Security
Artificial intelligence (AI) has been billed as the next frontier of humanity: the newly available expanse whose exploration
…
B. Schneier| February 29, 2024
Epic matchup.
As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered.
Read my blog posting guidelines ...Bruce Schneier From Schneier on Security | March 31, 2023 at 05:08 PM
Now this is interesting:
Thousands of pages of secret documents reveal how Vulkan’s engineers have worked for Russian military and intelligence agencies to support...Bruce Schneier From Schneier on Security | March 30, 2023 at 06:00 PM
Jenny Blessing and Ross Anderson have evaluated the security of systems designed to allow the various Internet messaging platforms to interoperate with each other...Bruce Schneier From Schneier on Security | March 29, 2023 at 07:03 AM
Both Google’s Pixel’s Markup Tool and the Windows Snipping Tool have vulnerabilities that allow people to partially recover content that was edited out of images...Bruce Schneier From Schneier on Security | March 28, 2023 at 07:13 AM
An impressive array of hacks were demonstrated at the first day of the Pwn2Own conference in Vancouver:
On the first day of Pwn2Own Vancouver 2023, security researchers...Bruce Schneier From Schneier on Security | March 27, 2023 at 07:03 AM
This is fascinating:
“When a squid ends up chipping what’s called its ring tooth, which is the nail underneath its tentacle, it needs to regrow that tooth very...Bruce Schneier From Schneier on Security | March 24, 2023 at 05:06 PM
In case you don’t have enough to worry about, people are hiding explosives—actual ones—in USB sticks:
In the port city of Guayaquil, journalist Lenin Artieda of...Bruce Schneier From Schneier on Security | March 24, 2023 at 07:04 AM
A vulnerability in a popular data transfer tool has resulted in a mass ransomware attack:
TechCrunch has learned of dozens of organizations that used the affected...Bruce Schneier From Schneier on Security | March 23, 2023 at 07:05 AM
OpenAI has disabled ChatGPT’s privacy history, almost certainly because they had a security flaw where users were seeing each others’ histories.Bruce Schneier From Schneier on Security | March 22, 2023 at 07:14 AM
The New York Times is reporting that a US citizen’s phone was hacked by the Predator spyware.
A U.S. and Greek national who worked on Meta’s security and trust...Bruce Schneier From Schneier on Security | March 21, 2023 at 08:34 AM
At least, it seems to be a new species.
As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered.
Read my...Bruce Schneier From Schneier on Security | March 17, 2023 at 05:19 PM
From Brian Krebs:
A Croatian national has been arrested for allegedly operating NetWire, a Remote Access Trojan (RAT) marketed on cybercrime forums since 2012 as...Bruce Schneier From Schneier on Security | March 14, 2023 at 07:23 AM
Chinese squid fishing boats are overwhelming Ecuador and Peru.
As usual, you can also use this squid post to talk about the security stories in the news that Ihere...Bruce Schneier From Schneier on Security | March 10, 2023 at 05:05 PM
An elephant uses its right-of-way privileges to stop sugar-cane trucks and grab food.Bruce Schneier From Schneier on Security | March 10, 2023 at 03:05 PM
Here’s a piece of Chinese malware that infects SonicWall security appliances and survives firmware updates.
On Thursday, security firm Mandiant published a report...Bruce Schneier From Schneier on Security | March 9, 2023 at 08:33 PM
Researchers have discovered malware that “can hijack a computer’s boot process even when Secure Boot and other advanced protections are enabled and running on fully...Bruce Schneier From Schneier on Security | March 8, 2023 at 06:11 AM
This is a good survey on prompt injection attacks on large language models (like ChatGPT).
Abstract: We are currently witnessing dramatic advances in the capabilities...Bruce Schneier From Schneier on Security | March 7, 2023 at 07:13 AM
Last week the Biden Administration released a new National Cybersecurity Strategy (summary >here. There is lots of good commentary out there. It’s basically a smart...Bruce Schneier From Schneier on Security | March 6, 2023 at 07:06 AM
Nicholas Weaver wrote an excellent paper on the problems of cryptocurrencies and the need to regulate the space—with all existing regulations. His conclusion:
Regulators...Bruce Schneier From Schneier on Security | March 3, 2023 at 10:58 AM
Troy Hunt is collecting examples of dumb password rules.
There are some pretty bad disasters out there.
My worst experiences are with sites that have artificial...Bruce Schneier From Schneier on Security | March 2, 2023 at 07:05 AM