Blogroll | Communications of the ACM

From Schneier on Security

I Seem to Have a LinkedIn Account

I seem to have a LinkedIn account. This comes as a surprise, since I don't have a LinkedIn account, and have never logged in to LinkedIn. Does anyone have any contacts... Bruce Schneier
From Schneier on Security | August 11, 2017 at 03:34 PM

From Schneier on Security

Confusing Self-Driving Cars by Altering Road Signs

Researchers found that they could confuse the road sign detection algorithms of self-driving cars by adding stickers to the signs on the road. They could, for example... Bruce Schneier
From Schneier on Security | August 11, 2017 at 07:31 AM

From Schneier on Security

Turning an Amazon Echo into an Eavesdropping Device

For once, the real story isn't as bad as it seems. A researcher has figured out how to install malware onto an Echo that causes it to stream audio back to a remote... Bruce Schneier
From Schneier on Security | August 10, 2017 at 02:54 PM

From Schneier on Security

More on the Vulnerabilities Equities Process

Richard Ledgett -- a former Deputy Director of the NSA -- argues against the US government disclosing all vulnerabilities: Proponents argue that this would allow... Bruce Schneier
From Schneier on Security | August 9, 2017 at 07:40 AM

From Schneier on Security

Uber Drivers Hacking the System to Cause Surge Pricing

Interesting story about Uber drivers who have figured out how to game the company's algorithms to cause surge pricing: According to the study. drivers manipulate... Bruce Schneier
From Schneier on Security | August 8, 2017 at 10:35 AM

From Schneier on Security

Hacking Slot Machines by Reverse-Engineering the Random Number Generators

Interesting story: The venture is built on Alex's talent for reverse engineering the algorithms -- known as pseudorandom number generators, or PRNGs -- that govern... Bruce Schneier
From Schneier on Security | August 7, 2017 at 07:00 AM

From Schneier on Security

Friday Squid Blogging: Squid Fake News

I never imagined that there would be fake news about squid. (That website lets you write your own stories.) As usual, you can also use this squid post to talk about... Bruce Schneier
From Schneier on Security | August 4, 2017 at 05:24 PM

From Schneier on Security

Penetrating a Casino's Network through an Internet-Connected Fish Tank

Attackers used a vulnerability in an Internet-connected fish tank to successfully penetrate a casino's network. BoingBoing post.... Bruce Schneier
From Schneier on Security | August 4, 2017 at 07:22 AM

From Schneier on Security

Splitting the NSA and US Cyber Command

Rumor is that the Trump administration will separate the NSA and US Cyber Command. I have long thought this was a good idea. Here's a good discussion of what it... Bruce Schneier
From Schneier on Security | August 3, 2017 at 07:29 AM

From Schneier on Security

Voting Machine Security

Last week, DefCon hosted a "Voter Hacker Village" event. Every single voting machine there was easily hackable. Here are detailed details. There should be a summary... Bruce Schneier
From Schneier on Security | August 2, 2017 at 01:59 PM

From Schneier on Security

Detecting Stingrays

Researchers are developing technologies that can detect IMSI-catchers: those fake cell phone towers that can be used to surveil people in the area. This is good... Bruce Schneier
From Schneier on Security | August 2, 2017 at 08:39 AM

From Schneier on Security

NSA Collects MS Windows Error Information

Back in 2013, Der Spiegel reported that the NSA intercepts and collects Windows bug reports: One example of the sheer creativity with which the TAO spies approach... Bruce Schneier
From Schneier on Security | August 1, 2017 at 07:00 AM

From Schneier on Security

Vulnerabilities in Car Washes

Articles about serious vulnerabilities in IoT devices and embedded systems are now dime-a-dozen. This one concerns Internet-connected car washes: A group of security... Bruce Schneier
From Schneier on Security | August 1, 2017 at 06:47 AM

From Schneier on Security

Robot Safecracking

Robots can crack safes faster than humans -- and differently: So Seidle started looking for shortcuts. First he found that, like many safes, his SentrySafe had... Bruce Schneier
From Schneier on Security | July 31, 2017 at 01:19 PM

From Schneier on Security

Measuring Vulnerability Rediscovery

New paper: "Taking Stock: Estimating Vulnerability Rediscovery," by Trey Herr, Bruce Schneier, and Christopher Morris: Abstract: How often do multiple, independent... Bruce Schneier
From Schneier on Security | July 31, 2017 at 06:59 AM

From Schneier on Security

Friday Squid Blogging: Giant Squids Have Small Brains

New research: In this study, the optic lobe of a giant squid (Architeuthis dux, male, mantle length 89 cm), which was caught by local fishermen off the northeastern... Bruce Schneier
From Schneier on Security | July 28, 2017 at 05:00 PM

From Schneier on Security

Me on Restaurant Surveillance Technology

I attended the National Restaurant Association exposition in Chicago earlier this year, and looked at all the ways modern restaurant IT is spying on people. But... Bruce Schneier
From Schneier on Security | July 28, 2017 at 03:20 PM

From Schneier on Security

Zero-Day Vulnerabilities against Windows in the NSA Tools Released by the Shadow Brokers

In April, the Shadow Brokers -- presumably Russia -- released a batch of Windows exploits from what is presumably the NSA. Included in that release were eight different... Bruce Schneier
From Schneier on Security | July 28, 2017 at 07:16 AM

From Schneier on Security

Firing a Locked Smart Gun

The Armatix IP1 "smart gun" can only be fired by someone who is wearing a special watch. Unfortunately, this security measure is easily hackable.... Bruce Schneier
From Schneier on Security | July 27, 2017 at 07:14 AM

From Schneier on Security

Roombas will Spy on You

The company that sells the Roomba autonomous vacuum wants to sell the data about your home that it collects.... Bruce Schneier
From Schneier on Security | July 26, 2017 at 07:06 AM