From Schneier on Security
Artificial intelligence (AI) has been billed as the next frontier of humanity: the newly available expanse whose exploration
…
B. Schneier| February 29, 2024
CISA is now pushing phishing-resistant multifactor authentication.
Roger Grimes has an excellent post reminding everyone that “phishing-resistant” is not “phishing...Bruce Schneier From Schneier on Security | November 9, 2022 at 07:18 AM
This technique measures device response time to determine distance:
The scientists tested the exploit by modifying an off-the-shelf drone to create a flying scanning...Bruce Schneier From Schneier on Security | November 8, 2022 at 07:15 AM
I have been meaning to write about Joe Sullivan, Uber’s former Chief Security Officer. He was convicted of crimes related to covering up a cyberattack against Uber...Bruce Schneier From Schneier on Security | November 7, 2022 at 07:17 AM
In 1878, a 55-foot-long giant squid washed up on the shores of Glover’s Harbour, Newfoundland. It’s the largest giant squid ever recorded—although scientists now...Bruce Schneier From Schneier on Security | November 4, 2022 at 05:01 PM
The NSA (together with CISA) has published a long report on supply-chain security: “Securing the Software Supply Chain: Recommended Practices Guide for Suppliers...Bruce Schneier From Schneier on Security | November 4, 2022 at 10:16 AM
It’s Iran’s turn to have its digital surveillance tools leaked:
According to these internal documents, SIAM is a computer system that works behind the scenes of...Bruce Schneier From Schneier on Security | November 1, 2022 at 07:24 AM
People have suspected this for a while, but Apple has made it official. It only commits to fully patching the latest version of its OS, even though it claims to...Bruce Schneier From Schneier on Security | October 31, 2022 at 07:29 AM
China claims that it is “engaging in responsible squid fishing”:
Chen Xinjun, dean of the College of Marine Sciences at Shanghai Ocean University, made the remarks...Bruce Schneier From Schneier on Security | October 28, 2022 at 04:57 PM
There are no details yet, but it’s really important that you patch Open SSL 3.x when the new version comes out on Tuesday.
How bad is “Critical”? According tocritical...Bruce Schneier From Schneier on Security | October 28, 2022 at 09:12 AM
After suffering two large, and embarrassing, data breaches in recent weeks, the Australian government increased the fine for serious data breaches from $2.2 million...Bruce Schneier From Schneier on Security | October 26, 2022 at 07:13 AM
Many years ago, Matt Blaze and I talked about getting our hands on a casino-grade automatic shuffler and looking for vulnerabilities. We never did it—I remember...Bruce Schneier From Schneier on Security | October 24, 2022 at 07:37 AM
Interesting:
A recent study on giant squid that have washed ashore along the Sea of Japan coast has raised the possibility that the animal has a different reproductive...Bruce Schneier From Schneier on Security | October 21, 2022 at 04:12 PM
Machine learning security is extraordinarily difficult because the attacks are so varied—and it seems that each new one is weirder than the next. Here’s the latest...Bruce Schneier From Schneier on Security | October 21, 2022 at 07:53 AM
Long and interesting interview with Signal’s new president, Meredith Whittaker:
WhatsApp uses the Signal encryption protocol to provide encryption for its messages...Bruce Schneier From Schneier on Security | October 20, 2022 at 07:47 AM
Interesting interview:
Banks don’t take millions of dollars and put them in plastic bags and hang them on the wall so everybody can walk right up to them. But we...Bruce Schneier From Schneier on Security | October 19, 2022 at 07:16 AM
Everyone visiting Qatar for the World Cup needs to install spyware on their phone.
Everyone travelling to Qatar during the football World Cup will be asked to...Bruce Schneier From Schneier on Security | October 18, 2022 at 07:57 AM
Suspected members of a European car-theft ring have been arrested:
The criminals targeted vehicles with keyless entry and start systems, exploiting the technology...Bruce Schneier From Schneier on Security | October 17, 2022 at 11:07 AM
It’s aimed at children, but it’s a good primer.
As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered...Bruce Schneier From Schneier on Security | October 14, 2022 at 05:20 PM
In August, the US Treasury’s Office of Foreign Assets Control (OFAC) sanctioned the cryptocurrency platform Tornado Cash, a virtual currency “mixer” designed to...Bruce Schneier From Schneier on Security | October 14, 2022 at 10:08 AM
These two sites tell you what sorts of information you’re leaking from your browser.Bruce Schneier From Schneier on Security | September 28, 2021 at 10:51 AM