Blogroll | Communications of the ACM

From Schneier on Security

Using Disinformation to Cause a Blackout

Interesting paper: "How weaponizing disinformation can bring down a city's power grid": Abstract: Social media has made it possible to manipulate the masses via... Bruce Schneier
From Schneier on Security | August 18, 2020 at 11:03 AM

From Schneier on Security

Vaccine for Emotet Malware

Interesting story of a vaccine for the Emotet malware: Through trial and error and thanks to subsequent Emotet updates that refined how the new persistence mechanism... Bruce Schneier
From Schneier on Security | August 18, 2020 at 07:03 AM

From Schneier on Security

Robocall Results from a Telephony Honeypot

A group of researchers set up a telephony honeypot and tracked robocall behavior: NCSU researchers said they ran 66,606 telephone lines between March 2019 and January... Bruce Schneier
From Schneier on Security | August 17, 2020 at 07:22 AM

From Schneier on Security

Friday Squid Blogging: Editing the Squid Genome

Scientists have edited the genome of the Doryteuthis pealeii squid with CRISPR. A first. As usual, you can also use this squid post to talk about the security stories... Bruce Schneier
From Schneier on Security | August 14, 2020 at 05:05 PM

From Schneier on Security

Upcoming Speaking Engagements

This is a current list of where and when I am scheduled to speak: I'm giving a keynote address at the Cybersecurity and Data Privacy Law virtual conference on September... Bruce Schneier
From Schneier on Security | August 14, 2020 at 01:15 PM

From Schneier on Security

Drovorub Malware

The NSA and FBI have jointly disclosed Drovorub, a Russian malware suite that targets Linux. Detailed advisory. Fact sheet. News articles. Reddit thread.... Bruce Schneier
From Schneier on Security | August 14, 2020 at 09:59 AM

From Schneier on Security

UAE Hack and Leak Operations

Interesting paper on recent hack-and-leak operations attributed to the UAE: Abstract: Four hack-and-leak operations in U.S. politics between 2016 and 2019, publicly... Bruce Schneier
From Schneier on Security | August 13, 2020 at 10:28 AM

From Schneier on Security

Cryptanalysis of an Old Zip Encryption Algorithm

Mike Stay broke an old zipfile encryption algorithm to recover $300,000 in bitcoin. DefCon talk here.... Bruce Schneier
From Schneier on Security | August 12, 2020 at 07:08 AM

From Schneier on Security

Collecting and Selling Mobile Phone Location Data

The Wall Street Journal has an article about a company called Anomaly Six LLC that has an SDK that's used by "more than 500 mobile applications." Through that SDK... Bruce Schneier
From Schneier on Security | August 11, 2020 at 07:00 AM

From Schneier on Security

Smart Lock Vulnerability

Yet another Internet-connected door lock is insecure: Sold by retailers including Amazon, Walmart, and Home Depot, U-Tec's $139.99 UltraLoq is marketed as a "secure... Bruce Schneier
From Schneier on Security | August 10, 2020 at 07:23 AM

From Schneier on Security

Friday Squid Blogging: New SQUID

There's a new SQUID: A new device that relies on flowing clouds of ultracold atoms promises potential tests of the intersection between the weirdness of the quantum... Bruce Schneier
From Schneier on Security | August 7, 2020 at 05:08 PM

From Schneier on Security

The NSA on the Risks of Exposing Location Data

The NSA has issued an advisory on the risks of location data. Mitigations reduce, but do not eliminate, location tracking risks in mobile devices. Most users rely... Bruce Schneier
From Schneier on Security | August 6, 2020 at 01:15 PM

From Schneier on Security

Cybercrime in the Age of COVID-19

The Cambridge Cybercrime Centre has a series of papers on cybercrime during the coronavirus pandemic.... Bruce Schneier
From Schneier on Security | August 4, 2020 at 07:02 AM

From Schneier on Security

BlackBerry Phone Cracked

Australia is reporting that a BlackBerry device has been cracked after five years: An encrypted BlackBerry device that was cracked five years after it was first... Bruce Schneier
From Schneier on Security | August 3, 2020 at 12:54 PM

From Schneier on Security

Twitter Hacker Arrested

A 17-year-old Florida boy was arrested and charged with last week's Twitter hack. News articles. Boing Boing post. Florida state attorney press release. This is... Bruce Schneier
From Schneier on Security | July 31, 2020 at 05:03 PM

From Schneier on Security

Friday Squid Blogging: Squid Proteins for a Better Face Mask

Researchers are synthesizing squid proteins to create a face mask that better survives cleaning. (And you thought there was no connection between squid and COVID... Bruce Schneier
From Schneier on Security | July 31, 2020 at 05:00 PM

From Schneier on Security

Data and Goliath Book Placement

Notice the copy of Data and Goliath just behind the head of Maine Senator Angus King. This demonstrates the importance of a vibrant color and a large font.... Bruce Schneier
From Schneier on Security | July 31, 2020 at 03:04 PM

From Schneier on Security

Fake Stories in Real News Sites

Fireeye is reporting that a hacking group called Ghostwriter broke into the content management systems of Eastern European news sites to plant fake stories. From... Bruce Schneier
From Schneier on Security | July 30, 2020 at 03:56 PM

From Schneier on Security

Survey of Supply Chain Attacks

The Atlantic Council has a released a report that looks at the history of computer supply chain attacks. Key trends from their summary: Deep Impact from State Actors... Bruce Schneier
From Schneier on Security | July 28, 2020 at 07:40 AM

From Schneier on Security

Images in Eye Reflections

In Japan, a cyberstalker located his victim by enhancing the reflections in her eye, and using that information to establish a location. Reminds me of the image... Bruce Schneier
From Schneier on Security | July 27, 2020 at 10:46 AM