Blogroll | Communications of the ACM

From Schneier on Security

Poor Security at the Uk National Health Service

The Guardian is reporting that "every NHS trust assessed for cyber security vulnerabilities has failed to meet the standard required." This is the same NHS that... Bruce Schneier
From Schneier on Security | February 6, 2018 at 07:33 AM

From Schneier on Security

Sensitive Super-Bowl Security Documents Left on an Airplane

A CNN reporter found... Bruce Schneier
From Schneier on Security | February 5, 2018 at 04:46 PM

From Schneier on Security

Friday Squid Blogging: Kraken Pie

Pretty, but contains no actual squid ingredients. As usual, you can also use this squid post to talk about the security stories in the news that I haven't covered... Bruce Schneier
From Schneier on Security | February 2, 2018 at 05:36 PM

From Schneier on Security

Signed Malware

Stuxnet famously used legitimate digital certificates to sign its malware. A research paper from last year found that the practice is much more common than previously... Bruce Schneier
From Schneier on Security | February 2, 2018 at 07:38 AM

From Schneier on Security

Jackpotting Attacks Against US ATMs

Brian Krebs is reporting sophisticated jackpotting attacks against US ATMs. The attacker gains physical access to the ATM, plants malware using specialized electronics... Bruce Schneier
From Schneier on Security | February 1, 2018 at 07:23 AM

From Schneier on Security

Israeli Scientists Accidentally Reveal Classified Information

According to this story (non-paywall English version here), Israeli scientists released some information to the public they shouldn't have. Defense establishment... Bruce Schneier
From Schneier on Security | January 31, 2018 at 03:37 PM

From Schneier on Security

After Section 702 Reauthorization

For over a decade, civil libertarians have been fighting government mass surveillance of innocent Americans over the Internet. We've just lost an important battle... Bruce Schneier
From Schneier on Security | January 31, 2018 at 07:06 AM

From Schneier on Security

Subway Elevators and Movie-Plot Threats

Local residents are opposing adding an elevator to a subway station because terrorists might use it to detonate a bomb. No, really. There's no actual threat analysis... Bruce Schneier
From Schneier on Security | January 30, 2018 at 07:26 AM

From Schneier on Security

Locating Secret Military Bases via Fitness Data

In November, the company Strava released an anonymous data-visualization map showing all the fitness activity by everyone using the app. Over this weekend, someone... Bruce Schneier
From Schneier on Security | January 29, 2018 at 03:17 PM

From Schneier on Security

Estimating the Cost of Internet Insecurity

It's really hard to estimate the cost of an insecure Internet. Studies are all over the map. A methodical study by RAND is the best work I've seen at trying to... Bruce Schneier
From Schneier on Security | January 29, 2018 at 07:18 AM

From Schneier on Security

Friday Squid Blogging: Squid that Mate, Die, and Then Sink

The mating and death characteristics of some squid are fascinating. Research paper. As usual, you can also use this squid post to talk about the security stories... Bruce Schneier
From Schneier on Security | January 26, 2018 at 05:23 PM

From Schneier on Security

The Effects of the Spectre and Meltdown Vulnerabilities

On January 3, the world learned about a series of major security vulnerabilities in modern microprocessors. Called Spectre and Meltdown, these vulnerabilities were... Bruce Schneier
From Schneier on Security | January 26, 2018 at 07:12 AM

From Schneier on Security

WhatsApp Vulnerability

A new vulnerability in WhatsApp has been discovered: ...the researchers unearthed far more significant gaps in WhatsApp's security: They say that anyone who controls... Bruce Schneier
From Schneier on Security | January 25, 2018 at 07:47 AM

From Schneier on Security

Detecting Drone Surveillance with Traffic Analysis

This is clever: Researchers at Ben Gurion University in Beer Sheva, Israel have built a proof-of-concept system for counter-surveillance against spy drones that... Bruce Schneier
From Schneier on Security | January 24, 2018 at 06:28 AM

From Schneier on Security

New Malware Hijacks Cryptocurrency Mining

This is a clever attack. After gaining control of the coin-mining software, the malware replaces the wallet address the computer owner uses to collect newly minted... Bruce Schneier
From Schneier on Security | January 23, 2018 at 07:41 AM

From Schneier on Security

Skygofree: New Government Malware for Android

Kaspersky Labs is reporting on a new piece of sophisticated malware: We observed many web landing pages that mimic the sites of mobile operators and which are used... Bruce Schneier
From Schneier on Security | January 22, 2018 at 01:06 PM

From Schneier on Security

Dark Caracal: Global Espionage Malware from Lebanon

The EFF and Lookout are reporting on a new piece of spyware operating out of Lebanon. It primarily targets mobile devices compromised by fake secure messaging clients... Bruce Schneier
From Schneier on Security | January 22, 2018 at 07:38 AM

From Schneier on Security

Friday Squid Blogging: Te Papa Colossal Squid Exhibition Is Being Renovated

The New Zealand home of the colossal squid exhibit is behind renovated. As usual, you can also use this squid post to talk about the security stories in the news... Bruce Schneier
From Schneier on Security | January 19, 2018 at 05:48 PM

From Schneier on Security

Security Breaches Don't Affect Stock Price

Interesting research: "Long-term market implications of data breaches, not," by Russell Lange and Eric W. Burger. Abstract: This report assesses the impact disclosure... Bruce Schneier
From Schneier on Security | January 19, 2018 at 07:06 AM

From Schneier on Security

Student Cracks Inca Knot Code

Interesting.... Bruce Schneier
From Schneier on Security | January 18, 2018 at 08:12 AM