From Schneier on Security
Artificial intelligence (AI) has been billed as the next frontier of humanity: the newly available expanse whose exploration
…
B. Schneier| February 29, 2024
An enterprising individual made fake parking tickets with a QR code for easy payment.Bruce Schneier From Schneier on Security | December 28, 2022 at 01:14 PM
This is one way of ensuring that IT keeps up with patches:
Albanian prosecutors on Wednesday asked for the house arrest of five public employees they blame for...Bruce Schneier From Schneier on Security | December 27, 2022 at 07:01 AM
Last August, LastPass reported a security breach, saying that no customer information—or passwords—were compromised. Turns out the full story is worse:
While no...Bruce Schneier From Schneier on Security | December 26, 2022 at 07:06 AM
Here’s a video—I don’t know where it’s from—of an injured juvenile male giant squid grabbing on to a paddleboard.
As usual, you can also use this squid post tohere...Bruce Schneier From Schneier on Security | December 23, 2022 at 05:05 PM
Two men have been convicted of hacking the taxi dispatch system at the JFK airport. This enabled them to reorder the taxis on the list; they charged taxi drivers...Bruce Schneier From Schneier on Security | December 23, 2022 at 07:03 AM
A critical code-execution vulnerability in Microsoft Windows was patched in September. It seems that researchers just realized how serious it was (and is):
Like...Bruce Schneier From Schneier on Security | December 22, 2022 at 07:01 AM
Mandiant is reporting on a trojaned Windows installer that targets Ukrainian users. The installer was left on various torrent sites, presumably ensnaring people...Bruce Schneier From Schneier on Security | December 20, 2022 at 07:30 AM
The Ukrainian army has released an instructional video explaining how Russian soldiers should surrender to a drone:
“Seeing the drone in the field of view, make...Bruce Schneier From Schneier on Security | December 19, 2022 at 07:09 AM
Squid is performing a concert in London in February.
If you don’t know what their music is like, try this or this or this.
As usual, you can also use this squid...Bruce Schneier From Schneier on Security | December 16, 2022 at 05:13 PM
The most recent iPhone update—to version 16.1.2—patches a zero-day vulnerability that “may have been actively exploited against versions of iOS released beforeNews...Bruce Schneier From Schneier on Security | December 16, 2022 at 07:04 AM
Security researchers found a software bug in the KmsdBot cryptomining botnet:
With no error-checking built in, sending KmsdBot a malformed command—like its controllers...Bruce Schneier From Schneier on Security | December 15, 2022 at 07:10 AM
Last week, I hosted a two-day workshop on reimagining democracy.
The idea was to bring together people from a variety of disciplines who are all thinking about...Bruce Schneier From Schneier on Security | December 14, 2022 at 09:30 PM
Interesting discussion of vulnerabilities and exploits against Boston’s CharlieCard.Bruce Schneier From Schneier on Security | December 14, 2022 at 07:01 AM
Seems like absolutely everyone everywhere is playing with Chat GPT.
So I did, too….
Write an essay in the style of Bruce Schneier on how ChatGPT will affect cybersecurity...Bruce Schneier From Schneier on Security | December 13, 2022 at 07:17 AM
After way too many years, Apple is finally encrypting iCloud backups:
Based on a screenshot from Apple, these categories are covered when you flip on Advanced Data...Bruce Schneier From Schneier on Security | December 12, 2022 at 07:00 AM
Today I have some squid geopolitical news.
As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered.
Read...Bruce Schneier From Schneier on Security | December 9, 2022 at 05:06 PM
This article talks about public land in the US that is completely surrounded by private land, which in some cases makes it inaccessible to the public. But there...Bruce Schneier From Schneier on Security | December 9, 2022 at 03:02 PM
Eufy cameras claim to be local only, but upload data to the cloud. The company is basically lying to reporters, despite being shown evidence to the contrary. The...Bruce Schneier From Schneier on Security | December 9, 2022 at 07:11 AM
A bunch of Android OEM signing keys have been leaked or stolen, and they are actively being used to sign malware.
Łukasz Siewierski, a member of Google’s Android...Bruce Schneier From Schneier on Security | December 8, 2022 at 07:08 AM
This is a really interesting paper that discusses what the authors call the Decoupling Principle:
The idea is simple, yet previously not clearly articulated: to...Bruce Schneier From Schneier on Security | December 7, 2022 at 07:04 AM