Blogroll | Communications of the ACM

From Schneier on Security

Facebook Fingerprinting Photos to Prevent Revenge Porn

This is a pilot project in Australia: Individuals who have shared intimate, nude or sexual images with partners and are worried that the partner (or ex-partner)... Bruce Schneier
From Schneier on Security | November 9, 2017 at 07:23 AM

From Schneier on Security

Me on the Equifax Breach

Last week, I testified before the House Energy and Commerce committee on the Equifax hack. You can watch the video here. And you can read my written testimony below... Bruce Schneier
From Schneier on Security | November 8, 2017 at 07:33 AM

From Schneier on Security

Cybercriminals Infiltrating E-Mail Networks to Divert Large Customer Payments

There's a new criminal tactic involving hacking an e-mail account of a company that handles high-value transactions and diverting payments. Here it is in real estate... Bruce Schneier
From Schneier on Security | November 7, 2017 at 07:37 AM

From Schneier on Security

Daphne Caruana Galizia's Murder and the Security of WhatsApp

Daphne Caruana Galizia was a Maltese journalist whose anti-corruption investigations exposed powerful people. She was murdered in October by a car bomb. Galizia... Bruce Schneier
From Schneier on Security | November 6, 2017 at 07:12 AM

From Schneier on Security

Friday Squid Blogging: Squid Product Recall

Lidl is recalling two of its packaged squid products because of the presence of struvite salt crystals. The danger is unclear. The article says that struvite crystals... Bruce Schneier
From Schneier on Security | November 3, 2017 at 05:12 PM

From Schneier on Security

Fraud Detection in Pokémon Go

I play Pokémon Go. (There, I've admitted it.) One of the interesting aspects of the game I've been watching is how the game's publisher, Niantec, deals with cheaters... Bruce Schneier
From Schneier on Security | November 3, 2017 at 07:35 AM

From Schneier on Security

Heart Size: Yet Another Biometric

Turns out that heart size doesn't change throughout your adult life, and you can use low-level Doppler radar to scan the size -- even at a distance -- as a biometric... Bruce Schneier
From Schneier on Security | November 2, 2017 at 06:01 AM

From Schneier on Security

Attack on Old ANSI Random Number Generator

Almost 20 years ago, I wrote a paper that pointed to a potential flaw in the ANSI X9.17 RNG standard. Now, new research has found that the flaw exists in some implementations... Bruce Schneier
From Schneier on Security | October 31, 2017 at 11:29 AM

From Schneier on Security

Google Login Security for High-Risk Users

Google has a new login service for high-risk users. it's good, but unforgiving. Logging in from a desktop will require a special USB key, while accessing your data... Bruce Schneier
From Schneier on Security | October 30, 2017 at 01:23 PM

From Schneier on Security

Friday Squid Blogging: Steel Mesh Giant Squid Used as Artificial Reef

Researchers in the British Virgin Islands have sunk a giant squid made out of steel mesh to serve as an artificial reef. As usual, you can also use this squid post... Bruce Schneier
From Schneier on Security | October 27, 2017 at 05:28 PM

From Schneier on Security

FBI Increases Its Anti-Encryption Rhetoric

Earlier this month, Deputy Attorney General Rod Rosenstein gave a speech warning that a world with encryption is a world without law -- or something like that.... Bruce Schneier
From Schneier on Security | October 27, 2017 at 03:45 PM

From Schneier on Security

The Science of Interrogation

Fascinating article about two psychologists who are studying interrogation techniques. Now, two British researchers are quietly revolutionising the study and practice... Bruce Schneier
From Schneier on Security | October 26, 2017 at 06:09 AM

From Schneier on Security

CSE Releases Malware Analysis Tool

The Communications Security Establishment of Canada -- basically, Canada's version of the NSA -- has released a suite of malware analysis tools: Assemblyline is... Bruce Schneier
From Schneier on Security | October 25, 2017 at 07:07 AM

From Schneier on Security

Reaper Botnet

It's based on the Mirai code, but much more virulent: While Mirai caused widespread outages, it impacted IP cameras and internet routers by simply exploiting their... Bruce Schneier
From Schneier on Security | October 24, 2017 at 07:01 AM

From Schneier on Security

Hacking Back

Hacking back is a terrible idea that just will not die. Josephine Wolff takes apart the new hacking back bill that was introduced in the House recently.... Bruce Schneier
From Schneier on Security | October 23, 2017 at 07:16 AM

From Schneier on Security

Friday Squid Blogging: "How the Squid Lost Its Shell"

Interesting essay by Danna Staaf, the author of Squid Empire. (I mentioned the book two weeks ago.) As usual, you can also use this squid post to talk about the... Bruce Schneier
From Schneier on Security | October 20, 2017 at 05:24 PM

From Schneier on Security

Wondermark on Security

Another comic.... Bruce Schneier
From Schneier on Security | October 20, 2017 at 03:46 PM

From Schneier on Security

Denuvo DRM Cracked within a Day of Release

Denuvo is probably the best digital-rights management system, used to protect computer games. It's regularly cracked within a day. If Denuvo can no longer provide... Bruce Schneier
From Schneier on Security | October 20, 2017 at 10:17 AM

From Schneier on Security

Security Flaws in Children's Smart Watches

The Norwegian Security Council has published a report detailing a series of security and privacy flaws in smart watches marketed to children. Press release. News... Bruce Schneier
From Schneier on Security | October 19, 2017 at 10:18 AM

From Schneier on Security

IoT Cybersecurity: What's Plan B?

In August, four US Senators introduced a bill designed to improve Internet of Things (IoT) security. The IoT Cybersecurity Improvement Act of 2017 is a modest piece... Bruce Schneier
From Schneier on Security | October 18, 2017 at 10:58 AM