Blogroll | Communications of the ACM

From Schneier on Security

Friday Squid Blogging: SQUID Is a New Computational Tool for Analyzing Genomic AI

Yet another SQUID acronym: SQUID, short for Surrogate Quantitative Interpretability for Deepnets, is a computational tool created by Cold Spring Harbor Laboratory... Bruce Schneier
From Schneier on Security | August 9, 2024 at 03:04 PM

From Schneier on Security

People-Search Site Removal Services Largely Ineffective

Consumer Reports has a new study of people-search site removal services, concluding that they don’t really work: As a whole, people-search removal services are... Bruce Schneier
From Schneier on Security | August 9, 2024 at 09:24 AM

From Schneier on Security

A Better Investigatory Board for Cyber Incidents

When an airplane crashes, impartial investigatory bodies leap into action, empowered by law to unearth what happened and why. But there is no such empowered and... Bruce Schneier
From Schneier on Security | August 6, 2024 at 07:01 AM

From Schneier on Security

New Patent Application for Car-to-Car Surveillance

Ford has a new patent application for a system where cars monitor each other’s speeds, and then report then to some central authority. Slashdot thread. Bruce Schneier
From Schneier on Security | August 5, 2024 at 07:07 AM

From Schneier on Security

Friday Squid Blogging: Treating Squid Parasites

A newly discovered parasite that attacks squid eggs has been treated. Blog moderation policy. Bruce Schneier
From Schneier on Security | August 2, 2024 at 05:04 PM

From Schneier on Security

Leaked GitHub Python Token

Here’s a disaster that didn’t happen: Cybersecurity researchers from JFrog recently discovered a GitHub Personal Access Token in a public Docker container hosted... Bruce Schneier
From Schneier on Security | August 2, 2024 at 07:01 AM

From Schneier on Security

Education in Secure Software Development

The Linux Foundation and OpenSSF released a report on the state of education in secure software development. …many developers lack the essential knowledge and skills... Bruce Schneier
From Schneier on Security | August 1, 2024 at 07:03 AM

From Schneier on Security

Nearly 7% of Internet Traffic Is Malicious

Cloudflare reports on the state of applications security. It claims that 6.8% of Internet traffic is malicious. And that CVEs are exploited as quickly as 22 minutes... Bruce Schneier
From Schneier on Security | July 31, 2024 at 11:55 AM

From Schneier on Security

Providing Security Updates to Automobile Software

Auto manufacturers are just starting to realize the problems of supporting the software in older models: Today’s phones are able to receive updates six to eight... Bruce Schneier
From Schneier on Security | July 30, 2024 at 07:07 AM

From Schneier on Security

New Research in Detecting AI-Generated Videos

The latest in what will be a continuing arms race between creating and detecting videos: The new tool the research project is unleashing on deepfakes, called “MISLnet... Bruce Schneier
From Schneier on Security | July 29, 2024 at 07:02 AM

From Schneier on Security

Friday Squid Blogging: Sunscreen from Squid Pigments

They’re better for the environment. Blog moderation policy. Bruce Schneier
From Schneier on Security | July 26, 2024 at 05:02 PM

From Schneier on Security

Compromising the Secure Boot Process

This isn’t good: On Thursday, researchers from security firm Binarly revealed that Secure Boot is completely compromised on more than 200 device models sold by... Bruce Schneier
From Schneier on Security | July 26, 2024 at 12:21 PM

From Schneier on Security

The CrowdStrike Outage and Market-Driven Brittleness

Friday’s massive internet outage, caused by a mid-sized tech company called CrowdStrike, disrupted major airlines, hospitals, and banks. Nearly 7,000 flights were... Bruce Schneier
From Schneier on Security | July 25, 2024 at 02:37 PM

From Schneier on Security

Data Wallets Using the Solid Protocol

I am the Chief of Security Architecture at Inrupt, Inc., the company that is commercializing Tim Berners-Lee’s Solid open W3C standard for distributed data ownership... Bruce Schneier
From Schneier on Security | July 25, 2024 at 07:05 AM

From Schneier on Security

Robot Dog Internet Jammer

Supposedly the DHS has these: The robot, called “NEO,” is a modified version of the “Quadruped Unmanned Ground Vehicle” (Q-UGV) sold to law enforcement by a company... Bruce Schneier
From Schneier on Security | July 24, 2024 at 11:25 AM

From Schneier on Security

2017 ODNI Memo on Kaspersky Labs

It’s heavily redacted, but still interesting. Many more ODNI documents here. Bruce Schneier
From Schneier on Security | July 23, 2024 at 07:08 AM

From Schneier on Security

Snake Mimics a Spider

This is a fantastic video. It’s an Iranian spider-tailed horned viper (Pseudocerastes urarachnoides). Its tail looks like a spider, which the snake uses to fool... Bruce Schneier
From Schneier on Security | July 22, 2024 at 07:06 AM

From Schneier on Security

Friday Squid Blogging: Peru Trying to Protect its Squid Fisheries

Peru is trying to protect its territorial waters from Chinese squid-fishing boats. Blog moderation policy. Bruce Schneier
From Schneier on Security | July 19, 2024 at 05:03 PM

From Schneier on Security

Brett Solomon on Digital Rights

Brett Solomon is retiring from AccessNow after fifteen years as its Executive Director. He’s written a blog post about what he’s learned and what comes next. Bruce Schneier
From Schneier on Security | July 19, 2024 at 12:02 PM

From Schneier on Security

Criminal Gang Physically Assaulting People for Their Cryptocurrency

This is pretty horrific: …a group of men behind a violent crime spree designed to compel victims to hand over access to their cryptocurrency savings. That announcement... Bruce Schneier
From Schneier on Security | July 18, 2024 at 11:33 AM