From Schneier on Security
Artificial intelligence (AI) has been billed as the next frontier of humanity: the newly available expanse whose exploration
…
B. Schneier| February 29, 2024
Adobe lost 150 million customer passwords. Even worse, they had a pretty dumb cryptographic hash system protecting those passwords. schneier From Schneier on Security | November 12, 2013 at 02:04 PM
This article argues that online gambling is a strategic national threat because terrorists could use it to launder money.
The Harper demonstration showed the technology...schneier From Schneier on Security | November 12, 2013 at 07:35 AM
This talk by Dan Geer explains the NSA mindset of "collect everything":
I previously worked for a data protection company. Our product was, and I believe still...schneier From Schneier on Security | November 11, 2013 at 07:21 AM
This tree in San Mateo, CA, has been turned into a giant blue squid.
As usual, you can also use this squid post to talk about the security stories in the news...schneier From Schneier on Security | November 8, 2013 at 05:10 PM
There's a story that Edward Snowden successfully socially engineered other NSA employees into giving him their passwords.schneier From Schneier on Security | November 8, 2013 at 02:06 PM
In the Information Age, it's easier than ever to steal and publish data. Corporations and governments have to adjust to their secrets being exposed, regularly.
...schneier From Schneier on Security | November 8, 2013 at 07:58 AM
I like this idea of giving each individual login attempt a risk score, based on the characteristics of the attempt:
The risk score estimates the risk associated...schneier From Schneier on Security | November 7, 2013 at 08:06 AM
The wings of the Goniurellia tridens fruit fly have images of an ant on them, to deceive predators: "When threatened, the fly flashes its wings to give the appearance...schneier From Schneier on Security | November 6, 2013 at 02:53 PM
This is interesting reading, but I'm left wanting more. What are the lessons here? How can we do this better next time? Clearly we won't be able to anticipate...schneier From Schneier on Security | November 5, 2013 at 07:53 AM
This New York Times story on the NSA is very good, and contains lots of little tidbits of new information gleaned from the Snowden documents.
The agency’s Dishfire...schneier From Schneier on Security | November 4, 2013 at 02:39 PM
Good story of badBIOS, a really nasty piece of malware. The weirdest part is how it uses ultrasonic sound to jump air gaps.
Ruiu said he arrived at the theory...schneier From Schneier on Security | November 4, 2013 at 07:15 AM
Make your own 8-foot giant squid pillow.
As usual, you can also use this squid post to talk about the security stories in the news that I haven't covered.
schneier From Schneier on Security | November 1, 2013 at 05:40 PM
This is from 2006 -- I blogged it here -- but it's even more true today.
Under a top secret program initiated by the Bush Administration after the Sept. 11 attacks...schneier From Schneier on Security | November 1, 2013 at 03:26 PM
In Spring Semester, I'm running a reading group -- which seems to be a formal variant of a study group -- at Harvard Law School on "Security, Power, and the Internet...schneier From Schneier on Security | November 1, 2013 at 03:03 PM
This article talks about applications in retail, but the possibilities are endless.
Every smartphone these days comes equipped with a WiFi card. When the cardpick...schneier From Schneier on Security | November 1, 2013 at 07:32 AM
The Washington Post reported that the NSA is eavesdropping on the Google and Yahoo private networks -- the code name for the program is MUSCULAR. I may write more...schneier From Schneier on Security | October 31, 2013 at 11:29 AM
We're in the middle of an epic battle for power in cyberspace. On one side are the traditional, organized, institutional powers such as governments and large multinational...schneier From Schneier on Security | October 30, 2013 at 07:50 AM
Jack Goldsmith argues that we need the NSA to surveil the Internet not for terrorism reasons, but for cyberespionage and cybercrime reasons. Daniel Gallington ...schneier From Schneier on Security | October 29, 2013 at 06:54 AM