Blogroll | Communications of the ACM

From Schneier on Security

Friday Squid Blogging: Giant Squid Washes Up on South African Beach

Fourteen feet long and 450 pounds. It was dead before it washed up. As usual, you can also use this squid post to talk about the security stories in the news that... Bruce Schneier
From Schneier on Security | June 19, 2020 at 05:15 PM

From Schneier on Security

Security and Human Behavior (SHB) 2020

Today is the second day of the thirteenth Workshop on Security and Human Behavior. It's being hosted by the University of Cambridge, which in today's world means... Bruce Schneier
From Schneier on Security | June 19, 2020 at 03:09 PM

From Schneier on Security

New Hacking-for-Hire Company in India

Citizen Lab has a new report on Dark Basin, a large hacking-for-hire company in India. Key Findings: Dark Basin is a hack-for-hire group that has targeted thousands... Bruce Schneier
From Schneier on Security | June 19, 2020 at 07:38 AM

From Schneier on Security

Theft of CIA's "Vault Seven" Hacking Tools Due to Its Own Lousy Security

The Washington Post is reporting on an internal CIA report about its "Vault 7" security breach: The breach -- allegedly committed by a CIA employee -- was discovered... Bruce Schneier
From Schneier on Security | June 18, 2020 at 07:34 AM

From Schneier on Security

Zoom Will Be End-to-End Encrypted for All Users

Zoom is doing the right thing: it's making end-to-end encryption available to all users, paid and unpaid. (This is a change; I wrote about the initial decision... Bruce Schneier
From Schneier on Security | June 17, 2020 at 02:55 PM

From Schneier on Security

Bank Card "Master Key" Stolen

South Africa's Postbank experienced a catastrophic security failure. The bank's master PIN key was stolen, forcing it to cancel and replace 12 million bank cards... Bruce Schneier
From Schneier on Security | June 17, 2020 at 07:21 AM

From Schneier on Security

Eavesdropping on Sound Using Variations in Light Bulbs

New research is able to recover sound waves in a room by observing minute changes in the room's light bulbs. This technique works from a distance, even from a building... Bruce Schneier
From Schneier on Security | June 16, 2020 at 11:20 AM

From Schneier on Security

Examining the US Cyber Budget

Jason Healey takes a detailed look at the US federal cybersecurity budget and reaches an important conclusion: the US keeps saying that we need to prioritize defense... Bruce Schneier
From Schneier on Security | June 15, 2020 at 07:06 AM

From Schneier on Security

Friday Squid Blogging: Human Cells with Squid-Like Transparency

I think we need more human organs with squid-like features. As usual, you can also use this squid post to talk about the security stories in the news that I haven't... Bruce Schneier
From Schneier on Security | June 12, 2020 at 05:03 PM

From Schneier on Security

Facebook Helped Develop a Tails Exploit

This is a weird story: Hernandez was able to evade capture for so long because he used Tails, a version of Linux designed for users at high risk of surveillance... Bruce Schneier
From Schneier on Security | June 12, 2020 at 07:23 AM

From Schneier on Security

Another Intel Speculative Execution Vulnerability

Remember Spectre and Meltdown? Back in early 2018, I wrote: Spectre and Meltdown are pretty catastrophic vulnerabilities, but they only affect the confidentiality... Bruce Schneier
From Schneier on Security | June 11, 2020 at 07:40 AM

From Schneier on Security

Availability Attacks against Neural Networks

New research on using specially crafted inputs to slow down machine-learning neural network systems: Sponge Examples: Energy-Latency Attacks on Neural Networks... Bruce Schneier
From Schneier on Security | June 10, 2020 at 07:31 AM

From Schneier on Security

Security Analysis of the Democracy Live Online Voting System

New research: "Security Analysis of the Democracy Live Online Voting System": Abstract: Democracy Live's OmniBallot platform is a web-based system for blank ballot... Bruce Schneier
From Schneier on Security | June 9, 2020 at 07:26 AM

From Schneier on Security

Gene Spafford on Internet Voting

Good interview.... Bruce Schneier
From Schneier on Security | June 8, 2020 at 02:33 PM

From Schneier on Security

Phishing Attacks Against Trump and Biden Campaigns

Google's threat analysts have identified state-level attacks from China. I hope both campaigns are working under the assumption that everything they say and do... Bruce Schneier
From Schneier on Security | June 8, 2020 at 07:13 AM

From Schneier on Security

Friday Squid Blogging: Shark vs. Squid

National Geographic has a photo of a 7-foot long shark that fought a giant squid and lived to tell the tale. Or, at least, lived to show off the suction marks on... Bruce Schneier
From Schneier on Security | June 5, 2020 at 05:19 PM

From Schneier on Security

New Research: "Privacy Threats in Intimate Relationships"

I just published a new paper with Karen Levy of Cornell: "Privacy Threats in Intimate Relationships." Abstract: This article provides an overview of intimate threats... Bruce Schneier
From Schneier on Security | June 5, 2020 at 07:13 AM

From Schneier on Security

Zoom's Commitment to User Security Depends on Whether you Pay It or Not

Zoom was doing so well.... And now we have this: Corporate clients will get access to Zoom's end-to-end encryption service now being developed, but Yuan said free... Bruce Schneier
From Schneier on Security | June 4, 2020 at 07:24 AM

From Schneier on Security

Wallpaper that Crashes Android Phones

This is interesting: The image, a seemingly innocuous sunset (or dawn) sky above placid waters, may be viewed without harm. But if loaded as wallpaper, the phone... Bruce Schneier
From Schneier on Security | June 3, 2020 at 07:11 AM

From Schneier on Security

"Sign in with Apple" Vulnerability

Researcher Bhavuk Jain discovered a vulnerability in the "Sign in with Apple" feature, and received a $100,000 bug bounty from Apple. Basically, forged tokens could... Bruce Schneier
From Schneier on Security | June 2, 2020 at 07:27 AM