Lucene search
K
SchneierRecent

2978 matches found

Schneier on Security
Schneier on Security
added 2017/05/17 7:45 p.m.33 views

The US Senate Is Using Signal

The US Senate just approved Signal for staff use. Signal is a secure messaging app with no backdoor, and no large corporate owner who can be pressured to install a backdoor. Susan Landau comments. Maybe I'm being optimistic, but I think we just won the Crypto War. A very important part of the US...

6.9AI score
Exploits0
Schneier on Security
Schneier on Security
added 2017/05/17 11:32 a.m.33 views

Keylogger Found in HP Laptop Audio Drivers

This is a weird story: researchers have discovered that an audio driver installed in some HP laptops includes a keylogger, which records all keystrokes to a local file. There seems to be nothing malicious about this, but it's a vivid illustration of how hard it is to secure a modern computer. The...

6.5AI score
Exploits0
Schneier on Security
Schneier on Security
added 2017/05/16 2:32 p.m.31 views

Did North Korea Write WannaCry?

The New York Times is reporting that evidence is pointing to North Korea as the author of the WannaCry ransomware. Note that there is no proof at this time, although it would not surprise me if the NSA knows the origins of this malware attack...

7AI score
Exploits0
Schneier on Security
Schneier on Security
added 2017/05/16 11:40 a.m.27 views

NSA Brute-Force Keysearch Machine

The Intercept published a story about a dedicated NSA brute-force keysearch machine being built with the help of New York University and IBM. It's based on a document that was accidentally shared on the Internet by NYU. The article is frustratingly short on details: The WindsorGreen documents are...

6.6AI score
Exploits0
Schneier on Security
Schneier on Security
added 2017/05/16 11:8 a.m.25 views

Using Wi-Fi to Get 3D Images of Surrounding Location

Interesting research: The radio signals emitted by a commercial Wi-Fi router can act as a kind of radar, providing images of the transmitter's environment, according to new experiments. Two researchers in Germany borrowed techniques from the field of holography to demonstrate Wi-Fi imaging. They...

6.8AI score
Exploits0
Schneier on Security
Schneier on Security
added 2017/05/15 7:21 p.m.25 views

The Quick vs. the Strong: Commentary on Cory Doctorow's Walkaway

Technological advances change the world. That's partly because of what they are, but even more because of the social changes they enable. New technologies upend power balances. They give groups new capabilities, increased effectiveness, and new defenses. The Internet decades have been a...

6.8AI score
Exploits0
Schneier on Security
Schneier on Security
added 2017/05/15 11:2 a.m.22 views

Yacht Security

Turns out, multi-million dollar yachts are no more secure than anything else out there: The ease with which ocean-going oligarchs or other billionaires can be hijacked on the high seas was revealed at a superyacht conference held in a private members club in central London this week. ... Murray, ...

6.8AI score
Exploits0
Schneier on Security
Schneier on Security
added 2017/05/12 11:0 a.m.23 views

Stealing Voice Prints

This article feels like hyperbole: The scam has arrived in Australia after being used in the United States and Britain. The scammer may ask several times "can you hear me?", to which people would usually reply "yes." The scammer is then believed to record the "yes" response and end the call. That...

6.9AI score
Exploits0
Schneier on Security
Schneier on Security
added 2017/05/11 10:58 a.m.17 views

Interview with Ross Anderson

Cybersecurity researcher Ross Anderson has a good interview on edge.org...

7AI score
Exploits0
Schneier on Security
Schneier on Security
added 2017/05/10 7:14 p.m.20 views

Securing Elections

Technology can do a lot more to make our elections more secure and reliable, and to ensure that participation in the democratic process is available to all. There are three parts to this process. First, the voter registration process can be improved. The whole process can be streamlined. People...

6.8AI score
Exploits0
Schneier on Security
Schneier on Security
added 2017/05/10 11:50 a.m.26 views

Criminals are Now Exploiting SS7 Flaws to Hack Smartphone Two-Factor Authentication Systems

I've previously written about the serious vulnerabilities in the SS7 phone routing system. Basically, the system doesn't authenticate messages. Now, criminals are using it to hack smartphone-based two-factor authentication systems: In short, the issue with SS7 is that the network believes whateve...

7.1AI score
Exploits0
Schneier on Security
Schneier on Security
added 2017/05/09 11:36 a.m.22 views

Facebook's Observations on Information Operations and the 2016 US Election

Facebook published paper on the information operations it has seen, as well as some observations regarding the recent US election. It's interesting reading...

6.9AI score
Exploits0
Schneier on Security
Schneier on Security
added 2017/05/08 2:16 p.m.22 views

Using Ultrasonic Beacons to Track Users

I've previously written about ad networks using ultrasonic communications to jump from one device to another. The idea is for devices like televisions to play ultrasonic codes in advertisements and for nearby smartphones to detect them. This way the two devices can be linked. Creepy, yes. And als...

6.9AI score
Exploits0
Schneier on Security
Schneier on Security
added 2017/05/05 9:5 p.m.20 views

Friday Squid Blogging: Squid Communications

In the oval squid Sepioteuthis lessoniana, males use body patterns to communicate with both females and other males: To gain insight into the visual communication associated with each behavior in terms of the body patterning's key components, the co-expression frequencies of two or more component...

6.9AI score
Exploits0
Schneier on Security
Schneier on Security
added 2017/05/05 12:35 p.m.22 views

Why Is the TSA Scanning Paper?

I've been reading a bunch of anecdotal reports that the TSA is starting to scan paper separately: A passenger going through security at Kansas City International Airport MCI recently was asked by security officers to remove all paper products from his bag. Everything from books to Post-It Notes,...

6.9AI score
Exploits0
Schneier on Security
Schneier on Security
added 2017/05/04 3:31 p.m.22 views

Forging Voice

LyreBird is a system that can accurately reproduce the voice of someone, given a large amount of sample inputs. It's pretty good -- listen to the demo here -- and will only get better over time. The applications for recorded-voice forgeries are obvious, but I think the larger security risk will b...

6.8AI score
Exploits0
Schneier on Security
Schneier on Security
added 2017/05/03 3:25 p.m.30 views

Security of St. Jude Pacemakers

This is a good summary article about the horrible security of St. Jude pacemakers, and the history of the company not doing anything about it...

7AI score
Exploits0
Schneier on Security
Schneier on Security
added 2017/05/02 11:13 a.m.23 views

Fitbit Evidence Used in Murder Investigation

Fitbit evidence is cited in an arrest warrant, stating that the device monitored steps by the victim after the suspect claimed she died...

7AI score
Exploits0
Schneier on Security
Schneier on Security
added 2017/05/01 11:32 a.m.25 views

Who is Publishing NSA and CIA Secrets, and Why?

There's something going on inside the intelligence communities in at least two countries, and we have no idea what it is. Consider these three data points. One: someone, probably a country's intelligence organization, is dumping massive amounts of cyberattack tools belonging to the NSA onto the...

6.8AI score
Exploits0
Schneier on Security
Schneier on Security
added 2017/04/28 9:37 p.m.10 views

Friday Squid Blogging: Live Squid Washes up on North Carolina Beach

A "mysterious squid" -- big and red -- washed up on a beach in Carteret County, North Carolina. Someone found it, still alive, and set it back in the water after taking some photos of it. Squid scientists later decided it was a diamondback squid. So, you think that O'Shea might know the identity ...

6.9AI score
Exploits0
Schneier on Security
Schneier on Security
added 2017/04/28 5:48 p.m.7 views

Jumping Airgaps with a Laser and a Scanner

Researchers have configured two computers to talk to each other using a laser and a scanner. Scanners work by detecting reflected light on their glass pane. The light creates a charge that the scanner translates into binary, which gets converted into an image. But scanners are sensitive to any...

6.8AI score
Exploits0
Schneier on Security
Schneier on Security
added 2017/04/28 11:17 a.m.18 views

Stealing Browsing History Using Your Phone's Ambient Light Sensor

There has been a flurry of research into using the various sensors on your phone to steal data in surprising ways. Here's another: using the phone's ambient light sensor to detect what's on the screen. It's a proof of concept, but the paper's general conclusions are correct: There is a lesson her...

6.8AI score
Exploits0
Schneier on Security
Schneier on Security
added 2017/04/27 11:20 a.m.10 views

Reading Analytics and Privacy

Interesting paper: "The rise of reading analytics and the emerging calculus of reading privacy in the digital world," by Clifford Lynch: Abstract: This paper studies emerging technologies for tracking reading behaviors "reading analytics" and their implications for reader privacy, attempting to...

6.9AI score
Exploits0
Schneier on Security
Schneier on Security
added 2017/04/26 11:14 a.m.12 views

Analyzing Cyber Insurance Policies

There's a really interesting new paper analyzing over 100 different cyber insurance policies. From the abstract: In this research paper, we seek to answer fundamental questions concerning the current state of the cyber insurance market. Specifically, by collecting over 100 full insurance policies...

6.7AI score
Exploits0
Schneier on Security
Schneier on Security
added 2017/04/25 5:7 p.m.13 views

Advances in Ad Blocking

Ad blockers represent the largest consumer boycott in human history. They're also an arms race between the blockers and the blocker blockers. This article discusses a new ad-blocking technology that represents another advance in this arms race. I don't think it will "put an end to the ad-blocking...

6.7AI score
Exploits0
Schneier on Security
Schneier on Security
added 2017/04/25 10:25 a.m.10 views

Faking Domain Names with Unicode Characters

It's things like this that make phishing attacks easier. News article...

7AI score
Exploits0
Schneier on Security
Schneier on Security
added 2017/04/21 10:4 p.m.20 views

Friday Squid Blogging: Video of Squid Attacking Another Squid

Wow, is this cool. As usual, you can also use this squid post to talk about the security stories in the news that I haven't covered. Read my blog posting guidelines here...

6.9AI score
Exploits0
Schneier on Security
Schneier on Security
added 2017/04/21 11:22 a.m.8 views

Tracing Spam from E-mail Headers

Interesting article from Brian Krebs...

7.1AI score
Exploits0
Total number of security vulnerabilities2978