Airlines Secretly Selling Passenger Data to the Government

Posted on By infossl
air travel, data collection, data privacy, privacy, Security technology, Uncategorized

This is news: A data broker owned by the country’s major airlines, including Delta, American Airlines, and United, collected U.S. travellers’ domestic flight records, sold access to them to Customs and Border Protection (CBP), and then as part of the contract told CBP to not reveal where the data came from, according to internal CBP … Read More “Airlines Secretly Selling Passenger Data to the Government” »

New Way to Track Covertly Android Users

Posted on By infossl
Security technology, Uncategorized

Researchers have discovered a new way to covertly track Android users. Both Meta and Yandex were using it, but have suddenly stopped now that they have been caught. The details are interesting, and worth reading in detail: >Tracking code that Meta and Russia-based Yandex embed into millions of websites is de-anonymizing visitors by abusing legitimate … Read More “New Way to Track Covertly Android Users” »

Hearing on the Federal Government and AI

Posted on By infossl
Security technology, Uncategorized

On Thursday I testified before the House Committee on Oversight and Government Reform at a hearing titled “The Federal Government in the Age of Artificial Intelligence.” The other speakers mostly talked about how cool AI was—and sometimes about how cool their own company was—but I was asked by the Democrats to specifically talk about DOGE … Read More “Hearing on the Federal Government and AI” »

Report on the Malicious Uses of AI

Posted on By infossl
Security technology, Uncategorized

OpenAI just published its annual report on malicious uses of AI. By using AI as a force multiplier for our expert investigative teams, in the three months since our last report we’ve been able to detect, disrupt and expose abusive activity including social engineering, cyber espionage, deceptive employment schemes, covert influence operations and scams. These … Read More “Report on the Malicious Uses of AI” »

The Ramifications of Ukraine’s Drone Attack

Posted on By infossl
drones, military, russia, Security technology, ukraine, Uncategorized, war

You can read the details of Operation Spiderweb elsewhere. What interests me are the implications for future warfare: If the Ukrainians could sneak drones so close to major air bases in a police state such as Russia, what is to prevent the Chinese from doing the same with U.S. air bases? Or the Pakistanis with … Read More “The Ramifications of Ukraine’s Drone Attack” »

New Linux Vulnerabilities

Posted on By infossl
linux, passwords, Security technology, Uncategorized, vulnerabilities

They’re interesting: Tracked as CVE-2025-5054 and CVE-2025-4598, both vulnerabilities are race condition bugs that could enable a local attacker to obtain access to access sensitive information. Tools like Apport and systemd-coredump are designed to handle crash reporting and core dumps in Linux systems. […] “This means that if a local attacker manages to induce a … Read More “New Linux Vulnerabilities” »

Why Take9 Won’t Improve Cybersecurity

Posted on By infossl
computer security, phishing, psychology of security, security awareness, Security technology, Uncategorized

There’s a new cybersecurity awareness campaign: Take9. The idea is that people—you, me, everyone—should just pause for nine seconds and think more about the link they are planning to click on, the file they are planning to download, or whatever it is they are planning to share. There’s a website—of course—and a video, well-produced and … Read More “Why Take9 Won’t Improve Cybersecurity” »