NSA AI Security Center

Posted on By infossl
artificial intelligence, cybersecurity, national security policy, nsa, Security technology, Uncategorized

The NSA is starting a new artificial intelligence security center: The AI security center’s establishment follows an NSA study that identified securing AI models from theft and sabotage as a major national security challenge, especially as generative AI technologies emerge with immense transformative potential for both good and evil. Nakasone said it would become “NSA’s … Read More “NSA AI Security Center” »

Friday Squid Blogging: Protecting Cephalopods in Medical Research

Posted on By infossl
Security technology, squid, Uncategorized

From Nature: Cephalopods such as octopuses and squid could soon receive the same legal protection as mice and monkeys do when they are used in research. On 7 September, the US National Institutes of Health (NIH) asked for feedback on proposed guidelines that, for the first time in the United States, would require research projects … Read More “Friday Squid Blogging: Protecting Cephalopods in Medical Research” »

Critical Vulnerability in libwebp Library

Posted on By infossl
chrome, Chrome OS, ios, operating systems, Security technology, Uncategorized, vulnerabilities, zero-day

Both Apple and Google have recently reported critical vulnerabilities in their systems—iOS and Chrome, respectively—that are ultimately the result of the same vulnerability in the libwebp library: On Thursday, researchers from security firm Rezillion published evidence that they said made it “highly likely” both indeed stemmed from the same bug, specifically in libwebp, the code … Read More “Critical Vulnerability in libwebp Library” »

Signal Will Leave the UK Rather Than Add a Backdoor

Posted on By infossl
backdoors, encryption, privacy, Security technology, signal, Uncategorized

Totally expected, but still good to hear: Onstage at TechCrunch Disrupt 2023, Meredith Whittaker, the president of the Signal Foundation, which maintains the nonprofit Signal messaging app, reaffirmed that Signal would leave the U.K. if the country’s recently passed Online Safety Bill forced Signal to build “backdoors” into its end-to-end encryption. “We would leave the … Read More “Signal Will Leave the UK Rather Than Add a Backdoor” »

New Revelations from the Snowden Documents

Posted on By infossl
academic papers, backdoors, cryptography, Edward Snowden, nsa, privacy, Schneier news, Security technology, surveillance, Uncategorized

Jake Appelbaum’s PhD thesis contains several new revelations from the classified NSA documents provided to journalists by Edward Snowden. Nothing major, but a few more tidbits. Kind of amazing that that all happened ten years ago. At this point, those documents are more historical than anything else. And it’s unclear who has those archives anymore. … Read More “New Revelations from the Snowden Documents” »

On the Cybersecurity Jobs Shortage

Posted on By infossl
cybersecurity, employment, Security technology, Uncategorized

In April, Cybersecurity Ventures reported on extreme cybersecurity job shortage: Global cybersecurity job vacancies grew by 350 percent, from one million openings in 2013 to 3.5 million in 2021, according to Cybersecurity Ventures. The number of unfilled jobs leveled off in 2022, and remains at 3.5 million in 2023, with more than 750,000 of those … Read More “On the Cybersecurity Jobs Shortage” »

Detecting AI-Generated Text

Posted on By infossl
artificial intelligence, LLM, Security technology, Uncategorized

There are no reliable ways to distinguish text written by a human from text written by an large language model. OpenAI writes: Do AI detectors work? In short, no. While some (including OpenAI) have released tools that purport to detect AI-generated content, none of these have proven to reliably distinguish between AI-generated and human-generated content. … Read More “Detecting AI-Generated Text” »

Using Hacked LastPass Keys to Steal Cryptocurrency

Posted on By infossl
cryptocurrency, operational security, Password Safe, passwords, Security technology, Uncategorized

Remember last November, when hackers broke into the network for LastPass—a password database—and stole password vaults with both encrypted and plaintext data for over 25 million users? Well, they’re now using that data break into crypto wallets and drain them: $35 million and counting, all going into a single wallet. That’s a really profitable hack. … Read More “Using Hacked LastPass Keys to Steal Cryptocurrency” »

LLM Summary of My Book Beyond Fear

Posted on By infossl
artificial intelligence, Beyond Fear, books, LLM, Security technology, Uncategorized

Claude (Anthropic’s LLM) was given this prompt: Please summarize the themes and arguments of Bruce Schneier’s book Beyond Fear. I’m particularly interested in a taxonomy of his ethical arguments—please expand on that. Then lay out the most salient criticisms of the book. Claude’s reply: Here’s a brief summary of the key themes and arguments made … Read More “LLM Summary of My Book Beyond Fear” »