hacking, nationalsecuritypolicy, Security technology, voting
Good article. And I was interviews on WGBH on the topic. Powered by WPeMatico
Month: August 2016
Security technology, squid
You can order a cocktail made with squid ink soda at Hank’s Oyster Bar in Washington, DC. Powered by WPeMatico
interviews, schneiernews, Security technology
I did an AMA on Reddit a few days ago. My Reddit AMA from 2013. Powered by WPeMatico
hacking, Security technology, transportation
Another hijack attack against vehicles, this time trucks and buses. Powered by WPeMatico
academicpapers, algorithms, passwords, Security technology, securitypolicies
I’ve been saying for years that it’s bad security advice, that it encourages poor passwords. Lorrie Cranor, now the FTC’s chief technologist, agrees: By studying the data, the researchers identified common techniques account holders used when they were required to change passwords. A password like “tarheels#1”, for instance (excluding the quotation marks) frequently became “tArheels#1” … Read More “Frequent Password Changes Is a Bad Security Idea” »
authentication, nist, Security technology, sms, twofactorauthentication
NIST is no longer recommending two-factor authentication systems that use SMS, because of their many insecurities. In the latest draft of its Digital Authentication Guideline, there’s the line: [Out of band verification] using SMS is deprecated, and will no longer be allowed in future releases of this guidance. Powered by WPeMatico
cyberattack, fbi, incidentresponse, nationalsecuritypolicy, Security technology
Last week, President Obama issued a policy directive (PPD-41) on cyber-incident response coordination. The FBI is in charge, which is no surprise. Actually, there’s not much surprising in the document. I suppose it’s important to formalize this stuff, but I think it’s what happens now. News article. Brief analysis. The FBI’s perspective. Powered by WPeMatico
hacking, keylogging, Security technology, vulnerabilities, wireless
Most of them are unencrypted, which makes them vulnerable to all sorts of attacks: On Tuesday Bastille’s research team revealed a new set of wireless keyboard attacks they’re calling Keysniffer. The technique, which they’re planning to detail at the Defcon hacker conference in two weeks, allows any hacker with a $12 radio device to intercept … Read More “Security Vulnerabilities in Wireless Keyboards” »
doxing, essays, hacking, nationalsecuritypolicy, Security technology, voting
Russia has attacked the US in cyberspace in an attempt to influence our national election, many experts have concluded. We need to take this national security threat seriously and both respond and defend, despite the partisan nature of this particular attack. There is virtually no debate about that, either from the technical experts who analyzed … Read More “Hacking the Vote” »
Security technology, squid
Archie McPhee sells glow-in-the-dark finger tentacles. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Powered by WPeMatico