Month: October 2019

New Reductor Nation-State Malware Compromises TLS

Posted on By infossl
attribution, certificates, kaspersky, malware, randomnumbers, russia, Security technology, tls

Kaspersky has a detailed blog post about a new piece of sophisticated malware that it’s calling Reductor. The malware is able to compromise TLS traffic by infecting the computer with hacked TLS engine substituted on the fly, “marking” infected TLS handshakes by compromising the underlining random-number generator, and adding new digital certificates. The result is … Read More “New Reductor Nation-State Malware Compromises TLS” »

Wi-Fi Hotspot Tracking

Posted on By infossl
privacy, Security technology, smartphones, surveillance, tracking, wifi

Free Wi-Fi hotspots can track your location, even if you don’t connect to them. This is because your phone or computer broadcasts a unique MAC address. What distinguishes location-based marketing hotspot providers like Zenreach and Euclid is that the personal information you enter in the captive portal­ — like your email address, phone number, or … Read More “Wi-Fi Hotspot Tracking” »

Illegal Data Center Hidden in Former NATO Bunker

Posted on By infossl
Non classé

Interesting: German investigators said Friday they have shut down a data processing center installed in a former NATO bunker that hosted sites dealing in drugs and other illegal activities. Seven people were arrested. […] Thirteen people aged 20 to 59 are under investigation in all, including three German and seven Dutch citizens, Brauer said. Authorities … Read More “Illegal Data Center Hidden in Former NATO Bunker” »

Speakers Censored at AISA Conference in Melbourne

Posted on By infossl
australia, conferences, Security technology, whistleblowers

Two speakers were censored at the Australian Information Security Association’s annual conference this week in Melbourne. Thomas Drake, former NSA employee and whistleblower, was scheduled to give a talk on the golden age of surveillance, both government and corporate. Suelette Dreyfus, lecturer at the University of Melbourne, was scheduled to give a talk on her … Read More “Speakers Censored at AISA Conference in Melbourne” »

New Unpatchable iPhone Exploit Allows Jailbreaking

Posted on By infossl
exploits, ios, iphone, malware, Security technology

A new iOS exploit allows jailbreaking of pretty much all version of the iPhone. This is a huge deal for Apple, but at least it doesn’t allow someone to remotely hack people’s phones. Some details: I wanted to learn how Checkm8 will shape the iPhone experience­ — particularly as it relates to security­ — so … Read More “New Unpatchable iPhone Exploit Allows Jailbreaking” »

More Cryptanalysis of Solitaire

Posted on By infossl
academicpapers, algorithms, cryptanalysis, cryptography, Security technology

In 1999, I invented the Solitaire encryption algorithm, designed to manually encrypt data using a deck of cards. It was written into the plot of Neal Stephenson’s novel Cryptonomicon, and I even wrote an afterward to the book describing the cipher. I don’t talk about it much, mostly because I made a dumb mistake that … Read More “More Cryptanalysis of Solitaire” »