May 2022 – Page 2 – SSL and internet security news

Websites that Collect Your Data as You Type

May 19, 2022 infossl

academic papers, data collection, key logging, privacy, Security technology, Uncategorized

A surprising number of websites include JavaScript keyloggers that collect everything you type as you type it, not just when you submit a form. Researchers from KU Leuven, Radboud University, and University of Lausanne crawled and analyzed the top 100,000 websites, looking at scenarios in which a user is visiting a site while in the … Read More “Websites that Collect Your Data as You Type” »

iPhone Malware that Operates Even When the Phone Is Turned Off

May 18, 2022 infossl

bluetooth, iphone, malware, Security technology, Uncategorized

Researchers have demonstrated iPhone malware that works even when the phone is fully shut down. t turns out that the iPhone’s Bluetooth chip — which is key to making features like Find My work — has no mechanism for digitally signing or even encrypting the firmware it runs. Academics at Germany’s Technical University of Darmstadt … Read More “iPhone Malware that Operates Even When the Phone Is Turned Off” »

Attacks on Managed Service Providers Expected to Increase

May 17, 2022 infossl

advanced persistent threats, cybersecurity, infrastructure, national security policy, Security technology, Uncategorized

CISA, NSA, FBI, and similar organizations in the other Five Eyes countries are warning that attacks on MSPs — as a vector to their customers — are likely to increase. No details about what this prediction is based on. Makes sense, though. The SolarWinds attack was incredibly successful for the Russian SVR, and a blueprint … Read More “Attacks on Managed Service Providers Expected to Increase” »

The NSA Says that There are No Known Flaws in NIST’s Quantum-Resistant Algorithms

May 16, 2022 infossl

encryption, nist, nsa, quantum computing, Security technology, Uncategorized

Rob Joyce, the director of cybersecurity at the NSA, said so in an interview: The NSA already has classified quantum-resistant algorithms of its own that it developed over many years, said Joyce. But it didn’t enter any of its own in the contest. The agency’s mathematicians, however, worked with NIST to support the process, trying … Read More “The NSA Says that There are No Known Flaws in NIST’s Quantum-Resistant Algorithms” »

Friday Squid Blogging: Squidmobile

May 13, 2022 infossl

Security technology, squid, Uncategorized

The Squidmobile. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Read my blog posting guidelines here. Powered by WPeMatico

Surveillance by Driverless Car

May 12, 2022 infossl

cars, police, privacy, Security technology, surveillance, Uncategorized

San Francisco police are using autonomous vehicles as mobile surveillance cameras. Privacy advocates say the revelation that police are actively using AV footage is cause for alarm. “This is very concerning,” Electronic Frontier Foundation (EFF) senior staff attorney Adam Schwartz told Motherboard. He said cars in general are troves of personal consumer data, but autonomous … Read More “Surveillance by Driverless Car” »

ICE Is a Domestic Surveillance Agency

May 11, 2022 infossl

national security policy, privacy, reports, secrecy, Security technology, surveillance, Uncategorized

Georgetown has a new report on the highly secretive bulk surveillance activities of ICE in the US: When you think about government surveillance in the United States, you likely think of the National Security Agency or the FBI. You might even think of a powerful police agency, such as the New York Police Department. But … Read More “ICE Is a Domestic Surveillance Agency” »

Apple Mail Now Blocks Email Trackers

May 9, 2022 infossl

apple, e-mail, privacy, Security technology, tracking, Uncategorized

Apple Mail now blocks email trackers by default. Most email newsletters you get include an invisible “image,” typically a single white pixel, with a unique file name. The server keeps track of every time this “image” is opened and by which IP address. This quirk of internet history means that marketers can track exactly when … Read More “Apple Mail Now Blocks Email Trackers” »

Friday Squid Blogging: Squid Filmed Changing Color for Camouflage Purposes

May 6, 2022 infossl

academic papers, Security technology, squid, Uncategorized

Video of oval squid (Sepioteuthis lessoniana) changing color in reaction to their background. The research paper claims this is the first time this has been documented. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Read my blog posting guidelines here. Powered … Read More “Friday Squid Blogging: Squid Filmed Changing Color for Camouflage Purposes” »

Corporate Involvement in International Cybersecurity Treaties

May 6, 2022 infossl

cybersecurity, national security policy, Security technology, Uncategorized

The Paris Call for Trust and Stability in Cyberspace is an initiative launched by French President Emmanuel Macron during the 2018 UNESCO’s Internet Governance Forum. It’s an attempt by the world’s governments to come together and create a set of international norms and standards for a reliable, trustworthy, safe, and secure Internet. It’s not an … Read More “Corporate Involvement in International Cybersecurity Treaties” »