Security technology, squid, Uncategorized, vulnerabilities
In a rare squid/security combined post, a new vulnerability was discovered in the Squid HTTP proxy server. Powered by WPeMatico
Author: infossl
disclosure, google, patching, Security technology, Uncategorized, vulnerabilities
Google’s vulnerability finding team is again pushing the envelope of responsible disclosure: Google’s Project Zero team will retain its existing 90+30 policy regarding vulnerability disclosures, in which it provides vendors with 90 days before full disclosure takes place, with a 30-day period allowed for patch adoption if the bug is fixed before the deadline. However, … Read More “Google Project Zero Changes Its Disclosure Policy” »
AI, backdoors, china, hardware, Security technology, Uncategorized
The government of China has accused Nvidia of inserting a backdoor into their H20 chips: China’s cyber regulator on Thursday said it had held a meeting with Nvidia over what it called “serious security issues” with the company’s artificial intelligence chips. It said US AI experts had “revealed that Nvidia’s computing chips have location tracking … Read More “China Accuses Nvidia of Putting Backdoors into Their Chips” »
laws, regulation, Security technology, Uncategorized
Earlier this week, the Trump administration narrowed export controls on advanced semiconductors ahead of US-China trade negotiations. The administration is increasingly relying on export licenses to allow American semiconductor firms to sell their products to Chinese customers, while keeping the most powerful of them out of the hands of our military adversaries. These are the … Read More “The Semiconductor Industry and Regulatory Compliance” »
apple, children, privacy, Security technology, surveillance, Uncategorized
Skechers is making a line of kid’s shoes with a hidden compartment for an AirTag. Powered by WPeMatico
courts, crime, cyberespionage, espionage, law enforcement, North Korea, Security technology, Uncategorized
An Arizona woman was sentenced to eight-and-a-half years in prison for her role helping North Korean workers infiltrate US companies by pretending to be US workers. From an article: According to court documents, Chapman hosted the North Korean IT workers’ computers in her own home between October 2020 and October 2023, creating a so-called “laptop … Read More “First Sentencing in Scheme to Help North Koreans Infiltrate US Companies” »
Security technology, squid, Uncategorized
What scientists thought were squid fossils were actually arrow worms. Powered by WPeMatico
air travel, hacking, Security technology, Uncategorized, vulnerabilities
Airportr is a service that allows passengers to have their luggage picked up, checked, and delivered to their destinations. As you might expect, it’s used by wealthy or important people. So if the company’s website is insecure, you’d be able to spy on lots of wealthy or important people. And maybe even steal their luggage. … Read More “Spying on People Through Airportr Luggage Delivery Service” »
academic papers, cheating, quantum computing, Security technology, Uncategorized
Peter Gutmann and Stephan Neuhaus have a new paper—I think it’s new, even though it has a March 2025 date—that makes the argument that we shouldn’t trust any of the quantum factorization benchmarks, because everyone has been cooking the books: Similarly, quantum factorisation is performed using sleight-of-hand numbers that have been selected to make them … Read More “Cheating on Quantum Computing Benchmarks” »
cyberattack, defense, reports, Security technology, Uncategorized
“Who’s winning on the internet, the attackers or the defenders?” I’m asked this all the time, and I can only ever give a qualitative hand-wavy answer. But Jason Healey and Tarang Jain’s latest Lawfare piece has amassed data. The essay provides the first framework for metrics about how we are all doing collectively—and not just … Read More “Measuring the Attack/Defense Balance” »