china, cooperation, nationalsecuritypolicy, Security technology
This article on US/China cooperation and competition in cyberspace is an interesting lens through which to examine security policy. Powered by WPeMatico
Author: infossl
academicpapers, cybercrime, cybersecurity, norway, Security technology
Interesting survey of the cybersecurity culture in Norway. 96% of all Norwegian are online, more than 90% embrace new technology, and 6 of 10 feel capable of judging what is safe to do online. Still cyber-crime costs Norway approximately 19 billion NKR annually. At the same time 73.9% argue that the Internet will not be … Read More “The Culture of Cybersecurity” »
essays, passwords, Security technology, securityengineering, usability, usb
Every few years, a researcher replicates a security study by littering USB sticks around an organization’s grounds and waiting to see how many people pick them up and plug them in, causing the autorun function to install innocuous malware on their computers. These studies are great for making security professionals feel superior. The researchers get … Read More “Security Design: Stop Trying to Fix the User” »
Security technology, squid
The Gonatus squid eats its own kind. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Powered by WPeMatico
costbenefitanalysis, hacking, Security technology, securitypolicies, yahoo
Last week, Yahoo! announced that it was hacked pretty massively in 2014. Over half a billion usernames and passwords were affected, making this the largest data breach of all time. Yahoo! claimed it was a government that did it: A recent investigation by Yahoo! Inc. has confirmed that a copy of certain user account information … Read More “The Hacking of Yahoo” »
academicpapers, costbenefitanalysis, cyberattack, cybersecurity, databreaches, externalities, nationalsecuritypolicy, nist, reputation, Security technology, securityengineering, securitystandards
Interesting research from Sasha Romanosky at RAND: Abstract: In 2013, the US President signed an executive order designed to help secure the nation’s critical infrastructure from cyberattacks. As part of that order, he directed the National Institute for Standards and Technology (NIST) to develop a framework that would become an authoritative source for information security … Read More “The Cost of Cyberattacks Is Less than You Might Think” »
malware, Security technology
A new malware tries to detect if it’s running in a virtual machine or sandboxed test environment by looking for signs of normal use and not executing if they’re not there. From a news article: A typical test environment consists of a fresh Windows computer image loaded into a VM environment. The OS image usually … Read More “Malware Tries to Detect Test Environment” »
academicpapers, biometrics, identification, privacy, Security technology, surveillance
Neural networks are good at identifying faces, even if they’re blurry: In a paper released earlier this month, researchers at UT Austin and Cornell University demonstrate that faces and objects obscured by blurring, pixelation, and a recently-proposed privacy system called P3 can be successfully identified by a neural network trained on image datasets — in … Read More “Using Neural Networks to Identify Blurred Faces” »
denialofservice, Security technology
Brian Krebs writes about the massive DDoS attack against his site. In fact, the site is down as I post this. Powered by WPeMatico
Security technology, squid
A Lego model of a giant space kraken destroying a Destroyer from Star Wars. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Powered by WPeMatico