infossl – Page 245 – SSL and internet security news

Organizational Doxing and Disinformation

September 14, 2016 infossl

dataloss, doxing, essays, forgery, hacking, Security technology

In the past few years, the devastating effects of hackers breaking into an organization’s network, stealing confidential data, and publishing everything have been made clear. It happened to the Democratic National Committee, to Sony, to the National Security Agency, to the cyber-arms weapons manufacturer Hacking Team, to the online adultery site Ashley Madison, and to … Read More “Organizational Doxing and Disinformation” »

Someone Is Learning How to Take Down the Internet

September 13, 2016 infossl

cyberwar, denialofservice, essays, internet, Security technology, verisign

Over the past year or two, someone has been probing the defenses of the companies that run critical pieces of the Internet. These probes take the form of precisely calibrated attacks designed to determine exactly how well these companies can defend themselves, and what would be required to take them down. We don’t know who … Read More “Someone Is Learning How to Take Down the Internet” »

Leaked Stingray Manuals

September 13, 2016 infossl

leaks, phones, privacy, Security technology, surveillance

The Intercept has published the manuals for Harris Corporation’s IMSI catcher: Stingray. It’s an impressive surveillance device. Powered by WPeMatico

USB Kill Stick

September 12, 2016 infossl

hardware, malware, Security technology, usb

It costs less than $60. For just a few bucks, you can pick up a USB stick that destroys almost anything that it’s plugged into. Laptops, PCs, televisions, photo booths — you name it. Once a proof-of-concept, the pocket-sized USB stick now fits in any security tester’s repertoire of tools and hacks, says the Hong … Read More “USB Kill Stick” »

Malware Infects Network Hard Drives

September 12, 2016 infossl

Security technology

The malware “Mal/Miner-C” infects Internet-exposed Seagate Central Network Attached Storage (NAS) devices, and from there takes over connected computers to mine for cryptocurrency. About 77% of all drives have been infected. Slashdot thread. Powered by WPeMatico

Friday Squid Blogging: More Research Inspired by Squid Skin

September 9, 2016 infossl

Security technology, squid, steganography

Research on color-changing materials: What do squid and jellyfish skin have in common with human skin? All three have inspired a team of chemists to create materials that change color or texture in response to variations in their surroundings. These materials could be used for encrypting secret messages, creating anti-glare surfaces, or detecting moisture or … Read More “Friday Squid Blogging: More Research Inspired by Squid Skin” »

Leaked Product Demo from RCS Labs

September 9, 2016 infossl

cyberweapons, eavesdropping, leaks, malware, maninthemiddleattacks, Security technology, spyware

We have leak from yet another cyberweapons arms manufacturer: the Italian company RCS Labs. Vice Motherboard reports on a surveillance video demo: The video shows an RCS Lab employee performing a live demo of the company’s spyware to an unidentified man, including a tutorial on how to use the spyware’s control software to perform a … Read More “Leaked Product Demo from RCS Labs” »

DDOS for Profit

September 9, 2016 infossl

cybercrime, denialofservice, hacking, internet, Security technology

Brian Krebs reports that the Israeli DDOS service vDOS has earned $600K in the past two years. The information was obtained from a hack and data dump of the company’s information. Powered by WPeMatico

Apple's Cloud Key Vault

September 8, 2016 infossl

apple, backdoors, backups, cloudcomputing, keys, lawenforcement, Security technology

Ever since Ian Krstić, Apple’s Head of Security Engineering and Architecture, presented the company’s key backup technology at Black Hat 2016, people have been pointing to it as evidence that the company can create a secure backdoor for law enforcement. It’s not. Matthew Green and Steve Bellovin have both explained why not. And the same … Read More “Apple's Cloud Key Vault” »

Talk by the Former Head of French SIGINT

September 7, 2016 infossl

Security technology

For former head of French SIGINT gave a talk (removed from YouTube where he talked about a lot of things he probably shouldn’t have. If anyone has 1) a transcript of the talk, or 2) can read the French articles better than I can, I would appreciate details. Powered by WPeMatico