infossl – Page 50 – SSL and internet security news

Using Hacked LastPass Keys to Steal Cryptocurrency

September 18, 2023 infossl

cryptocurrency, operational security, Password Safe, passwords, Security technology, Uncategorized

Remember last November, when hackers broke into the network for LastPass—a password database—and stole password vaults with both encrypted and plaintext data for over 25 million users? Well, they’re now using that data break into crypto wallets and drain them: $35 million and counting, all going into a single wallet. That’s a really profitable hack. … Read More “Using Hacked LastPass Keys to Steal Cryptocurrency” »

Friday Squid Blogging: Cleaning Squid

September 15, 2023 infossl

Security technology, squid, Uncategorized

Two links on how to properly clean squid. I learned a few years ago, in Spain, and got pretty good at it. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Read my blog posting guidelines here. Powered by WPeMatico

LLM Summary of My Book Beyond Fear

September 15, 2023 infossl

artificial intelligence, Beyond Fear, books, LLM, Security technology, Uncategorized

Claude (Anthropic’s LLM) was given this prompt: Please summarize the themes and arguments of Bruce Schneier’s book Beyond Fear. I’m particularly interested in a taxonomy of his ethical arguments—please expand on that. Then lay out the most salient criticisms of the book. Claude’s reply: Here’s a brief summary of the key themes and arguments made … Read More “LLM Summary of My Book Beyond Fear” »

On Technologies for Automatic Facial Recognition

September 15, 2023 infossl

biometrics, face recognition, identification, Security technology, Uncategorized

Interesting article on technologies that will automatically identify people: With technology like that on Mr. Leyvand’s head, Facebook could prevent users from ever forgetting a colleague’s name, give a reminder at a cocktail party that an acquaintance had kids to ask about or help find someone at a crowded conference. However, six years later, the … Read More “On Technologies for Automatic Facial Recognition” »

Zero-Click Exploit in iPhones

September 13, 2023 infossl

apple, exploits, ios, iphone, Security technology, spyware, Uncategorized, vulnerabilities

Make sure you update your iPhones: Citizen Lab says two zero-days fixed by Apple today in emergency security updates were actively abused as part of a zero-click exploit chain (dubbed BLASTPASS) to deploy NSO Group’s Pegasus commercial spyware onto fully patched iPhones. The two bugs, tracked as CVE-2023-41064 and CVE-2023-41061, allowed the attackers to infect … Read More “Zero-Click Exploit in iPhones” »

Cars Have Terrible Data Privacy

September 12, 2023 infossl

cars, data protection, privacy, Security technology, Uncategorized

A new Mozilla Foundation report concludes that cars, all of them, have terrible data privacy. All 25 car brands we researched earned our *Privacy Not Included warning label—making cars the official worst category of products for privacy that we have ever reviewed. There’s a lot of details in the report. They’re all bad. BoingBoing post. … Read More “Cars Have Terrible Data Privacy” »

On Robots Killing People

September 11, 2023 infossl

artificial intelligence, cars, regulation, robotics, Security technology, Uncategorized

The robot revolution began long ago, and so did the killing. One day in 1979, a robot at a Ford Motor Company casting plant malfunctioned—human workers determined that it was not going fast enough. And so twenty-five-year-old Robert Williams was asked to climb into a storage rack to help move things along. The one-ton robot … Read More “On Robots Killing People” »

Friday Squid Blogging: Glass Squid Video

September 9, 2023 infossl

Security technology, squid, Uncategorized

Here’s a fantastic video of Taonius Borealis, a glass squid, from NOAA. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Read my blog posting guidelines here. Powered by WPeMatico

LLMs and Tool Use

September 9, 2023 infossl

artificial intelligence, essays, LLM, Security technology, Uncategorized

Last March, just two weeks after GPT-4 was released, researchers at Microsoft quietly announced a plan to compile millions of APIs—tools that can do everything from ordering a pizza to solving physics equations to controlling the TV in your living room—into a compendium that would be made accessible to large language models (LLMs). This was … Read More “LLMs and Tool Use” »

The Hacker Tool to Get Personal Data from Credit Bureaus

September 7, 2023 infossl

cybercrime, data collection, doxing, finance, law enforcement, Security technology, Uncategorized

The new site 404 Media has a good article on how hackers are cheaply getting personal information from credit bureaus: This is the result of a secret weapon criminals are selling access to online that appears to tap into an especially powerful set of data: the target’s credit header. This is personal information that the … Read More “The Hacker Tool to Get Personal Data from Credit Bureaus” »