Category: reports

Auto Added by WPeMatico

NCSC Guidance on “Advanced Cryptography”

Posted on By infossl
cryptography, homomorphic encryption, reports, Security technology, Uncategorized

The UK’s National Cyber Security Centre just released its white paper on “Advanced Cryptography,” which it defines as “cryptographic techniques for processing encrypted data, providing enhanced functionality over and above that provided by traditional cryptography.” It includes things like homomorphic encryption, attribute-based encryption, zero-knowledge proofs, and secure multiparty computation. It’s full of good advice. I … Read More “NCSC Guidance on “Advanced Cryptography”” »

Report on Paragon Spyware

Posted on By infossl
israel, reports, Security technology, spyware, Uncategorized

Citizen Lab has a new report on Paragon’s spyware: Key Findings: Introducing Paragon Solutions. Paragon Solutions was founded in Israel in 2019 and sells spyware called Graphite. The company differentiates itself by claiming it has safeguards to prevent the kinds of spyware abuses that NSO Group and other vendors are notorious for. Infrastructure Analysis of … Read More “Report on Paragon Spyware” »

The State of Ransomware

Posted on By infossl
ransomware, reports, Security technology, Uncategorized

Palo Alto Networks published its semi-annual report on ransomware. From the Executive Summary: Unit 42 monitors ransomware and extortion leak sites closely to keep tabs on threat activity. We reviewed compromise announcements from 53 dedicated leak sites in the first half of 2024 and found 1,762 new posts. This averages to approximately 294 posts a … Read More “The State of Ransomware” »

People-Search Site Removal Services Largely Ineffective

Posted on By infossl
privacy, reports, searches, Security technology, Uncategorized

Consumer Reports has a new study of people-search site removal services, concluding that they don’t really work: As a whole, people-search removal services are largely ineffective. Private information about each participant on the people-search sites decreased after using the people-search removal services. And, not surprisingly, the removal services did save time compared with manually opting … Read More “People-Search Site Removal Services Largely Ineffective” »

On Secure Voting Systems

Posted on By infossl
cybersecurity, reports, Security technology, Uncategorized, voting

Andrew Appel shepherded a public comment—signed by twenty election cybersecurity experts, including myself—on best practices for ballot marking devices and vote tabulation. It was written for the Pennsylvania legislature, but it’s general in nature. From the executive summary: We believe that no system is perfect, with each having trade-offs. Hand-marked and hand-counted ballots remove the … Read More “On Secure Voting Systems” »

Facebook’s Extensive Surveillance Network

Posted on By infossl
data privacy, facebook, Meta, privacy, reports, Security technology, surveillance, tracking, Uncategorized

Consumer Reports is reporting that Facebook has built a massive surveillance network: Using a panel of 709 volunteers who shared archives of their Facebook data, Consumer Reports found that a total of 186,892 companies sent data about them to the social network. On average, each participant in the study had their data sent to Facebook … Read More “Facebook’s Extensive Surveillance Network” »

Breaking Laptop Fingerprint Sensors

Posted on By infossl
authentication, biometrics, fingerprints, identification, reports, Security technology, sensors, Uncategorized, vulnerabilities

They’re not that good: Security researchers Jesse D’Aguanno and Timo Teräs write that, with varying degrees of reverse-engineering and using some external hardware, they were able to fool the Goodix fingerprint sensor in a Dell Inspiron 15, the Synaptic sensor in a Lenovo ThinkPad T14, and the ELAN sensor in one of Microsoft’s own Surface … Read More “Breaking Laptop Fingerprint Sensors” »