Security technology – Page 122 – SSL and internet security news

Used Tesla Components Contain Personal Information

May 8, 2020 infossl

cars, dataloss, dataretention, hardware, identification, internetofthings, leaks, Security technology

Used Tesla components, sold on eBay, still contain personal information, even after a factory reset. This is a decades-old problem. It’s a problem with used hard drives. It’s a problem with used photocopiers and printers. It will be a problem with IoT devices. It’ll be a problem with everything, until we decide that data deletion … Read More “Used Tesla Components Contain Personal Information” »

iOS XML Bug

May 7, 2020 infossl

cybersecurity, ios, malware, Security technology, vulnerabilities

This is a good explanation of an iOS bug that allowed someone to break out of the application sandbox. A summary: What a crazy bug, and Siguza’s explanation is very cogent. Basically, it comes down to this: XML is terrible. iOS uses XML for Plists, and Plists are used everywhere in iOS (and MacOS). iOS’s … Read More “iOS XML Bug” »

ILOVEYOU Virus

May 6, 2020 infossl

cybercrime, cybersecurity, historyofcomputing, historyofsecurity, malware, Security technology

It’s the twentieth anniversary of the ILOVEYOU virus, and here are three interesting articles about it and its effects on software design. Powered by WPeMatico

Malware in Google Apps

May 5, 2020 infossl

espionage, google, kaspersky, malware, phishing, Security technology, spyware

Interesting story of malware hidden in Google Apps. This particular campaign is tied to the government of Vietnam. At a remote virtual version of its annual Security Analyst Summit, researchers from the Russian security firm Kaspersky today plan to present research about a hacking campaign they call PhantomLance, in which spies hid malware in the … Read More “Malware in Google Apps” »

Denmark, Sweden, Germany, the Netherlands and France SIGINT Alliance

May 4, 2020 infossl

academicpapers, cryptanalysis, gchq, historyofsecurity, intelligence, Security technology

This paper describes a SIGINT and code-breaking alliance between Denmark, Sweden, Germany, the Netherlands and France called Maximator: Abstract: This article is first to report on the secret European five-partner sigint alliance Maximator that started in the late 1970s. It discloses the name Maximator and provides documentary evidence. The five members of this European alliance … Read More “Denmark, Sweden, Germany, the Netherlands and France SIGINT Alliance” »

Friday Squid Blogging: Cocaine Smuggled in Squid

May 1, 2020 infossl

covid19, drugtrade, Security technology, smuggling, squid

Makes sense; there’s room inside a squid’s body cavity: Latin American drug lords have sent bumper shipments of cocaine to Europe in recent weeks, including one in a cargo of squid, even though the coronavirus epidemic has stifled legitimate transatlantic trade, senior anti-narcotics officials say. As usual, you can also use this squid post to … Read More “Friday Squid Blogging: Cocaine Smuggled in Squid” »

Me on COVID-19 Contact Tracing Apps

May 1, 2020 infossl

baserate, bluetooth, covid19, falsenegatives, falsepositives, gps, identification, medicine, privacy, Security technology, surveillance, tracing

I was quoted in BuzzFeed: “My problem with contact tracing apps is that they have absolutely no value,” Bruce Schneier, a privacy expert and fellow at the Berkman Klein Center for Internet & Society at Harvard University, told BuzzFeed News. “I’m not even talking about the privacy concerns, I mean the efficacy. Does anybody think … Read More “Me on COVID-19 Contact Tracing Apps” »

Securing Internet Videoconferencing Apps: Zoom and Others

April 30, 2020 infossl

aes, encryption, internetandsociety, keys, nsa, Security technology, securityengineering, videoconferencing

The NSA just published a survey of video conferencing apps. So did Mozilla. Zoom is on the good list, with some caveats. The company has done a lot of work addressing previous security concerns. It still has a bit to go on end-to-end encryption. Matthew Green looked at this. Zoom does offer end-to-end encryption if … Read More “Securing Internet Videoconferencing Apps: Zoom and Others” »

How Did Facebook Beat a Federal Wiretap Demand?

April 29, 2020 infossl

aclu, courts, crime, eavesdropping, encryption, facebook, privacy, Security technology, surveillance

This is interesting: Facebook Inc. in 2018 beat back federal prosecutors seeking to wiretap its encrypted Messenger app. Now the American Civil Liberties Union is seeking to find out how. The entire proceeding was confidential, with only the result leaking to the press. Lawyers for the ACLU and the Washington Post on Tuesday asked a … Read More “How Did Facebook Beat a Federal Wiretap Demand?” »

Fooling NLP Systems Through Word Swapping

April 28, 2020 infossl

academicpapers, algorithms, artificialintelligence, machinelearning, Security technology

MIT researchers have built a system that fools natural-language processing systems by swapping words with synonyms: The software, developed by a team at MIT, looks for the words in a sentence that are most important to an NLP classifier and replaces them with a synonym that a human would find natural. For example, changing the … Read More “Fooling NLP Systems Through Word Swapping” »