Category: Security technology

Auto Added by WPeMatico

Encryption Backdoor in Military/Police Radios

Posted on By infossl
backdoors, encryption, military, police, radio, Security technology, Uncategorized

I wrote about this in 2023. Here’s the story: Three Dutch security analysts discovered the vulnerabilities­—five in total—­in a European radio standard called TETRA (Terrestrial Trunked Radio), which is used in radios made by Motorola, Damm, Hytera, and others. The standard has been used in radios since the ’90s, but the flaws remained unknown because … Read More “Encryption Backdoor in Military/Police Radios” »

I’m Spending the Year at the Munk School

Posted on By infossl
Citizen Lab, cybersecurity, Schneier news, schools, Security technology, Uncategorized

This academic year, I am taking a sabbatical from the Kennedy School and Harvard University. (It’s not a real sabbatical—I’m just an adjunct—but it’s the same idea.) I will be spending the Fall 2025 and Spring 2026 semesters at the Munk School at the University of Toronto. I will be organizing a reading group on … Read More “I’m Spending the Year at the Munk School” »

AI Agents Need Data Integrity

Posted on By infossl
AI, integrity, Security technology, trust, Uncategorized

Think of the Web as a digital territory with its own social contract. In 2014, Tim Berners-Lee called for a “Magna Carta for the Web” to restore the balance of power between individuals and institutions. This mirrors the original charter’s purpose: ensuring that those who occupy a territory have a meaningful stake in its governance. … Read More “AI Agents Need Data Integrity” »

Jim Sanborn Is Auctioning Off the Solution to Part Four of the Kryptos Sculpture

Posted on By infossl
cia, encryption, history of cryptography, Security technology, Uncategorized

Well, this is interesting: The auction, which will include other items related to cryptology, will be held Nov. 20. RR Auction, the company arranging the sale, estimates a winning bid between $300,000 and $500,000. Along with the original handwritten plain text of K4 and other papers related to the coding, Mr. Sanborn will also be … Read More “Jim Sanborn Is Auctioning Off the Solution to Part Four of the Kryptos Sculpture” »

Subverting AIOps Systems Through Poisoned Input Data

Posted on By infossl
academic papers, AI, cyberattack, integrity, LLM, Security technology, Uncategorized

In this input integrity attack against an AI system, researchers were able to fool AIOps tools: AIOps refers to the use of LLM-based agents to gather and analyze application telemetry, including system logs, performance metrics, traces, and alerts, to detect problems and then suggest or carry out corrective actions. The likes of Cisco have deployed … Read More “Subverting AIOps Systems Through Poisoned Input Data” »

Zero-Day Exploit in WinRAR File

Posted on By infossl
exploits, malware, russia, Security technology, Uncategorized, zero-day

A zero-day vulnerability in WinRAR is being exploited by at least two Russian criminal groups: The vulnerability seemed to have super Windows powers. It abused alternate data streams, a Windows feature that allows different ways of representing the same file path. The exploit abused that feature to trigger a previously unknown path traversal flaw that … Read More “Zero-Day Exploit in WinRAR File” »