Security technology – Page 6 – SSL and internet security news

Subliminal Learning in AIs

July 25, 2025 infossl

academic papers, AI, integrity, LLM, Security technology, trust, Uncategorized

Today’s freaky LLM behavior: We study subliminal learning, a surprising phenomenon where language models learn traits from model-generated data that is semantically unrelated to those traits. For example, a “student” model learns to prefer owls when trained on sequences of numbers generated by a “teacher” model that prefers owls. This same phenomenon can transmit misalignment … Read More “Subliminal Learning in AIs” »

How Solid Protocol Restores Digital Agency

July 24, 2025 infossl

data breaches, data privacy, identification, privacy, Security technology, Uncategorized

The current state of digital identity is a mess. Your personal information is scattered across hundreds of locations: social media companies, IoT companies, government agencies, websites you have accounts on, and data brokers you’ve never heard of. These entities collect, store, and trade your data, often without your knowledge or consent. It’s both redundant and … Read More “How Solid Protocol Restores Digital Agency” »

Google Sues the Badbox Botnet Operators

July 23, 2025 infossl

backdoors, botnets, courts, google, malware, Security technology, Uncategorized

It will be interesting to watch what will come of this private lawsuit: Google on Thursday announced filing a lawsuit against the operators of the Badbox 2.0 botnet, which has ensnared more than 10 million devices running Android open source software. These devices lack Google’s security protections, and the perpetrators pre-installed the Badbox 2.0 malware … Read More “Google Sues the Badbox Botnet Operators” »

“Encryption Backdoors and the Fourth Amendment”

July 22, 2025 infossl

academic papers, backdoors, encryption, laws, nsa, Security technology, Uncategorized

Law journal article that looks at the Dual_EC_PRNG backdoor from a US constitutional perspective: Abstract: The National Security Agency (NSA) reportedly paid and pressured technology companies to trick their customers into using vulnerable encryption products. This Article examines whether any of three theories removed the Fourth Amendment’s requirement that this be reasonable. The first is … Read More ““Encryption Backdoors and the Fourth Amendment”” »

Another Supply Chain Vulnerability

July 21, 2025 infossl

china, risks, Security technology, supply chain, Uncategorized, vulnerabilities

ProPublica is reporting: Microsoft is using engineers in China to help maintain the Defense Department’s computer systems—with minimal supervision by U.S. personnel—leaving some of the nation’s most sensitive data vulnerable to hacking from its leading cyber adversary, a ProPublica investigation has found. The arrangement, which was critical to Microsoft winning the federal government’s cloud computing … Read More “Another Supply Chain Vulnerability” »

Friday Squid Blogging: The Giant Squid Nebula

July 18, 2025 infossl

Security technology, squid, Uncategorized

Beautiful photo. Difficult to capture, this mysterious, squid-shaped interstellar cloud spans nearly three full moons in planet Earth’s sky. Discovered in 2011 by French astro-imager Nicolas Outters, the Squid Nebula’s bipolar shape is distinguished here by the telltale blue emission from doubly ionized oxygen atoms. Though apparently surrounded by the reddish hydrogen emission region Sh2-129, … Read More “Friday Squid Blogging: The Giant Squid Nebula” »

New Mobile Phone Forensics Tool

July 18, 2025 infossl

china, forensics, hacking, malware, privacy, Security technology, smartphones, Uncategorized

The Chinese have a new tool called Massistant. Massistant is the presumed successor to Chinese forensics tool, “MFSocket”, reported in 2019 and attributed to publicly traded cybersecurity company, Meiya Pico. The forensics tool works in tandem with a corresponding desktop software. Massistant gains access to device GPS location data, SMS messages, images, audio, contacts and … Read More “New Mobile Phone Forensics Tool” »

Security Vulnerabilities in ICEBlock

July 17, 2025 infossl

anonymity, ios, privacy, Security technology, Uncategorized, vulnerabilities

The ICEBlock tool has vulnerabilities: The developer of ICEBlock, an iOS app for anonymously reporting sightings of US Immigration and Customs Enforcement (ICE) officials, promises that it “ensures user privacy by storing no personal data.” But that claim has come under scrutiny. ICEBlock creator Joshua Aaron has been accused of making false promises regarding user … Read More “Security Vulnerabilities in ICEBlock” »

Hacking Trains

July 16, 2025 infossl

hacking, infrastructure, Security technology, transportation, Uncategorized

Seems like an old system system that predates any care about security: The flaw has to do with the protocol used in a train system known as the End-of-Train and Head-of-Train. A Flashing Rear End Device (FRED), also known as an End-of-Train (EOT) device, is attached to the back of a train and sends data … Read More “Hacking Trains” »

Report from the Cambridge Cybercrime Conference

July 14, 2025 infossl

conferences, cybercrime, reports, Security technology, Uncategorized

The Cambridge Cybercrime Conference was held on 23 June. Summaries of the presentations are here. Powered by WPeMatico