Uncategorized – Page 94 – SSL and internet security news

Storing Encrypted Photos in Google’s Cloud

July 30, 2021 infossl

academic papers, cloud computing, encryption, google, photos, Security technology, Uncategorized

New paper: “Encrypted Cloud Photo Storage Using Google Photos“: Abstract: Cloud photo services are widely used for persistent, convenient, and often free photo storage, which is especially useful for mobile devices. As users store more and more photos in the cloud, significant privacy concerns arise because even a single compromise of a user’s credentials give … Read More “Storing Encrypted Photos in Google’s Cloud” »

AirDropped Gun Photo Causes Terrorist Scare

July 29, 2021 infossl

Security technology, Uncategorized

A teenager on an airplane sent a photo of a replica gun via AirDrop to everyone who had their settings configured to receive unsolicited photos from strangers. This caused a three-hour delay as the plane — still at the gate — was evacuated and searched. The teen was not allowed to reboard. I can’t find … Read More “AirDropped Gun Photo Causes Terrorist Scare” »

De-anonymization Story

July 28, 2021 infossl

data collection, de-anonymization, geolocation, privacy, pseudonymity, Security technology, surveillance, Uncategorized

This is important: Monsignor Jeffrey Burrill was general secretary of the US Conference of Catholic Bishops (USCCB), effectively the highest-ranking priest in the US who is not a bishop, before records of Grindr usage obtained from data brokers was correlated with his apartment, place of work, vacation home, family members’ addresses, and more. […] The … Read More “De-anonymization Story” »

Hiding Malware in ML Models

July 27, 2021 infossl

academic papers, artificial intelligence, hacking, machine learning, malware, Security technology, Uncategorized

Interesting research: “EvilModel: Hiding Malware Inside of Neural Network Models”. Abstract: Delivering malware covertly and detection-evadingly is critical to advanced malware campaigns. In this paper, we present a method that delivers malware covertly and detection-evadingly through neural network models. Neural network models are poorly explainable and have a good generalization ability. By embedding malware into … Read More “Hiding Malware in ML Models” »

Disrupting Ransomware by Disrupting Bitcoin

July 26, 2021 infossl

bitcoin, crime, cryptocurrency, cybercrime, law enforcement, ransomware, Security technology, Uncategorized

Ransomware isn’t new; the idea dates back to 1986 with the “Brain” computer virus. Now, it’s become the criminal business model of the internet for two reasons. The first is the realization that no one values data more than its original owner, and it makes more sense to ransom it back to them — sometimes … Read More “Disrupting Ransomware by Disrupting Bitcoin” »

Friday Squid Blogging: The Evolution of Squid

July 23, 2021 infossl

Security technology, squid, Uncategorized, video

Good video about the evolutionary history of squid. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Read my blog posting guidelines here. Powered by WPeMatico

Commercial Location Data Used to Out Priest

July 23, 2021 infossl

cell phones, data collection, data mining, de-anonymization, geolocation, privacy, Security technology, surveillance, Uncategorized

A Catholic priest was outed through commercially available surveillance data. Vice has a good analysis: The news starkly demonstrates not only the inherent power of location data, but how the chance to wield that power has trickled down from corporations and intelligence agencies to essentially any sort of disgruntled, unscrupulous, or dangerous individual. A growing … Read More “Commercial Location Data Used to Out Priest” »

Nasty Printer Driver Vulnerability

July 22, 2021 infossl

cyberattack, hp, printers, privilege escalation, Security technology, Uncategorized, vulnerabilities

From SentinelLabs, a critical vulnerability in HP printer drivers: Researchers have released technical details on a high-severity privilege-escalation flaw in HP printer drivers (also used by Samsung and Xerox), which impacts hundreds of millions of Windows machines. If exploited, cyberattackers could bypass security products; install programs; view, change, encrypt or delete data; or create new … Read More “Nasty Printer Driver Vulnerability” »

NSO Group Hacked

July 20, 2021 infossl

Citizen Lab, cyberespionage, cyberweapons, leaks, Security technology, Uncategorized

NSO Group, the Israeli cyberweapons arms manufacturer behind the Pegasus spyware — used by authoritarian regimes around the world to spy on dissidents, journalists, human rights workers, and others — was hacked. Or, at least, an enormous trove of documents was leaked to journalists. There’s a lot to read out there. Amnesty International has a … Read More “NSO Group Hacked” »

Candiru: Another Cyberweapons Arms Manufacturer

July 19, 2021 infossl

cyberespionage, cyberweapons, israel, privilege escalation, Security technology, spyware, Uncategorized

Citizen Lab has identified yet another Israeli company that sells spyware to governments around the world: Candiru. From the report: Summary: Candiru is a secretive Israel-based company that sells spyware exclusively to governments. Reportedly, their spyware can infect and monitor iPhones, Androids, Macs, PCs, and cloud accounts. Using Internet scanning we identified more than 750 … Read More “Candiru: Another Cyberweapons Arms Manufacturer” »