SSL and internet security news – Page 33 – Informations about SSL certificates and networks security

New York Increases Cybersecurity Rules for Financial Companies

November 3, 2023 infossl

banking, computer security, cybersecurity, ransomware, regulation, Security technology, Uncategorized

Another example of a large and influential state doing things the federal government won’t: Boards of directors, or other senior committees, are charged with overseeing cybersecurity risk management, and must retain an appropriate level of expertise to understand cyber issues, the rules say. Directors must sign off on cybersecurity programs, and ensure that any security … Read More “New York Increases Cybersecurity Rules for Financial Companies” »

Spyware in India

November 2, 2023 infossl

apple, privacy, Security technology, spyware, surveillance, Uncategorized

Apple has warned leaders of the opposition government in India that their phones are being spied on: Multiple top leaders of India’s opposition parties and several journalists have received a notification from Apple, saying that “Apple believes you are being targeted by state-sponsored attackers who are trying to remotely compromise the iPhone associated with your … Read More “Spyware in India” »

The Future of Drone Warfare

October 31, 2023 infossl

drones, military, Security technology, Uncategorized, war

Ukraine is using $400 drones to destroy tanks: Facing an enemy with superior numbers of troops and armor, the Ukrainian defenders are holding on with the help of tiny drones flown by operators like Firsov that, for a few hundred dollars, can deliver an explosive charge capable of destroying a Russian tank worth more than … Read More “The Future of Drone Warfare” »

Hacking Scandinavian Alcohol Tax

October 30, 2023 infossl

A Hacker's Mind, hacking, noncomputer hacks, Security technology, Uncategorized

The islands of Åland are an important tax hack: Although Åland is part of the Republic of Finland, it has its own autonomous parliament. In areas where Åland has its own legislation, the group of islands essentially operates as an independent nation. This allows Scandinavians to avoid the notoriously high alcohol taxes: Åland is a … Read More “Hacking Scandinavian Alcohol Tax” »

Friday Squid Blogging: On the Ugliness of Squid Fishing

October 27, 2023 infossl

Security technology, squid, Uncategorized

And seafood in general: A squid ship is a bustling, bright, messy place. The scene on deck looks like a mechanic’s garage where an oil change has gone terribly wrong. Scores of fishing lines extend into the water, each bearing specialized hooks operated by automated reels. When they pull a squid on board, it squirts … Read More “Friday Squid Blogging: On the Ugliness of Squid Fishing” »

Messaging Service Wiretap Discovered through Expired TLS Cert

October 27, 2023 infossl

certificates, man-in-the-middle attacks, privacy, Security technology, surveillance, tls, Uncategorized

Fascinating story of a covert wiretap that was discovered because of an expired TLS certificate: The suspected man-in-the-middle attack was identified when the administrator of jabber.ru, the largest Russian XMPP service, received a notification that one of the servers’ certificates had expired. However, jabber.ru found no expired certificates on the server, as explained in … Read More “Messaging Service Wiretap Discovered through Expired TLS Cert” »

New NSA Information from (and About) Snowden

October 26, 2023 infossl

Edward Snowden, Guardian, New York Times, nsa, privacy, Security technology, surveillance, Uncategorized

Interesting article about the Snowden documents, including comments from former Guardian editor Ewen MacAskill MacAskill, who shared the Pulitzer Prize for Public Service with Glenn Greenwald and Laura Poitras for their journalistic work on the Snowden files, retired from The Guardian in 2018. He told Computer Weekly that: As far as he knows, a copy … Read More “New NSA Information from (and About) Snowden” »

Microsoft is Soft-Launching Security Copilot

October 25, 2023 infossl

artificial intelligence, computer security, incident response, LLM, microsoft, security analysis, Security technology, Uncategorized

Microsoft has announced an early access program for its LLM-based security chatbot assistant: Security Copilot. I am curious whether this thing is actually useful. Powered by WPeMatico

EPA Won’t Force Water Utilities to Audit Their Cybersecurity

October 24, 2023 infossl

cybersecurity, infrastructure, national security policy, Security technology, Uncategorized, utilities

The industry pushed back: Despite the EPA’s willingness to provide training and technical support to help states and public water system organizations implement cybersecurity surveys, the move garnered opposition from both GOP state attorneys and trade groups. Republican state attorneys that were against the new proposed policies said that the call for new inspections could … Read More “EPA Won’t Force Water Utilities to Audit Their Cybersecurity” »

Child Exploitation and the Crypto Wars

October 23, 2023 infossl

child pornography, children, crypto wars, encryption, laws, national security policy, privacy, Security technology, surveillance, Uncategorized

Susan Landau published an excellent essay on the current justification for the government breaking end-to-end-encryption: child sexual abuse and exploitation (CSAE). She puts the debate into historical context, discusses the problem of CSAE, and explains why breaking encryption isn’t the solution. Powered by WPeMatico