From Schneier on Security
Artificial intelligence (AI) has been billed as the next frontier of humanity: the newly available expanse whose exploration
…
B. Schneier| February 29, 2024
It’s happened. Details here, and tech details here (for messages in transit) and here (for messages in storage)
Rollout to everyone will take months, but it’s a...Bruce Schneier From Schneier on Security | December 11, 2023 at 07:10 AM
Another rare security + squid story:
The woman—who has only been identified by her surname, Wang—was having a meal with friends at a hotpot restaurant in Kunming...Bruce Schneier From Schneier on Security | December 8, 2023 at 05:03 PM
New attack breaks forward secrecy in Bluetooth.
Three. news articles.
The vulnerability has been around for at least a decade.Bruce Schneier From Schneier on Security | December 8, 2023 at 07:05 AM
When you get a push notification on your Apple or Google phone, those notifications go through Apple and Google servers. Which means that those companies can spy...Bruce Schneier From Schneier on Security | December 7, 2023 at 07:02 AM
Interesting analysis:
This paper discusses the protocol used for electing the Doge of Venice between 1268 and the end of the Republic in 1797. We will show that...Bruce Schneier From Schneier on Security | December 6, 2023 at 01:18 PM
Spying and surveillance are different but related things. If I hired a private detective to spy on you, that detective could hide a bug in your home or car, tap...Bruce Schneier From Schneier on Security | December 5, 2023 at 07:10 AM
Scientists have found Strawberry Squid, “whose mismatched eyes help them simultaneously search for prey above and below them,” among the coral reefs in the Galápagos...Bruce Schneier From Schneier on Security | December 1, 2023 at 05:05 PM
A stock-trading AI (a simulated experiment) engaged in insider trading, even though it “knew” it was wrong.
The agent is put under pressure in three ways. First...Bruce Schneier From Schneier on Security | December 1, 2023 at 07:03 AM
They’re not that good:
Security researchers Jesse D’Aguanno and Timo Teräs write that, with varying degrees of reverse-engineering and using some external hardware...Bruce Schneier From Schneier on Security | November 29, 2023 at 07:09 AM
Soon we will be able to unlock and start our cars from our phones. Let’s hope people are thinking about security.Bruce Schneier From Schneier on Security | November 28, 2023 at 03:19 PM
There seems to be no end to warrantless surveillance:
According to the letter, a surveillance program now known as Data Analytical Services (DAS) has for more than...Bruce Schneier From Schneier on Security | November 27, 2023 at 06:59 AM
Pretty photograph.
The Squid Nebula is shown in blue, indicating doubly ionized oxygen—which is when you ionize your oxygen once and then ionize it again justhere...Bruce Schneier From Schneier on Security | November 24, 2023 at 05:04 PM
It’s realistic looking. If I drop it in a bin with my keys and wallet, will the TSA confiscate it?Bruce Schneier From Schneier on Security | November 24, 2023 at 03:00 PM
A new worm that spreads via USB sticks is infecting computers in Ukraine and beyond.
The group—known by many names, including Gamaredon, Primitive Bear, ACTINIUM...Bruce Schneier From Schneier on Security | November 24, 2023 at 07:04 AM
Signal has had the ability to manually authenticate another account for years. iMessage is getting it:
The feature is called Contact Key Verification, and it does...Bruce Schneier From Schneier on Security | November 22, 2023 at 07:08 AM
Google’s Threat Analysis Group announced a zero-day against the Zimbra Collaboration email server that has been used against governments around the world.
TAG has...Bruce Schneier From Schneier on Security | November 21, 2023 at 07:05 AM
Generative AI is going to be a powerful tool for data analysis and summarization. Here’s an example of it being used for sentiment analysis. My guess is that it...Bruce Schneier From Schneier on Security | November 20, 2023 at 06:57 AM
In a rare squid/security post, here’s an article about unpatched vulnerabilities in the Squid caching proxy.
As usual, you can also use this squid post to talkhere...Bruce Schneier From Schneier on Security | November 17, 2023 at 05:01 PM
A ransomware gang, annoyed at not being paid, filed an SEC complaint against its victim for not disclosing its security breach within the required four days.
This...Bruce Schneier From Schneier on Security | November 17, 2023 at 11:31 AM
Seth Godin wrote an article about a surprisingly common vulnerability: programmers leaving authentication credentials and other secrets in publicly accessible software...Bruce Schneier From Schneier on Security | November 16, 2023 at 07:10 AM