Blogroll | Communications of the ACM

From Schneier on Security

Upcoming Speaking Engagements

This is a current list of where and when I am scheduled to speak: I’m speaking (remotely) at the Sektor 3.0 Festival in Warsaw, Poland, May 21-22, 2025. The list... Bruce Schneier
From Schneier on Security | May 14, 2025 at 12:05 PM

From Schneier on Security

Court Rules Against NSO Group

The case is over: A jury has awarded WhatsApp $167 million in punitive damages in a case the company brought against Israel-based NSO Group for exploiting a software... Bruce Schneier
From Schneier on Security | May 13, 2025 at 07:07 AM

From Schneier on Security

Florida Backdoor Bill Fails

A Florida bill requiring encryption backdoors failed to pass. Bruce Schneier
From Schneier on Security | May 12, 2025 at 07:01 AM

From Schneier on Security

Friday Squid Blogging: Japanese Divers Video Giant Squid

The video is really amazing. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Bruce Schneier
From Schneier on Security | May 9, 2025 at 05:05 PM

From Schneier on Security

Chinese AI Submersible

A Chinese company has developed an AI-piloted submersible that can reach speeds “similar to a destroyer or a US Navy torpedo,” dive “up to 60 metres underwater,... Bruce Schneier
From Schneier on Security | May 7, 2025 at 07:03 AM

From Schneier on Security

Fake Student Fraud in Community Colleges

Reporting on the rise of fake students enrolling in community college courses: The bots’ goal is to bilk state and federal financial aid money by enrolling in classes... Bruce Schneier
From Schneier on Security | May 6, 2025 at 07:03 AM

From Schneier on Security

Another Move in the Deepfake Creation/Detection Arms Race

Deepfakes are now mimicking heartbeats In a nutshell Recent research reveals that high-quality deepfakes unintentionally retain the heartbeat patterns from their... Bruce Schneier
From Schneier on Security | May 5, 2025 at 12:02 PM

From Schneier on Security

Friday Squid Blogging: Pyjama Squid

The small pyjama squid (Sepioloidea lineolata) produces toxic slime, “a rare example of a poisonous predatory mollusc.” As usual, you can also use this squid post... Bruce Schneier
From Schneier on Security | May 2, 2025 at 05:02 PM

From Schneier on Security

Privacy for Agentic AI

Sooner or later, it’s going to happen. AI systems will start acting as agents, doing things on our behalf with some degree of autonomy. I think it’s worth thinking... Bruce Schneier
From Schneier on Security | May 2, 2025 at 02:04 PM

From Schneier on Security

NCSC Guidance on “Advanced Cryptography”

The UK’s National Cyber Security Centre just released its white paper on “Advanced Cryptography,” which it defines as “cryptographic techniques for processing encrypted... Bruce Schneier
From Schneier on Security | May 2, 2025 at 07:03 AM

From Schneier on Security

US as a Surveillance State

Two essays were just published on DOGE’s data collection and aggregation, and how it ends with a modern surveillance state. It’s good to see this finally being... Bruce Schneier
From Schneier on Security | May 1, 2025 at 12:02 PM

From Schneier on Security

WhatsApp Case Against NSO Group Progressing

Meta is suing NSO Group, basically claiming that the latter hacks WhatsApp and not just WhatsApp users. We have a procedural ruling: Under the order, NSO Group... Bruce Schneier
From Schneier on Security | April 30, 2025 at 07:12 AM

From Schneier on Security

Applying Security Engineering to Prompt Injection Security

This seems like an important advance in LLM security against prompt injection: Google DeepMind has unveiled CaMeL (CApabilities for MachinE Learning), a new approach... Bruce Schneier
From Schneier on Security | April 29, 2025 at 07:03 AM

From Schneier on Security

Friday Squid Blogging: Squid Facts on Your Phone

Text “SQUID” to 1-833-SCI-TEXT for daily squid facts. The website has merch. As usual, you can also use this squid post to talk about the security stories in the... Bruce Schneier
From Schneier on Security | April 25, 2025 at 05:08 PM

From Schneier on Security

Cryptocurrency Thefts Get Physical

Long story of a $250 million cryptocurrency theft that, in a complicated chain events, resulted in a pretty brutal kidnapping. Bruce Schneier
From Schneier on Security | April 25, 2025 at 07:07 AM

From Schneier on Security

New Linux Rootkit

Interesting: The company has released a working rootkit called “Curing” that uses io_uring, a feature built into the Linux kernel, to stealthily perform malicious... Bruce Schneier
From Schneier on Security | April 24, 2025 at 03:35 PM

From Schneier on Security

Regulating AI Behavior with a Hypervisor

Interesting research: “Guillotine: Hypervisors for Isolating Malicious AIs.” Abstract:As AI models become more embedded in critical sectors like finance, healthcare... Bruce Schneier
From Schneier on Security | April 23, 2025 at 12:02 PM

From Schneier on Security

Android Improves Its Security

Android phones will soon reboot themselves after sitting idle for three days. iPhones have had this feature for a while; it’s nice to see Google add it to their... Bruce Schneier
From Schneier on Security | April 22, 2025 at 12:03 PM

From Schneier on Security

Friday Squid Blogging: Live Colossal Squid Filmed

A live colossal squid was filmed for the first time in the ocean. It’s only a juvenile: a foot long. As usual, you can also use this squid post to talk about the... Bruce Schneier
From Schneier on Security | April 18, 2025 at 05:02 PM

From Schneier on Security

Age Verification Using Facial Scans

Discord is testing the feature: “We’re currently running tests in select regions to age-gate access to certain spaces or user settings,” a spokesperson for Discord... Bruce Schneier
From Schneier on Security | April 17, 2025 at 12:38 PM