acm-header
Sign In

Communications of the ACM

Blogroll


bg-corner

Google Pays $10M in Bug Bounties in 2023
From Schneier on Security

Google Pays $10M in Bug Bounties in 2023

BleepingComputer has the details. It’s $2M less than in 2022, but it’s still a lot. The highest reward for a vulnerability report in 2023 was $113,337, while the...

Public AI as an Alternative to Corporate AI
From Schneier on Security

Public AI as an Alternative to Corporate AI

This mini-essay was my contribution to a round table on Power and Governance in the Age of AI.  It’s nothing I haven’t said here before, but for anyone who hasn...

Cheating Automatic Toll Booths by Obscuring License Plates
From Schneier on Security

Cheating Automatic Toll Booths by Obscuring License Plates

The Wall Street Journal is reporting on a variety of techniques drivers are using to obscure their license plates so that automatic readers can’t identify them...

AI and the Evolution of Social Media
From Schneier on Security

AI and the Evolution of Social Media

Oh, how the mighty have fallen. A decade ago, social media was celebrated for sparking democratic uprisings in the Arab world and beyond. Now front pages are splashed...

Drones and the US Air Force
From Schneier on Security

Drones and the US Air Force

Fascinating analysis of the use of drones on a modern battlefield—that is, Ukraine—and the inability of the US Air Force to react to this change. The F-35A certainly...

Friday Squid Blogging: Operation Squid
From Schneier on Security

Friday Squid Blogging: Operation Squid

Operation Squid found 1.3 tons of cocaine hidden in frozen fish. As usual, you can also use this squid post to talk about the security stories in the news thathere...

Improving C++
From Schneier on Security

Improving C++

C++ guru Herb Sutter writes about how we can improve the programming language for better security. The immediate problem “is” that it’s Too Easy By Default™ totype...

Automakers Are Sharing Driver Data with Insurers without Consent
From Schneier on Security

Automakers Are Sharing Driver Data with Insurers without Consent

Kasmir Hill has the story: Modern cars are internet-enabled, allowing access to services like navigation, roadside assistance and car apps that drivers can connect...

Burglars Using Wi-Fi Jammers to Disable Security Cameras
From Schneier on Security

Burglars Using Wi-Fi Jammers to Disable Security Cameras

The arms race continues, as burglars are learning how to use jammers to disable Wi-Fi security cameras.

Jailbreaking LLMs with ASCII Art
From Schneier on Security

Jailbreaking LLMs with ASCII Art

Researchers have demonstrated that putting words in ASCII art can cause LLMs—GPT-3.5, GPT-4, Gemini, Claude, and Llama2—to ignore their safety instructions. Research...

Using LLMs to Unredact Text
From Schneier on Security

Using LLMs to Unredact Text

Initial results in using LLMs to unredact text based on the size of the individual-word redaction rectangles. This feels like something that a specialized ML system...

Friday Squid Blogging: New Plant Looks Like a Squid
From Schneier on Security

Friday Squid Blogging: New Plant Looks Like a Squid

Newly discovered plant looks like a squid. And it’s super weird: The plant, which grows to 3 centimetres tall and 2 centimetres wide, emerges to the surface for...

Essays from the Second IWORD
From Schneier on Security

Essays from the Second IWORD

The Ash Center has posted a series of twelve essays stemming from the Second Interdisciplinary Workshop on Reimagining Democracy (IWORD 2023). Aviv Ovadya, Democracy...

A Taxonomy of Prompt Injection Attacks
From Schneier on Security

A Taxonomy of Prompt Injection Attacks

Researchers ran a global prompt hacking competition, and have documented the results in a paper that both gives a lot of good examples and tries to organize a taxonomy...

How Public AI Can Strengthen Democracy
From Schneier on Security

How Public AI Can Strengthen Democracy

With the world’s focus turning to misinformation,  manipulation, and outright propaganda ahead of the 2024 U.S. presidential election, we know that democracy has...

Surveillance through Push Notifications
From Schneier on Security

Surveillance through Push Notifications

The Washington Post is reporting on the FBI’s increasing use of push notification data—”push tokens”—to identify people. The police can request this data from companies...

The Insecurity of Video Doorbells
From Schneier on Security

The Insecurity of Video Doorbells

Consumer Reports has analyzed a bunch of popular Internet-connected video doorbells. Their security is terrible. First, these doorbells expose your home IP address...

LLM Prompt Injection Worm
From Schneier on Security

LLM Prompt Injection Worm

Researchers have demonstrated a worm that spreads through prompt injection. Details: In one instance, the researchers, acting as attackers, wrote an email including...

Friday Squid Blogging: New Extinct Species of Vampire Squid Discovered
From Schneier on Security

Friday Squid Blogging: New Extinct Species of Vampire Squid Discovered

Paleontologists have discovered a 183-million-year-old species of vampire squid. Prior research suggests that the vampyromorph lived in the shallows off an island...

NIST Cybersecurity Framework 2.0
From Schneier on Security

NIST Cybersecurity Framework 2.0

NIST has released version 2.0 of the Cybersecurity Framework: The CSF 2.0, which supports implementation of the National Cybersecurity Strategy, has an expanded...
Sign In for Full Access
» Forgot Password? » Create an ACM Web Account