Four Microsoft Exchange Zero-Days Exploited by China
March 4 2021Microsoft has issued an emergency Microsoft Exchange patch to fix four zero-day vulnerabilities currently being exploited by China. EDITED TO ADD (3/12): Exchange Online is not affected.
Read moreChinese Hackers Stole an NSA Windows Exploit in 2014
March 4 2021
Check Point has evidence that (probably government affiliated) Chinese hackers stole and cloned an NSA Windows hacking tool years before (probably government affiliated) Russian hackers stole and then...
Read moreNASA made an oblique reference to a coded message in the color pattern of the Perseverance Mars Lander ‘s parachute. More information.
Read moreMysterious Macintosh Malware
March 2 2021
This is weird:
Once an hour, infected Macs check a control server to see if there are any new commands the malware should run or binaries to execute. So...
Read more
National Security Risks of Late-Stage Capitalism
March 1 2021
Early in 2020, cyberspace attackers apparently working for the Russian government compromised a piece of widely used network management software made by a company called SolarWinds. The hack gave...
Read moreThe Problem with Treating Data as a Commodity
February 26 2021
Excellent Brookings paper: “Why data ownership is the wrong approach to protecting privacy.”
From the introduction:
Treating data like it is property fails to recognize either the value that varieties...
Read more
On Chinese-Owned Technology Platforms
February 25 2021
I am a co-author on a report published by the Hoover Institution: “Chinese Technology Platforms Operating in the United States.” From a blog post:
The report suggests a...
Read more
Twelve-Year-Old Vulnerability Found in Windows Defender
February 24 2021
Researchers found, and Microsoft has patched, a vulnerability in Windows Defender that has been around for twelve years. There is no evidence that anyone has used the vulnerability...
Read more
Recent Comments