New Attack on VPNs
May 7 2024This attack has been feasible for over two decades:
Researchers have devised an attack against nearly all virtual private network applications that forces them to send and receive some...
Read more
Lots of complicated details here: too many for me to summarize well. It involves an obscure Section 230 provision—and an even more obscure typo. Read this.
Read moreFriday Squid Blogging: Squid Purses
May 4 2024Squid-shaped purses for sale. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Read my blog posting guidelines...
Read moreMy TED Talks
May 4 2024I have spoken at several TED conferences over the years. TEDxPSU 2010: “Reconceptualizing Security” TEDxCambridge 2013: “The Battle for Power on the Internet” TEDMed 2016: “Who Controls Your Medical Data?” I’m...
Read moreThe Polish Embassy has posted a series of short interview segments with Marian Rejewski, the first person to crack the Enigma. Details from his biography.
Read moreThe UK Bans Default Passwords
May 2 2024The UK is the first country to ban default passwords on IoT devices.
On Monday, the United Kingdom became the first country in the world to ban default guessable...
Read more
AI Voice Scam
May 1 2024Scammers tricked a company into believing they were dealing with a BBC presenter. They faked her voice, and accepted money intended for her.
Read moreWhatsApp in India
April 30 2024Meta has threatened to pull WhatsApp out of India if the courts try to force it to break its end-to-end encryption.
Read moreWhale Song Code
April 29 2024During the Cold War, the US Navy tried to make a secret code out of whale song.
The basic plan was to develop coded messages from recordings of whales,...
Read more
Recent Comments