Serious F5 Breach
October 23 2025This is bad:
F5, a Seattle-based maker of networking software, disclosed the breach on Wednesday. F5 said a “sophisticated” threat group working for an undisclosed nation-state government had...
Read more
Failures in Face Recognition
October 22 2025Interesting article on people with nonstandard faces and how facial recognition systems fail for them.
Some of those living with facial differences tell WIRED they have undergone multiple surgeries...
Read more
A Cybersecurity Merit Badge
October 21 2025Scouting America (formerly known as Boy Scouts) has a new badge in cybersecurity. There’s an image in the article; it looks good. I want one.
Read moreAgentic AI’s OODA Loop Problem
October 20 2025The OODA loop—for observe, orient, decide, act—is a framework to understand decision-making in adversarial situations. We apply the same framework to artificial intelligence agents, who have to make their...
Read moreFriday Squid Blogging: Squid Inks Philippines Fisherman
October 18 2025Good video. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Blog moderation policy.
Read moreA Surprising Amount of Satellite Traffic Is Unencrypted
October 17 2025Here’s the summary:
We pointed a commercial-off-the-shelf satellite dish at the sky and carried out the most comprehensive public study to date of geostationary satellite communication. A shockingly large...
Read more
Cryptocurrency ATMs
October 16 2025CNN has a great piece about how cryptocurrency ATMs are used to scam people out of their money. The fees are usurious, and they’re a common place for scammers...
Read moreApple’s Bug Bounty Program
October 15 2025Apple is now offering a $2M bounty for a zero-click exploit. According to the Apple website:
Today we’re announcing the next major chapter for Apple Security Bounty,...
Read more
Upcoming Speaking Engagements
October 15 2025This is a current list of where and when I am scheduled to speak:
Recent Comments