Блог пользователя - schneier

This paper describes the flaws in the Voatz Internet voting app: "The Ballot is Busted Before the Blockchain: A Security Analysis of Voatz, the First Internet Voting Appl...

The Swiss cryptography firm Crypto AG sold equipment to governments and militaries around the world for decades after World War II. They were owned by the CIA:But what no...

Interesting research -- "Phantom Attacks Against Advanced Driving Assistance Systems":Abstract: The absence of deployed vehicular communication systems, which prevents th...

Communities across the United States are starting to ban facial recognition technologies. In May of last year, San Francisco banned facial recognition; the neighboring ci...

Glenn Greenwald has been charged with cybercrimes in Brazil, stemming from publishing information and documents that were embarrassing to the government. The charges are ...

Yesterday's Microsoft Windows patches included a fix for a critical vulnerability in the system's crypto library.A spoofing vulnerability exists in the way Windows Crypto...

BusKill is designed to wipe your laptop (Linux only) if it is snatched from you in a public place:The idea is to connect the BusKill cable to your Linux laptop on one end...

No one knows who they belong to. (Well, of course someone knows. And my guess is that it's likely that we will know soon.)

The smartphone messaging app ToTok is actually an Emirati spying tool:But the service, ToTok, is actually a spying tool, according to American officials familiar with a c...

This isn't a first, but I think it will be the first conviction:The GIF set off a highly unusual court battle that is expected to equip those in similar circumstances wit...

There's a serious debate on reforming Section 230 of the Communications Decency Act. I am in the process of figuring out what I believe, and this is more a place to put r...

New South Wales is implementing a camera system that automatically detects when a driver is using a mobile phone.

The DHS is requiring all federal agencies to develop a vulnerability disclosure policy. The goal is that people who discover vulnerabilities in government systems have a ...

Iran has gone pretty much entirely offline in the wake of nationwide protests. This is the best article detailing what's going on; this is also good.AccessNow has a globa...

Interesting:Siri, Alexa, and Google Assistant are vulnerable to attacks that use lasers to inject inaudible­ -- and sometimes invisible­ -- commands into the devices and ...

This essay discusses the futility of opting out of surveillance, and suggests data obfuscation as an alternative.We can apply obfuscation in our own lives by using practi...

WhatsApp is suing the Israeli cyberweapons arms manufacturer NSO Group in California court:WhatsApp's lawsuit, filed in a California court on Tuesday, has demanded a perm...

There was a successful attack against NordVPN:Based on the command log, another of the leaked secret keys appeared to secure a private certificate authority that NordVPN ...

Lots of them weren't very good:BSD co-inventor Dennis Ritchie, for instance, used "dmac" (his middle name was MacAlistair); Stephen R. Bourne, creator of the Bourne shell...

Ed Snowden has published a book of his memoirs: Permanent Record. I have not read it yet, but I want to point you all towards two pieces of writing about the book. The fi...