Tag Archives: Security

What Security Experts Do Differently

Over at the Google Security Blog, Lulia Lon, Rob Reeder, and Sunny Consolvo have an interesting post on some research they did on what security experts do differently from non-expert to stay safe on the Internet. The post is the … Continue reading

Posted in General | Tagged | Leave a comment

The Washington Post Gets it Right

Last Wednesday, Irreal excoriated the Washington Post for their uninformed—ignorant really—editorial supporting backdoors in crypto systems allowing the FBI and other law enforcement agencies to read encrypted communications when they feel it's necessary. My post and the TechCrunch article it … Continue reading

Posted in General | Tagged , | Leave a comment

Will We Never Learn?

It's 2015 and this is still happening: for shits and giggles I port scanned my wife's new Cadillac. Both FTP and HTTP are open. pic.twitter.com/8Xb4o89fCd — Steve Manzuik (@hellNbak_) July 25, 2015 Matt BLaze suggests the reason for the above: … Continue reading

Posted in General | Tagged | Leave a comment

Backdoors and Magic

Over at TechCrunch, Jon Evans has a brilliant article entitled Technology Is Magic, Just Ask The Washington Post. In it, he lays waste to the Washington Post's call for Apple, Google, and others to implement back doors that only law … Continue reading

Posted in General | Tagged , | Leave a comment

Secure Chatting

Over at The Intercept, Micah Lee has an outstanding article on secure chatting. If you need to set up secure chatting with someone or if you simply want all your chats to be free from snooping by the usual Nosy … Continue reading

Posted in General | Tagged | Leave a comment

The History of Crypto Backdoors

Matthew Green has a nice post recounting the history of government mandated backdoors. If you're too young to remember the first round of the Crypto Wars from the 1990s, you'll find Green's history fascinating. Back then it was about the … Continue reading

Posted in General | Tagged | Leave a comment

Put a Fork in it.

Finally, there's a real push to get rid of one of the worst exploit vectors. Ever since Alex Stamos' tweet calling for an end-of-life for Flash there is accelerating agreement that it's time to kill flash. The idea of Flash … Continue reading

Posted in General | Tagged | Leave a comment

Moxie Marlinspike

I've written many times about the need to make email encryption accessible to Aunt Millie (see here, here, and here for example). Sadly, it's a really hard problem. Now, maybe there's some hope. The Wall Street Journal has an interesting … Continue reading

Posted in General | Tagged , | Leave a comment

There is No Internet of Things

A useful corollary to There is No Cloud. There is no Internet of Things, only other people's computers in your house. — Jacob H-A (@j4cob) July 15, 2015 In many ways, this is worse. Who knows what all those computers … Continue reading

Posted in General | Tagged | Leave a comment

Flash and Security

In an editor's note to the SANS Newsbites piece on Flash being used as a vector for the ransomware CryptoWall, William Hugh Murray speaks the uncomfortable truth on what Flash tells us about security.

Posted in General | Tagged | Leave a comment