🦜 Schneier on Security
@www.schneier.com.blog@rss-parrot.net
I'm an automated parrot! I relay a website's RSS feed to the Fediverse. Every time a new post appears in the feed, I toot about it. Follow me to get all new posts in your Mastodon timeline!
Brought to you by the RSS Parrot.
---
Your feed and you don't want it here? Just
e-mail the birb.
Live Video of Promachoteuthis Squid
https://www.schneier.com/blog/archives/2024/09/live-video-of-promachoteuthis-squid.html
Published: September 6, 2024 21:09
The first live video of the Promachoteuthis squid, filmed at a newly discovered seamount off the coast of Chile.
Blog moderation policy.
YubiKey Side-Channel Attack
https://www.schneier.com/blog/archives/2024/09/yubikey-side-channel-attack.html
Published: September 6, 2024 15:16
There is a side-channel attack against YubiKey access tokens that allows someone to clone a device. It’s a complicated attack, requiring the victim’s username and password, and physical access to their YubiKey—as well as some technical expertise and…
Long Analysis of the M-209
https://www.schneier.com/blog/archives/2024/09/long-analysis-of-the-m-209.html
Published: September 5, 2024 11:05
Really interesting analysis of the American M-209 encryption device and its security.
Security Researcher Sued for Disproving Government Statements
https://www.schneier.com/blog/archives/2024/09/security-researcher-sued-for-disproving-government-statements.html
Published: September 4, 2024 11:03
This story seems straightforward. A city is the victim of a ransomware attack. They repeatedly lie to the media about the severity of the breach. A security researcher repeatedly proves their statements to be lies. The city gets mad and sues the…
List of Old NSA Training Videos
https://www.schneier.com/blog/archives/2024/09/list-of-old-nsa-training-videos.html
Published: September 3, 2024 16:03
The NSA’s “National Cryptographic School Television Catalogue” from 1991 lists about 600 COMSEC and SIGINT training videos.
There are a bunch explaining the operations of various cryptographic equipment, and a few code words I have never heard of before.
SQL Injection Attack on Airport Security
https://www.schneier.com/blog/archives/2024/09/sql-injection-attack-on-airport-security.html
Published: September 2, 2024 11:07
Interesting vulnerability:
…a special lane at airport security called Known Crewmember (KCM). KCM is a TSA program that allows pilots and flight attendants to bypass security screening, even when flying on domestic personal trips.
The KCM process is fairly…
Friday Squid Blogging: Economic Fallout from Falklands Halting Squid Fishing
https://www.schneier.com/blog/archives/2024/08/friday-squid-blogging-economic-fallout-from-falklands-halting-squid-fishing.html
Published: August 30, 2024 21:04
Details.
Blog moderation policy.
Adm. Grace Hopper’s 1982 NSA Lecture Has Been Published
https://www.schneier.com/blog/archives/2024/08/adm-grace-hoppers-1982-nsa-lecture-has-been-published.html
Published: August 29, 2024 15:58
The “long lost lecture” by Adm. Grace Hopper has been published by the NSA. (Note that there are two parts.)
It’s a wonderful talk: funny, engaging, wise, prescient. Remember that talk was given in 1982, less than a year before the ARPANET switched to…
Matthew Green on Telegram’s Encryption
https://www.schneier.com/blog/archives/2024/08/matthew-green-on-telegrams-encryption.html
Published: August 28, 2024 11:00
Matthew Green wrote a really good blog post on what Telegram’s encryption is and is not.
The Present and Future of TV Surveillance
https://www.schneier.com/blog/archives/2024/08/the-present-and-future-of-tv-surveillance.html
Published: August 27, 2024 11:08
Ars Technica has a good article on what’s happening in the world of television surveillance. More than even I realized.
US Federal Court Rules Against Geofence Warrants
https://www.schneier.com/blog/archives/2024/08/us-federal-court-rules-against-geofence-warrants.html
Published: August 26, 2024 11:05
This is a big deal. A US Appeals Court ruled that geofence warrants—these are general warrants demanding information about all people within a geographical boundary—are unconstitutional.
The decision seems obvious to me, but you can’t take anything for…
Friday Squid Blogging: Self-Healing Materials from Squid Teeth
https://www.schneier.com/blog/archives/2024/08/friday-squid-blogging-self-healing-materials-from-squid-teeth.html
Published: August 23, 2024 21:03
Making self-healing materials based on the teeth in squid suckers.
Blog moderation policy.