Schneier on Security

AUGUST 14, 2021

I’ll be speaking at an Informa event on September 14, 2021. I’m keynoting CIISec Live —an all-online event—September 15-16, 2021. This is a current list of where and when I am scheduled to speak: I’m speaking (via Internet) at SHIFT Business Festival in Finland, August 25-26, 2021. Details to come.

Data privacy 308

Data privacy Internet Internet Cybersecurity 308

Schneier on Security

JULY 14, 2021

I’ll be speaking at an Informa event on September 14, 2021. I’m keynoting CIISec Live —an all-online event—September 15-16, 2021. I’m speaking at DEFCON 29 , August 5-8, 2021. I’m speaking (via Internet) at SHIFT Business Festival in Finland, August 25-26, 2021. Details to come. The list is maintained on this page.

Internet 315

Internet Internet Technology 315

Schneier on Security

SEPTEMBER 23, 2020

UK hospitals had to redirect patients during the 2017 WannaCry ransomware attack , but there were no documented fatalities from that event. I think this is the first documented case of a cyberattack causing a fatality. The police are treating this as a homicide.

Ransomware 363

Ransomware Hacking 363

Schneier on Security

JUNE 14, 2024

The event will also be available via Zoom. I’m speaking at the TEDxBillings Democracy Event in Billings, Montana, USA, on July 19, 2024. I’m speaking on “Reimagining Democracy in the Age of AI” at the Bozeman Library in Bozeman, Montana, USA, July 18, 2024. The list is maintained on this page.

279

279

Schneier on Security

JANUARY 8, 2024

The event is like that; the format results in a firehose of interesting. It’s a two-day event. This is important for an interdisciplinary event. The final piece of the workshop is the social events. And even though a shorter event would be easier to deal with, the numbers all fit together in a way that’s hard to change.

Technology 273

Technology 273

The Hacker News

AUGUST 12, 2024

In 2023, no fewer than 94 percent of businesses were impacted by phishing attacks, a 40 percent increase compared to the previous year, according to research from Egress. What's behind the surge in phishing?

Phishing 138

Phishing 138

Schneier on Security

SEPTEMBER 14, 2024

The event runs from September 24 through 26, 2024, and my keynote is at 8:45 AM ET on the 24th. The event will be held on October 22 and 23, 2024, and my talk is at 9:15 AM ET on October 22, 2024. This is a current list of where and when I am scheduled to speak: I’m speaking at eCrime 2024 in Boston, Massachusetts, USA.

255

255

Joseph Steinberg

DECEMBER 7, 2021

For more details, or to register for the event, please visit: [link]. Achieving this requires a structured approach and a positive cybersecurity culture that includes not just the IT team but everyone in the organization. What are the critical factors for cybersecurity success? What are the key challenges for security leaders now and beyond?

Artificial Intelligence 357

Artificial Intelligence Cybersecurity Technology 357

Schneier on Security

OCTOBER 14, 2021

This is a current list of where and when I am scheduled to speak: I’ll be speaking at an Informa event on November 29, 2021. Details to come. The list is maintained on this page.

297

297

Schneier on Security

JULY 15, 2022

Currently, the police can only request historical footage from private cameras related to specific times and locations, rather than blanket monitoring.

Surveillance 327

Surveillance Technology 327

Schneier on Security

JUNE 2, 2022

Researchers have demonstrated controlling touchscreens at a distance, at least in a laboratory setting: The core idea is to take advantage of the electromagnetic signals to execute basic touch events such as taps and swipes into targeted locations of the touchscreen with the goal of taking over remote control and manipulating the underlying device.

Passwords 302

Passwords Software Malware 302

Schneier on Security

JULY 14, 2024

The event will also be available via Zoom. I’m speaking at the TEDxBillings Democracy Event in Billings, Montana, USA, on July 19, 2024. The list is maintained on this page.

232

232

Schneier on Security

AUGUST 14, 2024

The event runs from September 24 through 26, 2024, and my keynote is on the 24th. This is a current list of where and when I am scheduled to speak: I’m speaking at eCrime 2024 in Boston, Massachusetts, USA. The list is maintained on this page.

264

264

Schneier on Security

SEPTEMBER 29, 2020

In any event, Hron said the ransom attack is just the beginning of what an attacker could do. Specifically, he could trigger the coffee maker to turn on the burner, dispense water, spin the bean grinder, and display a ransom message, all while beeping repeatedly.

Hacking 362

Hacking IoT Engineering Internet 362

Schneier on Security

FEBRUARY 2, 2023

These days, dozens of teams from around the world compete in weekend-long marathon events held all over the world. In 2016, DARPA ran a similarly styled event for artificial intelligence (AI). There was a traditional human–team capture-the-flag event at DEFCON that same year. Inexplicably, DARPA never repeated the event.

Artificial Intelligence 317

Artificial Intelligence Technology Software Hacking 317

Schneier on Security

DECEMBER 27, 2023

No passcode fallback is available in the event that the user is unable to complete Face ID or Touch ID authentication. For especially sensitive actions, including changing the password of the Apple ID account associated with the iPhone, the feature adds a security delay on top of biometric authentication.

Authentication 321

Authentication Passwords Accountability 321

Krebs on Security

SEPTEMBER 18, 2024

Recently, these scammers have branched out into offering fake streaming services for nearly any kind of event advertised on Facebook. Apkdownloadweb has a Facebook page , which shows a number of “live video” teasers for sports events that have already happened, and says its domain is apkdownloadweb[.]com. net for DNS.

Scams 65

Scams DNS Internet Internet 65

Schneier on Security

NOVEMBER 14, 2020

I’ll be speaking at an Informa event on February 28, 2021. I’m appearing on a panel called “The Privacy Paradox and Security Dilemma” as part of the Web Summit conference, on December 2, 2020. Details to come. The list is maintained on this page.

Technology 334

Technology 334

Schneier on Security

JUNE 14, 2021

I’ll be speaking at an Informa event on September 14, 2021. I’m keynoting the 5th International Symposium on Cyber Security Cryptology and Machine Learning (via Zoom), July 8-9, 2021. I’m speaking (via internet) at SHIFT Business Festival in Finland, August 25-26, 2021. Details to come. The list is maintained on this page.

Internet 310

Internet Internet Encryption Technology 310

Schneier on Security

APRIL 1, 2022

These techniques are not new, but they’re increasingly popular : …some forms of MFA are stronger than others, and recent events show that these weaker forms aren’t much of a hurdle for some hackers to clear.

Authentication 363

Authentication Hacking Passwords 363

Schneier on Security

MAY 8, 2023

The DEF CON event will rely on an evaluation platform developed by Scale AI, a California company that produces training for AI applications. At DEF CON this year, Anthropic, Google, Hugging Face, Microsoft, NVIDIA, OpenAI and Stability AI will all open up their models for attack.

Hacking 266

Hacking Artificial Intelligence 266

Joseph Steinberg

JULY 23, 2024

During this webinar, you will learn how this global outage happened, what other security risks may be on the horizon, what lessons we can all learn from recent events, and what individuals, businesses, and governments can do to avoid similar disasters in the future.

Artificial Intelligence 284

Artificial Intelligence Cybersecurity Government Technology 284

Schneier on Security

MAY 15, 2023

“Gaining the kind of control required to compromise a software build system is generally a non-trivial event that requires a great deal of skill and possibly some luck.” Consequently, MSI doesn’t provide the same kind of key revocation capabilities. Delivering a signed payload isn’t as easy as all that.

Software 296

Software Ransomware 296

The Last Watchdog

JULY 25, 2024

Implementing zero trust across the entirety of the technology stack would go a long way toward increasing resilience against events like this. This event, more than any other, is precisely why companies need a defense in depth strategy. Learning from this event can be critical to reducing the recovery time from major outages to come.

Technology 317

Technology Ransomware Software Cyber Attacks 317

Schneier on Security

DECEMBER 16, 2024

This is a big upgrade for the security of the TLS ecosystem because it minimizes exposure time during a key compromise event. Specifically, certificates with a lifetime of six days.

Encryption 234

Encryption 234

Joseph Steinberg

JANUARY 25, 2021

Recent events have underscored the dangerous cyber environment that all of us are operating in,” said Annette Taber, senior vice president for industry outreach and relations at CompTIA.

Cybersecurity 363

Cybersecurity Technology 363

Schneier on Security

JANUARY 19, 2024

It’s possible that I gave some sort of blanket permission when speaking at an event. Zelle has been using my name, and my voice, in audio podcast ads—without my permission. At least, I think it is without my permission. It’s not likely, but it is possible. I wrote to Zelle about it. They asked me where the ads appeared.

Marketing 309

Marketing 309

Schneier on Security

JULY 24, 2024

“NEO carries an onboard computer and antenna array that will allow officers the ability to create a ‘denial-of-service’ (DoS) event to disable ‘Internet of Things’ devices that could potentially cause harm while entry is made.” ” Slashdot thread.

Internet 309

Internet Internet Computers and Electronics Media 309

Schneier on Security

JANUARY 12, 2022

Researchers have figured how how to intercept and fake an iPhone reboot: We’ll dissect the iOS system and show how it’s possible to alter a shutdown event, tricking a user that got infected into thinking that the phone has been powered off, but in fact, it’s still running.

Malware 336

Malware Software Hacking 336

Joseph Steinberg

OCTOBER 4, 2023

For more details, or to register for the event, please visit: [link] The post Artificial Intelligence and CyberSecurity Expert Joseph Steinberg To Keynote Pennsylvania Summit appeared first on Joseph Steinberg: CyberSecurity Expert Witness, Privacy, Artificial Intelligence (AI) Advisor.

Artificial Intelligence 276

Artificial Intelligence Cybersecurity Technology 276

Schneier on Security

JUNE 4, 2021

It’s not just an interdisciplinary event; most of the people here are individually interdisciplinary. Our goal is always to maximize discussion and interaction. We do that by putting everyone on panels, and limiting talks to six to eight minutes, with the rest of the time for open discussion.

Risk 351

Risk 351

Troy Hunt

SEPTEMBER 17, 2024

That she was able to do that and teach a room full of hundreds of technology professionals things they almost certainly hadn't seen before makes it all the more remarkable, and I'm very happy to now share the full video from that event in June with you all: If you watch nothing else in this video, fast forward through to the 55-minute mark (..)

Technology 273

Technology 273

Schneier on Security

JUNE 9, 2023

The timestamps of the files, folders and the database records allow to roughly reconstruct the events happening to the device. The mvt-ios utility produces a sorted timeline of events into a file called “timeline.csv,” similar to a super-timeline used by conventional digital forensic tools.

Malware 249

Malware Backups Mobile 249

Joseph Steinberg

JULY 21, 2022

And, of course, all versions of CyberSecurity For Dummies will also help guide you in the event that your information has already been compromised. You’ll get step-by-step guidance on how to implement reasonable security measures, prevent cyberattacks, and deal securely with remote work. Topics covered in the book include: ?

Cybersecurity 363

Cybersecurity Artificial Intelligence Backups Encryption 363

Schneier on Security

AUGUST 21, 2023

Interested would-be competitors can now submit their proposals to the Small Business Innovation Research program for evaluation and, eventually, selected teams will participate in a 2024 “qualifying event.” In other words: the government wants software that is capable of identifying and mitigating risks by itself.

Cybersecurity 210

Cybersecurity Small Business Government Software 210

Troy Hunt

JUNE 19, 2021

If you like this sort of content then I'll try and be a bit more organised next time, give some notice and make more of an event out of it. Thought I'd do a bit of AMA this week given the rest of the content was a bit lighter.

IoT 331

IoT Government Malware 331

Schneier on Security

SEPTEMBER 14, 2023

Doing so caused the malicious app to send a host of private information to the attacker, including the device IMEI number, phone number, MAC address, operator details, location data, Wi-Fi information, emails for Google accounts, contact list, and a PIN used to transfer texts in the event one was set up by the user.

Malware 335

Malware Accountability Hacking Spyware 335