The Last Watchdog

SEPTEMBER 14, 2023

In today’s digital age, trust has become a cornerstone of building a better Internet. Preserving privacy for a greater good The Internet was designed as a platform for peer research, not for the vast scale and diverse uses we see today. We possess the tools to craft a better, more trustworthy internet.

Internet 290

Internet Internet Technology Risk 290

Schneier on Security

JULY 17, 2024

6.8% , to be precise. From ZDNet : However, Distributed Denial of Service (DDoS) attacks continue to be cybercriminals’ weapon of choice, making up over 37% of all mitigated traffic. The scale of these attacks is staggering. In the first quarter of 2024 alone, Cloudflare blocked 4.5 million unique DDoS attacks.

Internet 312

Internet Internet DDOS Cybercrime 312

Tech Republic Security

OCTOBER 11, 2024

The Internet Archive, a non-profit digital library best known for its Wayback Machine, has disclosed a major data breach affecting over 31 million users.

Internet 185

Internet Internet Accountability Data breaches 185

Security Affairs

OCTOBER 11, 2024

The Internet Archive disclosed a data breach, the security incident impacted more than 31 million users of its “The Wayback Machine.” As of September 5, 2024, the Internet Archive held more than 42.1 Internet Archive hacked. million print materials, 13 million videos, 1.2 54% were already in @haveibeenpwned.

Data breaches 128

Data breaches Internet Internet DDOS 128

Security Affairs

OCTOBER 21, 2024

The Internet Archive was breached again, attackers hacked its Zendesk email support platform through stolen GitLab authentication tokens. The Internet Archive was breached via Zendesk, with users receiving warnings about stolen GitLab tokens due to improper token rotation after repeated alerts.

Internet 135

Internet Internet Data breaches Authentication 135

Schneier on Security

MARCH 5, 2024

Consumer Reports has analyzed a bunch of popular Internet-connected video doorbells. Their security is terrible.

Internet 330

Internet Internet Encryption Hacking 330

Malwarebytes

OCTOBER 21, 2024

Those who hacked the Internet Archive haven’t gone away. Users of the Internet Archive who have submitted helpdesk tickets are reporting replies to the tickets from the hackers themselves. Internet Archive, most known for its Wayback Machine, is a digital library that allows users to look at website snapshots from the past.

Internet 141

Internet Internet DDOS Data breaches 141

Tech Republic Security

OCTOBER 10, 2024

Patch Tuesday brings patches for hundreds of vulnerabilities. Plus, Apple makes sure Sequoia plays nice with third-party security tools.

Internet 181

Internet Internet Software 181

Tech Republic Security

AUGUST 15, 2024

ExpressVPN’s overall polish, fast performance and wider server network give it a slight edge over PIA VPN’s feature-rich and affordable package.

VPN 183

VPN Internet Internet 183

Krebs on Security

MAY 23, 2024

Two weeks before Russia invaded Ukraine in February 2022, a large, mysterious new Internet hosting firm called Stark Industries Solutions materialized and quickly became the epicenter of massive distributed denial-of-service (DDoS) attacks on government and commercial targets in Ukraine and Europe. The homepage of Stark Industries Solutions.

DDOS 305

DDOS Internet Internet Government 305

Schneier on Security

SEPTEMBER 16, 2024

Welcome to the security nightmare that is the Internet of Things. CISA wants everyone—and government agencies in particular—to remove or upgrade an Ivanti Cloud Service Appliance (CSA) that is no longer being supported.

Internet 270

Internet Internet Government 270

Schneier on Security

AUGUST 20, 2024

This is yet another insecure Internet-of-things story , this one about wireless gear shifters for bicycles. These gear shifters are used in big-money professional bicycle races like the Tour de France, which provides an incentive to actually implement this attack. Research paper. Another news story. Slashdot thread.

Wireless 275

Wireless Hacking Internet Internet 275

Krebs on Security

AUGUST 27, 2024

Malicious hackers are exploiting a zero-day vulnerability in Versa Director , a software product used by many Internet and IT service providers. Researchers believe the activity is linked to Volt Typhoon , a Chinese cyber espionage group focused on infiltrating critical U.S. In a security advisory published Aug. victims and one non-U.S.

Internet 314

Internet Internet Technology Engineering 314

Krebs on Security

DECEMBER 3, 2024

Currently, there are around 2,500 registrars authorized to sell domains by the Internet Corporation for Assigned Names and Numbers (ICANN), the California nonprofit that oversees the domain industry. John Levine is author of the book “The Internet for Dummies” and president of CAUCE.

Cybercrime 263

Cybercrime Phishing Accountability Internet 263

WIRED Threat Level

DECEMBER 19, 2024

A free VPN app called Big Mama is selling access to peoples home internet networks. Kids are using it to cheat in a VR game while researchers warn of bigger security risks.

VPN 92

VPN Internet Internet Risk 92

Schneier on Security

JANUARY 6, 2023

It’s enough to make you want to buy a car that is not Internet-connected. This group has found a ton of remote vulnerabilities in all sorts of automobiles. Unfortunately, that seems to be impossible.

Internet 315

Internet Internet Hacking 315

Schneier on Security

FEBRUARY 13, 2024

The closest he ever comes is when he speaks of how “for decades, technologists have dreamed of building a grassroots internet access provider” He describes one project that “got further than anyone else”: Helium. billion.

Internet 307

Internet Internet 307

Schneier on Security

AUGUST 29, 2024

Remember that talk was given in 1982, less than a year before the ARPANET switched to TCP/IP and the internet went operational. (Note that there are two parts.) It’s a wonderful talk: funny, engaging, wise, prescient. She was a remarkable person.

Engineering 322

Engineering Internet Internet 322

Schneier on Security

MARCH 14, 2024

Kasmir Hill has the story : Modern cars are internet-enabled, allowing access to services like navigation, roadside assistance and car apps that drivers can connect to their vehicles to locate them or unlock them remotely. In recent years, automakers, including G.M.,

Insurance 347

Insurance Internet Internet Surveillance 347

Schneier on Security

DECEMBER 15, 2023

In 2016, I wrote about an Internet that affected the world in a direct, physical manner. This was the Internet of Things (IoT). The classical definition of a robot is something that senses, thinks, and acts—that’s today’s Internet. It was connected to your smartphone. It had actuators: Drones, autonomous cars.

Internet 322

Internet Internet IoT Banking 322

Schneier on Security

MAY 3, 2024

TEDxPSU 2010: “ Reconceptualizing Security ” TEDxCambridge 2013: “ The Battle for Power on the Internet ” TEDMed 2016: “ Who Controls Your Medical Data ?” I have spoken at several TED conferences over the years. ” I’m putting this here because I want all three links in one place.

Internet 279

Internet Internet 279

Krebs on Security

MARCH 17, 2022

The group also is tracking several code packages that were recently modified to erase files on computers that appear to be coming from Russian or Belarusian Internet addresses. For example, the popular library ES5-ext hadn’t updated its code in nearly two years. The message has been Google-Translated from Russian to English.

Malware 351

Malware Internet Internet Software 351

Krebs on Security

SEPTEMBER 27, 2023

The victim shaming site operated by the Snatch ransomware group is leaking data about its true online location and internal operations, as well as the Internet addresses of its visitors, KrebsOnSecurity has found. Probably the most active Internet address accessing Snatch’s darknet site is 193.108.114[.]41 top , sntech2ch[.]top

Ransomware 293

Ransomware Internet Internet Phishing 293

Krebs on Security

MARCH 31, 2023

Authorities in Germany this week seized Internet servers that powered FlyHosting , a dark web offering that catered to cybercriminals operating DDoS-for-hire services, KrebsOnSecurity has learned. The German authorities did not name the suspects or the Internet service in question.

DDOS 287

DDOS Internet Internet Cybercrime 287

Schneier on Security

JULY 25, 2024

Friday’s massive internet outage, caused by a mid-sized tech company called CrowdStrike, disrupted major airlines, hospitals, and banks. The catastrophe is yet another reminder of how brittle global internet infrastructure is. Compare the internet with ecological systems. Nearly 7,000 flights were canceled.

Marketing 324

Marketing Software Internet Internet 324

Schneier on Security

OCTOBER 1, 2022

We’re now learning that the CIA is still “using an irresponsibly secured system for asset communication.”

Internet 321

Internet Internet 321

Schneier on Security

MARCH 30, 2023

Now this is interesting: Thousands of pages of secret documents reveal how Vulkan’s engineers have worked for Russian military and intelligence agencies to support hacking operations, train operatives before attacks on national infrastructure, spread disinformation and control sections of the internet.

Engineering 320

Engineering Internet Internet Hacking 320

Schneier on Security

APRIL 11, 2024

Last week, the internet dodged a major nation-state attack that would have had catastrophic cybersecurity repercussions worldwide. There are libraries for everything: displaying objects in 3D, spell-checking, performing complex mathematics, managing an e-commerce shopping cart, moving files around the internet—everything.

Software 352

Software Engineering Internet Internet 352

Schneier on Security

JULY 5, 2023

I have mixed feelings about this class-action lawsuit against OpenAI and Microsoft, claiming that it “scraped 300 billion words from the internet” without either registering as a data broker or obtaining consent. Indeed, we already see AI startups hammering the Internet Archive for training data.

Internet 264

Internet Internet Artificial Intelligence 264

Schneier on Security

APRIL 2, 2024

And a 1994 review of Applied Cryptography by redacted : Applied Cryptography, for those who don’t read the internet news, is a book written by Bruce Schneier last year. Schneier has gathered academic research, internet gossip, and everything he could find on cryptography into one 600-page jumble. There are many redactions.

Internet 315

Internet Internet 315

Lohrman on Security

JUNE 9, 2024

Over the past month, the Verizon Data Breach Investigation Report and the Watchguard Technologies Internet Security Report were released. Here are some highlights.

Data breaches 234

Data breaches Internet Internet Technology 234

Krebs on Security

MAY 29, 2024

.” The arrest coincided with the seizure of the 911 S5 website and supporting infrastructure, which the government says turned computers running various “free VPN” products into Internet traffic relays that facilitated billions of dollars in online fraud and cybercrime. Cloud Router was previously called 911 S5.

VPN 317

VPN Government Cybercrime Internet 317

Joseph Steinberg

JANUARY 19, 2022

People and organizations around the globe rely on encryption as the primary method of keeping data secure when transmitted across the Internet. But, with the arrival of powerful quantum computers, any data that is captured now can potentially be decrypted tomorrow.

Encryption 363

Encryption Backups Banking Artificial Intelligence 363

Daniel Miessler

DECEMBER 18, 2021

Just to point out to those panicking about this right now: this is a very uncommon situation to be vulnerable from this cve in a “readily exploitable from the internet” way. And the internet moves fast. And Nate figured this out like 4 days ago! So, if you’re already patched to 2.15 This also applies to the DoS that 2.17

Internet 363

Internet Internet Information Security 363

Schneier on Security

SEPTEMBER 28, 2022

The Atlantic Council has published a report on securing the Internet of Things: “Security in the Billions: Toward a Multinational Strategy to Better Secure the IoT Ecosystem.”

IoT 313

IoT Telecommunications Manufacturing Internet 313

Schneier on Security

MAY 21, 2024

Apple and Google said they will continue collaborating with the Internet Engineering Task Force to further develop this technology and address the issue of unwanted tracking. Several Bluetooth tag companies have committed to making their future products compatible with the new standard.

Engineering 283

Engineering Internet Internet Technology 283

Schneier on Security

MAY 7, 2024

TunnelVision, as the researchers have named their attack, largely negates the entire purpose and selling point of VPNs, which is to encapsulate incoming and outgoing Internet traffic in an encrypted tunnel and to cloak the user’s IP address.

VPN 323

VPN Encryption Internet Internet 323