Americans and Cybersecurity [Link]

February 14, 2017 by Gabe | [mmd] | ℳ↫

A new study out last month from the Pew Research Center show that americans understand the security risks online but are pretty bad at protecting themselves.

The survey also finds that Americans are not always vigilant in the context of mobile security. For instance, 28% of smartphone owners report that they do not use a screen lock or other security features in order to access their phone, while around one-in-ten report that they never install updates to their smartphone’s apps or operating system. Meanwhile, 54% of online adults report that they utilize potentially insecure public Wi-Fi networks – with around one-in-five of these users reporting that they use these networks to perform sensitive activities such as e-commerce or online banking.

By way of Schneier on Security

Older articles

  1. Google Ordered to Hand Over Foreign Email [Link]

    February 06, 2017 by Gabe | [mmd] | ℳ↫

    From Betanews:

    In Philadelphia, Magistrate Judge Thomas Rueter said: "Though the retrieval of the electronic data by Google from its multiple data centers abroad has the potential for an invasion of privacy, the actual infringement of privacy occurs at the time of disclosure in the United States". He ruled that ...

  2. KFC Facial Recognition Trial [Link]

    January 10, 2017 by Gabe | [mmd] | ℳ↫

    Really, what could go wrong here:

    the system would tell a male customer in his early 20s to order a set meal of crispy chicken hamburger, roasted chicken wings and coke for lunch, while a female customer in her 50s would get a recommendation of porridge and soybean milk for ...

  3. DROP TABLE LTD [Link]

    January 06, 2017 by Gabe | [mmd] | ℳ↫

    From the "the future kind of sucks" files comes this update out of the UK. There's now a company named for a SQL injection attack. I'm hopeful that the global economy will survive ; DROP TABLE "COMPANIES";-- LTD's first public offering.

  4. The Download on the DNC Hack [Link]

    January 04, 2017 by Gabe | [mmd] | ℳ↫

    Another great summary from Brian Krebs. No matter which side you fall on politically, this stuff should concern you. The problem isn't whether there is hacking, the problem is that we can't even believe the official responses so it leaves a vacuum of information that is readily filled ...

  5. Evernote, Humans, and Machines

    December 19, 2016 by Gabe | [mmd] |

    The recent Evernote privacy policy brought about considerable response from the nerds.

    Here’s the relevant section many are concerned with (highlighting is mine):

    The latest update to the Privacy Policy allows some Evernote employees to exercise oversight of machine learning technologies applied to account content, subject to the limits ...

  6. How to Encrypt in Less Than an Hour [Link]

    December 06, 2016 by Gabe | [mmd] | ℳ↫

    Quincy Larson has a pretty reasonable approach to encrypting your data:

    And when I use the terms “private” or “secure”, I mean reasonably so. The reality is that — as long as humans are involved — no system will ever be 100% private or 100% secure.

    His list is short and pretty ...

  7. San Francisco Rail System Hacker Hacked [Link]

    December 01, 2016 by Gabe | [mmd] | ℳ↫

    I know many people that are fascinated by the hack of San Francisco's MUNI. I'm far more fascinated by the white-hat battles against the hacker, which may have resulted in breaching the miscreant's email accounts. From Brian Krebs:

    On Monday, KrebsOnSecurity was contacted by a security researcher ...

  8. Mirai Botnet Pushes Many Germans Offline [Link]

    December 01, 2016 by Gabe | [mmd] | ℳ↫

    Brian Krebs continues to follow the analysis of the biggest Botnet attacks the world has ever seen.

    Tell me this doesn't sound like a William Gibson plot writing itself:

    “This is an interesting development because a lot of the response to Mirai lately has been to find a Mirai ...

  9. Akamai on the Krebs DDoS Attack [Link]

    November 25, 2016 by Gabe | [mmd] | ℳ↫

    Akamai was the DDoS protection service used by security researcher Brian Krebs. At least until last September when they couldn’t offer pro-bono protection under the weight of new massive attacks.

    Their latest report details the specific attack on Krebs.

    As detailed here in several previous posts, KrebsOnSecurity.com was ...