Archive for the ‘security’ Category

The Mueller Investigation May Be Safe Despite Matt Whitaker

November 14th, 2018
Robert Mueller's work as special counsel may seem imperiled by the acting attorney general, but there's plenty of reason for optimism.

Posted in security | Comments (0)

Mozilla’s ‘Privacy Not Included’ Gift Report Highlights Security Concerns

November 14th, 2018
In its second annual “Privacy Not Included” guide, the nonprofit highlights internet-connected items that value your privacy—and the ones that may not.

Posted in security | Comments (0)

DARPA’s Hail Mary Plan to Restart a Hacked US Electric Grid

November 14th, 2018
On tiny Plum Island, DARPA stages a real-life blackout to put its grid recovery tools to the test.

Posted in security | Comments (0)

Spectre, Meltdown researchers unveil 7 more speculative execution attacks

November 14th, 2018
Spectre, Meltdown researchers unveil 7 more speculative execution attacks

Enlarge (credit: Aurich Lawson / Getty Images)

Back at the start of the year, a set of attacks that leveraged the speculative execution capabilities of modern high-performance processors was revealed, with the names Meltdown and Spectre. Since then, numerous variants of these attacks have been devised. In tandem with this, a range of mitigation techniques have been created to enable at-risk software, operating systems, and hypervisor platforms to protect against these attacks.

A research team including many of the original researchers behind Meltdown and Spectre, and the related Foreshadow and BranchScope attacks, has published a new paper disclosing yet more attacks in the Spectre and Meltdown families. The result? Seven new possible attacks. Some are mitigated by known mitigation techniques, but others are not, meaning that further work is required to safeguard vulnerable systems.

The previous investigations into these attacks has been a little ad hoc in nature; examining particular features of interest to provide, for example, a Spectre attack that can be performed remotely over a network, or Meltdown-esque attack to break into SGX enclaves. The new research is more systematic, looking at the underlying mechanisms behind both Meltdown and Spectre and running through all the different ways the speculative execution can be misdirected.

Read 13 remaining paragraphs | Comments

Posted in AMD, ARM, Intel, meltdown, security, Spectre, speculative execution, Tech | Comments (0)

Why Google Internet Traffic Rerouted Through China and Russia

November 13th, 2018
For two hours Monday, Google internet traffic rerouted through China, Russia, and elsewhere. Here's why.

Posted in security | Comments (0)

The US Didn’t Sign the Paris Call for Trust and Security in Cyberspace

November 13th, 2018
Corporations have taken the lead over nations on governing the internet: The initiative might not have counted the US as a signatory, but did include Microsoft, Facebook, Google, and others.

Posted in security | Comments (0)

The US Is the Only Country Where There Are More Guns Than People

November 12th, 2018
The US has the worst rate of gun violence among all developed countries, and still we fail to regulate.

Posted in security | Comments (0)

How to Safely and Securely Dispose of Your Old Gadgets

November 11th, 2018
Keep your data private and the environment protected.

Posted in security | Comments (0)

An Elon Musk Imposter, Foreign Malware Samples, and More Security News This Week

November 10th, 2018
Compromised crypto, flawed SSDs, and more of the week's top security news.

Posted in security | Comments (0)

Sue Gordon: Silicon Valley Should Work With the Government

November 9th, 2018
In an expansive on-the-record interview with WIRED, the principal deputy director of national intelligence made her pitch for public-private partnerships.

Posted in security | Comments (0)