Crypto-Gram Newsletter
Crypto-Gram is a free monthly e-mail digest of posts from Bruce Schneier's Schneier on Security blog.
Recent Issues
October 15, 2018
In this issue:
- NSA Attacks Against Virtual Private Networks
- Public Shaming of Companies for Bad Security
- Pegasus Spyware Used in 45 Countries
- Security Vulnerability in ESS ExpressVote Touchscreen Voting Computer
- AES Resulted in a $250-Billion Economic Benefit
- New Findings About Prime Number Distribution Almost Certainly Irrelevant to Cryptography
- New Variants of Cold-Boot Attack
- Evidence for the Security of PKCS #1 Digital Signatures
- Counting People through a Wall with Wi-Fi
- Yet Another IoT Cybersecurity Document
- Major Tech Companies Finally Endorse Federal Privacy Regulation
- More on the Five Eyes Statement on Encryption and Backdoors
- Facebook Is Using Your Two-Factor Authentication Phone Number to Target Advertising
- Sophisticated Voice Phishing Scams
- Terahertz Millimeter-Wave Scanners
- The Effects of GDPR's 72-Hour Notification Rule
- Helen Nissenbaum on Data Privacy and Consent
- Chinese Supply Chain Hardware Attack
- Conspiracy Theories around the "Presidential Alert"
- Detecting Credit Card Skimmers
- Defeating the "Deal or No Deal" Arcade Game
- The US National Cyber Strategy
- Access Now Is Looking for a Chief Security Officer
- Security Vulnerabilities in US Weapons Systems
- Another Bloomberg Story about Supply-Chain Hardware Attacks from China
- Security in a World of Physically Capable Computers
- Upcoming Speaking Engagements
September 15, 2018
In this issue:
- New Book Announcement: Click Here to Kill Everybody
- Speculation Attack Against Intel's SGX
- New Ways to Track Internet Browsing
- James Mickens on the Current State of Computer Security
- "Two Stage" BMW Theft Attempt
- Good Primer on Two-Factor Authentication Security
- John Mueller and Mark Stewart on the Risks of Terrorism
- Future Cyberwar
- NotPetya
- CIA Network Exposed through Insecure Communications System
- Cheating in Bird Racing
- Eavesdropping on Computer Screens through the Webcam Mic
- Using a Smartphone's Microphone and Speakers to Eavesdrop on Passwords
- Five-Eyes Intelligence Services Choose Surveillance Over Security
- Reddit AMA
- Using Hacked IoT Devices to Disrupt the Power Grid
- Security Vulnerability in Smart Electric Outlets
- Security Risks of Government Hacking
- Quantum Computing and Cryptography
- Click Here to Kill Everybody Reviews and Press Mentions
- Upcoming Speaking Engagements
August 15, 2018
In this issue:
- New Book Announcement: Click Here to Kill Everybody
- Reasonably Clever Extortion E-mail Based on Password Theft
- Installing a Credit Card Skimmer on a POS Terminal
- Defeating the iPhone Restricted Mode
- Suing South Carolina Because Its Election Machines Are Insecure
- New Report on Chinese Intelligence Cyber-Operations
- 1Password's Travel Mode
- Nicholas Weaver on Cryptocurrencies
- On Financial Fraud
- Major Bluetooth Vulnerability
- DARPA Wants Research into Resilient Anonymous Communications
- Google Employees Use a Physical Token as Their Second Authentication Factor
- Third Annual Cybercrime Conference
- New Report on Police Digital Forensics Techniques
- Identifying People by Metadata
- The Poor Cybersecurity of US Space Assets
- Hacking a Robot Vacuum
- Backdoors in Cisco Routers
- GCHQ on Quantum Key Distribution
- Using In-Game Purchases to Launder Money
- How the US Military Can Better Keep Hackers
- Three of My Books Are Available in DRM-Free E-Book Format
- Hacking the McDonald's Monopoly Sweepstakes
- Measuring the Rationality of Security Decisions
- SpiderOak's Warrant Canary Died
- Detecting Phishing Sites with Machine Learning
- Don't Fear the TSA Cutting Airport Security. Be Glad That They're Talking about It.
- xkcd on Voting Computers
- Identifying Programmers by their Coding Style
- Google Tracks its Users Even if They Opt-Out of Tracking
- My Speaking Engagements
Photo of Bruce Schneier by Per Ervland.
Schneier on Security is a personal website. Opinions expressed are not necessarily those of IBM Resilient.