Crypto-Gram Newsletter
Crypto-Gram is a free monthly e-mail digest of posts from Bruce Schneier’s Schneier on Security blog.
Recent Issues
May 15, 2024
In this issue:
- New Lattice Cryptanalytic Technique
- X.com Automatically Changing Link Text but Not URLs
- Using AI-Generated Legislative Amendments as a Delaying Technique
- Other Attempts to Take Over Open Source Projects
- Using Legitimate GitHub URLs for Malware
- Microsoft and Security Incentives
- Dan Solove on Privacy Regulation
- The Rise of Large-Language-Model Optimization
- Long Article on GM Spying on Its Cars' Drivers
- Whale Song Code
- WhatsApp in India
- AI Voice Scam
- The UK Bans Default Passwords
- Rare Interviews with Enigma Cryptanalyst Marian Rejewski
- My TED Talks
- New Lawsuit Attempting to Make Adversarial Interoperability Legal
- New Attack on VPNs
- How Criminals Are Using Generative AI
- New Attack Against Self-Driving Car AI
- LLMs’ Data-Control Path Insecurity
- Another Chrome Vulnerability
- Upcoming Speaking Engagements
April 15, 2024
In this issue:
- Improving C++
- Drones and the US Air Force
- AI and the Evolution of Social Media
- Cheating Automatic Toll Booths by Obscuring License Plates
- Public AI as an Alternative to Corporate AI
- Google Pays $10M in Bug Bounties in 2023
- Licensing AI Engineers
- On Secure Voting Systems
- Security Vulnerability in Saflok’s RFID-Based Keycard Locks
- Hardware Vulnerability in Apple’s M-Series Chips
- Lessons from a Ransomware Attack against the British Library
- Ross Anderson
- Magic Security Dust
- Declassified NSA Newsletters
- XZ Utils Backdoor
- Class-Action Lawsuit against Google’s Incognito Mode
- Surveillance by the New Microsoft Outlook App
- Maybe the Phone System Surveillance Vulnerabilities Will Be Fixed
- Security Vulnerability of HTML Emails
- US Cyber Safety Review Board on the 2023 Microsoft Exchange Hack
- In Memoriam: Ross Anderson, 1956-2024
- Backdoor in XZ Utils That Almost Happened
- Smuggling Gold by Disguising it as Machine Parts
- Upcoming Speaking Engagements
March 15, 2024
In this issue:
- On the Insecurity of Software Bloat
- European Court of Human Rights Rejects Encryption Backdoors
- Microsoft Is Spying on Users of Its AI Tools
- Details of a Phone Scam
- New Image/Video Prompt Injection Attacks
- AIs Hacking Websites
- Apple Announces Post-Quantum Encryption Algorithms for iMessage
- China Surveillance Company Hacked
- A Cyber Insurance Backstop
- How the “Frontier” Became the Slogan of Uncontrolled AI
- NIST Cybersecurity Framework 2.0
- LLM Prompt Injection Worm
- The Insecurity of Video Doorbells
- Surveillance through Push Notifications
- How Public AI Can Strengthen Democracy
- A Taxonomy of Prompt Injection Attacks
- Essays from the Second IWORD
- Using LLMs to Unredact Text
- Jailbreaking LLMs with ASCII Art
- Burglars Using Wi-Fi Jammers to Disable Security Cameras
- Automakers Are Sharing Driver Data with Insurers without Consent
Sidebar photo of Bruce Schneier by Joe MacInnis.