Saturday, December 23, 2017

We all need some of this....

Friday, December 8, 2017

Trust must always be minimal and subject to scientific proof through lambda-calculus and Church-Turing machinery implemented in hardware. K J HAMER-HODGES....E.G. Rutkowska: Trust Makes Us Vulnerable

Security industry needs to be less trusting to get more secure • The Register Forums


Minimal trust always comes back to capability based Church-Turing machines that scientifically encapsulate algogithms as proven by the Plessey PP250 decades ago.

Thursday, November 30, 2017

Apple releases patch for catastrophic security flaw in MacOS 10.13 | Computing

Tuesday, November 7, 2017

GDPR: What will happen in the first 72 hours after a data breach? | Computing

Friday, November 3, 2017

Re: [Caja] WASM and ocaps

Interesting!

On Nov 3, 2017 5:56 PM, "Mark Miller" <erights@gmail.com> wrote:
At the latest wasm (Web Assembly) standards meeting, I pointed out that wasm is already an OS-like ocap system: A wasm instance, with its linear data space + table of opaque external functions/objects is already a process-granularity-like unit of isolation with an address space and a clist. A wasm computation addresses its clist entries by clist index as expected. In addition, wasm currently obeys the following restriction.

> WebAssembly instances must never be able to cause effects other than by wielding explicitly granted access (e.g. the importObject in a JS embedding).

According to Andreas Rossberg (cc'ed), this is on purpose, even though the people in the room at the time did not seem to know that. I suggested that it be made normative, so security uses of this restriction would not be compromised by later "enhancements" that accidentally break this unarticulated restriction.

is the one to watch. Assuming I do a good job clarifying the agreement we just came to, and assuming the agreement holds in the face of these clarifications, it looks like wasm will explicitly be the object-capability system it was designed to be.

Andreas and Bradley (also cc'ed), please clarify or expand as appropriate. If you don't want to subscribe to these lists, send your posts to me and I will forward. Thanks.

--
  Cheers,
  --MarkM

--

---
You received this message because you are subscribed to the Google Groups "Google Caja Discuss" group.
To unsubscribe from this group and stop receiving emails from it, send an email to google-caja-discuss+unsubscribe@googlegroups.com.
For more options, visit https://groups.google.com/d/optout.

Friday, October 27, 2017

BBC News: Artificial intelligence smart enough to fool Captcha security check

I saw this on the BBC and thought you should see it:

Artificial intelligence smart enough to fool Captcha security check - http://www.bbc.co.uk/news/technology-41775968

* Disclaimer *

The BBC is not responsible for the content of this email, and anything written in this email does not necessarily reflect the BBC's views or opinions. Please note that neither the email address nor name of the sender have been verified.

Thursday, October 26, 2017

The KRACK Wi-Fi vulnerability, explained like you're five

The KRACK Wi-Fi vulnerability, explained like you're five
https://thenextweb.com/security/2017/10/17/krack-explained-like-youre-five-years-old/

Monday, October 16, 2017

Cat theory

Thursday, October 12, 2017

MarketWatch: Opinion: The cyberwars are coming — here’s how to prepare (and make money)

MarketWatch: Opinion: The cyberwars are coming — here's how to prepare (and make money) http://google.com/newsstand/s/CBIwyruyqTY

Marketplace APM: 10/12/2017: A computer science "genius" on why we haven't fixed cybersecurity

Marketplace APM: 10/12/2017: A computer science "genius" on why we haven't fixed cybersecurity. http://google.com/newsstand/s/CBIwjYy2qTY

Tuesday, October 10, 2017

Engadget: 37,000 Chrome users downloaded a fake Adblock Plus extension

Engadget: 37,000 Chrome users downloaded a fake Adblock Plus extension. http://google.com/newsstand/s/CBIw0cjD0DI

Friday, October 6, 2017

Re: Unit 42 Threat Intelligence ALERT

Update

On Oct 6, 2017 14:29, Palo Alto Networks <marketing-emails@paloaltonetworks.com> wrote:
Unit 42 Threat Intelligence ALERT

If you're having trouble reading this message, click here

Threat Research. The next step in Threat Intelligence.
Read the latest research>

FREEMILK: A HIGHLY TARGETED SPEAR PHISHING CAMPAIGN

In May 2017, Palo Alto Networks Unit 42 identified a limited spear phishing campaign targeting various individuals across the world. The threat actor leveraged... Read more >

THREAT ACTORS TARGET GOVERNMENT OF BELARUS USING CMSTAR TROJAN

Palo Alto Networks Unit 42 has identified a series of phishing emails containing updated versions of the previously discussed CMSTAR malware family... Read more >

THREAT BRIEF: CONVERSATION HIJACKING SPEAR PHISHING

Spear Phishing is a specific attack technique that has become widely used in the past few years. In our new research blog "FreeMilk: A Highly Targeted Spear Phishing Campaign"... Read more >

 
 
Email
LinkedIn
Facebook
Twitter
Phone
© 2017 Palo Alto Networks, Inc. All rights reserved.
3000 Tannery Way, Santa Clara, CA 95054
Privacy Policy | Terms of Use | Email Preferences
www.paloaltonetworks.com

Thursday, October 5, 2017

Re: App VJ Foot Spa shared by Ken Hh

ken

On Oct 3, 2017 4:54 PM, Ken Hh <noreply@appsheet.com> wrote:
Ken Hh shared an app with you!
Hello! I have created this app with AppSheet and am sharing it with you.

To install the 'VJ Foot Spa' app, please click the link below on your mobile device and follow the instructions:
You can also run the app in your web browser by clicking the link below:
Need more help?


Tuesday, September 26, 2017

Sec hack

Friday, September 22, 2017

Play Store malware

Thursday, September 21, 2017

Cost of Ransom ware attack on FedEx

Reuters: Exclusive: U.S. Homeland Security found SEC had 'critical' cyber weaknesses in January

From Reuters News:

Exclusive: U.S. Homeland Security found SEC had 'critical' cyber weaknesses in January
http://www.reuters.com/article/us-sec-cyber-weaknesses-exclusive/exclusive-u-s-homeland-security-found-sec-had-critical-cyber-weaknesses-in-january-idUSKCN1BW27P

The U.S. Department of Homeland Security detected five "critical" cyber security weaknesses on the Securities and Exchange Commission's computers as of January 23, 2017, according to a confidential weekly report reviewed by Reuters.

This service is not intended to encourage spam. The details provided have been used for the sole purpose of facilitating this email communication and have not been retained by Thomson Reuters.

ken

Reuters | Homeland Security detected five critical cyber security weaknesses in SEC's computers in January: confidential report

Homeland Security detected five critical cyber security weaknesses in SEC's computers in January: confidential report

Get updates at Reuters.com

ken

Monday, September 18, 2017

Equifax data breach

Malware in trusted downlod

Piggy back hacking

Nothing can be trusted!

Sunday, September 17, 2017

Cybersecurity Incident & Important Consumer Information | Equifax

Saturday, September 16, 2017

The hidden history of cyber-crime forums - BBC News

Saturday, September 9, 2017

Equifax data breach

Monday, August 28, 2017

The Next Web: Google made a tiny error and it broke half the internet in Japan

The Next Web: Google made a tiny error and it broke half the internet in Japan. http://google.com/newsstand/s/CBIwpZuC7TU

Friday, August 25, 2017

Wikileaks Vault 7: CIA backdoored software updates to spy on allies | Computing

Thursday, August 24, 2017

How A Hoax Made To Look Like A Guardian Article Made Its Way To Russian Media

Tuesday, August 15, 2017

When it all kicks off: What happens at a security firm when a global malware outbreak occurs?

Saturday, August 12, 2017

Elon Musk just made Microsoft Azure 100% cooler by association

Elon Musk just made Microsoft Azure 100% cooler by association
https://mspoweruser.com/elon-musk-just-made-microsoft-azure-100-cooler-association/

Thursday, August 10, 2017

DNA attack

Saturday, July 1, 2017

Doctor Opens Fire at Bronx Hospital, Killing Woman and Wounding 6 Others

Doctor Opens Fire at Bronx Hospital, Killing Woman and Wounding 6 Others
https://www.nytimes.com/2017/06/30/nyregion/bronx-hospital-shooting.html


ken

Tuesday, June 27, 2017

Facebook now has 2 billion monthly users…and responsibility

Facebook now has 2 billion monthly users…and responsibility
https://techcrunch.com/2017/06/27/facebook-2-billion-users/


ken

Seven Things You Must Anticipate For The 2017 Solar Eclipse

Massive cyberattack hits Europe with widespread ransom demands

Friday, June 9, 2017

Blame game for cyber attacks grows murkier as spying, crime tools mix | Reuters

Blame game for cyber attacks grows murkier as spying, crime tools mix | Reuters

Cyber Threats 101: Fileless Attacks (The Stealthiest of All) - Infosecurity Magazine

Ponzi Scheme Meets Ransomware for a Doubly Malicious Attack - NYTimes.com

Wednesday, May 31, 2017

Blame game for cyber attacks grows murkier as spying, crime tools mix | Reuters

Tuesday, May 30, 2017

Cyber attack eases, hacking group threatens to sell code | Reuters

NHS cyber-attack causing disruption one week after breach | Society | The Guardian

NYTimes.com: Hackers Hide Cyberattacks in Social Media Posts

From The New York Times:

Hackers Hide Cyberattacks in Social Media Posts

A recent attack on the accounts of Defense Department employees suggests how easily people can be duped into clicking on dangerous links.

https://www.nytimes.com/2017/05/28/technology/hackers-hide-cyberattacks-in-social-media-posts.html?mwrsm=Email


Sent from my iPhone

Monday, May 29, 2017

British Airways vows 'never again' after costly IT collapse

British Airways vows 'never again' after costly IT collapse
https://www.reuters.com/article/us-britain-airports-heathrow-idUSKBN18P01O

Saturday, May 13, 2017

Microsoft issues 'highly unusual' Windows XP patch to prevent massive ransomware attack

Microsoft issues 'highly unusual' Windows XP patch to prevent massive ransomware attack
https://www.theverge.com/2017/5/13/15635006/microsoft-windows-xp-security-patch-wannacry-ransomware-attack


ken

Hacking Attack Has Security Experts Scrambling to Contain Fallout

Hacking Attack Has Security Experts Scrambling to Contain Fallout
https://www.nytimes.com/2017/05/13/world/asia/cyberattacks-online-security-.html


ken

Europol: Ransomware attack is of unprecedented level

International investigation needed to identify culprits of biggest-of-its-kind cyber-extortion attack, Europol says.
http://aje.io/ud6c

ken

Friday, May 5, 2017

Status report: Windows 10 Creators Update at one month old

Wednesday, February 15, 2017

Cyber executive order a reasonable step forward, yet more remains to be done