Saturday, December 23, 2017
Friday, December 8, 2017
Security industry needs to be less trusting to get more secure • The Register Forums
Thursday, November 30, 2017
Tuesday, November 7, 2017
Friday, November 3, 2017
Re: [Caja] WASM and ocaps
--At the latest wasm (Web Assembly) standards meeting, I pointed out that wasm is already an OS-like ocap system: A wasm instance, with its linear data space + table of opaque external functions/objects is already a process-granularity-like unit of isolation with an address space and a clist. A wasm computation addresses its clist entries by clist index as expected. In addition, wasm currently obeys the following restriction.> WebAssembly instances must never be able to cause effects other than by wielding explicitly granted access (e.g. the importObject in a JS embedding).According to Andreas Rossberg (cc'ed), this is on purpose, even though the people in the room at the time did not seem to know that. I suggested that it be made normative, so security uses of this restriction would not be compromised by later "enhancements" that accidentally break this unarticulated restriction.is the one to watch. Assuming I do a good job clarifying the agreement we just came to, and assuming the agreement holds in the face of these clarifications, it looks like wasm will explicitly be the object-capability system it was designed to be.Andreas and Bradley (also cc'ed), please clarify or expand as appropriate. If you don't want to subscribe to these lists, send your posts to me and I will forward. Thanks.--Cheers,
--MarkM
---
You received this message because you are subscribed to the Google Groups "Google Caja Discuss" group.
To unsubscribe from this group and stop receiving emails from it, send an email to google-caja-discuss+unsubscribe@googlegroups.com .
For more options, visit https://groups.google.com/d/optout .
Friday, October 27, 2017
BBC News: Artificial intelligence smart enough to fool Captcha security check
Artificial intelligence smart enough to fool Captcha security check - http://www.bbc.co.uk/news/technology-41775968
* Disclaimer *
The BBC is not responsible for the content of this email, and anything written in this email does not necessarily reflect the BBC's views or opinions. Please note that neither the email address nor name of the sender have been verified.
Thursday, October 26, 2017
The KRACK Wi-Fi vulnerability, explained like you're five
https://thenextweb.com/security/2017/10/17/krack-explained-like-youre-five-years-old/
Monday, October 16, 2017
Thursday, October 12, 2017
MarketWatch: Opinion: The cyberwars are coming — here’s how to prepare (and make money)
Marketplace APM: 10/12/2017: A computer science "genius" on why we haven't fixed cybersecurity
Tuesday, October 10, 2017
Engadget: 37,000 Chrome users downloaded a fake Adblock Plus extension
Friday, October 6, 2017
Re: Unit 42 Threat Intelligence ALERT
Update
Unit 42 Threat Intelligence ALERT If you're having trouble reading this message, click here
![]()
![]()
Read the latest research >
FREEMILK: A HIGHLY TARGETED SPEAR PHISHING CAMPAIGN
In May 2017, Palo Alto Networks Unit 42 identified a limited spear phishing campaign targeting various individuals across the world. The threat actor leveraged... Read more >
THREAT ACTORS TARGET GOVERNMENT OF BELARUS USING CMSTAR TROJAN
Palo Alto Networks Unit 42 has identified a series of phishing emails containing updated versions of the previously discussed CMSTAR malware family... Read more >
THREAT BRIEF: CONVERSATION HIJACKING SPEAR PHISHING
Spear Phishing is a specific attack technique that has become widely used in the past few years. In our new research blog "FreeMilk: A Highly Targeted Spear Phishing Campaign"... Read more >
![]()
![]()
![]()
![]()
![]()
© 2017 Palo Alto Networks, Inc. All rights reserved.
3000 Tannery Way, Santa Clara, CA 95054Privacy Policy | Terms of Use | Email Preferences
www.paloaltonetworks.com
Thursday, October 5, 2017
Re: App VJ Foot Spa shared by Ken Hh
ken
Tuesday, September 26, 2017
Friday, September 22, 2017
Thursday, September 21, 2017
Reuters: Exclusive: U.S. Homeland Security found SEC had 'critical' cyber weaknesses in January
Exclusive: U.S. Homeland Security found SEC had 'critical' cyber weaknesses in January
http://www.reuters.com/article/us-sec-cyber-weaknesses-exclusive/exclusive-u-s-homeland-security-found-sec-had-critical-cyber-weaknesses-in-january-idUSKCN1BW27P
The U.S. Department of Homeland Security detected five "critical" cyber security weaknesses on the Securities and Exchange Commission's computers as of January 23, 2017, according to a confidential weekly report reviewed by Reuters.
This service is not intended to encourage spam. The details provided have been used for the sole purpose of facilitating this email communication and have not been retained by Thomson Reuters.
ken
Reuters | Homeland Security detected five critical cyber security weaknesses in SEC's computers in January: confidential report
Get updates at Reuters.com
ken
Monday, September 18, 2017
Sunday, September 17, 2017
Saturday, September 16, 2017
Saturday, September 9, 2017
Monday, August 28, 2017
The Next Web: Google made a tiny error and it broke half the internet in Japan
Friday, August 25, 2017
Thursday, August 24, 2017
Tuesday, August 15, 2017
Saturday, August 12, 2017
Elon Musk just made Microsoft Azure 100% cooler by association
https://mspoweruser.com/elon-musk-just-made-microsoft-azure-100-cooler-association/
Thursday, August 10, 2017
Saturday, July 1, 2017
Doctor Opens Fire at Bronx Hospital, Killing Woman and Wounding 6 Others
https://www.nytimes.com/2017/06/30/nyregion/bronx-hospital-shooting.html
ken
Tuesday, June 27, 2017
Facebook now has 2 billion monthly users…and responsibility
https://techcrunch.com/2017/06/27/facebook-2-billion-users/
ken
Seven Things You Must Anticipate For The 2017 Solar Eclipse
https://www.forbes.com/sites/startswithabang/2017/06/27/seven-things-you-must-anticipate-for-the-2017-solar-eclipse/
ken
Massive cyberattack hits Europe with widespread ransom demands
https://www.washingtonpost.com/world/europe/ukraines-government-key-infrastructure-hit-in-massive-cyberattack/2017/06/27/7d22c7dc-5b40-11e7-9fc6-c7ef4bc58d13_story.html
ken
Friday, June 9, 2017
Wednesday, May 31, 2017
Tuesday, May 30, 2017
NYTimes.com: Hackers Hide Cyberattacks in Social Media Posts
Hackers Hide Cyberattacks in Social Media Posts
A recent attack on the accounts of Defense Department employees suggests how easily people can be duped into clicking on dangerous links.
https://www.nytimes.com/2017/05/28/technology/hackers-hide-cyberattacks-in-social-media-posts.html?mwrsm=Email
Sent from my iPhone
Monday, May 29, 2017
British Airways vows 'never again' after costly IT collapse
https://www.reuters.com/article/us-britain-airports-heathrow-idUSKBN18P01O
Saturday, May 13, 2017
Microsoft issues 'highly unusual' Windows XP patch to prevent massive ransomware attack
https://www.theverge.com/2017/5/13/15635006/microsoft-windows-xp-security-patch-wannacry-ransomware-attack
ken
Hacking Attack Has Security Experts Scrambling to Contain Fallout
https://www.nytimes.com/2017/05/13/world/asia/cyberattacks-online-security-.html
ken
Europol: Ransomware attack is of unprecedented level
http://aje.io/ud6c
ken
Friday, May 5, 2017
Status report: Windows 10 Creators Update at one month old
http://www.infoworld.com/article/3194868/microsoft-windows/status-report-windows-10-creators-update-at-one-month-old.html
Wednesday, February 15, 2017
Cyber executive order a reasonable step forward, yet more remains to be done
https://news.google.com/news/amp?caurl=http%3A%2F%2Fthehill.com%2Fblogs%2Fcongress-blog%2Ftechnology%2F319699-cyber-executive-order-a-reasonable-step-forward-yet-more%3Famp#a-eff569c5-3da3-4c69-9d05-aa1b967c9068