backdoors

Hacking Electronic Safes

| | backdoors, Disclosure, locks, patching, safes, Uncategorized, Vulnerabilities
Vulnerabilities in electronic safes that use Securam Prologic locks: While both their techniques represent glaring security vulnerabilities, Omo says it’s the one that exploits a feature intended as a legitimate unlock method ...
Schneier on Security

Encryption Backdoor in Military/Police Radios

| | backdoors, encryption, military, police, Radio, Uncategorized
I wrote about this in 2023. Here’s the story: Three Dutch security analysts discovered the vulnerabilities­—five in total—­in a European radio standard called TETRA (Terrestrial Trunked Radio), which is used in radios ...
Schneier on Security
“Oh, won’t somebody please think of the children?”

UK Quietly Drops ‘Think of the Children’ Apple iCloud Crypto Crack Call

| | ADP, Apple, Apple Data Security, Apple iCloud, back door, backdoors, British, British intelligence, Chat Control, E2EE, Encryption Backdoor, end-to-end encryption, gchq, Government Backdoors, ICloud, JD Vance, Privacy, SB Blogwatch, Sir Keir Starmer, Tulsi Gabbard, uk, United Kingdom, Won’t somebody think of the children?
ADP E2EE vs. UK: Brits agree to change course, but Tim still shtum ...
Security Boulevard

“Encryption Backdoors and the Fourth Amendment”

| | academic papers, backdoors, encryption, laws, nsa, Uncategorized
Law journal article that looks at the Dual_EC_PRNG backdoor from a US constitutional perspective: Abstract: The National Security Agency (NSA) reportedly paid and pressured technology companies to trick their customers into using ...
Schneier on Security
Apple CEO Tim Cook, looking grim

Apple vs. UK — ADP E2EE Back Door Faceoff

| | #nobackdoors, ADP, Apple, Apple Data Security, Apple iCloud, back door, backdoor, backdoors, Child Abuse, child exploitation, child porn, child pornography, child sexual exploitation, cloud access, Compliance, CSAM, CSEM, E2EE, encryption, end-to-end encryption, five eyes, Five Eyes alliance, Five Eyes Intelligence Alliance, Government & Regulatory News, government access, Investigatory Powers Act, Privacy, SB Blogwatch, uk, UK Investigatory Powers Act, Won’t somebody think of the children?
Won’t Tim Think of the Children? End-to-end encryption battle continues ...
Security Boulevard

UK Demanded Apple Add a Backdoor to iCloud

| | Apple, backdoors, encryption, uk, Uncategorized
Last month, the UK government demanded that Apple weaken the security of iCloud for users worldwide. On Friday, Apple took steps to comply for users in the United Kingdom. But the British ...
Schneier on Security
romance, fraud, scams, Heart of Flowers on a wooden wall

Congress is PISSED at British Backdoor Bid, but Apple Stays Shtum

| | #nobackdoors, ADP, Andy Biggs, Apple, Apple Data Security, Apple iCloud, back door, backdoor, backdoors, Child Abuse, child exploitation, child porn, child pornography, child sexual exploitation, cloud access, Compliance, CSAM, CSEM, E2EE, encryption, end-to-end encryption, five eyes, Five Eyes alliance, Five Eyes Intelligence Alliance, Government & Regulatory News, government access, Investigatory Powers Act, Privacy, Ron Wyden, SB Blogwatch, Sen. Ron Wyden, Tulsi Gabbard, uk, Won’t somebody think of the children?
Just meet me at the ADP: Sen. Ron Wyden and Rep. Andy Biggs got no love for the United Kingdom ...
Security Boulevard

UK Is Ordering Apple to Break Its Own Encryption

| | Apple, backdoors, cloud computing, Data Privacy, encryption, law enforcement, Privacy, uk, Uncategorized
The Washington Post is reporting that the UK government has served Apple with a “technical capability notice” as defined by the 2016 Investigatory Powers Act, requiring it to break the Advanced Data ...
Schneier on Security

New VPN Backdoor

| | backdoors, Uncategorized, VPN
A newly discovered VPN backdoor uses some interesting tactics to avoid detection: When threat actors use backdoor malware to gain access to a network, they want to make sure all their hard ...
Schneier on Security

Subverting LLM Coders

| | academic papers, Artificial Intelligence, backdoors, LLM, Uncategorized
Really interesting research: “An LLM-Assisted Easy-to-Trigger Backdoor Attack on Code Completion Models: Injecting Disguised Vulnerabilities against Strong Detection“: Abstract: Large Language Models (LLMs) have transformed code completion tasks, providing context-based suggestions to ...
Schneier on Security
Load more