SEARCH
Empathy for Security Victims, Not Blame
Whenever there is a breach or security incident, the infosec quarterbacks are out in full force, speculating what went wrong and pointing out what "should" have been done. Empathy is needed to share what worked and what didn't, not smug superiority. Security is for everyone.
Data Brokers, Social Media, User Privacy
Facebook is severing ties with data brokers, those companies that sit on piles of user data such as voter rolls, property records, purchase histories, and other databases. It's bad news for advertisers, but will it improve user privacy?
BranchScope: Another Processor-Based Attack
Much like Spectre, BranchScope is an attack that focuses on the processor's branch prediction system. That doesn't mean the processors are hopelessly vulnerable. It just means that as more researchers start exploring various features in modern CPUs, more issues will be found.
New DIY Method Lets Researchers Recover Data from Hardware Chips
Many Internet of Things manufacturers handled security by disabling hardware debugging and locking down the firmware. Security researchers need to bypass these barriers so that they can find and help fix the actual security issues. A researcher talks about a technique gets researchers down to the silicon level.
Washington, Facebook, and the Privacy Reckoning
Federal legislators are asking Facebook, Google, and Twitter executives to come to Washington to discuss privacy concerns.