93% of phishing emails are now ransomware http://www.csoonline.com/article/3077434/security/93-of-phishing-emails-are-now-ransomware.html As of the end of March, 93 percent of all phishing emails contained encryption ransomware, according to a new report from anti-phishing vendor. That was up from 56 percent in December, and less than 10 percent every other month of last year. The skyrocketing growth is due to →
https://www.technologyreview.com/s/601451/why-autocorrect-for-passwords-is-a-great-idea/ Autocorrect for passwords looks like a bad idea at first sight. But turns out that it is actually a good idea when done properly! →
The Big List of Naughty Strings is an evolving list of strings which have a high probability of causing issues when used as user-input data. This is intended for use in helping both automated and manual QA testing. blns.txt consists of newline-delimited strings and comments which are preceded with #. For those who want to access →
http://www.theatlantic.com/technology/archive/2016/05/the-privacy-problem-with-digital-assistants/483950/?utm_source=atlfb Digital assistants will quickly get more information on you than you might expect or want them to get. That’s one price of convience they offer. →
http://www.iflscience.com/technology/how-check-if-youve-been-hacked-within-seconds There is a service that allows you to check if your information has been breached in any recent hacks. →
https://www.schneier.com/blog/archives/2016/05/nist_starts_pla.html Quantum computers will break easily many popular encryption systems, so we need something new. →
Silicon Labs presentation at Arrow IoT summit. The presenter Lars Lydersen had hacked quantun cryptopcraphy in 2010, which lead to downturn of that industry sector. He wants that that IoT manufacturers are serious on security or otherwise bad hacks to those systems can damage the size of the business of the whole IoT sector. →
Is your password in this art? Those are the most popular passwords. Source: Arrow IoT Summit →
http://arstechnica.com/security/2016/05/chinese-arm-vendor-left-developer-backdoor-in-kernel-for-android-pi-devices/ Allwinner’s ARM chips are popular in cheap tablets and dev boards. It seems that the Linux kernel supplied by chipmaker has a serious security backdoor in it. →
The RSA SecurID authentication mechanism consists of a “token” — either hardware (e.g. a USB dongle) or software (a soft token) — which is assigned to a computer user and which generates an authentication code at fixed intervals (usually 60 seconds) using a built-in clock and the card’s factory-encoded random key (known as the “seed”). →