Over half of CISA’s known exploited vulnerabilities disclosed since February 2024 have not yet been analyzed by NIST’s National Vulnerability Database
More Stories
Alleged Boss of ‘Scattered Spider’ Hacking Group Arrested
A 22-year-old man from the United Kingdom arrested this week in Spain is allegedly the ringleader of Scattered Spider, a...
Friday Squid Blogging: Squid Cartoon
Squid humor. As usual, you can also use this squid post to talk about the security stories in the news...
Upcoming Speaking Engagements
This is a current list of where and when I am scheduled to speak: I’m appearing on a panel on...
How to Avoid Being Phished by Your Phone
By now you’ve probably heard of the term “phishing”—when scammers try to fool you into revealing your personal info or...
UK General Election: Tech Policy Expert Calls for Law Overhaul to Combat Deepfakes
Governments should “police the content rather than the technology used to create it,” Matthew Feeney from the Centre for Policy...
Demo of AES GCM Misuse Problems
This is really neat demo of the security problems arising from reusing nonces with a symmetric cipher in GCM mode....