Martin S. writes: Amanda Rudd the UK Home Secretary responsible for Policing is peddling security snake oil. Ignoring the big problem with information security is that is really is impossible to tell the difference between good security and bad security without an expert and we all know what the current crop of politicons they think of experts. https://www.schneier.com/crypt...
Martin S. writes: Eternal Eeptember largely predicted the ghettoisation of the internet that is prevalent today, but not its own obscurity, an egregious oversight in hindsight.
Today Sir Tim Berners-Lee has unveiled plans to tackle some of the internets problems, including "unethical" political advertising and the harvesting of data through his Web Foundation.
1) We’ve lost control of our personal data 2) It’s too easy for misinformation to spread on the web 3) Political advertising online needs transparency and understanding
His plans could be considered somewhat naive, they do not address the corporatisation of the internet and they hope to curb rather than harness human nature. I'm wondering what slashdotter would consider to be a solution, or perhaps why a solution is not even necessary.
Martin S. writes: The Decentralized Web Summit took place at the Internet Archive between June 7th and June 9th, 2016. Videos from the event which included speakers Tim Berners-Lee, Christopher Allen, Vint Cerf amongst many others are now available and more are expected soon. Link to Original Source
In Bitcoin, transaction malleability describes the fact that the signatures that prove the ownership of bitcoins being transferred in a transaction do not provide any integrity guarantee for the signatures themselves. This allows an attacker to mount a malleability attack in which it intercepts, modifies, and rebroadcasts a transaction, causing the transaction issuer to believe that the original transaction was not confirmed. In February 2014 MtGox, once the largest Bitcoin exchange, closed and filed for bankruptcy claiming that attackers used malleability attacks to drain its accounts. In this work we use traces of the Bitcoin network for over a year preceding the filing to show that, while the problem is real, there was no widespread use of malleability attacks before the closure of MtGox.
Sir Andrew Dillon, NICE Chief Executive: “A spam email purporting to come from NICE is being sent to members of the public regarding cancer test results. This email is likely to cause distress to recipients since it advises that ‘test results' indicate they may have cancer. This malicious email is not from NICE and we are currently investigating its origin. We take this matter very seriously and have reported it to the police.”
NICE is advising people who have received the email — the subject line of which is important blood analysis result — to delete it without opening it and not to click on any links.
Martin S. writes: The Register reports Top UK e-commerce sites including Amazon, Tesco and Virgin Atlantic are not doing enough to safeguard users from their own password-related foibles, according to a new study by Dashlane. Who go on to detail how
* 66% accept notoriously weak passwords such as “123456” or “password”, putting users in danger as these are often the first passwords hackers use when trying to breach accounts.
* 66% make no attempt to block entry after 10 incorrect password entries (including Amazon UK, Next, Tesco and New Look). This simple policy prevents hackers from using malicious software that can run thousands of passwords during log-ins to breach accounts.