WhatsApp Is Encrypted But It’s No iMessage WhatsApp just announced end-to-end encryption for their 1 billion + users. Their massive user base overshadow Apple’s own iMessage network on Apple’s own devices alone. It would also seem that they are taking a page out of Apple’s own playbook by offering end-to-end encryption. WhatsApp’s parent company, Facebook, is also… Read More »
Apple’s iPhone Encryption Security Battle is Canary in IoT Coal Mine
Are we doomed to repeat the mistakes of the past? With a little luck, we are. I know that sounds rather pessimistic but in light of the current FBI and Apple battle over encryption security, we are standing at a familiar crossroads. Last time, the U.S. avoided widespread security failure was the ill-proposed Clipper Chip… Read More »
Feds Want Front and Backdoors To Encryption In Every iPhone
When FBI director was first asked if he had any intentions to force Apple to unlock more than the single iPhone 5C in question, he answered “unlikely to be a trailblazer” for setting a precedent for other cases. But a week later when asked before a congressional panel under oath, he said the judgement on this single iPhone would… Read More »
Encryption is Perfect But iPhone Security is Not
I’m not writing this for the benefit of any criminals or would-be terrorists out there. There are many more law abiding citizens that value their 4th amendment and Bill of Rights right to privacy out there than there are spies, terrorists and criminals looking to exploit security flaws. Now that that disclaimer is out of the way,… Read More »
Internet of Things Will Only Become A Thing Once It’s Secure
IoT is all about sharing data and is getting a lot of attention lately from every consumer electronics manufacturer, but it is also being scrutinized for security concerns. In order for IoT to succeed as a widely adopted standard, it must comply with 3 different market barriers: price, compatibility and security. Since price and compatibility are decisions… Read More »
FBI Bobbing for Apple Customer Privacy
The other night, I was asked to give my brief comments on NBC regarding this security encryption legal fiasco that has pitted Apple against the FBI. I was only given a few seconds to comment so I wanted to elaborate more on some details here. Since this story is about technical security and privacy as much as… Read More »
Law Enforcement Must “Immediately Destroy” Collateral Data Collected
Privacy advocates recently won a victory against the unrestricted use of “stingray” cell-site emulators. On November 9th, Illinois judge Iain D. Johnston ruled law enforcement agencies must take steps to minimize the impact on innocent bystanders caught up in the stingray surveillance dragnet and that law enforcement must “immediately destroy” collateral data collected. So how is… Read More »
Billion Dollar Bank Hackers Use Old Phishing Technique
Last week the internet security firm Kaspersky Lab released a report on a highly-successful group of cybercriminals who targeted banks and may have stolen up to a billion across 100 financial institutions worldwide. While Kaspersky Labs did not name the victimized organizations, the report indicates they were mostly located in China, Russia and the United… Read More »
