This work is licensed under a Creative Commons Attribution-Noncommercial-Share Alike 2.5 License.
THE TSA IS learning a basic lesson of physical security in the age of 3-D printing: If you have sensitive keys—say, a set of master keys that can open locks you’ve asked millions of Americans to use—don’t post pictures of them on the Internet.
A group of lock-picking and security enthusiasts drove that lesson home Wednesday by publishing a set of CAD files to Github that anyone can use to 3-D print a precisely measured set of the TSA’s master keys for its “approved” locks—the ones the agency can open with its own keys during airport inspections. Within hours, at least one 3-D printer owner had already downloaded the files, printed one of the master keys, and published a video proving that it opened his TSA-approved luggage lock…
If you ask the average person what the best ways to protect themselves online are, they’ll give some true answers—but they’ll likely be different than the answers you’d get from a security researcher. Here’s the difference.
Google, in a paper they’re presenting at the Symposium on Usable Privacy and Security this weekend, asked two groups—experts and nonexperts—what they do to stay safe online. While the nonexperts provided some good answers (like using antivirus software), the experts placed certain items as much higher priority, as shown in the above graphic.
By default the Chrombook allows anyone with a Google account to sign in. But for some, that amount of sharing might be a little too open. If you would like to limit who can sign in to your Chomebook to a specific list of users, open settings and search restrict. You’ll be guided to the “Manage other users…” button. Click that then check “Restrict sign-in to to the following users:” and add the allowed usernames in the box. Click Done and close settings and now only those on your list can sign into your Chrombook. (Don’t forget you may also want to disallow Guest access too.)
There are very few government checks on what America’s sweeping surveillance programs are capable of doing. John Oliver sits down with Edward Snowden to discuss the NSA, the balance between privacy and security, and dick-pics.
Ian Urbina, author of The Secret Lives of Passwords, talks about what passwords mean to people beyond their access to email or social networking accounts. Published on Dec 29, 2014
Here’s the video of my LastPass presentation from the Nebraska Library Association Conference presented on 10 October 2014.
We’re excited to announce that the Auto-Password Change feature we released to our Pre-Build Team last week is now available for all users in beta. LastPass can now change passwords for you, automatically. We’re releasing this feature for free to all our users, on Chrome, Safari, and Firefox (starting with version 3.1.70).
Auto-Password Change already supports 75 of the most popular websites, including Facebook, Twitter, Amazon, Pinterest, Home Depot, and Dropbox. When clicking “edit” for a supported site, a “Change Password Automatically” button appears.
Once clicked, LastPass opens a new tab where it logs in for you, creates a new password, and submits the changes on the website, while also saving them to LastPass. Next time you log in to that website, LastPass will autofill with the newly-generated password. And all you had to do was click a button!
Read the full article @ Blog.LastPass.com
Harvard Law School Professor Lawrence Lessig interviewed Edward Snowden at Harvard Law School on Oct. 20.
This morning I received the following notice (read the PDF) from Wuala informing me that their secure storage will no longer be free come January 1, 2015. For those of you not familiar with Wuala, think Dropbox but with end-to-end trust-no-one encryption. Granted, for 5GB of space you need only pay $12/year so I’m thinking I’ll pay it. But there goes the one free secure Dropbox replacement that I was aware of.
Adobe came under fire a few weeks ago when news was brought to light that critical user data was being sent to their servers from anyone using Adobe Digital Editions 4. The most important aspect of this story was that it was being done in clear text, with no encryption. Adobe has just patched ADE 4, to solve this issue.