The hottest Security Substack posts right now

And their main takeaways
Category
Top U.S. Politics Topics

TechLetters #129 Russians training defence from cyberattacks on industrial systems. Russian Kaspersky employees iPhone's hacked. Quantum computing recommendations, AI-drone U.S. Air Force drama.

Lukasz Olejnik on Cyber, Privacy and Tech Policy Critique 58 implied HN points 05 Jun 23
🕹 Technology Security Privacy Technology Policy AI Quantum Computing
  1. Russian red teaming exercises target industrial systems for cyberattacks
  2. Malware campaign targets iPhones, including employees at cybersecurity company Kaspersky
  3. US government advised to expedite migration to post-quantum cryptography

Taiwan & the internet during world war

Nick Merrill 58 implied HN points 02 Jun 23
🕹 Technology Internet Networks Security Infrastructure
  1. Undersea cables are critical for the world's internet infrastructure, and cutting them can have severe global consequences.
  2. China has strategically designed its internet infrastructure to minimize the impact of cutting undersea cables on its own internet.
  3. To mitigate the risk of internet disruptions from undersea cable attacks, global efforts are needed for wartime BGP routes, local networking investments by countries like Taiwan, and the development of a reliable LEO satellite internet network.

TechLetters #125 - My book, Philosophy of Cybersecurity. Data center under water. MS EDGE leaking data. AI. Phishing parrot risk increases.

Lukasz Olejnik on Cyber, Privacy and Tech Policy Critique 58 implied HN points 01 May 23
🕹 Technology Security Privacy Technology Policy Other
  1. Google's data center faced challenges like being underwater, showing importance of risk management.
  2. OpenAI is enhancing privacy controls to address GDPR concerns and maintain user trust.
  3. Microsoft Edge has a privacy issue - leaking data to Microsoft, reminiscent of older privacy concerns.

Deconstructing Rollups

Cryptocurrency and Friends 58 implied HN points 15 Mar 23
🔮 Crypto Rollups Security Assets Developers
  1. Development community is focused on defining a rollup through the lens of a validating bridge.
  2. Care must be taken with rollup projects to avoid constraining their capabilities, like Optimism's experience with OVM V1.0.
  3. Rollups should prioritize building rules enforced by a community first, and then focus on a validating bridge.
Get a weekly roundup of the best Substack posts, by hacker news affinity:

Microsoft Security Copilot Demos from Microsoft Ignite 2023

Rod’s Blog 39 implied HN points 15 Dec 23
🕹 Technology AI Security Microsoft Conference Demo
  1. Microsoft Ignite 2023 highlighted the importance of securing AI and using AI for security, with these topics being top of mind for many organizations and individuals.
  2. The Microsoft Security Copilot, still in its early adopter program, was a popular topic at the event, drawing significant interest and overflowing demos.
  3. Key demo areas for Microsoft Security Copilot at Ignite included lifecycle workflows, sign-in logs, identity access troubleshooting, and risky user summary.

Prompt Engineering for AI: A Valuable Skill for Security Professionals?

Rod’s Blog 39 implied HN points 13 Dec 23
🕹 Technology AI Security Training Tools Jobs
  1. Prompt engineering is a valuable skill for leveraging the power of AI in creative and efficient ways by improving the quality and accuracy of AI outputs.
  2. Effective prompt engineering can expand the capabilities and applications of AI systems, enabling them to perform tasks beyond their pre-defined scope using general knowledge and reasoning abilities.
  3. Prompt engineering is important for enhancing interaction and collaboration between humans and AI systems, making AI more human-like and relatable by crafting well-designed prompts.

Last Month’s $83.3 Million Civil Jury Verdict Against Donald Trump in Federal Court Raises Historically Serious National Security Concerns

Proof 60 implied HN points 02 Feb 24
🇺🇸 U.S. Politics Law Security Finance Fraud
  1. Donald Trump faces serious legal and financial challenges, including an $83.3 million civil jury verdict against him.
  2. There are doubts about Trump's claims of having $400 million in liquid assets to pay off judgments against him.
  3. The concern over Trump's financial situation and potential debt raises national security concerns.

The Ways Microsoft Security Copilot Can Enhance Security Operations with Microsoft Sentinel

Rod’s Blog 39 implied HN points 06 Dec 23
🕹 Technology Security AI Cloud Analytics Automation
  1. Security teams face challenges such as complexity in handling large volumes of security data from various sources like logs and alerts, making analysis overwhelming, especially during cyberattacks.
  2. There is a skills gap in the market for skilled security professionals, leading to a lack of resources and expertise within security teams to manage all security tasks effectively.
  3. To address challenges, security teams need solutions that simplify security data and tasks, empower them with AI and machine learning capabilities, and protect the organization from cyberthreats by leveraging the latest threat intelligence.

How do AI security products being sold to schools really work?

School Shooting Data Analysis and Reports 19 implied HN points 12 Mar 24
🕹 Technology AI Security Education Data Analysis
  1. School administrators are facing pressure to evaluate AI security products but may lack expert knowledge to do so.
  2. Understanding how AI models are trained, the probability threshold, and error rates are crucial when assessing AI security solutions.
  3. The high stakes of AI security decisions for schools underscore the importance of asking detailed questions about the technology being implemented.

Why Are LLMs So Gullible?

Am I Stronger Yet? 49 HN points 19 Feb 24
🕹 Technology Artificial Intelligence Security Machine Learning Ethics
  1. LLMs are gullible because they lack adversarial training, allowing them to fall for transparent ploys and manipulations
  2. LLMs accept tricks and adversarial inputs because they haven't been exposed to such examples in their training data, making them prone to repeatedly falling for the same trick
  3. LLMs are easily confused and find it hard to distinguish between legitimate inputs and nonsense, leading to vulnerabilities in their responses

Top 10 OSS Risks

Resilient Cyber 99 implied HN points 13 Mar 23
🕹 Technology Software Security Development Open Source Risk management
  1. Open Source Software (OSS) is widely used, making up a large part of many software applications. However, it's essential to be aware of the risks it poses, as vulnerabilities in OSS can impact many users simultaneously.
  2. One major risk is the compromise of legitimate OSS packages, where attackers can hijack code or repositories to insert malicious elements, which can then spread to organizations using that software.
  3. Another concern is outdated or unmaintained OSS, which can lead to security issues if the software isn’t updated regularly. Organizations need to keep track of the OSS they use and ensure it's actively maintained.

Tinder expands its ID verification feature

philsiarri 44 implied HN points 20 Feb 24
🕹 Technology Social media Dating Security
  1. Tinder is expanding its ID verification feature to users in the US, UK, Brazil, and Mexico to enhance safety and confidence in connecting with matches.
  2. The ID verification process involves comparing user-provided information with official IDs like Driver's Licences or Passports through a video selfie.
  3. Verified users receive badges indicating their verification status and experience a 67% increase in matches, showing the effectiveness of this safety measure.

Edition 23: A framework to securely use LLMs in companies - Part 3: Securing ChatGPT and GitHub Copilot

Boring AppSec 84 implied HN points 05 Sep 23
🕹 Technology Security Artificial Intelligence Productivity Tools Data Privacy Software Engineering
  1. The post discusses a framework for securely using LLMs like ChatGPT and GitHub Copilot in companies.
  2. It highlights key risks and security controls for ChatGPT, focusing on data leakage and over-reliance on AI-generated output.
  3. For GitHub Copilot, it addresses risks like sensitive data leakage and license violations, along with suggested security controls.

Authorization in microservice architecture, P0: Introduction

Hung's Notes 3 HN points 18 Jul 24
🕹 Technology Software Security Architecture Data Management Access Control
  1. Building a solid authorization system in microservices is tough since there aren’t clear guidelines. It's vital to share experiences for better solutions.
  2. Managing permissions can get complicated as a business grows. A better approach is needed to handle access control efficiently.
  3. Security is critical in public safety products, and proper access management helps maintain trust and legal compliance.

A reactionary take on memory safety

lcamtuf’s thing 42 HN points 01 Mar 24
🕹 Technology Security Programming Government Software Coding
  1. Memory safety in programming languages like C and C++ is a significant issue due to the risk of buffer overflows and other coding errors.
  2. Although there is a push to adopt memory-safe languages like a mandate from The White House, the practicality and necessity of such a move is questionable.
  3. Challenges in enforcing a complete shift to memory-safe languages include the limited exposure of critical code to attacks and the fact that other security vulnerabilities are more common in causing breaches.

Laws that Red Teamers Should Know

Locks and Leaks 19 implied HN points 15 Feb 24
🚌 Education Laws Red-Teaming Security Ethics
  1. Red teamers should be familiar with laws related to activities like burglary, trespassing, burglary tools, hacking, theft, wiretapping, and impersonation.
  2. Understanding the difference between something being illegal and prosecutable is crucial. Aligning goals with the protection of the public and prevention of harm is key for authorized assessments.
  3. Having knowledge of relevant laws can enhance a red teamer's career and ensure that steps are taken to avoid violating rules, laws, regulations, or ethical considerations while uncovering security vulnerabilities.

Microsoft Sentinel SOC 101: How to Detect and Mitigate Rare Domains Seen in Cloud Logs

Rod’s Blog 39 implied HN points 19 Oct 23
🕹 Technology Security Cloud Computing Threat Detection Automation Orchestration
  1. Rare domains in cloud logs can indicate malicious activities like command and control communication, phishing, or data exfiltration.
  2. Microsoft Sentinel offers a built-in hunting query to identify rare domains and mitigate potential security incidents.
  3. By using automation and orchestration in Microsoft Sentinel, organizations can efficiently respond to and manage incidents related to rare domains in cloud logs.

Best Infosec-Related Long Reads for the Week of 2/3/24

Metacurity 19 implied HN points 10 Feb 24
🕹 Technology Security AI Surveillance
  1. London Underground is testing real-time AI surveillance tools to spot crime, a first for the transport body.
  2. AI is being used to generate alerts sent to frontline staff based on live video footage monitored by the system.
  3. Transport for London (TfL) operated the AI system at Willesden Green Tube station, which had 25,000 visitors per day before the pandemic.

Brief: Going Passwordless - the New Trend in Online Security

Rod’s Blog 19 implied HN points 08 Feb 24
🕹 Technology Security Authentication Microsoft Online Services Biometrics
  1. Passwordless authentication aims to improve security by eliminating the need for traditional passwords and using methods like biometrics or hardware tokens instead.
  2. Going passwordless reduces the risk of password breaches and phishing attacks, making the login process faster and more convenient for users.
  3. Challenges of going passwordless include user trust in new technologies, compatibility issues, privacy concerns, and suitability for certain online services.

The Ways Microsoft Copilot for Security Can Enhance Security Operations with Microsoft Purview

Rod’s Blog 19 implied HN points 08 Feb 24
🕹 Technology Security AI Data Governance Compliance Incident Management
  1. Microsoft Security Copilot enhances security by seamlessly integrating with Microsoft Purview, simplifying security policies and governance.
  2. The AI capabilities of Microsoft Security Copilot aid in proactive threat detection and response by analyzing data to identify potential risks before they escalate.
  3. Automated compliance and data governance processes are streamlined through the combination of Microsoft Purview's features and Security Copilot's automation, facilitating adherence to regulations.

Azure OpenAI Content Filtering and Abuse Monitoring with Microsoft Sentinel

Rod’s Blog 39 implied HN points 10 Aug 23
🕹 Technology AI Security Azure Monitoring
  1. Microsoft Sentinel is a powerful tool for capturing and analyzing logs, primarily used for security purposes.
  2. Content filtering in Azure OpenAI detects and takes action on harmful content in both input prompts and output completions.
  3. Abuse monitoring in Azure OpenAI helps detect and mitigate instances of recurring content or behaviors that may violate the Code of Conduct or product terms.

Top Reasons to Build DeFi dApps on Concordium

Concordium Monthly Updates 39 implied HN points 01 Jun 23
🕹 Technology Blockchain DeFi Cryptocurrency Privacy Security
  1. Concordium offers sponsored transactions to cover transaction fees, reducing barriers for users and encouraging wider adoption.
  2. Verifiable credentials on Concordium enhance identity verification, privacy, and compliance in DeFi applications.
  3. Concordium features fast finality, shielding transactions, high throughput, low fees, and a secure platform for efficient and secure DeFi dApps.

Skynet scenarios and real world risks

imperfect offerings 39 implied HN points 16 Jul 23
🕹 Technology Artificial Intelligence Ethics Education Security
  1. Opportunities and risks should be treated differently; risks are harder to see and require collective action to address
  2. Education has a responsibility to develop critical users of technology to navigate the risks associated with GenAI
  3. Higher education should identify and speak up about risks specific to teaching jobs, student development, and knowledge values in relation to GenAI

Must Learn AI Security Part 16: Impersonation Attacks Against AI

Rod’s Blog 39 implied HN points 25 Sep 23
🕹 Technology Security AI Cyber Attacks Data Machine Learning
  1. Impersonation attacks against AI involve deceiving the system by pretending to be legitimate users to gain unauthorized access, control, or privileges. Robust security measures like encryption, authentication, and intrusion detection are crucial to protect AI systems from such attacks.
  2. Types of impersonation attacks include spoofing, adversarial attacks, Sybil attacks, replay attacks, man-in-the-middle attacks, and social engineering attacks. Each type targets different aspects of the system.
  3. To mitigate impersonation attacks against AI, organizations should implement strong security measures like authentication, encryption, access control, regular updates, and user education. Monitoring user behavior, system logs, network traffic, input and output data, and access control are essential for detecting and responding to such attacks.

Building Your own Conversational Copilot with Python, Flask, and Azure Open AI SDK

Rod’s Blog 39 implied HN points 25 Apr 23
🕹 Technology Programming Web Development AI Security
  1. The post discusses building a conversational copilot using Python, Flask, and Azure Open AI SDK.
  2. It highlights the importance of monitoring AI security, particularly focusing on Azure Open AI and Azure Cognitive services.
  3. The post provides details about the necessary code files and steps to run a web-based Chatbot using Python, Flask, and Azure Open AI SDK.

Must Learn AI Security Part 11: Denial-of-Service Attacks Against AI

Rod’s Blog 39 implied HN points 11 Sep 23
🕹 Technology Security AI Mitigation Monitoring
  1. Denial-of-Service (DoS) attacks against AI aim to overwhelm the system with requests, computations, or data, making it slow, crash, or become unresponsive.
  2. Common techniques used in DoS attacks against AI include request flooding, adversarial examples, amplification attacks, and exploiting vulnerabilities in the system.
  3. Effects of a DoS attack on an AI system can lead to unavailability, loss of productivity, financial loss, reputation damage, and increased security costs for the affected organization.

TechLetters #121 - Cyberwar in Ukraine. 0day exploits to smartphones via apps. AI-automation coming to address cybersecurity industry. Cookie blocking standardisation. VULKAN cyberwar services.

Lukasz Olejnik on Cyber, Privacy and Tech Policy Critique 39 implied HN points 03 Apr 23
🕹 Technology Security Privacy Technology Policy Other
  1. Smartphone app exploited 0day vulnerability affecting millions of devices
  2. Microsoft integrating ChatGPT for automating cybersecurity tasks
  3. Web security proposal aims to standardize cross-browser cookie blocking

TechLetters #126 - Banning multi-sim devices. Russian stealthy espionage combine harvester analysed and made public. Putting AI-generated labels on AI-generated content.

Lukasz Olejnik on Cyber, Privacy and Tech Policy Critique 39 implied HN points 15 May 23
🕹 Technology Security Privacy Technology Policy Other
  1. UK is considering banning multi-sim devices to prevent fraud
  2. US reveals Russian cyber espionage tool used by FSB for information theft
  3. Google to label AI-generated images to comply with EU regulations

Back from the Brink

Sector 6 | The Newsletter of AIM 39 implied HN points 30 Aug 23
🕹 Technology AI Enterprise Security Revenue Innovation
  1. OpenAI was struggling financially but is now expecting to earn about $1 billion in the next year. This is a huge increase from the earlier projection of $200 million.
  2. The company's new product, ChatGPT Enterprise, is designed for businesses and offers better security, faster access, and more customization options.
  3. These changes are helping OpenAI feel more confident about its future revenue and success in the AI market.

Must Learn AI Security Compendium 7: What is Generative Automation?

Rod’s Blog 39 implied HN points 04 Oct 23
🕹 Technology AI Automation Security Challenges Generative
  1. Generative automation uses generative AI to automate tasks that require creativity or human-like reasoning, like writing a poem or designing a logo.
  2. Generative automation benefits various industries by helping with content creation, design, education, research, and more.
  3. Security challenges in generative automation include data security, access control, malicious code, third-party dependencies, human error, and lack of transparency.

The KQL Mysteries: Chapter 8

Rod’s Blog 19 implied HN points 06 Feb 24
🕹 Technology Security Data Analysis Coding Cybersecurity IT
  1. A major security breach has occurred with sensitive data stolen, leading to a need for urgent action to track down the threat actor.
  2. Jordan quickly jumps into action, using KQL queries to analyze data and identify patterns associated with the suspected threat actor.
  3. The story leaves readers with a cliffhanger, hinting at upcoming developments and ensuring engagement for the next chapter.

TechLetters #161 - Death indirectly following ransomware; Drones and cyber during wars are changing military strategy; Factorisation of number 247 on a quantum computer

Lukasz Olejnik on Cyber, Privacy and Tech Policy Critique 19 implied HN points 05 Feb 24
🕹 Technology Security Technology Policy Other
  1. A 32 year old security bug in Linux's qsort algorithm poses a threat.
  2. Ransomware incidents are causing serious consequences, including job loss and health issues like suicide.
  3. The factoring of number 247 on a quantum computer breaks RSA-8 cryptosystem in 35 seconds.

Brief: How Microsoft Secures Its Copilots

Rod’s Blog 19 implied HN points 01 Feb 24
🕹 Technology AI Privacy Security Data Protection Machine Learning
  1. Microsoft's Copilot for Microsoft 365 adheres to strict data privacy and security regulations like GDPR, ensuring organizational data confidentiality.
  2. The Copilot system integrates large language models with Microsoft Graph and 365 apps, maintaining enterprise-level data protection during processing.
  3. By utilizing the Azure OpenAI Service controlled by Microsoft, Copilot ensures that business data is not used to train models, offering organizations control over their data processing.