Encrypted DNS Could Help Close the Biggest Privacy Gap on the Internet. Why Are Some Groups Fighting Against It?

from EFF Thanks to the success of projects like Let’s Encrypt and recent UX changes in the browsers, most page-loads are now encrypted with TLS. But DNS, the system that looks up a site’s IP address when you type the site’s name into your browser, remains unprotected by encryption. Because of this, anyone along the path from your network to your DNS resolver (where domain names are converted to IP addresses) can collect information about which sites you visit. This means that certain eavesdroppers can still profile your online activity by making a list of sites you visited, or a […]

Continue reading

University Attacked By Its Own Vending Machines, Smart Light Bulbs & 5,000 IOT Devices

from Network World Today’s cautionary tale comes from Verizon’s sneak peek (pdf) of the 2017 Data Breach Digest scenario. It involves an unnamed university, seafood searches, and an IoT botnet; hackers used the university’s own vending machines and other IoT devices to attack the university’s network. Since the university’s help desk had previously blown off student complaints about slow or inaccessible network connectivity, it was a mess by the time a senior member of the IT security team was notified. The incident is given from that team member’s perspective; he or she suspected something fishy after detecting a sudden big interest […]

Continue reading

In Case Anybody Hadn’t Noticed, The Internet Is Very Vulnerable

From Medium Yesterday’s DDoS attacks on key US internet infrastructure made one thing clear: since its supposed origins in the 1960s as a distributed and thus resilient military network, it has take five decades to find relatively simple and inexpensive ways to topple it. From a European standpoint, yesterday’s attacks were apparently no big deal: Medium remained up and running the whole time, and my Spanish homepage was difficult to access for about two hours, a problem I accepted philosophically knowing that the causes were nothing to do with my server and that there was therefore nothing I could do […]

Continue reading