Crypto-Gram Security Podcast

In this issue:
New Book Announcement: Click Here to Kill Everybody Reasonably Clever Extortion E-mail Based on Password Theft Defeating the iPhone Restricted Mode 1Password's Travel Mode SpiderOak's Warrant Canary Died Don't Fear the TSA Cutting Airport Security. Be Glad That They're Talking about It. Google Tracks its Users Even if They Opt-Out of Tracking
from the August 15, 2018 Crypto-Gram Newsletter
by Bruce Schneier
read by Dan Henage

In this issue:
Ridiculously Insecure Smart Lock Are Free Societies at a Disadvantage in National Cybersecurity Perverse Vulnerability from Interaction between 2-Factor Authentication and iOS AutoFill The Effects of Iran's Telegram Ban Bypassing Passcodes in iOS Manipulative Social Media Practices Conservation of Threat California Passes New Privacy Law
from the July 15, 2018 Crypto-Gram Newsletter
by Bruce Schneier
read by Dan Henage

In this issue:
The Future of Ransomware WannaCry and Vulnerabilities NSA Brute-Force Keysearch Machine NSA Abandons "About" Searches Extending the Airplane Laptop Ban Security and Human Behavior (SHB 2017) Passwords at the Border NSA Document Outlining Russian Attempts to Hack Voter Rolls Who Are the Shadow Brokers?
from the June 15, 2017 Crypto-Gram Newsletter
by Bruce Schneier
read by Dan Henage

In this issue:
The TSA's Selective Laptop Ban WikiLeaks Not Disclosing CIA-Hoarded Vulnerabilities to Companies Shadow Brokers Releases the Rest of Their NSA Hacking Tools Congress Removes FCC Privacy Protections on Your Internet Usage Incident Response as "Hand-to-Hand Combat" Fourth WikiLeaks CIA Attack Tool Dump Security Orchestration and Incident Response Commenting Policy for My Blog
from the April 15, 2017 Crypto-Gram Newsletter
by Bruce Schneier
read by Dan Henage

In this issue:

Lawful Hacking and Continuing Vulnerabilities
More Links on the San Bernardino iPhone Case
Cryptography Is Harder Than It Looks
Memphis Airport Inadvertently Gets Security Right
New NIST Encryption Guidelines
Hacking Lottery Machines
IRS Security

from the April
15, 2016 Crypto-Gram Newsletter

by Bruce Schneier

read by Dan Henage

In this issue:

Data Is a Toxic Asset
The FBI vs. Apple: Decrypting an iPhone
The Importance of Strong Encryption to Security
Security Implications of Cash
WikiLeaks Publishes NSA Target List
Cheating at Professional Bridge
Simultaneous Discovery of Vulnerabilities

from the March 15, 2016 Crypto-Gram Newsletter
by Bruce Schneier
read by Dan Henage

In this issue:

The Internet of Things Will Be the World's Biggest Robot
Integrity and Availability Threats
Security vs. Surveillance
Paper on the Going Dark Debate
The 2016 National Threat Assessment
AT&T Does Not Care about Your Privacy
"Data and Goliath" Published in Paperback
NSA's TAO Head on Internet Offense and Defense
Worldwide Encryption Products Survey

from the February 15, 2016 Crypto-Gram Newsletter
by Bruce Schneier
read by Dan Henage

In this issue:

Policy Repercussions of the Paris Terrorist Attacks
NSA Collected Americans' E-mails Even After it Stopped Collecting Americans' E-mails
Reputation in the Information Age
On CISA
Voter Surveillance
Worldwide Cryptographic Products Survey: Edits and Additions Wanted
Security vs. Business Flexibility

from the December 15, 2015 Crypto-Gram Newsletter
by Bruce Schneier
read by Dan Henage

In this issue:

Volkswagen and Cheating Software
Living in a Code Yellow World
Obama Administration Not Pursuing a Backdoor to Commercial Encryption
Stealing Fingerprints
Automatic Face Recognition and Surveillance
Bringing Frozen Liquids through Airport Security
SHA-1 Freestart Collision

from the October 15, 2015 Crypto-Gram Newsletter
by Bruce Schneier
read by Dan Henage

In this issue:

The Security Risks of Third-Party Data
NSA Plans for a Post-Quantum World
Drone Self-Defense and the Law
Hacking Team, Computer Vulnerabilities, and the NSA
TSA Master Keys
Oracle CSO Rant Against Security Experts
FBI and Apple's Encryption
Animals vs. Drones
Glenn Greenwald Debates Keith Alexander
Wanted: Cryptography Products for Worldwide Survey

from the September 15, 2015 Crypto-Gram Newsletter
by Bruce Schneier
read by Dan Henage

In this issue:

Backdoors Won't Solve Comey's Going Dark Problem
Another Salvo in the Second Crypto War (of Words)
Cosa Nostra Dead Drops
Bizarre High-Tech Kidnapping
Fugitive Located by Spotify
Intimidating Military Personnel by Targeting Their Families
Stagefright Vulnerability in Android Phones

from the August 15, 2015 Crypto-Gram Newsletter
by Bruce Schneier
read by Dan Henage

In this issue:

Organizational Doxing
Why We Encrypt
The Secrecy of the Snowden Documents
The Risks of Mandating Backdoors in Encryption Products
What is the DoD's Position on Backdoors in Security Systems?
Office of Personnel Management Data Hack
More about the NSA's XKEYSCORE
Hayden Mocks NSA Reforms
NSA French and German Intercepts
Hacking Team Is Hacked

from the July 15, 2015 Crypto-Gram Newsletter
by Bruce Schneier
read by Dan Henage

In this issue:

The Logjam (and Another) Vulnerability against Diffie-Hellman Key Exchange
NSA Running a Massive IDS on the Internet Backbone
Duqu 2.0
Why the Recent Section 215 Reform Debate Doesn't Matter Much
TSA Not Detecting Weapons at Security Checkpoints
Chris Roberts and Avionics Security
Encrypting Windows Hard Drives
Should Companies Do Most of Their Computing in the Cloud? (Part 1)
Should Companies Do Most of Their Computing in the Cloud? (Part 2)
Should Companies Do Most of Their Computing in the Cloud? (Part 3)
Eighth Movie-Plot Threat Contest Winner

from the June 15, 2015 Crypto-Gram Newsletter
by Bruce Schneier
read by Dan Henage

In this issue:

Admiral Rogers Speaking at the Joint Service Academy Cyber Security Summit
The Further Democratization of QUANTUM
The Further Democratization of Stingray
Eighth Movie-Plot Threat Contest Semifinalists
Hacking Airplanes
Counting the US Intelligence Community Leakers
"Hinky" in Action

from the May 15, 2015 Crypto-Gram Newsletter
by Bruce Schneier
read by Dan Henage

In this issue:

"Data and Goliath"'s Big Idea
"Data and Goliath" News
Everyone Wants You To Have Security, But Not from Them
The Democratization of Cyberattack
The Equation Group's Sophisticated Hacking and Exploitation Tools
Ford Proud that "Mustang" Is a Common Password
Attack Attribution and Cyber Conflict
Co3 Systems Changes Its Name to Resilient Systems
FREAK: Security Rollback Attack Against SSL
Can the NSA Break Microsoft's BitLocker?
Hardware Bit-Flipping Attack

from the March 15, 2015 Crypto-Gram Newsletter
by Bruce Schneier
read by Dan Henage

In this issue:

Samsung Television Spies on Viewers
Accountability as a Security System
When Thinking Machines Break the Law
Obama Says Terrorism Is Not an Existential Threat
National Academies Report on Bulk Intelligence Collection
My Superpower
New Book: "Data and Goliath"
DEA Also Conducting Mass Telephone Surveillance

from the February 15, 2015 Crypto-Gram Newsletter
by Bruce Schneier
read by Dan Henage

In this issue:

Lessons from the Sony Hack
Reacting to the Sony Hack
Did North Korea Really Attack Sony?
Attributing the Sony Attack
The Limits of Police Subterfuge
Leaked CIA Documents
Doxing as an Attack
Attack Attribution in Cyberspace
The Security of Data Deletion

from the January 15, 2015 Crypto-Gram Newsletter
by Bruce Schneier
read by Dan Henage

In this issue:

NSA/GCHQ/CSEC Infecting Innocent Computers Worldwide
The Security of al Qaeda Encryption Software
QUANTUM Technology Sold by Cyberweapons Arms Manufacturers
The Concerted Effort to Remove Data Collection Restrictions
Cell Phone Kill Switches Mandatory in California
Security of Password Managers

from the September 15, 2014 Crypto-Gram Newsletter
by Bruce Schneier
read by Dan Henage

In this issue:

GCHQ Catalog of Exploit Tools
NSA Spied on Prominent Muslim Americans
Web Activity Used in Court to Portray State of Mind
NSA Targets the Privacy-Conscious for Surveillance
Co3 Systems Is Hiring
Could Keith Alexander's Advice Possibly Be Worth $600K a Month?

from the July 15, 2014 Crypto-Gram Newsletter
by Bruce Schneier
read by Dan Henage

In this issue:

Disclosing vs. Hoarding Vulnerabilities
The NSA is Not Made of Magic
GCHQ Intercept Sites in Oman
Chinese Hacking of the US
The Human Side of Heartbleed
TrueCrypt
Security and Human Behavior (SHB 2014)
Seventh Movie-Plot Threat Contest Winner

from the June 15, 2014 Crypto-Gram Newsletter
by Bruce Schneier
read by Dan Henage

In this issue:

Heartbleed
Seventh Movie-Plot Threat Contest
MYSTIC: The NSA's Telephone Call Collection Program
The Continuing Public/Private Surveillance Partnership
New Book on Data and Power
An Open Letter to IBM's Open Letter
Ephemeral Apps
Details of the Target Credit Card Breach

from the April 15, 2014 Crypto-Gram Newsletter
by Bruce Schneier
read by Dan Henage

In this issue:

Breaking Up the NSA
Computer Network Exploitation vs. Computer Network Attack
Metadata = Surveillance
Surveillance by Algorithm
Who Should Store NSA Surveillance Data
The Security of the Fortuna PRNG
RCS Spyware and Citizen Lab
Choosing Secure Passwords

from the March 15, 2014 Crypto-Gram Newsletter
by Bruce Schneier
read by Dan Henage

In this issue:

Finding People's Locations Based on Their Activities in Cyberspace
The Insecurity of Secret IT Systems
Last Month I Briefed Congress on the NSA
US Privacy and Civil Liberties Oversight Board (PCLOB) Condemns NSA Mass Surveillance
NSA/GCHQ Accused of Hacking Belgian Cryptographer
CSEC Surveillance Analysis of IP and User Data

from the February 15, 2014 Crypto-Gram Newsletter
by Bruce Schneier
read by Dan Henage

In this issue:

NSA Harvesting Contact Lists
NSA Eavesdropping on Google and Yahoo Networks
Code Names for NSA Exploit Tools
Defending Against Crypto Backdoors
Why the Government Should Help Leakers
The Trajectories of Government and Corporate Surveillance
A Fraying of the Public/Private Surveillance Partnership
Book Review: "Cyber War Will Not Take Place"
Understanding the Threats in Cyberspace
SecureDrop
Dry Ice Bombs at LAX
The Battle for Power on the Internet

from the November 15, 2013 Crypto-Gram Newsletter
by Bruce Schneier
read by Dan Henage

In this issue:

How the NSA Attacks Tor/Firefox Users With QUANTUM and FOXACID
Why It's Important to Publish the NSA Programs
The NSA's New Risk Analysis
Reforming the NSA
The Limitations of Intelligence
Metadata Equals Surveillance
Senator Feinstein Admits the NSA Taps the Internet Backbone
NSA Storing Internet Data, Social Networking Data, on Pretty Much Everybody
Air Gaps
Will Keccak = SHA-3?
Google Knows Every Wi-Fi Password in the World
Surreptitiously Tampering with Computer Chips

from the October 15, 2013 Crypto-Gram Newsletter
by Bruce Schneier
read by Dan Henage

In this issue:

Take Back the Internet
More on the NSA Commandeering the Internet
Detaining David Miranda
Government Secrecy and the Generation Gap
Conspiracy Theories and the NSA
The NSA's Cryptographic Capabilities
How to Remain Secure Against the NSA
Protecting Against Leakers
Our Newfound Fear of Risk
Human-Machine Trust Failures
Excess Automobile Deaths as a Result of 9/11
iPhone Fingerprint Authentication
Hacking Consumer Devices
Syrian Electronic Army Cyberattacks
The Cryptopocalypse
Measuring Entropy and its Applications to Encryption

from the September 15, 2013 Crypto-Gram Newsletter
by Bruce Schneier
read by Dan Henage

In this issue:

The Public/Private Surveillance Partnership
The NSA is Commandeering the Internet
Restoring Trust in Government and the Internet
Book Review: "Rise of the Warrior Cop"
Michael Hayden on the Effects of Snowden's Whistleblowing
Counterterrorism Mission Creep

from the August 15, 2013 Crypto-Gram Newsletter
by Bruce Schneier
read by Dan Henage

In this issue:

Blowback from the NSA Surveillance
Evidence that the NSA Is Storing Voice Content, Not Just Metadata
NSA Secrecy and Personal Privacy
Petition the NSA to Subject its Surveillance Program to Public Comment
New Details on Skype Eavesdropping
Pre-9/11 NSA Thinking
How the NSA Eavesdrops on Americans
NSA E-Mail Eavesdropping
US Offensive Cyberwar Policy
Finding Sociopaths on Facebook
My Fellowship at the Berkman Center
Protecting E-Mail from Eavesdropping
Is Cryptography Engineering or Science?
Sixth Movie-Plot Threat Contest Winner

from the July 15, 2013 Crypto-Gram Newsletter
by Bruce Schneier
read by Dan Henage

In this issue:

Government Secrets and the Need for Whistleblowers
Prosecuting Snowden
Trading Privacy for Convenience
Essays Related to NSA Spying Documents
The Politics of Security in a Democracy
More on Feudal Security
Surveillance and the Internet of Things
The Problems with CALEA-II
Sixth Annual Movie-Plot Threat Semifinalists
A Really Good Article on How Easy it Is to Crack Passwords
Bluetooth-Controlled Door Lock
Security and Human Behavior (SHB 2013)
The Cost of Terrorism in Pakistan

from the June 15, 2013 Crypto-Gram Newsletter
by Bruce Schneier
read by Dan Henage

In this issue:

Nationalism on the Internet
Automobile Data Surveillance and the Future of Black Boxes
The Court of Public Opinion
More on Chinese Cyberattacks
Technologies of Surveillance
Phishing Has Gotten *Very* Good
Hacking the Papal Election
Getting Security Incentives Right
All Those Companies that Can't Afford Dedicated Security

from the March 15, 2013 Crypto-Gram Newsletter
by Bruce Schneier
read by Dan Henage