Schneier on Security

APRIL 29, 2025

. […] While CaMeL does use multiple AI models (a privileged LLM and a quarantined LLM), what makes it innovative isn’t reducing the number of models but fundamentally changing the security architecture.

Engineering 239

Engineering Architecture Software 239

Schneier on Security

APRIL 23, 2025

To mitigate this risk, we propose Guillotine, a hypervisor architecture for sandboxing powerful AI models—models that, by accident or malice, can generate existential threats to humanity.

Architecture 231

Architecture Healthcare Software Risk 231

Schneier on Security

APRIL 3, 2025

The next layer up is the file system architecture: the way those binary sequences are organized into structured files and directories that a computer can efficiently access and process. At the foundation level, bits are stored in computer hardware. creates the trusted environment that AI systems require to operate reliably.

Architecture 253

Architecture Artificial Intelligence Internet Internet 253

Schneier on Security

JULY 25, 2024

I am the Chief of Security Architecture at Inrupt, Inc. , This week, we announced a digital wallet based on the Solid architecture. the company that is commercializing Tim Berners-Lee’s Solid open W3C standard for distributed data ownership. Right now, there are hundreds of different wallets, but no standard.

Architecture 323

Architecture Data privacy 323

Security Boulevard

JUNE 12, 2025

As enterprises embrace AI agents to automate decisions and actions across business workflows, a new architectural requirement is emerging — one that legacy IAM systems (even SaaS IAM!) The post Why hybrid deployment models are crucial for modern secure AI agent architectures appeared first on Strata.io. were never built to handle.

Architecture 52

Architecture 52

Lohrman on Security

SEPTEMBER 15, 2024

While the federal government deadline has arrived on implementing a zero-trust cybersecurity model, many state and local governments have committed to zero-trust architecture as well.

Government 294

Government Architecture Cybersecurity 294

Schneier on Security

JULY 10, 2025

Im a fellow and lecturer at Harvards Kennedy School , a board member of EFF , and the Chief of Security Architecture at Inrupt, Inc. Ive been writing about security issues on my blog since 2004, and in my monthly newsletter since 1998. This personal website expresses the opinions of none of those organizations.

Adware 201

Adware Encryption Antivirus Architecture 201

Schneier on Security

FEBRUARY 13, 2025

Second, data exposure: Beyond accessing personal information and transaction records, these operators can copy entire system architectures and security configurations—in one case, the technical blueprint of the country’s federal payment infrastructure.

Government 363

Government Artificial Intelligence Banking Software 363

The Last Watchdog

APRIL 16, 2025

Audrey Adeline , Researcher Audrey currently leads the Year of Browser Bugs (YOBB) project at SquareX which has disclosed multiple major architectural browser vulnerabilities to date. As part of the Year of Browser Bugs (YOBB) project, SquareX commits to continue disclosing at least one major architectural browser vulnerability every month.

Architecture 147

Architecture Data breaches Ransomware Education 147

Zero Day

JUNE 26, 2025

New changes to the Windows security architecture will make those outages less likely and easier to recover from. It's been almost a year since CrowdStrike crashed Windows PCs and disrupted businesses worldwide.

Architecture 97

Architecture 97

The Last Watchdog

APRIL 16, 2025

And if this near-shutdown rattled operations, it also exposed an underlying architectural flaw. New architecture needed? Cipollone isnt just observing the problemhes actively rethinking the architecture. The entire system is too centralized, too brittle.

Architecture 130

Architecture Risk Cybersecurity Internet 130

Tech Republic Security

MARCH 18, 2024

Developers can now take advantage of NVIDIA NIM packages to deploy enterprise generative AI, said NVIDIA CEO Jensen Huang.

Architecture 196

Architecture Artificial Intelligence Software Network Security 196

Schneier on Security

DECEMBER 7, 2022

This is a really interesting paper that discusses what the authors call the Decoupling Principle: The idea is simple, yet previously not clearly articulated: to ensure privacy, information should be divided architecturally and institutionally such that each entity has only the information they need to perform their relevant function.

Architecture 262

Architecture Authentication 262

Adam Shostack

JANUARY 2, 2025

I also like Figure 27 & 28 (shown), showing risks associated with a generic architecture. Words like "risk" and "risk management" encompass a lot, and this figure is a nice side contribution of the paper. Having this work available allows systems builders to consider the risks to various components they're working on.

Risk 189

Risk Architecture Manufacturing Cybersecurity 189

Schneier on Security

OCTOBER 22, 2021

Someone has been hacking telecommunications networks around the world: LightBasin (aka UNC1945) is an activity cluster that has been consistently targeting the telecommunications sector at a global scale since at least 2016, leveraging custom tools and an in-depth knowledge of telecommunications network architectures.

Telecommunications 360

Telecommunications Architecture Mobile Hacking 360

Schneier on Security

MARCH 12, 2021

Unfortunately, most organizations are unaware that these documents can compromise sensitive information like authors names, details on the information system and architecture. All these information can be exploited easily by attackers to footprint and later attack an organization.

Architecture 363

Architecture Software 363

The Last Watchdog

OCTOBER 23, 2023

Splunk’s inability to migrate to a modern cloud-native architecture makes it difficult to take advantage of these cost-saving benefits or implement advanced data science use cases critical for threat detection. Influxes of data ingestion and the flat architecture of data lakes have led to difficulties in extracting value from repositories.

Architecture 261

Architecture Threat Detection Engineering Data collection 261

Security Boulevard

MAY 2, 2025

With the right cloud database architecture, you gain versatility as well as optimal security. The post The Cloud Illusion: Why Your Database Security Might Be at Risk appeared first on Security Boulevard.

Risk 98

Risk Architecture Cloud Migration Cybersecurity 98

Malwarebytes

OCTOBER 30, 2024

Technical details One of the vulnerabilities was reported to Google by Apple Security Engineering and Architecture (SEAR), which reported the issue on October 23, 2024. Previous Chrome vulnerabilities reported by Apple turned out to be exploited by a commercial spyware vendor.

Spyware 141

Spyware Architecture Advertising Engineering 141

The Last Watchdog

APRIL 22, 2025

A strong argument can be made that with attacks increasing in speed and sophistication, segmentation is no longer optionalits an essential piece of modern zero trust security architectures. For a full drill down, please give the accompanying podcast a listen.

Architecture 147

Architecture Internet Internet Ransomware 147

SecureWorld News

NOVEMBER 19, 2024

Technical leaders are uniquely positioned to embed trustworthiness into the organizational architecture, leveraging their expertise in systems thinking to drive sustained value and resilience. Every day, we manage complex architectures, ensuring each component works together to keep the organization running smoothly.

Marketing 113

Marketing Architecture Manufacturing Technology 113

Schneier on Security

JULY 30, 2021

ESP introduces a new client-side encryption architecture that includes a novel format-preserving image encryption algorithm, an encrypted thumbnail display mechanism, and a usable key management system. We have created Easy Secure Photos (ESP) to enable users to protect their photos on cloud photo services such as Google Photos.

Encryption 363

Encryption Architecture Mobile 363

Security Affairs

DECEMBER 17, 2024

In this latest campaign, our investigation also uncovered prebuilt Hiatus binaries that target new architectures such as Arm, Intel 80386, and x86-64 and previously targeted architectures such as MIPS, MIPS64, and i386. reads the report published by Black Lotus Labs.

Architecture 109

Architecture Internet Internet Malware 109

Schneier on Security

OCTOBER 11, 2022

We conclude that machine-learning model security requires assurance of provenance along the entire technical pipeline, including the data, model architecture, compiler, and hardware specification.

Architecture 363

Architecture Software 363

Security Affairs

NOVEMBER 7, 2024

The application bundle has the bundle identifier Education.LessonOne and contains a universal architecture (i.e., The second-state malware is a Mach-O x86-64 executable which can only run on Intel architecture Macs or Apple silicon devices with the Rosetta emulation framework installed.

Malware 124

Malware Architecture Risk Cryptocurrency 124

The Last Watchdog

MARCH 18, 2025

Throughout 2025, SquareXs research team will disclose at least one critical web attack per month as part of the YOBB project, focusing on vulnerabilities that exploit architectural limitations of the browser and incumbent solutions. Each disclosure will include attack video demonstrations, technical breakdowns, and mitigation strategies.

Cybersecurity 130

Cybersecurity Architecture Media Password Management 130

Adam Shostack

JUNE 26, 2025

It also serves as an interesting example of a “template,” where it outlines very generically the threats to an architecture like this, and allows someone building an agentic system to start from the template and provide more specific threats and mitigations.

Architecture 130

Architecture Authentication Risk Software 130

Security Affairs

OCTOBER 30, 2024

Google has patched a critical Chrome vulnerability, tracked as CVE-2024-10487, reported by Apple Security Engineering and Architecture (SEAR) on October 23, 2024. Google addressed a critical vulnerability in its Chrome browser, tracked as CVE-2024-10487, which was reported by Apple.

Architecture 134

Architecture Engineering Hacking Information Security 134

Adam Shostack

JANUARY 2, 2025

Michael Nygard has a nice write up on using Architecture Decision Records in Documenting Architecture Decisions that I hadnt seen before. MITRE released a mini-site titled Threat Modeling with ATT&CK v1.0.0. Kudos to them for versioning their work. Security Challenges of Intent-Based Networking by Jiwon Kim and collaborators.

Architecture 130

Architecture 130

Schneier on Security

JUNE 10, 2021

Second, we show that our markpainting technique is transferable to models that have different architectures or were trained on different datasets, so watermarks created using it are difficult for adversaries to remove. This can be designed to reconstitute a watermark if the editor had been trying to remove it.

Architecture 357

Architecture Software 357

Security Affairs

FEBRUARY 15, 2025

“we have explored a suspicious (and quite common) architecture where authentication is enforced at a proxy later but then the request is passed through a second layer with different behavior.” ” reads the report published by Assetnote.

Firewall 104

Firewall Authentication Architecture Risk 104

Malwarebytes

JANUARY 21, 2025

404 Media says the company trained GeoSpy on millions of images from around the world and can recognize distinct geographical markers such as architectural styles, soil characteristics, and their spatial relationships. Using the tool to determine anyones location requires virtually no training, so anybody can do it.

Media 141

Media Identity Theft Artificial Intelligence Surveillance 141

Schneier on Security

SEPTEMBER 20, 2023

What there is a shortage of are computer scientists, developers, engineers, and information security professionals who can code, understand technical security architecture, product security and application security specialists, analysts with threat hunting and incident response skills.

Cybersecurity 339

Cybersecurity CISO Architecture Engineering 339

Malwarebytes

APRIL 25, 2025

Heres the reasoning step by step:” Architectural Clues: The old stone building in the foreground has Georgian-style windows and masonry , which are common in parts of the British Isles, especially in Ireland and the UK. The picture was part of a selfie taken through a window of an office building in Cork.

Architecture 115

Architecture Media Identity Theft Artificial Intelligence 115

Krebs on Security

DECEMBER 1, 2022

.” However, LastPass maintains that its “customer passwords remain safely encrypted due to LastPass’s Zero Knowledge architecture.” But that same architecture theoretically means that hackers who might break into LastPass’s networks can’t access that information either.

Phishing 327

Phishing Architecture Passwords Accountability 327

The Last Watchdog

APRIL 10, 2025

The groups three core missions: Deepen scientific understanding of how AI models learn and predict; Create controllable AI environments using experimental physics models; Embed trust into the architecture itselfnot as an afterthought. If that sounds lofty, it is. Were now deep into that shift.

Architecture 162

Architecture Artificial Intelligence Media Internet 162

Adam Shostack

JANUARY 2, 2025

Theres certainly circumstances where a whiteboard diagram and a discussion are better and lead to much better architectural choices. There may be circumstances where a complex spreadsheet is called for, and I find it not very usable. So I want to suggest that the community talk about what good judging criteria might be.

Architecture 147

Architecture Technology Authentication Software 147