Weekend Reads 081222

The distributed, peer-to-peer (P2P) InterPlanetary File System (IPFS) has become a hotbed of phishing-site storage: Thousands of emails containing phishing URLs utilizing IPFS are showing up in corporate inboxes.

Walmart’s advice to companies trying to control the hefty cost of running workloads on the three largest cloud providers comes down to one word: choice.

With nearly half of all breaches involving external attackers enabled by stolen or fake credentials, security firms are pushing a high-fidelity detection mechanism for such intrusions: canary tokens.

These WISPs might have the 100/20 Mbps capability for some customers close to a tower, but it’s impossible to be able to deliver those speeds to everybody across an entire county.

The World Wide Web Consortium (W3C) has announced that Decentralized Identifiers (DIDs) v1.0 is now an official Web standard.

Intel CEO Pat Gelsinger’s carefully assembled house of cards is collapsing around him. And it’s not really that surprising when you look at the hand he’s been dealt.

The Flash Memory Summit 2022 was held as an in-person event again this week for the first time since 2019, at the Santa Clara Convention Center San Francisco, showcasing the latest developments in memory and storage.

Conflicting business requirements is a common problem – and you find it in every corner of an organization, including in information technology. Resolving these conflicts is a must, but it isn’t always easy – though sometimes there is a novel solution that helps.

In this article we talk through the preliminary results of an encrypted-DNS censorship study currently being conducted by the Open Observatory Network Interference (OONI).

After more than three years of development, compute express link (CXL) is nearly here. The long-awaited interconnect tech will make its debut alongside Intel’s upcoming Sapphire Rapids and AMD’s Genoa processor families.

For the heated battle between AMD and its archrival, Intel, when it comes to compute engines in the datacenter, AMD is in the fortunate position of being able to leverage both tactics at the same time.

As I see it, the DNS is the last remaining piece of glue that binds the Internet together. We lost IP address coherency within the Internet many years ago and the DNS is all that’s left.

Email security company Agari recently released a report outlining trends in email fraud and identity deception in 2021, analyzing data from millions of domains and trillions of emails to look at the state of email security from multiple angles. The key findings from the report are detailed below.

Without a phone, I was locked out of personal, financial, social and professional accounts. Many services require a secondary authentication service, which is commonly done through SMS associated with a mobile phone number.

Cryptanalysis over the competition was brutal. Twenty-five of the Round 1 algorithms were attacked badly enough to remove them from the competition. Another eight were similarly attacked in Round 2. But here’s the real surprise: there were newly published cryptanalysis results against at least four of the Round 3 finalists just months ago—moments before NIST was to make its final decision.

High-speed train services between Madrid and Barcelona were interrupted on Monday after 600 meters (1,968 feet) of fiber-optic and signaling cable was pilfered from the track linking Spain’s two biggest cities.

The apps never shut up. They’re hungry for engagement. They want you to know that your favorite items are on sale, that you haven’t practiced your Spanish today, that your delivery driver is five stops away, that your child at daycare just had a blowout — all day, all at once. Welcome to a place we all live, a place called notification hell.

A $25 hacking tool that can seemingly breach Starlink’s internet terminals has been revealed by a security researcher.

McKinsey says that the current labor shortage is mostly for jobs that can be classified as traditional. People who are willing to take traditional jobs do so for the benefits, job titles, and the chance of long-term career advancement.

To help me think about automated systems in network and security management, I’ve put what seem to be the key points into a picture (below).