Skip to content
I T S S
  • Welcome
  • Hardware
  • Internet
  • Networking
  • Security
  • Data Recovery
  • Support
  • Contact
  • Webmail

A Nice Little Cryptography Primer

By itss | 28/06/2021
0 Comment

Pun Intended.

Category: Technology
Post navigation
← pfSense / Wireguard / Bad Code / Close Call Why Quake3 was so fast : Fast Inverse Square Root →

Recent Posts

  • Hardware Exploits?
  • Why Quake3 was so fast : Fast Inverse Square Root
  • A Nice Little Cryptography Primer
  • pfSense / Wireguard / Bad Code / Close Call
  • Apple Continues Its Trip To The Dark Side With The Release of MacOS 17 (Big Sur)

Slashdot

News for nerds

  • Spain-Backed Fund Joins FOSSA's Sovereign Satellite Communications Push
    by EditorDavid on 28/06/2026 at 10:05 pm

    Spanish startup FOSSA Systems "has raised about $10.5 million to expand its connectivity constellation," reports Space News, noting some funding is backed by Spain's government: The support from the Spanish Society for Technological Transformation (SETT) comes a year after the fund injected 14 million euros into Spain's Sateliot , which is also developing a satellite connectivity network with security and defense applications. Spanish private investment firm Kibo Ventures led FOSSA's funding round, the six-year-old venture announced June 24, bringing its total raised to date to nearly 20 million euros. The proceeds will help fuel FOSSA's push beyond the tiny picosatellites it once used to connect low-power monitoring devices toward larger cubesats in low Earth orbit, enabling additional sovereign communications and space-based intelligence capabilities... The company's funding round follows a wave of investments this year in European ventures planning to develop sovereign space capabilities, including Austrian propulsion startup Gate Space, which secured 6.3 million euros earlier this month from a European Commission-backed accelerator program. "Our goal is to establish FOSSA as a European benchmark in sovereign space infrastructure," said Julián Fernández, FOSSA's CEO and cofounder. Read more of this story at Slashdot.

  • China's AI Matches Anthropic in Cybersecurity, Causing Worry Over US Restrictions
    by EditorDavid on 28/06/2026 at 9:04 pm

    Chinese AI systems "have matched the performance of Anthropic's powerful model Mythos in some cybersecurity scenarios," reports the Wall Street Journal. They call it "a development poised to reset the global tech race and pressure the White House in its overhaul of U.S. AI policy." Security researchers said that a new AI model, released this month by China's Zhipu AI, also known as Z.ai, can match the latest U.S. models when it comes to finding security bugs, although it still lags behind Anthropic's and OpenAI's products in other tasks. Overall, the capability gap between top U.S. models and those built by Chinese companies has narrowed significantly, and use of Chinese AI systems has surged as businesses seek to rein in runaway costs. A host of companies, including Microsoft, are weighing how they can offer Chinese models on their platforms, a development that is set to alter the balance of power among tech companies... Unlike models from Anthropic or OpenAI, Zhipu's GLM-5.2 is open-weight. That means it can be downloaded and run on hardware operated by anybody and can be modified and used without supervision. Open-weight models are ideal for users who want unfettered access to systems they control, but they are also ideal for hackers, who can run them in the shadows. GLM-5.2 has ranked as one of the 10 most-used AI models, according to data from OpenRouter, a company that provides access to more than 400 AI models. In some benchmarking tests, according to the cybersecurity company Semgrep, GLM-5.2 bested Anthropic's Claude Opus 4.8 model, which was released in May. When given further instructions, Opus 4.8 and GLM-5.2 can match Mythos in bug-finding ability, according to researchers... "Banning Fable while selling chips China needs to develop its own version is a gift to China," said Saif Khan, a distinguished technology fellow at the Institute for Progress think tank who worked on export restrictions in the Biden administration. The U.S. needs to maximize the use of Mythos and comparable models to harden its cyber defenses while it can, he added. Among the Mythos 5 and Fable 5 users that had lost access before Friday's decision to restore Mythos 5 access for some trusted entities: the National Security Agency, which had been testing the tools and found them impressive in trials, according to people familiar with the matter... "It is incentivizing companies across the globe to use cheaper but very capable Chinese open-weight models, while at the same time undermining the U.S. AI industry," said Niels Provos, a researcher who led security teams at Google and Stripe. "I don't understand it." Thanks to long-time Slashdot reader schwit1 for sharing the article. Read more of this story at Slashdot.

  • Are Checks Sent Through the Mail Vulnerable to Theft?
    by EditorDavid on 28/06/2026 at 7:34 pm

    The New York Times tells the story of a 63-year-old retiree who wrote a check for several thousand dollaras to pay her taxes. But she discovered much later that her taxes were never paid because that check had been intercepted and then altered to be payable to someone else: In some cases, thieves may pilfer one or more checks from local mailboxes. Adam Rust, director of financial services for the Consumer Federation of America, said thieves sometimes "fish" for checks at free-standing drop boxes, using long tools with sticky pads on the ends to grab letters. In other cases, more sophisticated criminals may steal large batches of checks, copy them and then sell them on the internet. Often, the purloined checks are chemically altered in what's known as "check washing" to remove the name of the recipient. The thief replaces it with a fraudulent name, and often increases the amount of the check, before cashing or depositing it. The 63-year-old retiree's bank told her she'd waited too long to recover the funds: Schwab's "security guarantee," outlined on its website , says that "Schwab will cover losses in any of your Schwab accounts due to unauthorized activity." But fine print at the bottom of the page notes that reimbursement "requires your timely reporting of unauthorized activity to Schwab," and that Schwab "will not be liable for additional or increased losses resulting from a failure to report unauthorized activity in a timely manner." It notes that more details are available in account agreements... Notify your bank as soon as possible, said Scott Anchin, senior vice president of strategic initiatives and policy at the independent bankers association. Banks generally allow at least 30 days and sometimes up to 90 days from the time your statement is made available to you to report suspected check fraud, he said. So how can you avoid check fraud? Adam Rust, director of financial services for the Consumer Federation of America, just suggests that "No one should ever mail a check." If you must write a check, he said, try to deliver it in person or take it inside a post office to mail rather than relying on your own mailbox or public drop boxes. The American Bankers Association recommends using permanent "gel" ink pens when you do write checks to reduce the risk of tampering... And if you don't already, consider using your bank's online bill payment service. The article notes that even the U.S. federal government "has been moving away from paper checks for things like benefit payments and income tax refunds, saying digital payment methods are more secure." Read more of this story at Slashdot.

  • US Agency Cancels Contract For Warrantless Tracking of Mobile Devices
    by EditorDavid on 28/06/2026 at 5:34 pm

    America's Bureau of Alcohol, Tobacco, Firearms and Explosives has "canceled its contract for a surveillance tool that enables warrantless tracking of mobile devices," reports the Associated Press. They note the move comes "after lawmakers, a prosecutor and a judge raised concerns about the legality of the tool in criminal investigations." ATF, the federal agency responsible for enforcing the nation's gun laws, told The Associated Press that it discontinued what it called a "pilot" program using a tool called Webloc after Rep. Michael Cloud, a Republican from Texas, and Sen. Ron Wyden, a Democrat from Oregon, expressed reservations about the agency's use of bulk commercial location data. Webloc, which is made by a vendor called Penlink, sources data from consumer apps and advertising networks, which collect the location of mobile devices from consumers who download apps or browse the web... The U.S. Supreme Court ruled in 2018 that police needed a warrant to obtain historic movement data from cellphone companies on a criminal suspect. But it has never addressed the growing practice of commercially acquired data. Other users of Webloc include the U.S. military and U.S. Immigration and Customs Enforcement but also local law enforcement agencies such as police in places like Elk Grove, Calif. and Durham, N.C. The technology has also expanded around the world, with the national police in El Salvador and Hungarian intelligence agencies as customers, according to a report from earlier this year from Citizen Lab, a group of researchers at the University of Toronto who investigate digital threats to civil society. The article notes that other U.S. law enforcement agencies continue to buy commercial geolocation data, "including the FBI and the Department of Homeland Security." Read more of this story at Slashdot.

  • Students Around the World are Using AI-Powered Smart Glasses to Cheat on Tests
    by EditorDavid on 28/06/2026 at 4:34 pm

    Students are using AI-powered smart glasses to cheat on tests, reports CNN. "And in East Asia's test-obsessed societies, where a single exam could impact the trajectory of a student's future career and social status, educators are scrambling to get ahead of the problem." Already, countries are stepping up inspections for test-takers. For China's grueling annual college entrance exam earlier this month — which more than 10 million hopefuls take each year — authorities required screening of all glasses. In the United Kingdom, the head of England's exam watchdog warned earlier this month that AI glasses and smart devices like earpieces could worsen cheating in exams... [T]wo incidents in South Korea were the country's first reported cases of cheating with AI glasses... In Taiwan, the university where a prospective student was caught cheating is now reviewing rules and standard operating procedures for AI eyewears during examinations. But experts worry these individual cases point to a more widespread issue. "If we're seeing a few cases being reported, we're seeing a lot more cases not being reported," said Thomas Corbin, lecturer at Deakin University in Australia, who has conducted research around the usage of AI-powered glasses and other smart devices in academic assessment. With the rapid development of AI technology, however, smart glasses are becoming slimmer, less noticeable, while integrating AI models that can operate independently with connectivity, raising concerns not only about exam integrity, but also about broader privacy risks... "Wearable AI is as much of a challenge to exams as ChatGPT was to essays in 2022 and I just don't think there is any real way that we can reliably have exam practices moving forward," Corbin said. Read more of this story at Slashdot.

  • 'Supergirl' Movie Criticized for Script, Poor Visual Effects
    by EditorDavid on 28/06/2026 at 3:34 pm

    The Onion joked the new movie Supergirl is about a hero who must single-handedly save the world "after the catastrophic collapse of interest in the genre." Unfortunately, The Hollywood Reporter says the film's reviews "range from negative to tepid praise (averaging a 58 percent Rotten Tomatoes score)." Many point fingers at the film's script, with Variety's line — "a comic-book movie with the worst script I can remember" — going viral... Not to pile on, but there's another recurring gripe from the reviews that stood out: Critics bashed the film as being murky, dark and gray, with poor VFX: "Muddy CG sludge" wrote one. Another said the film was full of "sludgy browns and grays" and "the visual murkiness of the settings makes it hard to follow the already unintelligible action sequences." A third wrote the "VFX is so rough it makes The Flash look like Avatar." Moviegoers increasingly despise murky, dark visuals (often used to hide weak effects), along with obvious CGI and incoherent action. They've seen it so many times they've become allergic. The Bulwark agrees that the action sequences are "terribly lit, incoherently staged, and just generally weightless and ugly... [I]t's reminiscent of the disaster that was The Flash: It's just very obvious during certain sequences that everyone was in a big green-screen warehouse and the camera was whipping around with the knowledge that everything would be painted in later, so who really gives a crap how anything looks on the day of." But they also call the movie "a tremendous slog of a film, a real step backwards for the James Gunn-overseen DC Universe of movies and TV shows" that's "neither fun nor exciting" and "feels empty." The film does have one bright spot: Lobo, who is played by Jason Momoa as something like Michael Keaton's Beetlejuice by way of Jason Momoa's Aquaman. He's blustery and cantankerous and saucy and just a little menacing; it's a perfect piece of casting and a really nice performance. Unfortunately, it's the only spark of life in what is otherwise a deeply dour, deeply boring piece of filmmaking... Supergirl is just a misfire on nearly every level, one that lacks the sincerity and fun of last year's reboot of this universe or the comic pathos present in Gunn's Peacemaker series on HBO Max. Reason calls it "dark, depressive, and dull" and "a downer of a movie in nearly every way." It's not fun. It's barely even righteous. It's just miserable. At one point, Supergirl flat-out murders a guy by pushing a giant sword through his neck. Somehow, I suspect even Zack Snyder would be appalled. Time argued fans of last decade's superhero movies "should be demanding more, not less." Though "Will there be rioting in the streets once audiences get some idea of how lousy Supergirl is? Probably not." Read more of this story at Slashdot.

Archives

  • September 2022
  • November 2021
  • June 2021
  • March 2021
  • November 2020
  • October 2020
  • September 2020
  • February 2020
  • January 2020
  • October 2019
  • August 2018
  • July 2018
  • April 2018
  • February 2018
  • January 2018
  • December 2017
  • October 2017
  • September 2017
  • August 2016
  • July 2016
  • March 2016
  • February 2016
  • August 2015
  • May 2015

Categories

  • Innovation
  • Security
  • Software
  • Technology

Tags

backdoor cisco coding json laziness patterns public information announcement security vulnerability
© 2017 IT Sales & Services Ltd
Quality IT solutions in Tanzania since 2010
Iconic One Theme | Powered by Wordpress