News & Updates

Enlarge / Rep. Mo Brooks, R-Ala., descends the House steps in 2016. (credit: Bill Clark/CQ Roll Call)

Marshall Space Flight Center has a long and storied history when it comes to rocket design and production. It was there that Wernher von Braun and his German compatriots helped NASA design the Saturn line of rockets that took humans into deep space and land on the Moon. There, too, key components of the space shuttle’s rockets were designed.

Now, however, US rockets and engines are much more commonly developed outside of northern Alabama, where the NASA center is located in Huntsville. SpaceX has designed and built its Merlin rocket engines in California, and it is doing the same thing with its more powerful Raptor engines. Blue Origin has designed four engines in the state of Washington. Both companies have tested their rocket engines in Texas.

Smaller firms, too, such as Virgin Orbit, Vector, Rocket Lab, Relativity Space, Firefly, and a host of other firms have developed innovative new rocket engines and boosters outside the walls of the Marshall Space Flight Center. Certainly, these companies have at time drawn on the NASA center for its expertise, but these efforts have largely been privately financed and independently led.

Read 4 remaining paragraphs | Comments


A Supreme Court in Russia ruled Telegram must provide the FSB with encryption keys to access users’ messaging data to avoid being blocked.

Bad news for Telegram, a Supreme Court in Russia ruled the company must provide the FSB with encryption keys to access users’ messaging data. If Telegram will refuse to comply the request the authorities will block the service in Russia.

Media watchdog Roskomnadzor asked Telegram to share technical details to access electronic messages shared through the instant messaging app.

Roskomnadzor requested to “provide the FSB with the necessary information to decode electronic messages received, transmitted, or being sent” within 15 days.

In June, Roskomnadzor, the Russian Government threatened to ban the popular instant messaging app because the company refused to be compliant with the country’s new data protection laws. In July,  the company agreed to register with Russia authorities to avoid the local ban, but it did not share user data.


Telegram appealed against the ruling, but the Supreme Court rejected the request of the company.

Telegram founder Pavel Durov labeled the FSB request as “technically impossible to carry out” and unconstitutional, then he left Russia in September 2017 in response to the request of the FSB.

In July, Russia’s Duma approved the bill to prohibit tools used to surf outlawed websites

Russian authorities requested private firms operating in the country to provide the FSB with information on user activities, all the data related to Russian users must be stored in local servers according to anti-terror legislation that passed in 2016.

medianet_width=’300′; medianet_height= ‘250’; medianet_crid=’762221962′;


Pierluigi Paganini

(Security Affairs – instant messaging, Russia)

The post Supreme Court in Russia ruled Telegram must provide FSB encryption keys appeared first on Security Affairs.

Source: Security affairs

Video shot and edited by Justin Wolfson. Click here for transcript.

I’m a reasonably “with it” fellow when it comes to tech, but I remember the first technology story I read that made me feel absolutely baffled: it was Buzzfeed’s horrifying, incomprehensible piece on how 15-year old girls use Snapchat. Never before has a piece of tech reporting left me feeling so utterly lost and just…baffled. Like, okay, I get it—teenagers integrate tech into their lives and do whatever with it (I used to do my own incomprehensible stuff when I was a teen) and there’s nothing really to understand about it, but that Snapchat piece hit me like a speeding truck loaded with a cargo of concentrated WTF.

And that’s okay. Shaking our fists at the younger generation is just a part of the human condition—as our video today shows. We’ve got a few Millennials and even a representative of “Generation Z” (which much to my disappointment has nothing to do with zombies) opining about what they think about how those senior to them use the Internet and whether or not those seniors “get” what “the Internet” is.

Time, time, time, see what’s become of me

Part of me wants to react to this video with smugness, because I’ve got my own standards about what it means to “get” the Internet—standards that are informed, perhaps unfairly, by more than a decade of tech industry work that by necessity mandated a broad understanding of the connective technologies that make up the networks and endpoints that the Internet is composed of. My instinct is to laugh at people who don’t seem to realize the World Wide Web is only one aspect of the Internet, or who don’t have a working understanding of the OSI model, or whatever—I’ve got a bunch of other arbitrary and esoteric bits of techno-priestly gatekeeping propped up in my head to help me feel superior to those hyperconnected teens.

Read 2 remaining paragraphs | Comments


An Uber self-driving car has struck and killed a woman pedestrian in Tempe, Arizona. The incident raises questions about the safety and security of this kind of vehicles.

This is a sad page of the book of technology evolution, an Uber self-driving car has struck and killed a woman pedestrian in Tempe, Arizona.

The news was confirmed by the company, this is the first incident of this type.

According to the media, the accident occurred while the car, a Volvo  XC90 SUV, was in the self-driving mode.

“Tempe police are investigating a deadly crash involving a self-driving Uber vehicle overnight. The Uber vehicle was reportedly headed northbound when a woman walking outside of the crosswalk was struck.” states the TV station ABC15.

“Tempe Police says the vehicle was in autonomous mode at the time of the crash and the vehicle operator, 44-year-old Rafaela Vasquez, was also behind the wheel. No passengers were in the vehicle at the time. “

The victim Elaine Herzberg (49), the Uber self-driving car has struck the woman while she was crossing the street outside of a crosswalk.

The woman was transported to the hospital where she has died.

The company immediately suspended its service, all the self-driving cars in the US will be halted, below the message sent by the Uber CEO.

Uber launched the self-driving program in 2015, its vehicles since then are circulating in many US cities, including Phoenix, Pittsburgh, San Francisco, and Toronto.

The tests in Tempe, Arizona started in February 2017.

The National Transportation Safety Board announced an investigation and sent a team to the place of the accident.

The company suspended its self-driving program and withdrew all autonomous cars from US roads.

Even if this is an accident, we cannot forget the aspect safety and security when dealing with automotive. Are we really ready to make a self-driving car on the road?

When such kind of vehicle will crowd our cities the risks will be high and the cybersecurity aspects will be crucial.

medianet_width=’300′; medianet_height= ‘250’; medianet_crid=’762221962′;


Pierluigi Paganini

(Security Affairs – Uber self-driving car, security)

The post Uber Self-Driving Car struck and killed a woman in Tempe, Arizona appeared first on Security Affairs.

Source: Security affairs

Enlarge (credit: Popular Science/Getty Images)

Let’s just start with the big takeaway: as a general rule, if you drive someplace where the temperature falls below 45 degrees Fahrenheit (seven degrees Centigrade) with any regularity in the winter, you should put winter tires on your car.

Modern cars pack in so much safety technology—traction control, all-wheel drive, anti-lock brakes, and all the rest—that it’s easy to forget only one thing is truly keeping you from plowing into a guard rail or the car in front of you: a four-inch-by-four-inch bit of rubber called a “contact patch,” essentially the small bit of the tire that’s in contact with the road at a given time.

The grip provided by your tires makes everything happen in a car, from accelerating to braking to turning. Increase the grip, and you can do all of those things better. Decrease the grip, and you’ll end up using much more pavement than you planned—that is, if you can stop at all.

Read 35 remaining paragraphs | Comments


If you are unaware, the security standard HTTP Strict Transport Security (HSTS) can be abused as a ‘supercookie’ to surreptitiously track users of almost every modern web browser online without their knowledge even when they use “private browsing.”

Apple has now added mitigations to its open-source browser infrastructure WebKit that underpins its Safari web browser to prevent HSTS abuse after


On Friday, Frost Bank announced that it has suffered a data breach that exposed check images, crooks could use them to forge checks.

Frost Bank announced on Friday that it has suffered a data breach that exposed check images.

The bank is a subsidiary of Cullen/Frost Bankers, Inc., its staff discovered an unauthorized access to its systems containing images of checks.

Attackers compromised a third-party lockbox software program, in this way they were able to access the images of checks stored electronically in the database.

“In March 2018, Frost detected unauthorized access into a third-party lockbox software program that allowed unauthorized users to view and copy images of checks stored electronically in the image archive.” reads the security advisory published by the company.

“The identified incident did not impact other Frost systems. We have stopped the unauthorized access, and have reported the incident to and are cooperating with law-enforcement authorities.”

The lockbox services are normally used by customers to send payments to a central post office box, once the bank will receive the payments it will credit them to a business’s account.

According to Frost Bank, its systems weren’t impacted by the security breach.

The bad news is that crooks once obtained the images could use them to forge checks.

“Information from the accessed images can be used to forge checks.” continues the advisory.

Frost Bank

According to Frost Bank, the unauthorized access was limited to one software program serving about 470 commercial customers who use the electronic lockbox,

The company confirmed it stopped the identified unauthorized access once discovered the breach.

Law enforcement is investigating the case, while Frost Bank hired an unnamed cybersecurity firm to investigate the security breach,

“At Frost, we care deeply about taking care of our customers and protecting their information, and we regret that this situation has occurred. We are working very hard to make things right,” Frost Chairman and CEO Phil Green said in a statement.

medianet_width=’300′; medianet_height= ‘250’; medianet_crid=’762221962′;


Pierluigi Paganini

(Security Affairs – Frost Bank, data breach)

The post Frost Bank announced it has suffered a data breach that exposed check images appeared first on Security Affairs.

Source: Security affairs

Enlarge (credit: Uber)

The chief of the Tempe Police has told the San Francisco Chronicle that Uber is likely not responsible for the Sunday evening crash that killed 49-year-old pedestrian Elaine Herzberg.

“I suspect preliminarily it appears that the Uber would likely not be at fault in this accident,” said Chief Sylvia Moir.

Herzberg was “pushing a bicycle laden with plastic shopping bags,” according to the Chronicle‘s Carolyn Said, when she “abruptly walked from a center median into a lane of traffic.”

Read 6 remaining paragraphs | Comments


Enlarge / Facebook CSO Alex Stamos speaking at the Web Summit in Dublin in 2015. (credit: Web Summit via Creative Commons)

Update: Facebook CSO Alex Stamos tweeted the following on Monday evening in the wake of The New York Times report:

Despite the rumors, I’m still fully engaged with my work at Facebook. It’s true that my role did change. I’m currently spending more time exploring emerging security risks and working on election security.

We have updated the story accordingly.

Original story:

Read 6 remaining paragraphs | Comments