-
Podcast Aug 09, 2024
Root Causes 411: PQC Security Levels
Repeat guest Bas Westerbaan of Cloudflare talks through the concept of "security levels" in post-quantum cryptography.
-
Podcast Aug 06, 2024
Root Causes 410: CrowdStrike, Automatic Updates, and Walled Gardens
Microsoft blames the problem on the fact that it must, by European law, allow kernel updates to Windows. We unpack the challenges this poses.
-
Podcast Aug 02, 2024
Root Causes 409: Mozilla Distrusts Entrust
This week Mozilla chose to follow Chrome in deprecating the Entrust trusted roots. We give you the details and explain why this action matters.
-
Webinar Jul 31, 2024
Entrust distrust: now what?
Google Chrome and Mozilla have announced that after Oct 31 and Nov 30 respectively the browsers will distrust newly issued public Entrust SSL certificates.
-
Podcast Jul 30, 2024
Root Causes 408: Takeaways from Recent Conversations with PQC Experts
We recap key takaways from recent conversations about post-quantum cryptography (PQC) with leading experts.
-
Podcast Jul 26, 2024
Root Causes 407: Whatever Happened to Passkeys?
WebAuthn arrived last year with great fanfare. But here we are in the latter half of 2024, and they are rarely used. In this episode we discuss why.
-
Podcast Jul 19, 2024
Root Causes 405: What Is an Adversarial Self-replicating Prompt?
In this episode we explain what an adversarial, self-replicating prompt, otherwise known as a prompt worm.
-
Podcast Jul 16, 2024
Root Causes 404: SCOTUS Ruling Will Change IT Security Regulation
The US Supreme Court has struck down the Chevron Deferment, which stands to weaken regulatory agency power over technology. We explore the consequences.
-
Podcast Jul 12, 2024
Root Causes 403: NIST PQC Contest Round 4 and Onramp with Dustin Moody
We are joined again by Dustin Moody, who leads the NIST search for PQC algorithms. We cover going-forward efforts, including Round 4 and the Onramp.
-
Podcast Jul 09, 2024
Root Causes 402: New Social Engineering Powershell Attack
A new social engineering exploit instructs victims to enter command line prompts to hack themselves on behalf of the hacker.
-
Podcast Jul 05, 2024
Root Causes 401: New SSH Remote Code Execution Vulnerability Revealed
A newly revealed OpenSSH vulnerability can open enterprises to remote code execution. We explain what is happening and what to do about it.
-
Podcast Jul 02, 2024
Root Causes 400: French Court Orders DNS Poisoning
To combat piracy of sporting event transmissions, a French court has ordered major tech companies including Google and Cloudflare to poison DNS settings.