Flux RSS

Someone tries to remote control his own DJI Romo vacuum, and ends up controlling 7,000 of them from all around the world. The IoT is horribly insecure, but we already knew that.

Out-of-court consumer complaint resolution

Surprising no one, Meta’s new AI glasses are a privacy disaster. I’m not sure what can be done here. This is a technology that will exist, whether we like it or not. Meanwhile, there is a new Android app that detects when there are smart glasses nearby.

Latest update on the AML/CFT standardised data collection

An expensive mistake: Someone jumped at the opportunity to steal $4.4 million in crypto assets after South Korea’s National Tax Service exposed publicly the mnemonic recovery phrase of a seized cryptocurrency wallet. The funds were stored in a Ledger cold wallet seized in law enforcement raids at 124 high-value tax evaders that resulted in confiscating digital assets worth 8.1 billion won (currently approximately $5.6 million). When announcing the success of the operation, the agency released photos of a Ledger device, a popular hardware wallet for crypto storage and management. However, the images also showed a handwritten note of the wallet recovery phrase, which serves as the master key that allows restoring the assets to another device. The authorities failed to redact that info, allowing anyone to transfer into their account the assets in the cold wallet. Reportedly, shortly after the press release was published, 4 million Pre-Retogeum (PRTG) tokens, worth approximately $4.8 million at the time, were transferred out of the confiscated wallet to a new address.

I’m skeptical about—and not qualified to review—this new result in factorization with a quantum computer, but if it’s true it’s a theoretical improvement in the speed of factoring large numbers with a quantum computer.

Extract from the CSSF Newsletter No 302 – March 2026

An NCSC assessment highlighting the impacts on cyber threat from AI developments between now and 2027.

Research from the NCSC designed to eradicate vulnerability classes and make the top-level mitigations easier to implement.

An NCSC assessment focusing on how AI will impact the efficacy of cyber operations and the implications for the cyber threat over the next two years.

Key findings and full report from the 6th year of the Active Cyber Defence (ACD) programme.

An updated report from the NCSC explaining how UK law firms - of all sizes - can protect themselves from common cyber threats.

Report informing readers about the threat to UK industry and society from commercial cyber tools and services.

Key findings from the 5th year of the Active Cyber Defence (ACD) programme.

Assessing the cyber security threat to UK organisations using Enterprise Connected Devices.

This report outlines the risks associated with the use of official and third party app stores.