web – Noise

Web 3.0 Requires Data Integrity

Bruce Schneier — Thu, 03 Apr 2025 11:05:29 +0000

If you’ve ever taken a computer security class, you’ve probably learned about the three legs of computer security—confidentiality, integrity, and availability—known as the CIA triad. When we talk about a system being secure, that’s what we’re referring to. All are important, but to different degrees in different contexts. In a world populated by artificial intelligence (AI) systems and artificial intelligent agents, integrity will be paramount.

What is data integrity? It’s ensuring that no one can modify data—that’s the security angle—but it’s much more than that. It encompasses accuracy, completeness, and quality of data—all over both time and space. It’s preventing accidental data loss; the “undo” button is a primitive integrity measure. It’s also making sure that data is accurate when it’s collected—that it comes from a trustworthy source, that nothing important is missing, and that it doesn’t change as it moves from format to format. The ability to restart your computer is another integrity measure...

Thousands of WordPress Websites Infected with Malware

Bruce Schneier — Mon, 10 Mar 2025 11:01:17 +0000

The malware includes four separate backdoors:

Creating four backdoors facilitates the attackers having multiple points of re-entry should one be detected and removed. A unique case we haven’t seen before. Which introduces another type of attack made possibly by abusing websites that don’t monitor 3rd party dependencies in the browser of their users.

The four backdoors:

The functions of the four backdoors are explained below:

Backdoor 1, which uploads and installs a fake plugin named “Ultra SEO Processor,” which is then used to execute attacker-issued commands ...

Friday Squid Blogging: Unpatched Vulnerabilities in the Squid Caching Proxy

Bruce Schneier — Fri, 17 Nov 2023 22:01:40 +0000

In a rare squid/security post, here’s an article about unpatched vulnerabilities in the Squid caching proxy. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Read my blog posting gu...

Making Cloudflare the best place for your web applications

Igor Minar — Wed, 17 May 2023 13:00:19 +0000

Angular, Astro, Next, Nuxt, Qwik, Remix, Solid, Svelte, Vue on Cloudflare? Deployed globally, even “beyond the edge”, with a single command? And all for $0 or a fraction of the usual cost? Try: npm create cloudflare

Incremental adoption of micro-frontends with Cloudflare Workers

Peter Bacon Darwin — Thu, 17 Nov 2022 14:00:00 +0000

With Cloudflare Workers, our fragment-based micro-frontend architecture, and fragment piercing technique, engineering teams can incrementally improve large frontends in a fraction of the time, yielding significant user and developer experience gains.

Cloudflare Workers and micro-frontends: made for one another

Peter Bacon Darwin — Thu, 20 Oct 2022 13:00:00 +0000

In this blog-post we demonstrate how hosting and combining multiple server-side rendered micro-frontends on Cloudflare Workers offer a highly scalable, high performance solution to these problems

Opt-in to the new Amazon SES console experience

Simon Poile — Fri, 12 Feb 2021 19:09:52 +0000

Amazon Web Services (AWS) is pleased to announce the launch of the newly redesigned Amazon Simple Email Service (SES) console. With its streamlined look and feel, the new console makes it even easier for customers to leverage the speed, reliability, and flexibility that Amazon SES has to offer. Customers can access the new console experience […]