Dan Goodin

Tire pressure "transmissions are sent without any encryption or secure mechanisms and include a unique identifier. This allows anyone with affordable equipment like a low-cost spectrum receiver and a standard off-the-shelf antenna to capture and track them throughout time and space."

https://www.securityweek.com/researchers-uncover-method-to-track-cars-via-tire-sensors/

RIP burner accounts

https://arstechnica.com/security/2026/03/llms-can-unmask-pseudonymous-users-at-scale-with-surprising-accuracy/

Google has devised a means for securing HTTPS certificates against quantum computing attacks without massive performance hits stemming from the considerably longer size of data required to be included.

Is anyone following this work?

https://security.googleblog.com/2026/02/cultivating-robust-and-efficient.html

That guest SSID you set up for your neighbors may not be as secure as you think

https://arstechnica.com/security/2026/02/new-airsnitch-attack-breaks-wi-fi-encryption-in-homes-offices-and-enterprises/

I'm curious to know what people think about Anthropic's claim that Claude found 500 high-severity vulnerabilities in open-source packages. Has anyone confirmed that these vulns were indeed high-severity and hadn't been discovered before? Is this development as big a deal as Anthropic says? Any other critiques?

https://red.anthropic.com/2026/zero-days/

Even people with the most to lose continue to support and rely heavily on: -- Google -- Slack -- Meta -- Microsoft -- Apple -- Too many others to list These orgs cozy up to authoritarianism. They terminate your account for any reason or no reaso at all. They shove AI down your throat. And yet, my workplace, union, and so many of the orgs I value and need keep using them and have no plans to ween themselves off. Yes, I realize current dynamics make all of this inevitable. So I'm left feeling hopeless and helpless, which is a terrible place to be.

AI slop is making streaming platforms unusable for music discovery. Now it's doing the same for bug bounty programs https://arstechnica.com/security/2026/01/overrun-with-ai-slop-curl-scraps-bug-bounties-to-ensure-intact-mental-health/