Submissions by sjmurdoch

Should you phish your own employees? (tl;dr – no, it causes more harm than good)

The end of the billion-user Password:Impossible – cost of bad password rules

Top ten obstacles along distributed ledgers’ path to adoption

The “Million Dollar Homepage” as a Decaying Digital Artifact

Preventing phishing won’t stop ransomware spreading

Can we make people value IT security?

Observing the WannaCry fallout: confusing advice and playing the blame game

PayBreak able to defeat WannaCry/WannaCryptor ransomware

The politics of the NHS WannaCrypt ransomware outbreak

Underground abraCARDabra: Understanding carding forums

Online security won’t improve until companies stop passing the buck

Can games fix what’s wrong with computer security education?

Detecting Android malware by building Markov chains of behavioral models

A Longitudinal Measurement Study of 4chan’s Politically Incorrect Forum

What happens after you are pwnd: the use of leaked webmail credentials

EU to mandate 2FA for online banking: usability and transparency issues remain

A privacy enhancing architecture for secure wearable devices

Do you know what you’re paying for? How contactless cards are still vulnerable

Analyzing Privacy Aspects of the W3C Vibration API

Microsoft Ireland: winning the battle for privacy but losing the war

Progress and research in cybersecurity: report from the Royal Society [pdf]

User-centred security awareness empowers employees to be the strongest defense

International Comparison of Bank Fraud Reimbursement: Perceptions and Contracts

On the hunt for Facebook’s army of fake likes

Proof-of-stake, smart contracts, and contingency payment at 2016 Bitcoin workshop

Biometrics for online banking – better than passwords but challenges remain

3.67% of the most popular websites block Tor (because of Akamai and CloudFlare)