Runa Sandvik
Runa Sandvik is a computer security expert, known as a proponent of strong encryption.[2] She was hired as The New York Times senior director of information security in March 2016 and is a proponent of a smartphone messaging application Signal.
Runa Sandvik | |
---|---|
Runa Sandvik at Nordiske Mediedager in 2015 | |
Born | 1988 (age 32–33)[1] Norway |
Other names | Runa Agate Sandvik |
Occupation | computer security expert |
Personal life
She acquired her first computer when she was fifteen years old.[2]
She studied computer science at the Norwegian University of Science and Technology.[1]
In 2014 Sandvik married Michael Auger, and the pair made their home in Washington, D.C.[3]
Tor anonymity network
Sandvik was an early developer of the Tor anonymity network, a cooperative facility that helps individuals obfuscate the internet protocol they are using to access the internet.[4]
Freedom of the Press Foundation
Sandvik is a technical advisor to the Freedom of the Press Foundation.[4]
Black Hat Europe
She serves on the review board of Black Hat Europe.[4]
Interviewed Edward Snowden
Sandvik interviewed Edward Snowden in May 2014.[1]
Freedom of Information Access requests
In February 2015 Sandvik documented her efforts to retrieve information about herself through FOIA reqests.[5]
Demonstrated how smart rifles with remote access can be remotely hacked
Sandvik, and her husband, Auger, demonstrated how smart rifles with remote access can be remotely hacked.[6] The $13,000 TrackingPoint sniper rifle is equipped with an embedded linux computer.[7] According to Wired magazine, when used according to its specifications, the aiming computer can enable a novice to hit remote targets that would otherwise require a skilled marksman. However the manufacturers designed the aiming computer with WiFi capabilities, so the shooter could upload video of their shots. Sandvik and Auger found they could initiate a Unix shell command line interpreter, and use it to alter parameters the aiming computer relies on, so that it will always miss its targets. They found that a knowledgeable hacker could use the shell to acquire root access. Acquiring root access allowed an interloper to erase all the aiming computer's software—"bricking" the aiming computer.
Initiatives at the New York Times
Sandvik led efforts to make The New York Times a Tor Onion service, allowing Times employees and readers to access the newspaper's site in ways that impede intrusive government monitoring.[8]
References
- Glenn Slydal Johansen (2016-03-08). "Norske Runa Sandvik skal jobbe med sikkerhet i New York Times" [Norwegian Runa Sandvik is going to work for safety in the New York Times]. Journalisten (in Norwegian). Retrieved 2018-07-27.
-
"This Former Hacker Now Helps The Times Stay Safe Online". The New York Times. 2018-07-24. Retrieved 2018-07-27.
Outside The Times, she is well regarded in the information security community, Mr. McKinley said. She frequently attends conferences, speaks at events and hosts CryptoParties, or events that aim to educate people about digital security in an accessible way (two weeks ago, she co-hosted a Times-sponsored CryptoParty). Her friends see her as a tough stalwart of a male-dominated industry.
- "Går det virkelig an å hacke en rifle?" [There is war in cyberspace. Hacker Runa Sandvik fits The New York Times]. Aftenposten (in Norwegian). 2016-10-06. Retrieved 2018-07-28.
-
"Runa Sandvik". Corporate Learning Hub. Retrieved 2018-07-27.
She is a former developer with The Tor Project, a technical advisor to the Freedom of the Press Foundation and a member of the review board for Black Hat Europe.
-
Runa Sandvik (2015-02-26). "How I requested my photographs from the Department of Homeland Security". Medium magazine. Retrieved 2018-07-27.
In response to a Freedom of Information Act request I filed in November 2014, the Department of Homeland Security released a document containing information collected about me under this program over the last four years.
-
Joseph Cox (2017-03-27). "Hacker Runa Sandvik Went From Hijacking a Smart Rifle to Securing The NYT". Vice motherboard. Retrieved 2018-07-27.
Sandvik has helped the Times launch a new series of tip-lines, where potential sources can leak documents or information securely. The Times now has a public-facing Signal and WhatsApp number, as well as a SecureDrop instance.
-
Andy Greenberg (2017-07-29). "Hackers Can Disable a Sniper Rifle—Or Change Its Target". Wired magazine. Retrieved 2018-07-27.
The married hacker couple have developed a set of techniques that could allow an attacker to compromise the rifle via its Wi-Fi connection and exploit vulnerabilities in its software.
- Runa Sandvik (2017-10-27). "The New York Times is Now Available as a Tor Onion Service". The New York Times. Retrieved 2018-07-27.