J.M. Porup

to hold a quill is to be at war.
—Voltaire

@toholdaquill


want to contact me securely?


sign up for my newsletter.

J.M. Porup

J.M. Porup is a freelance national security and cybersecurity reporter based in Toronto. He has previously covered wrongdoing at the NSA, GCHQ, and elsewhere. His work has appeared in Ars Technica, The Christian Science Monitor, Slate, Motherboard, The Daily Dot, The Kernel, and The Economist.

Porup began studying infosec in 2002. A programmer in a early career, he learned the ropes from senior sysadmins who believed security comes first.

He previously reported from Latin America for many years. From his base in Cali, Colombia, he co-authored five Lonely Planet guidebooks to Latin America: Lonely Planet Venezuela, Lonely Planet Dominican Republic & Haiti, Lonely Planet South America on a Shoestring, and Lonely Planet Caribbean Islands. He was the Co-ordinating Author of Lonely Planet Colombia, 5th ed.

Some recent work:

The NSA’s SKYNET program may be killing thousands of innocent people Ars Technica UK, February 16, 2016

UK secret police are indiscriminately spying on millions of innocent people Ars Technica UK, April 20, 2016

Hacking Team hacker steals €10K in Bitcoin, sends it to Kurdish anticapitalists in Rojava Ars Technica UK, May 18, 2016

Copperhead OS: The startup that wants to solve Android’s woeful security Ars Technica UK, August 9, 2016

CISSP certification: Are multiple choice tests the best way to hire infosec pros? Ars Technica UK, July 4, 2016

The Internet of Things is a surveillance nightmare The Kernel, March 20, 2016

“Internet of Things” security is hilariously broken and getting worse Ars Technica, January 23, 2016

Cothority to Apple: Let’s make secret backdoors impossible Ars Technica, March 10, 2016

Underwriters Labs refuses to share new IoT cybersecurity standard Ars Technica, April 13, 2016

British Police, in witch hunt, demand suspect turn over encryption keys—for the second time Ars Technica, March 31, 2016

European spy tech sold to ultra-secret branch of Egyptian gov’t, claims new report Ars Technica UK, February 25, 2016

Malware in the hospital Slate, January 25, 2016

FDA presses medical device makers to OK good faith hacking CSM Passcode, February 10, 2016

Ransomware is coming to medical devices Motherboard, November, 2015

Why aren’t there better cybersecurity regulations for medical devices? Motherboard, October, 2015

‘Dissent,’ a new type of security tool, could markedly improve online anonymity Motherboard, September, 2015

Qubes OS will ship pre-installed on purism’s security-focused Librem 13 laptop Ars Technica, December, 2015

Finally, a ‘reasonably-secure’ operating system: Qubes R3 Motherboard, October, 2015

Qubes: A Digital Fortress? The Economist, March, 2014

This new ‘secure’ app for journalists may not be secure at all Motherboard, October, 2015

Reverse engineering proves journalist security app is anything but secure Motherboard, October, 2015

How mexican twitter bots shut down dissent Motherboard, September, 2015

Plunder. It’s a thing. And if you work in Silicon Valley, you’re probably doing it. Medium, May, 2015

The printing press created journalism. The internet will destroy it. Medium, March, 2014

How the military uses twitter sock puppets to control debate and suppress dissent Medium, March, 2014

Debian Reproducible Builds Motherboard, September, 2015

How a frozen neutrino observatory grapples with staggering amounts of data Motherboard, October, 2015