Security News

• No recent updates.

• Google’s War on Android App Permissions, 60 Percent Successful
  An automated Google warning to Android app developers regarding mobile app permissions has cut the number of requests in half.
  
• RSAC 2020: GM’s Transportation Future Hinges on Cybersecurity
  CEO Mary T. Barra addressed the high stakes in rolling out self-driving cars and biometric-enhanced vehicles, where one cyber-event could derail plans for emerging automotive technologies.
  
• IoT Insecurity: When Your Vacuum Turns on You
  From vacuum cleaners to baby monitors, the IoT landscape continues to be plagued by concerning security issues that lead to privacy threats.
  
• Billions of Devices Open to Wi-Fi Eavesdropping Attacks
  The Kr00k bug arises from an all-zero encryption key in Wi-Fi chips that reveals communications from devices from Amazon, Apple, Google, Samsung and others.
  
• RSAC 2020: Smart Baby Monitor Vulnerable to Remote Hackers
  A popular baby monitor has been found riddled with vulnerabilities that give attackers full access to personal information and sensitive video footage.
  
• RSAC 2020: Lack of Machine Learning Laws Open Doors To Attacks
  When it comes to machine learning, research and cybercriminal activity is full speed ahead - but legal policy has not yet caught up.
  
• Hackers Cashing In On Healthcare Industry Security Weaknesses
  Between ransomware attacks on healthcare devices, malware-laced “medical” apps, and fraud services available on the dark net, attackers are pushing the boundaries on targeting healthcare.
  
• Iranian APT Targets Govs With New Malware
  A new campaign is targeting governments with the ForeLord malware, which steals credentials.
  
• Unpatched Security Flaws Open Connected Vacuum to Takeover
  A connected, robotic vacuum cleaner has serious vulnerabilities that could allow remote hackers to view its video footage and launch denial of service attacks.
  
• Stalkerware Attacks Increased 50 Percent Last Year, Report
  Research puts the emerging mobile threat—which monitors the whereabouts and device activity of devices users as well as collects personal data—into clearer focus.