A Review of the Best News of the Week on AI, IoT, & Mobile Security

FaceTime bug allows you to listen remotely – Group Facetime Disabled (The Verge, Jan 29 2019)
If the recipient dismisses, it will also share video without answering

Hacker Demos Jailbreak of iOS on iPhone X (Infosecurity Magazine, Jan 23 2019)
A Qihoo360 researcher reveals the PoC of a bug used to jailbreak latest version of the iOS system.

Hacking Construction Cranes – Schneier on Security (Schneier on Security, Jan 25 2019)
The core of the problem lies in how, instead of depending on wireless, standard technologies, these industrial remote controllers rely on proprietary RF protocols, which are decades old and are primarily focused on safety at the expense of security. It wasn’t until the arrival of Industry 4.0, as well as the continuing adoption of the industrial internet of things (IIoT), that industries began to acknowledge the pressing need for security.

Without data, your security strategy is just a guess.
The Mosaic Security Research Market Intelligence Platform provides the data you need for OWASP’s Cyber Defense Matrix. Learn a new way to conduct a strategy assessment.

Misinformation Woes Could Multiply With ‘Deepfake’ Videos (SecurityWeek, Jan 28 2019)
Researchers have been working on better detection methods for some time, with support from private firms such as Google and government entities like the Pentagon’s Defense Advanced Research projects Agency (DARPA), which began a media forensics initiative in 2015.

Balancing AI with Human Intelligence in Cybersecurity (SC Magazine, Jan 23 2019)
But many companies don’t have the resources to handle this volume of work due to a crippling talent shortage that is predicted to result in a significant global analyst shortfall, with 3.5 million cybersecurity jobs unfilled by 2021. This is where AI provides value and plays an important role in cybersecurity.

DeepMind Beats Pros at StarCraft in Another Triumph for Bots (Wired, Jan 25 2019)
The group behind the software program that conquered the board game Go beat a world champion at real-time-strategy videogame StarCraft II.

Architecting Machine Learning with IoT (Gartner Blog Network, Jan 25 2019)
An important development in machine learning is the emergence of ML inference servers (aka inference engines and inference servers). The ML inference server executes the model algorithm and returns the inference output…

Watch a Hacker Access Nest Cameras and Demand People Subscribe to PewDiePie (Motherboard, Jan 23 2019)
Nest’s weak password requirements helped him pull off the hack.

Skill Squatting: The Next Consumer IoT Nightmare? (SecurityWeek, Jan 25 2019)
What happens when a smart speaker connects its user to the wrong skill? Usually just user frustration followed by aggressive repetition of the intended command. But, there can also be much more sinister conclusions.

Japanese Government Will Hack Citizens’ IoT Devices (Schneier on Security, Jan 28 2019)
The Japanese government is going to run penetration tests against all the IoT devices in their country, in an effort to (1) figure out what’s insecure, and (2) help consumers secure them: The survey is scheduled to kick off next month, when authorities plan to test the password security of over 200 million IoT devices, beginning with routers and web cameras.

Build security into your IoT plan or risk attack (Network World Security, Jan 28 2019)
There’s huge potential with the IoT, but security must be built into a company’s plan and not tacked on at the end.