Facebook Discloses WhatsApp MP4 Video Vulnerability (Dark Reading, Nov 18 2019)
A stack-based buffer overflow bug can be exploited by sending a specially crafted video file to a WhatsApp user.

146 New Vulnerabilities All Come Preinstalled on Android Phones (Wired, Nov 15 2019)
The dozens of flaws across 29 Android smartphone makers show just how insecure the devices can be, even brand-new.

NSA won’t collect phone location data, promises US government (Naked Security – Sophos, Nov 18 2019)
US intelligence agencies won’t harvest US residents’ geolocation data in future investigations, revealed the US government this month.

How AI bias can harm cybersecurity efforts (Fast Company, Nov 15 2019)
How AI bias can harm cybersecurity efforts

Human Nature vs. AI: A False Dichotomy? (Dark Reading, Nov 18 2019)
How the helping hand of artificial intelligence allows security teams to remain human while protecting themselves from their own humanity being used against them.

Sophos 2020 Threat Report: AI is the new battleground (Naked Security – Sophos, Nov 19 2019)
The SophosLabs 2020 Threat Report highlights a growing battle as smart automation technologies continue to evolve.

Using security orchestration to simplify IoT defense in depth (SC Magazine, Nov 15 2019)
Even as the technology industry continues to scramble to protect personal computers, datacenters and other traditional IT systems from increasingly sophisticated cyberattacks, a new attack target has emerged – the Internet of Things (IoT).

Black Hat Europe Brings A Bevy of IoT Security Insights (Dark Reading, Nov 15 2019)
Attend this London event next month for the latest on how security researchers are finding (and solving) security vulnerabilities in all of your favorite Internet-connected devices.

IoT in 2020: The awkward teenage years (Network World Security, Nov 15 2019)

Much of the hyperbole around the Internet of Things isn’t really hyperbole anymore – the instrumentation of everything from cars to combine harvesters to factories is just a fact of life these days. IoT’s here to stay.

SHAKEN/STIR: Finally! A Solution to Caller ID Spoofing? (Dark Reading, Nov 12 2019)
The ubiquitous Caller ID hasn’t changed much over the years, but the technology to exploit it has exploded. That may be about to change.

The Brave Browser Extends Its Payouts to iOS (Wired, Nov 13 2019)
Nearly four years after Brave proposed paying users to surf the web, that vision is finally coming to the iPhone.

Canada Spy Agencies Split Over Proposed Huawei 5G Ban (SecurityWeek, Nov 13 2019)
Canada’s spy agencies are divided over whether or not to ban Chinese technology giant Huawei from fifth generation (5G) networks over security concerns, the Globe and Mail reported Wednesday.

This App Will Tell You if Your iPhone Gets Hacked (VICE, Nov 14 2019)

A security firm has released a new app that promises to detect when your iPhone has been targeted by hackers, but there are caveats.

What the newly released Checkra1n jailbreak means for iDevice security (Ars Technica, Nov 15 2019)
There are reasons to embrace it. There are reasons to be wary of it. Here’s the breakdown.

Google & Samsung fix Android spying flaw. Other makers may still be vulnerable (Ars Technica, Nov 19 2019)
Camera and mic could be controlled by any app, no permission required.

Redefining security KPIs for 5G service providers (Help Net Security, Nov 19 2019)
Telco security professionals are missing the mark when understanding their consumers’ priorities, according to KPMG’s recent report. In the wake of a security breach, consumers seek proof that the incident isn’t repeatable, while security executives prioritize apologies.