A Review of the Best News of the Week on AI, IoT, & Mobile Security
Mobile Security Index 2020 (Verizon Enterprise, Feb 25 2020)
“This is the third edition of the MSI, and each year we’ve seen the number of companies admitting to suffering a mobile- related compromise grow. How much of this can be attributed to increased activity and improved success rates of cybercriminals, or companies becoming more aware of when a mobile device is involved, we don’t know for sure. But our data suggests that each played a part in the increase.”
Researchers Fool Smart Car Camera with a 2-Inch Piece of Electrical Tape (Dark Reading, Feb 19 2020)
Operators of some older Tesla vehicles might be surprised to learn that a single piece of two-inch black electrical tape is all it takes to trick the camera sensor in their cars into misinterpreting a 35-mph speed sign as an 85-mph sign.
SECURITI.ai Wins RSA Conference 2020 Innovation Sandbox Contest (SecurityWeek, Feb 24 2020)
Privacy compliance solutions provider SECURITI.ai has won the title of ‘Most Innovative Startup’ at the RSA Conference 2020 Innovation Sandbox contest that took place on Monday.
Filter Out the Noise
Since I started this curated newsletter in June 2017, I’ve clipped ~13,000 articles and narrowed them down into the best 20 per day & best 15 per week. This is my favorite way to cut through all the security marketing and hype. If you’re enjoying it, tell a friend. If you hate it, tell an enemy.
Thanks! – Lucas Samaras
Pentagon Adopts New Ethical Principles for Using AI in War (SecurityWeek, Feb 24 2020)
The Pentagon is adopting new ethical principles as it prepares to accelerate its use of artificial intelligence technology on the battlefield.
‘Weapon Detecting AI’ is Now Scanning Students in South Carolina Schools (VICE, Feb 25 2020)
Fearing school shootings, two districts have become the first in the country to replace metal detectors with body scanners from a company called Evolv Technology.
Medical device vulnerability highlights problem of third-party code in IoT devices (Ars Technica, Feb 19 2020)
Op-ed: It’s not so easy to just patch or upgrade medical devices, IU Health’s CISO explains.
Security by Sector: Medical IoT Gets Much Needed Dose of Cybersecurity (Infosecurity Magazine, Feb 20 2020)
Connected healthcare devices are a serious security risk, but a new virtual segmentation capability seeks to boost medical IoT
What the Hell Is That Device, and Is It Spying on You? This App Might Have the Answer (VICE, Feb 20 2020)
Since companies won’t secure the internet of broken things, researchers are trying to educate consumers as to the security and privacy risks.
Internet of Things Candle (Schneier on Security, Feb 20 2020)
There’s a Kickstarter for an actual candle, with real fire, that you can control over the Internet. What could possibly go wrong?…
Airbnb Is Pushing Surveillance Devices as ‘Party Prevention’ (VICE, Feb 21 2020)
The company is offering discounts on devices that alert hosts when there’s an unusual amount of noise.
Google Removes Mideast Android App ToTok (SecurityWeek, Feb 18 2020)
For the second time within two months, Google has removed United Arab Emirates-developed messaging application ToTok from Google Play.
Samsung freaks out smartphone owners with mysterious ‘1’ notification (Graham Cluley, Feb 20 2020)
Samsung has apologised after it accidentally sent a bizarre notification to smartphone owners’ devices.
Popular Mobile Document-Management Apps Put Data at Risk (Dark Reading, Feb 20 2020)
Most iOS and Android apps that Cometdocs has published on Google and Apple app stores transmit entire documents – unencrypted.
7 Tips to Improve Your Employees’ Mobile Security (Dark Reading, Feb 24 2020)
Security experts discuss the threats putting mobile devices at risk and how businesses can better defend against them.
By exploiting an LTE vulnerability, attackers can impersonate mobile phone users (Help Net Security, Feb 24 2020)
Exploiting a vulnerability in the mobile communication standard LTE, researchers at Ruhr-Universität Bochum can impersonate mobile phone users. Consequently, they can book fee-based services in their name that are paid for via the mobile phone bill – for example, a subscription to streaming services.
Google Pulls 600 Apps from Play Store (Infosecurity Magazine, Feb 24 2020)
Google has removed almost 600 Android apps from its Play Store for violating its policy on disruptive advertising. The disruptive ad practices highlighted by Google included “out of context” advertising, which pops up when the user isn’t even logged into a specific app.
The 5G Future (Politico, Feb 25 2020)
A compilattion of articles on 5G