A Review of the Best News of the Week on AI, IoT, & Mobile Security
T-Mobile Hacked — Again (Dark Reading, Jan 04 2021)
The wireless carrier has suffered a data breach for the fourth time since 2018.
How artificial intelligence will be used in 2021 (TechCrunch, Dec 31 2020)
“We’re going to start to see a lot of real value and ROI generated by AI across more and more businesses”
New Lawsuit Takes Aim at Ring After Smart Doorbell Hijacking (Infosecurity Magazine, Dec 24 2020)
Incidents led to murder and sexual assault threats for users
Happy New Year!
Hello 2021! Since I started this curated newsletter in June 2017, I’ve clipped ~18,000 articles and narrowed them down into the best 20 per day & best 15 per week. This is my favorite way to cut through all the security marketing and hype.
Thanks! – Lucas Samaras
The fight to stymie adversarial machine learning is on (Help Net Security, Jan 05 2021)
The use of machine learning (ML) technology is booming. This development is being driven by the many immediate gains that can be achieved using machine learning models in diverse domains, from image recognition to credit risk prediction. However, just like the boom in software development and the Internet attracted hackers that leveraged vulnerabilities in software to subvert it, so does machine learning.
Enterprise IoT Security Is a Supply Chain Problem (Dark Reading, Dec 23 2020)
Organizations that wish to take advantage of the potential benefits of IoT systems in enterprise environments should start evaluating third-party risk during the acquisition process.
FBI: Home Surveillance Devices Hacked to Record Swatting Attacks (SecurityWeek, Dec 30 2020)
A warning issued this week by the FBI warns owners of smart home devices with voice and video capabilities that these types of systems have been targeted by individuals who launch so-called “swatting” attacks.
NYSE to Delist Chinese Telcos on National Security Grounds (Infosecurity Magazine, Jan 04 2021)
Presidential executive order warns of “unusual and extraordinary threat”
NYSE U-Turn Means Chinese Telcos Escape Delisting (Infosecurity Magazine, Jan 05 2021)
Executive order had sought to remove them on security grounds
Let’s Encrypt comes up with workaround for abandonware Android devices (Ars Technica, Dec 22 2020)
When you haven’t been updated since 2016, expiring certificates are a problem.
Mobile Endpoint Security: Still the Crack in the Enterprise’s Cyber Armor (Dark Reading, Dec 30 2020)
A combination of best practices and best-in-class technology will help keep your enterprise from falling victim to ever-growing threats.
Google Releases January 2021 Security Updates for Android (SecurityWeek, Jan 05 2021)
Google this week announced the January 2021 security updates for Android devices, which address 42 vulnerabilities, including four rated critical severity.