A Review of the Best News of the Week on AI, IoT, & Mobile Security
TikTok Bug Gave Access to Contacts’ Profile Details (Infosecurity Magazine, Jan 26 2021)
Check Point reveals now-fixed vulnerability
Bugs in Signal, other video chat apps allowed attackers to listen in on users (Help Net Security, Jan 21 2021)
Bugs in several messaging/video chat mobile apps allowed attackers to spy on targeted users’s surroundings. The vulnerabilities – in Signal, Google Duo, Facebook Messenger, JioChat, and Mocha – could be triggered by simply placing a call to the target’s device – no other action was needed.
Humans wouldn’t be able to control a superintelligent AI, according to a new study (Business Insider, Jan 26 2021)
Humans wouldn’t be able to control a superintelligent AI, according to a new study – Business Insider Business Insider
Filter Out the Noise
Since I started this curated security news in June 2017, I’ve clipped ~17,000 articles and narrowed them down into the best 20 per day & best 15 per week. This is my favorite way to cut through all the security marketing and hype. If you’re enjoying it, tell a friend. If you hate it, tell an enemy.
Thanks! – Lucas Samaras
Comparing Different AI Approaches to Email Security (Dark Reading, Jan 25 2021)
Get to know the difference between “supervised” and “unsupervised” machine learning.
Darktrace Version 5: Redefining enterprise security with autonomous AI (Darktrace Blog, Jan 25 2021)
Version 5 offers a series of innovations across the Darktrace Immune System platform, bringing critical value to security teams grappling with the new normal. This blog explores how AI augments security teams with extended coverage across cloud services and zero-trust environments and an open architecture that enables seamless integrations.
4 Intriguing Email Attacks Detected by AI in 2020 (Dark Reading, Jan 20 2021)
Here’s to the sneakiest of the sneaky. These clever phishing messages — that standard validation measures often missed — deserve proper dishonor. (Sponsored)
Rethinking IoT Security: It’s Not About the Devices (Dark Reading, Jan 21 2021)
Keeping IoT safe in the future will require securing the networks themselves. Focusing on the devices is a never-ending battle that will only become more burdensome.
Not just MagSafe: Apple reminds users not to hold iPhones near pacemakers (Ars Technica, Jan 25 2021)
In response to iPhone 12 fears, Apple updates support hub with revised guidance.
Users of IoT products from three major vendors at risk of DoS attacks, data leaks (SC Media, Jan 25 2021)
Softing Industrial Automation GmbH, Kepware PTC, and Matrikon Honeywell all provided fixes for their respective products after security firm Claroty privately disclosed them during 2020.