A Review of the Best News of the Week on AI, IoT, & Mobile Security
New security measures to keep Google Play safe (Help Net Security, Jun 29 2021)
Google is announcing two new security measures aimed at minimizing the number of malicious / potentially unwanted apps available for download from the Google Play Store: additional Android developer identification requirements and 2-step verification. New Android developer identification requirements Android is the most widely used mobile OS (and OS) in the world, and malicious actors love nothing better than to prey on a massive pool of potential targets.
AI-Piloted Fighter Jets (Schneier on Security, Jun 25 2021)
“News from Georgetown’s Center for Security and Emerging Technology:
China Claims Its AI Can Beat Human Pilots in Battle: Chinese state media reported that an AI system had successfully defeated human pilots during simulated dogfights. According to the Global Times report, the system had shot down several PLA pilots during a handful of virtual exercises in recent years. Observers outside China noted that while reports coming out of state-controlled media outlets should be taken with a grain of…”
GitHub previews new AI tool that makes coding suggestions (TechCrunch, Jun 29 2021)
GitHub has unveiled a new product that leverages artificial intelligence to help you write code more efficiently. Named GitHub Copilot, today’s new product can suggest lines of code and even sometimes entire functions. GitHub has partnered with OpenAI to develop this tool. It doesn’t replace developers, it’s just a tool that should improve productivity and…
Filter Out the Noise
Since I started this curated security news in June 2017, I’ve clipped ~19,000 articles and narrowed them down into the best 20 per day & best 15 per week. This is my favorite way to cut through all the security marketing and hype. If you’re enjoying it, tell a friend. If you hate it, tell an enemy.
Thanks! – Lucas Samaras
Self-Healing Cybersecurity Systems: A Pipe Dream or Reality? (SecurityWeek, Jun 23 2021)
Cybersecurity has been a priority for organizations for many years. According to Gartner, organizations are expected to spend $150.4 million on IT security and risk management technologies in 2021, which would reflect a 12.4 percent increase compared to 2020. Yet, despite these investments in security controls, cyber-attacks keep coming.
Apple warns of sideloading risk as lawmakers consider third-party app stores (SC Media, Jun 23 2021)
Lawmakers and rival companies have said that @Apple’s control of the App Store allows the company to charge excessive fees to list apps or limit competitors to Apple services. Apple says it’s for the sake of security.
NFC Flaws Let Researchers Hack ATMs by Waving a Phone (Wired, Jun 24 2021)
Flaws in card reader technology let a security firm consultant wreak havoc with point-of-sale systems and more.
Hate robocalls? You’ll love what’s coming as of June 30 (CNET, Jun 28 2021)
Voice providers are running up against a June 30 deadline to implement the Stir/Shaken technology to help curb annoying and costly robocalls.
Consumers neglecting mobile security despite growing number of threats (Help Net Security, Jun 28 2021)
Over the past year, consumers have adapted to many changes, including the rapid shift towards a digital-first lifestyle. This has led to an emphasis on consumers dependence on mobile devices, as they look to execute nearly all daily activities via devices while on-the-go, exposing them to most digital risks. A new McAfee report reveals that 49% of U.S. consumers do not use mobile security software to protect their sensitive data…