Threats & Defense
Intelligence and strategies that help organizations identify, protect, detect, respond, and recover.
Penetration Testing Vulnerability Scans MITRE ATT&CK
Social Engineering Incident Response Cyber Forensics
Red Team Testing
A Review of the Best News of the Week on AI, IoT, & Mobile Security
Researchers, Companies Slam Mobile Voting Firm Voatz (Dark Reading, Sep 14 2020)
In a letter, almost 70 different security firms and individual researchers criticize Voatz for misrepresenting to the US Supreme Court widely accepted security research practices.
Here Are Detailed Photos of iPhone Unlocking Tech GrayKey (VICE, Sep 14 2020)
New pictures of the outside—and inside—of the GrayKey iPhone unlocking device have been published by the FCC.
How AI caught hackers crypto-mining on a biometric access server in an empty office (Darktrace Blog, Sep 10 2020)
Darktrace recently detected a cyber-attack that used the processing power of a biometric scanner to mine for cryptocurrency. The activity occurred while the office was closed due to COVID-19, but Cyber AI detected the anomalous behavior in real time.
Filter Out the Noise
Since I started this curated newsletter in June 2017, I’ve clipped ~16,000 articles and narrowed them down into the best 20 per day & best 15 per week. This is my favorite way to cut through all the security marketing and hype. If you’re enjoying it, tell a friend. If you hate it, tell an enemy.
Thanks! – Lucas Samaras
Hacking AI-Graded Tests (Schneier on Security, Sep 08 2020)
The company Edgenuity sells AI systems for grading tests. Turns out that they just search for keywords without doing any actual semantic analysis.
More Printers Could Mean Security Problems for Home-Bound Workers (Dark Reading, Sep 14 2020)
Tricked-out home offices have led to an influx in printers, many of which have not been set up securely, leaving workers and their companies vulnerable.
Android’s September 2020 Patches Fix Critical System Vulnerabilities (SecurityWeek, Sep 09 2020)
Google addressed two critical vulnerabilities in the Android System component as part of the newly released September 2020 set of security patches.