Wednesday, 25 November 2020

Google Finally Pulls Chinese Apps Stealing Personal Data - Security Boulevard

Bogus Baidu Boo-Boo

Should you pen-test WFH staff? Consumer gear has terrible security. - TechBeacon

The moral of the story? Audit the equipment your users use in their working-from-home networks. You’re going to have to keep up with the security status of that too, and mandate replacement of devices that can’t be secured

Monday, 23 November 2020

Congress Passes IoT Security Act, but is it Toothless? - Security Boulevard

NIST and OMB to Lead

Friday, 20 November 2020

Japanese Orgs Hacked ‘by China’ in Long, Widespread Campaign - Security Boulevard

Stop Monkeying Around

Thursday, 19 November 2020

App SDKs sell location data to US military in ‘war on terror’ - TechBeacon

Your tax dollars at work.

The moral of the story?
Dev: Don’t use third-party SDKs unless you’re sure what data is collected.
IT: Help your users choose the best privacy settings on their devices.