Security News > 2020 > August

The US House of Representatives has passed a spending bill which includes a $500m election security provision. Specifically, the half-billion goes to the US Election Assistance Commission and will give states money that will be used to replace electronic voting machines with ones that provide a paper trail of results.

The US House of Representatives has passed a spending bill which includes a $500m election security provision. Specifically, the half-billion goes to the US Election Assistance Commission and will give states money that will be used to replace electronic voting machines with ones that provide a paper trail of results.

Google is making two changes in its advertising policy as the U.S. moves into the fall election season ahead of the presidential contest in November, in an attempt to thwart disinformation campaigns. For one, Google is updating its Google Ads Misrepresentation Policy to prevent coordinated activity around politics, social issues or "Matters of public concern," by requiring advertisers to provide transparency about who they are.

You can do that with the Windows 10 May 2020 Update, aka Windows 10 2004. First, make sure you're running Windows 10 version 2004.

UPDATE. Netgear will not patch 45 router models that are vulnerable to a high-severity remote code execution flaw, the router company revealed last week. The company says that routers that won't receive updates are outdated or have reached EOL. The remote code execution vulnerability in question, which was disclosed June 15, allows network-adjacent attackers to bypass authentication on vulnerable Netgear routers - sans authentication.

BlackBerry on Monday announced a new open source tool to help security teams reverse engineer malware. Called PE Tree, BlackBerry said the free tool was initially developed for internal use, but the company has now released it as an additional tool for reverse engineers to have in their arsenal.

The newly formed Open Source Security Foundation includes titans in technology such as Google, Intel, Microsoft, IBM, and more. Today, the creation of the Open Source Security Foundation.

Corporate culture, lack of privacy teams hurt privacy initiatives. Despite the common refrain of "It's not a matter of if, but when" in relation to dealing with a privacy breach, companies are still struggling to implement data privacy protocols, according to a recent TechRepublic Premium survey.

The chairman of UK Parliament's Defence Committee has suggested making popular app TikTok subject to Huawei-style code reviews by GCHQ, if its reported move to a new London HQ comes true. Calls to simply ban TIKTOK are shortsighted - we are losing this tech Cold War.

Federal authorities say one of the gravest threats to the November election is a well-timed ransomware attack that could paralyze voting operations. "We're seeing state and local entities targeted with ransomware on a near daily basis," said Geoff Hale, a top election security official with Homeland Security's Cybersecurity and Infrastructure Security Agency.