Security News

Google has agreed to pay $93 million to settle a lawsuit filed by the U.S. state of California over allegations that the company's location-privacy practices misled consumers and violated consumer protection laws. "Our investigation revealed that Google was telling its users one thing - that it would no longer track their location once they opted out - but doing the opposite and continuing to track its users' movements for its own commercial gain," California Attorney General Rob Bonta said.

Organizations are optimistic about AI, but AI adoption requires attention to privacy and security, productivity, and training, according to GitLab. "According to the GitLab Global DevSecOps Report, only 25% of developers' time is spent on code generation, but the data shows AI can boost productivity and collaboration in nearly 60% of developers' day-to-day work. To realize AI's full potential, it needs to be embedded across the software development lifecycle, allowing everyone involved in delivering secure software, not just developers, to benefit from the efficiency boost."

About Bruce Schneier I am a public-interest technologist, working at the intersection of security, technology, and people. I've been writing about security issues on my blog since 2004, and in my monthly newsletter since 1998.

Google has officially begun its rollout of Privacy Sandbox in the Chrome web browser to a majority of its users, nearly four months after it announced the plans. "We believe it is vital to both improve privacy and preserve access to information, whether it's news, a how-to-guide, or a fun video," Anthony Chavez, vice president of Privacy Sandbox initiatives at Google, said.

Every online interaction hinges on the bedrock of network security. In this Help Net Security video, Shawn Edwards, CSO at Zayo Group, discusses how businesses can ensure a secure network to protect themselves and their consumers.

Google has started to roll out its new interest-based advertising platform called the Privacy Sandbox, shifting the tracking of user's interests from third-party cookies to the Chrome browser. While Google states that the Privacy Sandbox is designed to increase privacy by letting your web browser compute your interests locally rather than through cookies, Apple, Mozilla, and the WC3 TAG have cited numerous issues with the proposal.

While smart speakers are only supposed to listen after being invoked with a "Wake" phrase, their data collection and who they share that with may surprise. A profound difference was also found in the amount of data requested from smart device owners depending on whether the associated app was installed on an Android or iOS phone.

Fully homomorphic encryption - a technique that allows data to be processed encrypted without the need for decryption - shows great promise in addressing the privacy issues associated with blockchain. FHE can enhance data security by allowing computations to be performed on encrypted data, reducing the risks pertaining to data exposure.

Today, OpenAI released ChatGPT Enterprise, an enterprise-grade version of its popular generative AI chatbot. ChatGPT Enterprise has enhanced security and privacy meant for business use and unlimited access to a high-speed version of ChatGPT's underlying large language model GPT-4.

Machine learning models are algorithms that process data to generate meaningful insights and inform critical business decisions. When these data sources contain sensitive or proprietary information, using them for machine learning model training or evaluation/inference raises significant privacy and security concerns.