Security News
A new online tool named 'InAppBrowser' lets you analyze the behavior of in-app browsers embedded within mobile apps and determine if they inject privacy-threatening JavaScript into websites you visit. The revelations shook the communities of popular apps that feature embedded browsers, so to help users determine the behavior of their app's activity, Krause released the 'InAppBrowser' online tool and open-sourced its source code.
If you're considering a third-party audit like SOC 2 or ISO 27001, you should be prepared to answer some tough questions about endpoint security. If you're not sure how you'll answer those questions, then you need Kolide.
Google released Android 13, and it is already rolling out to eligible Pixel smartphones. In this Help Net Security video, you'll learn more about the latest privacy and security features of Google's mobile operating system.
Eighty-five percent of users are most interested in finding out how to set up privacy settings for services on Android, according to data collected by Kaspersky's Privacy Checker website. Concerns over digital privacy are widespread. A "Digital Privacy and Security Survey" conducted by the Calyx Institute in 2021, found that 80% of respondents were worried about the topic of digital privacy over the last year and 59% said they felt more aware of how their data is treated than a year ago.
GitHub to add non-essential cookies on marketing pages. "GitHub is introducing non-essential cookies on web pages that market our products to businesses," explains Olivia Holder, GitHub's Senior Privacy Counsel.
Miscreants aren't only working to exploit flaws in an enterprise's security posture, they're also looking for holes in organizations' privacy programs to steal user data, according to Meta's Scott Tenaglia. Similar to their security counterparts, these other red teams help test organizations' privacy defenses in a controlled setting.
Fears over security have become less of a concern for organizations adopting IoT solutions than it was five years ago, according to a recent study by Wi-SUN Alliance, a global member-based association of industry leading companies driving the adoption of interoperable wireless solutions for use in smart cities, smart utilities, IoT and industrial IoT applications. The Journey to IoT Maturity, a follow-up to Wi-SUN's 'state of the nation' IoT study in 2017, is based on interviews with IT decision makers from UK and US IoT adopters within key industries, including energy and utilities, state and local government, construction, technology, and telecommunications.
Canadian fast food chain Tim Hortons is settling multiple data privacy class-action lawsuits against it by offering something it knows it's good for: a donut and coffee. The Canadian Broadcasting Corporation said Friday that Timmies' agreement still requires approval from the courts, but if given the go ahead, Tim Hortons mobile app users affected by the chain's improper data collection will "Receive a free hot beverage and baked good."
Google has added support for the DNS-over-HTTP/3 protocol on Android 11 and later to increase the privacy of DNS queries while providing better performance. Roid previously supported DNS-over-TLS for version 9 and later to bolster DNS query privacy, but this system inevitably slowed down DNS requests due to the encryption overhead. Moreover, DoT requires a complete renegotiation of the new connection when changing networks.
"Taken together, this means the primary digital threat for people who take abortion pills is the actual evidence of intention stored on your phone, in the form of texts, emails, and search/web history. Cynthia Conti-Cook's incredible article"Surveilling the Digital Abortion Diary details what we know now about how digital evidence has been used to prosecute women who have been pregnant. As Conti-Cook says, Ms. Fisher "Conduct[ed] internet searches, including how to induce a miscarriage, 'buy abortion pills, mifepristone online, misoprostol online,' and 'buy misoprostol abortion pill online,'" and then purchased misoprostol online.