Security News

The iOS 14, iPadOS 14, and tvOS 14 anti-tracking feature is on hold until early 2021 to give developers time to make the necessary changes, according to Apple. Apple released iOS 14 without a new anti-tracking feature.

"To address the significant privacy risks posed by IMSI catchers, the 5G standards introduced the possibility for MNOs to encrypt the IMSI before it is sent over-the-air," comments Claus Dietze, Chair of Trusted Connectivity Alliance. Of the available options, executing IMSI encryption within the 5G SIM, which refers to both the SIM or eSIM as defined by Trusted Connectivity Alliance as the Recommended 5G SIM, emerges as a comprehensive solution when examined against a range of key criteria.

India has blocked 118 more mobile apps in its continued crackdown on the use mobile apps from China, citing concerns that they transmit user data out of the country and threaten its "Sovereignty and integrity" as political tensions between the two countries rise. The ministry said it "Has received many complaints from various sources including several reports about misuse of some mobile apps available on Android and iOS platforms for stealing and surreptitiously transmitting users' data in an unauthorized manner to servers which have locations outside India," according to a statement, which includes the full list of the newly banned apps.

Dataguise announced a patent-pending method of projecting unique data counts that enables organizations to report the impact of a data breach faster and more accurately than ever before. This capability comes in the latest release of the company's Personal Data Discovery and Protection software, continuing its tradition of helping organizations manage risk and costs as they store and use personal data to drive business value.

Rew Yang has been named as chair of the advisory board for Californians for Consumer Privacy, the organization which created and championed the passage of the CCPA and is now advocating for the passage of Proposition 24, the California Privacy Rights Act, which will make California's data privacy rights laws the strongest in the United States and set a precedent for other states to follow. While CCPA was a landmark victory for privacy and data property rights, Proposition 24 will extend beyond the existing law and provide consumers the right to correct their data, restrict use of sensitive personal information, including race and sexual orientation, extend to consumers the right to prevent companies from storing their information longer than necessary, and more.

Facebook is lambasting an upcoming Apple mobile operating system privacy update, which requires application to ask users for permission before collecting and sharing their data. In the iOS 14 update, Apple iPhone and iPad users have an explicit option to opt out of allowing apps to collect data using the Apple device identifier.

Facebook is pushing back on new Apple privacy rules for its mobile devices - and putting app developers in the middle. Apple will soon require apps to ask users for permission to collect data on what devices they are using and to let ads follow them around on the internet.

The global law firm of Winston & Strawn announced the formation of a new, fully integrated Global Privacy & Data Security practice. The new practice is the culmination of Winston's Global Privacy & Data Security Task Force, formed in 2017, which effectively established a suite of capabilities to serve clients across a wide range of regions and industries.

Sourcepoint has formed a relationship to help Oracle customers protect consumer privacy and manage compliance and user consent. Sourcepoint offers a fully customizable compliance management platform that allows companies to capture, manage, and optimize customer privacy preferences across a range of channels, including web, apps, AMP, and even emerging areas such as OTT and audio.

According to Snyk, SourMint actively performed ad fraud on hundreds of iOS apps and brought with it major privacy concerns to hundreds of millions of consumers. On the surface, the MintegralAdSDK posed as a legitimate advertising SDK for iOS app developers, but its malicious code appeared to commit ad attribution fraud by secretly accessing link clicking activity within thousands of iOS apps that use the SDK. SourMint also spied on user link click activity, improperly tracking requests performed by the app and reporting it back to Mintegral's servers.