News
-
"Organizations Should Use Psychology to Promote Secure Behavior Among Staff"The Information Security Forum (ISF) encourages organizations to improve employees' security behavior through the use of psychology. The group's report titled Human-Centered Security: Positively Influencing Security Behavior guides organizations on the…
-
"Baidu Apps in Google Play Leak Sensitive Data"Researchers at Palo Alto Unit 42 discovered that multiple Android mobile apps found in Google Play, including Baidu Search Box and Baidu Maps, leak data that could be used to track users, even if they switch devices. The apps in question expose a range…
-
SoS Musings #43 - Crowdsourcing Security with Bug Bounty ProgramsSoS Musings #43 - Crowdsourcing Security with Bug Bounty Programs
-
Cybersecurity Snapshots #12 - Open Source Code: Is It Secure?Cybersecurity Snapshots #12 - Open Source Code: Is It Secure?
-
CMU launches new privacy engineering optionsCMU launches new privacy engineering options Two new options make it easier for working professionals to receive privacy engineering training Daniel Tkacik NOV 23, 2020 As new privacy regulations like the General Data Protection Regulation and the…
-
Pub Crawl #44Pub Crawl summarizes, by hard problems, sets of publications that have been peer reviewed and presented at SoS conferences or referenced in current work. The topics are chosen for their usefulness for current researchers.
-
"Good Heavens! 10M Impacted in Pray.com Data Exposure"Researchers at vpnMenotor found several open, publicly accessible cloud databases (Amazon Web Service S3 Buckets) belonging to Pray.com. Pray.com is an application that has been downloaded by more than 1 million people on Google Play and ranks as…
-
"Cyber Criminals Leveraging AI to Carry Out Malicious Attacks, Warns Europol"A new report from Europol, the United Nations Interregional Crime and Justice Research Institute (UNICRI), and Trend Micro, brings further attention to cybercriminals' use of Artificial Intelligence (AI) in their attacks. AI-as-a-Service (AIaaS) will…
-
"Facebook Messenger Bug Allows Spying on Android Users"A security researcher at Google Project Zero discovered a vulnerability in the Android version of Facebook Messenger that could allow attackers to spy on users and potentially identify their surroundings without them knowing. The vulnerability existed in…
-
Spotlight on Lablet Research #12 - Operationalizing Contextual IntegritySpotlight on Lablet Research #12 - Project: Operationalizing Contextual Integrity