Amber Rudd has called for the police and intelligence agencies to be given access to WhatsApp and other encrypted messaging services to thwart future terror attacks, prompting opposition politicians and civil liberties groups to say her demand was unrealistic and disproportionate.
The home secretary said it was “completely unacceptable” that the government could not read messages protected by end-to-end encryption and said she had summoned leaders of technology companies to a meeting to discuss what to do. Rudd refused to rule out passing new legislation to tackle encrypted messaging if she did not get what she wanted.Read more
Social media companies Facebook Inc, Alphabet Inc and Twitter Inc will have to amend their terms of service for European users within a month or face the risk of fines, a European Commission official said on Friday. U.S. technology companies have faced tight scrutiny in Europe for the way they do business, from privacy to how quickly they remove illegal or threatening content.
The Commission and European consumer protection authorities will "take action to make sure social media companies comply with EU consumer rules," the official said. Germany, the most populous EU state, said this week it planned a new law calling for social networks such as Facebook to remove slanderous or threatening online postings quickly or face fines of up to 50 million euros ($53 million).Read more
As a society, we are creating more data than ever before meaning we're at risk of running out of traditional storage. As a result, there is a race to create new ways to store our photos and files.
Although the concept of storing such data on DNA isn't new, a pair of researchers has now used the technique to store an operating system, movie, and other files on biological molecules. "DNA has the potential to provide large-capacity information storage," Yaniv Erlich and Dina Zielinski. "Here we report a storage strategy, called DNA Fountain, that is highly robust and approaches the information capacity per nucleotide".Read more
European Union data protection watchdogs said on Monday they were still concerned about the privacy settings of Microsoft's Windows 10 operating system despite the U.S. company announcing changes to the installation process.
The watchdogs, a group made up of the EU's 28 authorities responsible for enforcing data protection law, wrote to Microsoft last year expressing concerns about the default installation settings of Windows 10 and users' apparent lack of control over the company's processing of their data. The group - referred to as the Article 29 Working Party -asked for more explanation of Microsoft's processing of personal data for various purposes, including advertising.Read more
Intel, Uber and IoT company Aeris have joined forces in an effort aimed at fostering industry cooperation when it comes to building safety features into autonomous vehicles and the systems that support them. Today the group, which goes by the name Future of Automotive Security Technology Research, issued a manifesto explaining its intentions.
The manifesto hopes to galvanize the nascent and sometimes balkanized autonomous vehicle industry. It’s call to action is to infuse security into the emerging and diverse autonomous vehicle supply chain comprised of automakers, component manufacturers, software engineers and cloud providers.Read more
A House bill was introduced Tuesday that could accelerate the federal government’s involvement in regulating automobile cybersecurity.
The Security and Privacy in Your Car Study Act of 2017 calls on the National Highway Traffic Safety Administration to lead a study of necessary security standards that could be included in a law governing cars built in the US or imported for sale. A similar SPY Car Act of 2015 introduced by Sen. Edward Markey was much more prescriptive of the NHTSA in securing electronic controls and driving data collected by vehicle systems. This week’s bill calls for the NHTSA to study the issue alongside the Federal Trade Commission.Read more
An alarming number of Android VPNs are providing a decidedly false sense of security to users, especially those living in areas where communication is censored or technology is crucial to the privacy and physical security.
A study published recently identified a number of shortcomings common to high percentages of 238 mobile VPN apps analyzed by a handful of researchers. Users downloading and installing these apps expecting secure communication and connections to private networks are instead using apps that lack encryption, are infected with malware, intercept TLS traffic, track user activity, and manipulate HTTP traffic.Read more
In reality, however, the age of instant messaging, cloud storage and collaboration features means that there isn't really any need for sending attachments by mail in the first place, and given that even with legitimate intent, they create multiple copies which clog up servers, businesses still operating this way need to rethink their approach anyway.Read more
Amid high-profile political cyberattacks, Americans are losing confidence in their own cybersecurity. Just under half of Americans — 49 percent — think their personal information is less secure than it was five years ago, according to a new report from the Pew Research Center.
They're only slightly more optimistic about the government's abilities. Twenty-eight percent of Americans are "not confident at all" that the federal government can keep their personal information safe. And when the Democratic National Committee is hacked by Russia and Yahoo says 1 billion of its users were affected by a hack, who can blame them?Read more
Firefox 51, released today, and Chrome 56, currently due for release next week, have started describing some HTTP connections as insecure as they continue the industry-wide push to promote the use of encrypted HTTPS.
As luck would have it, Chrome 56 was released while I was writing, and is out now. Rollouts are staggered, so systems should see the update over the next few days. The non-secure labelling will occur on pages delivered over HTTP that include forms. Specifically, pages that include password fields, and in Chrome, credit card fields, will put warnings in the address bar to explicitly indicate that the connection is not secure.Read more