Business Insider: ‘You will have victims’ blood all over your hands’: Sexual harassment lawyer accuses Google of killing revenge porn laws. “Carrie Goldberg, a lawyer who fights online sexual harassment, has accused Google of making an eleventh-hour intervention to kill new revenge porn laws in the US state of New York. The bill has been in the works in Albany, New York, for five years. It would have made the nonconsensual dissemination of sexually explicit images a misdemeanour punishable by up to a year in jail. It would also have allowed victims to sue web hosts to remove the offending images.”
Security & Legal Issues
Security & Legal issues and news. May be about patches, hacks, or court decisions.
CNET: Supreme Court says warrant necessary for phone location data in win for privacy
CNET: Supreme Court says warrant necessary for phone location data in win for privacy. “The US Supreme Court has ruled in favor of digital privacy. In a 5-4 decision on Friday, the justices said police need warrants to gather phone location data as evidence for trials. That reversed and remanded a decision by the Sixth Circuit Court of Appeals.”
ZDNet: A hacker figured out how to brute force iPhone passcodes
ZDNet: A hacker figured out how to brute force iPhone passcodes. “A security researcher has figured out how to brute force a passcode on any up-to-date iPhone or iPad, bypassing the software’s security mechanisms.”
The Hacker News: Thousands of Mobile Apps Expose Their Unprotected Firebase Hosted Databases
The Hacker News: Thousands of Mobile Apps Expose Their Unprotected Firebase Hosted Databases. “Mobile security researchers have discovered unprotected Firebase databases of thousands of iOS and Android mobile applications that are exposing over 100 million data records, including plain text passwords, user IDs, location, and in some cases, financial records such as banking and cryptocurrency transactions.”
Wired: Millions Of Streaming Devices Are Vulnerable To A Retro Web Attack
Wired: Millions Of Streaming Devices Are Vulnerable To A Retro Web Attack. “IN MARCH, ARTIST and programmer Brannon Dorsey became interested in a retro web attack called DNS rebinding, teaching himself how to illicitly access controls and data by exploiting known browser weaknesses. It’s a vulnerability that researchers have poked at on and off for years—which is one reason Dorsey couldn’t believe what he found.”
Schneier warns of ‘perfect storm’: Tech is becoming autonomous, and security is garbage (The Register)
The Register: Schneier warns of ‘perfect storm’: Tech is becoming autonomous, and security is garbage. “With insecure computers in charge, the healthcare and transportation sectors have become a nexus of security problems, infosec veteran Bruce Schneier warned delegates at Israel Cyber Week. Schneier said that confidentiality attacks, such as leaks of personal information, are being replaced by more dangerous integrity and availability attacks.”
BBC: BT fined for five million spam emails
BBC: BT fined for five million spam emails. “BT has been fined £77,000 by the Information Commissioner’s Office, after it sent nearly five million nuisance emails to customers. The investigation found that the telecoms company did not have customers’ consent for such direct marketing. The 4.9 million emails, sent between December 2015 and November 2016, promoted three charities.”
