This week, Apple makes an announcement that is as surprising as it is controversial. The company begin scanning both iCloud and users’ devices for child pornography. It uses smart cryptography to do this, and it won’t actually be able to display the images on a user’s iPhone, iPad, or Mac unless it detects multiple instances of CSAM. But some cryptographers have sounded the alarm bells about how the technology could be used in the future, especially by authoritarian governments.
This week also kicked off the Black Hat Security Conference, which means there is no shortage of hacks. A Google researcher found spying vulnerabilities in several major messaging applications; they’ve all been fixed now, but that speaks to what seems to be a rampant issue with certain types of video calls. Pneumatic tubes found in many US hospital systems are vulnerable to attack, which could cause chaos and delays, but not necessarily in that order. A fix was released this week, but as with many IoT updates, the question of who installs them and when to install them will be very mixed. And we spoke with a hacker who said he figured out how to control lights, fans, and convertible beds in a capsule hotel in Japan and used that knowledge. torment a noisy neighbor.
We examined how regulators in France have succeeded in move the needle on google and privacy. We have concocted a bait on RCS, the texting standard it will make your life much easier once all the players are on board. And we tried Citizen’s controversial new app which charges $ 20 per month for a personal security service.
And there’s more ! Each week, we put together all the security news that WIRED hasn’t covered in depth. Click on the titles to read the full stories and stay safe.
Hope your Facebook account has never been hacked or you need to talk to a human person on Facebook for whatever reason. It is fundamentally impossible. But some frustrated victims resorted to an extreme workaround to regain access to their newsfeeds: buy an Oculus Quest 2 for $ 300 and go through. this company customer support system. Facebook owns Oculus, and the hardware requires a Facebook account to use, so the workaround worked, at least for some people. But the main lesson here, of course, is that it shouldn’t be that hard to get a little help in the first place when things go wrong on your account.
Motherboard reported this week that the crooks made a big deal out of getting accounts banned on Instagram, using tricks like filing bogus identity theft claims or fraudulently reporting them for violating Instagram policies. self-harm of the platform. Getting someone banned can cost as little as $ 60. It doesn’t seem like there is a big plan in place to stop this kind of chaos, but Instagram has said it is “investigating” the sites that peddle it.
The Cybersecurity and Infrastructure Security Agency announced this week the Joint Cyber Defense Collaborative, a team between CISA and tech companies like Microsoft, Amazon and Google. The goal is to increase information sharing between government and the private sector to help both thwart and better respond to ransomware attacks. Of course, every little bit counts, but ransomware will likely continue to be a serious problem until Vladimir Putin starts cracking down on groups in Russia. What seems … unlikely.
More great WIRED stories