not every day 4 world-class security teams (all from Google, though that's not all of them...TAG, Mandiant, CrOS Security, and more) co-author a doc...
#powerofopenhttps://storage.googleapis.com/gweb-uniblog-publish-prod/documents/Report_-_Escaping_the_Doom_Loop.pdfThanks @benjaminwittes for the great chat about IoT security/privacy with me and @TechnoTats! Soon(ish), digital security labels will help consumers make informed purchasing decisions to better protect their privacy.
https://www.lawfareblog.com/lawfare-podcast-talking-iot-security-google #powerofopenThe Lawfare Podcast: Talking IoT Security with Google
Tatyana Bolton is a Security Policy Manager working on cybersecurity at Google, and Dave Kleidermacher is the Vice President of Android Security & Privacy at Google. They are among the people at Google who are thinking about IoT, that is, Internet of Things security and privacy. They sat down with Lawfare Editor-in-Chief Benjamin Wittes to talk about Google's thinking on how to create a secure environment for all those little things that we have traveling with us, connected to our computers, running our houses, all connected to the internet, and all using different standards of security.
Future is bright for improved Linux security via use of Rust, especially in new code. Migration of drivers can also be a win, but tricky! Check out this excellent blog series from @NCCGroupInfosec.
#cantspelltrustwithoutrust #powerofopen https://research.nccgroup.com/2023/02/06/rustproofing-linux-part-1-4-leaking-addresses/
Rustproofing Linux (Part 1/4 Leaking Addresses)
Rust is a programming language guaranteeing memory and thread safety while still being able to access raw memory and hardware. This sounds impossible, and it is, that’s why Rust has an unsafe keywo…
Check out the new and improved Android safety center - making it easy for users to understand and control their security/privacy posture in one place.
#powerofopen #transparencytideraisesallboatshttps://9to5google.com/2022/12/20/pixel-security-privacy-settings/
Security & privacy settings more widely rolling out to close Pixel Feature Drop [U]
To close out the December Feature Drop, Google is rolling out the new Security & privacy settings for Pixel phones running Android 13 QPR1...
Looking forward to the deeper partnership with @
[email protected] via the App Defense Alliance, protecting billions of users!
#powerofopen https://www.trendmicro.com/en_se/research/22/l/app-defense-alliance.html
Trend Joining App Defense Alliance Announced by Google
Google announced Trend Micro will be joining their App Defense Alliance (ADA) to help improve their ability to identify malicious apps - read more about this announcement.
PSA for @
[email protected] app developers: check out our knowledge base of common appsec problems and build more secure apps!
#powerofopen https://developer.android.com/topic/security/risks
Mitigate security risks in your app | Android Developers
Congrats to the App Defense Alliance and its expansion from AV work to mobile app and SaaS security evaluation and certification based on standards from @
[email protected].
#powerofopen. Transparency - the tide that raises all boats!
https://9to5google.com/2022/12/15/google-app-defense-alliance-2022/
Google details App Defense Alliance work on Android Malware Mitigation, certifications
Google announced the App Defense Alliance (ADA) three years ago to “stop bad apps before they reach users’ devices,” and today recapped...
DaveKSecure