TechLetters #92 - hacking authentication provider opens the gates to many systems; Google reducing proposed privacy standards in Privacy Sandbox? 6hrs in a stationary place to upgrade car software...
Security
Authentication services provider Okta breached. Via Twilio (SMS service provider) breach. Oh well. “Twilio recently identified unauthorized access to information related to 163 Twilio customers, including Okta. Access was gained to internal Twilio systems, where data of some Okta customers was accessible to a threat actor”.
Authentication service provider LastPass breached. Oh yes, internal systems: “an unauthorized party gained access to portions of the LastPass development environment through a single compromised developer account and took portions of source code and some proprietary LastPass technical information”.
Iranian State threat actors/"hackers" used log4j vulnerability. The exploitation of this vulnerability has been predicted from the start. The sky did not fall also thanks to the initial recognition of the risk.
Oh, and this.
Privacy
Google rescinding the initial pledge for privacy-preserving ad targeting? "ad space buyers sellers can offload the execution of ad bidding/auctions to services running in trusted execution environments in the cloud". Not on-device, but some “trusted” computing in the "cloud"? But how does one trust a “trusted” service? Of course, by assuming that it’s “trusted”!
Technology Policy
Car software engineering gone bad. Skoda car owners should come come for a software update. Physically come. The update process will take hours. Speaking of bad software/system design… “Owners of qualifying vehicles will be contacted by their local ŠKODA retailer and asked to book a free service appointment to install the new software. The process takes about five hours”
Russia to refine the manufacturing of AI/autonomous weapons systems. Whatever you think, worth to track.. "The Russian Defense Ministry’s Artificial Intelligence Department is using the experience gained in the "special operation" [i.e. war] in Ukraine to raise efficiency of armaments"
Other
In case you feel it's worth it to forward this content further:
If you’d like to share: