The week in security:Mac OS X Keychain hacked; SecDevOps gets a reality check

Think your software developers can build secure code just because you want them to? Not necessarily: SecDevOps practices are proving challenging to develop and tricky to implement, one security-testing expert has warned.

Makers of Internet of Things (IoT) devices – particularly medical devices – are trying, at least, to improve their security, according to one Australian security consultant whose firm has been engaged with a range of local companies to secure IoT.

A security researcher demonstrated a way to steal passwords from the Mac OS X Keychain, while Google published attack code that exploits a Wi-Fi bug on the iPhone 7.

Experts were offering advice for employees looking for a way to improve chatbot data and user privacy.

Figures suggested that Australian companies face a growing threat from domestic distributed denial of service (DDoS) attacks, which are at parity with overseas attackers as DDoS attacks enjoy a resurgence.

Even as Europol said the growing number of ransomware attacks had reached “unprecedented” levels, growing volumes of malicious attacks were driving behavioural changes amongst tech companies, with distributed denial of service (DDoS) being positioned as the next standard security capability]].

Speaking of standard security: Google was further progressing its encryption agenda with an effort to enforce use of HTTPS Strict Transport Security (HSTS) on its .google top-level domain.

Tags software developerscyber attacksMac OS XInternet of Things (IoT)SecDevOps

Show Comments