Posted by Taylor Armerding on Tuesday, August 14th, 2018
Taylor Armerding, Synopsys Software Integrity Group senior strategist, gives you the scoop on application security and insecurity in this week’s Security Mashup.
Facing off with Google, Snap out of it, and Password protection. Watch this week’s episode taped live at Black Hat USA 2018.
via Bryan Clark, The Next Web: Google’s recently approved patent for “facial recognition with social networking aiding” is a new kind of image search. The company’s existing reverse image search tries to match the visual cues in an uploaded photo with other photos. But now Google aims to enhance its image search with social connectivity. That is, it’ll guess who you’re looking for based on personal data from social media and other apps—both yours and those of people who are possible matches for your search photo. Should you be concerned? Watch this segment to learn why this story is trending.
via Joseph Cox, Motherboard: What happens when your source code is leaked and posted in a public forum? Snap found out when they discovered a portion of the source code for the iOS version of Snapchat posted on the code repository GitHub. Snap issued, and GitHub complied with, a DMCA takedown request. But the internet is forever: Just because the code’s gone from GitHub doesn’t mean it’s gone from the data marketplace. What does that mean for Snap? Watch this security segment here:
via Charlie Osborne, Computer Business Review: Perhaps the only thing worse than having your password stolen is not knowing that it was stolen. But GitHub users are now less likely to be in the dark about their compromised passwords: The company has partnered with website Have I Been Pwned? Any account holder whose GitHub password appears in publicly available breach data will get a warning. What does it mean for the future of password protection? And how can you protect yourself? Find out why this segment is trending when you watch it here:
Get the latest AppSec news and trends sent directly to you.