SD Times news digest: New guidelines for Apple’s App Store, IOActive and Bugcrowd team up to identify security gaps, and Firefox’s default Enhanced Tracking Protection
SD Times – Apple is changing its requirements for applications on its App Store to protect user data. Apps in the kids category, VPNs, health or fitness apps will no longer transmit data to third parties and MDM apps, and other apps can only collect data after requesting permission from the user. Additionally, apps in the kids category and apps directed at kids can’t include third-party advertising or analytics software.
IOActive Partners with Bugcrowd
DEVOPSdigest – IOActive is joining forces with Bugcrowd, a crowdsourced security company, to provide full-stack continuous testing options across all industries and key verticals, including healthcare, retail, financial services, transportation, technology and government. This partnership aligns with both companies’ commitment to bring robust security solutions to each other’s growing customer base, including crowdsourced bug bounty and vulnerability disclosure programs, full-stack assessments and continuous testing.
IOActive and Bugcrowd Combine Forces to Extend Security Service Offerings
Security Boulevard – IOActive, Inc., the worldwide leader in research-fueled security services, today announced that it is joining forces with Bugcrowd, the #1 crowdsourced security company, to provide full-stack continuous testing options across all industries and key verticals, including healthcare, retail, financial services, transportation, technology and government.
Daily Briefing. June 4, 2019.
The Cyberwire – In an 8-k filed this week with the US Securities and Exchange Commission, the large medical testing firm Quest Diagnostics disclosed that American Medical Collection Agency (AMCA), a third-party collection services firm, notified Quest that AMCA had detected unauthorized activity in its network. As reported by TechCrunch and others, the breach appears to have affected nearly 12 million people. IOActive and Bugcrowd partnership release.
Managed Security Services Provider (MSSP) News: 04 June 2019
MSSP Alert – Each business day, MSSP Alert broadcasts a quick lineup of news, analysis and chatter from across the security services ecosystem. The Content: Written for MSSPs, SOC as a Service (SOCaaS), Managed Detection and Response (MDR) and MSP security providers — and those who need to partner up with such companies.
IOActive Becomes a Founding Provider for New Framework from Open Compute Project Foundation to Improve Data Center and Cloud Security Posture