The week in security: Balancing privacy and innovation often produces unexpected consequences

Apple was countering Bloomberg reports that its systems had been hacked by a Chinese state-sponsored attack.

It’s not a great look when political parties prove incapable of protecting constituents’ privacy, but that’s what happened after the UK Conservative Party Conference launched its first-ever dedicated app for the event – and was promptly found to have security bugs that allowed personal information to be accessed by anyone.

Indeed, security bugs are everywhere – as Adobe and Foxit demonstrated in releasing patches to fix over 100 critical flaws.

NSW’s statewide cybersecurity policy was being lauded for its efforts to bolster public-sector security capabilities.

Google introduced new Chrome extension rules to improve trustworthiness, requiring authors of extensions to set up two-factor authentication for the accounts they use to publish apps.

Microsoft tweaked the ransomware protections in Windows 10’s latest update, making it easier to approve application access to protected folders.

Meanwhile, Google’s Project Zero security team was calling out what it labelled inadequate Apple security practices.

It’s all part of the ever-present debate as to whether it’s possible to foster innovation whilst preserving privacy – and what compromises we have to make as you slide the scale towards either extreme.

Copyright © 2018 IDG Communications, Inc.

The 10 most powerful cybersecurity companies