Sri Lanka's nationwide investigation of the Easter Sunday jihadist massacres continues, with tragic results over the weekend. During a police raid on a suspected jihadist cell, the AP reports, militants opened fire and then set off a bomb, killing fifteen. Several children are among the dead.
A vulnerability in the LnkP2P software widely bundled with IoT devices (essentially lack of authentication and encryption in peer-to-peer sharing) exposes many such devices to compromise, according to researcher Paul Marrapese. Affected systems include web-enabled cameras, DVRs, baby monitors, and smart doorbells.
App store curation poses challenges. Apple defends its exclusion of mobile device management apps, and in particular the parental controls subset of them, on grounds of security and privacy, Infosecurity Magazine reports. Kaspersky Lab has filed an anti-trust claim in a Russian court against Apple over just this exclusion. And Google is purging its Play Store of applications contributed by DO Global after researchers reported the Chinese company's products were implicated in widespread ad fraud. As Gizmodo notes, the dozens of DO Global apps affected have been installed more than 600 million times.
Motherboard says that a hacker (nom-de-hack "L&M") claims the ability to exploit automotive GPS trackers made by ProTrack and iTrack to affect cars remotely, including in some cases turning off engines while the vehicles are in motion.
A journalist makes a case (in WIRED) for regulating social media. It's not so much stop me before I tweet again as it is stop them before they speak, or post, again.