The Weekly Cypher is specially curated to keep you up-to-date on the latest in cybersecurity, biometrics, and related news and innovations. Here are a few of the headlines you might have missed this week.
U.S. government domain officials to start using 2FA | TechTarget
The U.S. government began rolling out two-factor authentication for officials managing government domains, but the full rollout won’t be done until February 2019. DotGov — the government domain registrar for all .gov domains — began rolling out 2FA on Oct. 1 and is intended to prevent threat actors from being able to hijack an official’s account to redirect traffic from a government domain to a malicious website.
Walmart Patented a Cart That Reads Your Pulse and Temperature | Motherboard
You’re moving through Walmart at a quick clip, bookin’ it through the clearance bread aisle. Sweat beads on your forehead, and your hands grip the cart handle. It’s a race against time before you run into an elementary school classmate’s mom or run into that guy you made out with in high school and his three kids. God, get me out of h—I saw you might need assistance! An employee appears from behind the off-brand tampons and accosts you. He knows this because he’s been monitoring your biometric data and location from a room in the back, from the sensors in your cart handle. The sensors told him you’re clammy and stressed.
Informed consent violations alleged in two new suits filed under Illinois’ biometric regulation | BiometricUpdate
A sustainable lighting equipment company and medical supply manufacturer and distributor are the latest companies to be hit by potential class action law suits under Illinois’ Biometric Information Privacy Act (BIPA), both for failing to meet the Act’s requirements for informed consent relating to fingerprint time and attendance systems. Law360 reports that Conservation Technology, otherwise known as Con-Tech Lighting, is accused by a former employee of using a hand-geometry system for years, and then beginning in April a fingerprint system from Kronos Inc., and had shared employee biometric data with its parent company Leviton Manufacturing Co. Inc., without policies in place for the collection, retention, and destruction of the data.
Google+ shutting down after data leak affecting 500,000 users | ArsTechnica
Google exposed the private details of almost 500,000 Google+ users and then opted not to report the lapse, in part out of concern disclosure would trigger regulatory scrutiny and reputational damage, The Wall Street Journal reported Monday, citing people briefed on the matter and documents that discussed it. Shortly after the article was published, Google said it would close the Google+ social networking service to consumers. The exposure was the result of a flaw in programming interfaces Google made available to developers of applications that interacted with users’ Google+ profiles, Google officials said in a post published after the WSJ report.
Just under half of travelers would replace passports with biometrics for air travel | BiometricUpdate
Almost half of all air travel passengers are willing to replace their passports with biometric identification, according to The International Air Transport Association’s (IATA’s) 2018 Global Passenger Survey (GPS). The survey shows a general interest among passengers in using technology to make travel easier, faster, and more convenient, but also in receiving human attention in certain circumstances.