Meta Faces Scrutiny Over Dormant Facial Recognition Code
Recent reports have uncovered that Meta has stored dormant facial recognition technology on over 50 million smartphones, embedded within the companion application for its Ray-Ban and Oakley smart glasses. Internally referred to as NameTag, this feature, if activated, would enable users to identify individuals in their vicinity by comparing captured images with a biometric database saved on the user’s device. This revelation comes in stark contrast to Meta’s previous commitment to abandon such technology after resolving biometric privacy lawsuits in Texas and Illinois in 2021 that cost the company billions.
The presence of this code raises significant privacy concerns, particularly given Meta’s contentious history with facial recognition systems. While the company has yet to clarify its intentions, business owners should be cognizant of the implications such technology has on user privacy and potential legal repercussions.
In another troubling development, xAI is attempting to compel four individuals suing the company regarding deepfake images to reveal their identities, a move criticized by the plaintiffs who claim such exposure would lead to harassment. This case highlights the shadowy intersection of artificial intelligence and privacy, where the malicious usage of technology can lead to devastating consequences for victims.
Google has also entered the fray with a new Android feature aimed at combatting AI-driven impersonation scams. This feature, integrated into Google Dialer and available on devices running Android 12 or later, employs a cryptographic handshake to verify the authenticity of callers. If a call is identified as fraudulent, the device will flag it and remove the contact photo from the display. However, this functionality is limited to interactions between devices using Google Dialer, thus excluding iPhone users from its protective measures.
Compounding the week’s security landscape is the revelation that the Manhattan Institute, known for its conservative policy recommendations, is promoting legislation that could reclassify minor protest-related offenses as felonies under a concept they term “civil terrorism.” This could signify a troubling shift in how protests are policed and the potential for increased surveillance of demonstrators.
In a more technical arena, researchers disclosed a sophisticated side-channel attack dubbed FROST that enables attackers to fingerprint browser tabs and applications by measuring file access times in a device’s storage. Utilizing JavaScript, this attack bypasses traditional security measures, making it a potential threat to users across various platforms, albeit as of now, there is no evidence of its widespread exploitation.
Additionally, a disturbing surge in the unregulated peptide market—chains of amino acids promising various health benefits—has become increasingly intertwined with cryptocurrency. Analysis by Chainalysis suggests that the gray market for these supplements is growing rapidly, with over $100 million annually in crypto transactions fueling the trade, particularly from Chinese labs that have pivoted from other illicit substances.
In the realm of artificial intelligence, concerns have intensified surrounding the use of Anthropic’s Mythos tool by the U.S. National Security Agency (NSA). Initially rolled out for diagnosing vulnerabilities in widespread software, reports indicate possible applications for offensive hacking operations. This dual-use potential of AI tools underscores the significant risks and ethical dilemmas inherent in deploying such technologies for national defense.
The cybersecurity landscape remains as dynamic as ever, with frequent developments underscoring the need for heightened vigilance among business owners. Understanding the risks posed by emerging technologies and attacks is crucial for safeguarding sensitive information and maintaining regulatory compliance. As threats evolve, staying informed and proactive is imperative in the ongoing battle against cyber adversaries.