• Menu
  • Skip to main content
  • Skip to primary sidebar

The Cyber Security News

Latest Cyber Security News

Header Right

  • Latest News
  • Vulnerabilities
  • Cloud Services
Cyber Security News

Government Sets Out New Rules to Enhance App Security

You are here: Home / General Cyber Security News / Government Sets Out New Rules to Enhance App Security
December 9, 2022

The UK federal government has thrown down the gauntlet to app shop operators and builders, requesting they indication up to a voluntary code of perform developed to improve consumer security and privacy.

In what it described as a “world-first” currently, the Department for Electronic, Society, Media and Activity (DCMS) stated the regulations would help to decrease consumers’ exposure to malicious and bug-ridden applications.

The code will stipulate that application shop operators and/or developers:

✔ Approved From Our Partners
AOMEI Backupper Lifetime

Protect and backup your data using AOMEI Backupper. AOMEI Backupper takes secure and encrypted backups from your Windows, hard drives or partitions. With AOMEI Backupper you will never be worried about loosing your data anymore.

Get AOMEI Backupper with 72% discount from an authorized distrinutor of AOMEI: SerialCart® (Limited Offer).

➤ Activate Your Coupon Code


  • Share security and privacy facts in a consumer-helpful way with shoppers, such as the place user data is saved and when the app was very last up to date
  • Enable their apps to work even if a user chooses to disable optional operation and permissions, such as locale tracking
  • Have a “robust and transparent” vetting method to make sure only apps that meet a least security and privacy baseline are published
  • Deliver apparent feedback to developers when an app is not released on their retailer for security or privacy reasons
  • Have a vulnerability disclosure method, this kind of as a make contact with type
  • Ensure builders preserve their applications up to date to minimize the variety of vulnerabilities

The authorities acknowledged that numerous app keep operators and builders currently adhere to many of these principles. However, it will also glance at wherever present legislation may well need to be tweaked and/or the place regulation is needed to make improvements to security in the field.

Around the coming nine months, the DCMS will operate with businesses this sort of as Apple, Google, Amazon, Huawei, Microsoft, LG, Epic Game titles, Nintendo, Valve, Sony and Samsung to aid them apply the code.

“Apps carry a large amount of convenience to our day to day lives, but rogue apps making their way on to the largest app retailers are a security and privacy minefield – putting shoppers at enormous risk from facts theft and cons,” argued Which? director of coverage and advocacy, Rocio Concha.

“The government’s announcement of a new voluntary code is a favourable step to creating apps additional secure. The app sector should now be monitored carefully for advancements and to check out no matter if tech companies are falling small in protecting buyers.”

While built for people, the new procedures could also enhance corporate security by making sure BYOD gadgets are greater insulated from app-based mostly dangers. However, threats may persist from some third-party app shops hosted outside the UK.


Some areas of this short article are sourced from:
www.infosecurity-journal.com

Previous Post: «muddywater hackers target asian and middle east countries with updated MuddyWater Hackers Target Asian and Middle East Countries with Updated Tactics
Next Post: Security Concerns Scupper Deals for Two-Thirds of Firms Cyber Security News»

Reader Interactions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Primary Sidebar

Report This Article

Recent Posts

  • Over 269,000 Websites Infected with JSFireTruck JavaScript Malware in One Month
  • Ransomware Gangs Exploit Unpatched SimpleHelp Flaws to Target Victims with Double Extortion
  • CTEM is the New SOC: Shifting from Monitoring Alerts to Measuring Risk
  • Apple Zero-Click Flaw in Messages Exploited to Spy on Journalists Using Paragon Spyware
  • WordPress Sites Turned Weapon: How VexTrio and Affiliates Run a Global Scam Network
  • New TokenBreak Attack Bypasses AI Moderation with Single-Character Text Changes
  • AI Agents Run on Secret Accounts — Learn How to Secure Them in This Webinar
  • Zero-Click AI Vulnerability Exposes Microsoft 365 Copilot Data Without User Interaction
  • Non-Human Identities: How to Address the Expanding Security Risk
  • ConnectWise to Rotate ScreenConnect Code Signing Certificates Due to Security Risks

Copyright © TheCyberSecurity.News, All Rights Reserved.