Passkeys, Police Partnerships, and a Fresh Wave of Mobile Threats: This Week's Security Roundup

2026-02-17

Page content

Passkeys, Police Partnerships, and a Fresh Wave of Mobile Threats: This Week’s Security Roundup

Hey everyone – quite a week for security news, and I wanted to share some thoughts on a few stories that caught my attention. We’ve got everything from the ongoing passkey transition to Amazon backing down from a controversial surveillance partnership, plus some nasty new threats targeting our mobile devices.

The Passkey Transition Gets Real (And Compliance-Focused)

The shift from passwords to passkeys isn’t just a nice-to-have anymore – it’s becoming a compliance necessity. A recent piece from BleepingComputer dives into how organizations are navigating passkey adoption while staying aligned with ISO 27001 requirements.

What I find interesting here is that we’re finally seeing concrete guidance on mapping passwordless authentication to established compliance frameworks. If you’re working on passkey implementation (and honestly, who isn’t these days?), the focus on Annex A controls and proper risk assessments is crucial. We can’t just flip a switch and go passwordless – there’s real work involved in documenting how these new authentication methods meet our existing security requirements.

The timing feels right too. Password-based attacks keep getting more sophisticated, and users are frankly tired of managing dozens of complex passwords. But the compliance angle is what’s going to drive adoption in larger organizations where security teams need to justify every architectural change.

Amazon Backs Down from Surveillance Partnership

Here’s one that probably flew under the radar during Super Bowl weekend, but it’s worth discussing. Amazon’s Ring division quietly ended their partnership with police surveillance company Flock Safety after facing significant backlash, according to SecurityWeek.

The details are still emerging, but this feels like another chapter in the ongoing tension between consumer privacy expectations and law enforcement surveillance capabilities. Ring has been walking this tightrope for years – their doorbell cameras are incredibly popular with consumers, but the company’s relationships with police departments have consistently generated controversy.

From a security perspective, this highlights how quickly public sentiment can shift corporate strategy. The Super Bowl ad timing was probably unfortunate, putting the partnership under a much brighter spotlight than anyone anticipated. It’s a reminder that our technical decisions often have broader social implications that we need to consider.

Chrome Zero-Day Actively Exploited

Moving into immediate threat territory, Google patched another actively exploited Chrome vulnerability this week. Infosecurity Magazine reports this is a high-severity issue allowing remote code execution – exactly the kind of thing that keeps us up at night.

The “in the wild” designation means attackers are already using this exploit against real targets. If you haven’t pushed the Chrome update yet, this should be your priority Monday morning. We’ve seen how quickly these browser exploits can spread, especially when they’re being actively used in attack campaigns.

What’s particularly concerning is the frequency of these Chrome zero-days. We’re seeing them regularly enough that it’s becoming part of our routine patch management cycle. That’s not necessarily Google’s fault – Chrome’s popularity makes it a high-value target – but it does mean we need robust browser update processes.

ZeroDayRAT: Mobile Surveillance Made Easy

Perhaps the most troubling story this week comes from The Hacker News, which detailed a new mobile spyware platform called ZeroDayRAT. This isn’t your typical malware – it’s being sold as a complete surveillance-as-a-service platform on Telegram, targeting both Android and iOS devices.

What makes this particularly nasty is the professional operation behind it. The developers are running dedicated sales channels, customer support, and regular updates. They’re treating spyware distribution like a legitimate business, complete with customer service and product roadmaps.

The real-time surveillance capabilities are extensive: data theft, location tracking, communication monitoring – basically everything you’d expect from nation-state malware, but available to anyone willing to pay. This democratization of advanced surveillance tools is genuinely concerning, especially when you consider how it might be used for domestic abuse, corporate espionage, or stalking.

The 64-Bit Malware Evolution Continues

Finally, there’s an interesting technical trend worth noting. The SANS Internet Storm Center published an update on the 32-bit versus 64-bit malware landscape, showing that we’re finally seeing more sophisticated threats targeting modern architectures.

For years, malware authors stuck with 32-bit code because it worked everywhere – a lowest common denominator approach. But as 64-bit systems become truly universal, we’re seeing more targeted, architecture-specific threats. This shift has implications for our detection and analysis capabilities, especially if our security tools are still primarily designed around 32-bit assumptions.

It’s one of those gradual changes that doesn’t make headlines but affects how we approach malware analysis and detection. Worth keeping in mind as we update our security tooling and training programs.

Looking Ahead

These stories paint a picture of a security landscape where traditional boundaries keep shifting. We’re moving beyond passwords, grappling with surveillance ethics, and facing increasingly sophisticated mobile threats. The common thread seems to be that security decisions are becoming more complex, touching on compliance, privacy, and social responsibility in ways that pure technical solutions can’t address.

Stay vigilant out there, and make sure those Chrome updates are deployed.