Group items tagged

"A big leak of data from a Chinese cybersecurity firm has revealed state security agents paying tens of thousands of pounds to harvest data on targets, including foreign governments, while hackers hoover up huge amounts of information on any person or institution who might be of interest to their prospective clients. The cache of more than 500 leaked files from the Chinese firm I-Soon was posted on the developer website Github and is thought by cybersecurity experts to be genuine. Some of the targets discussed include Nato and the UK Foreign Office."

"Virtually every company and organisation now has - indeed has to have - an online presence. But many still take only rudimentary cybersecurity precautions and are sitting ducks for hackers. For most of companies, that's a matter for them and their boards of directors - it's their lookout if a ransomware attack makes them insolvent."

"As the significant number of cybersecurity incidents and data breaches have shown, there is no question that we urgently need concerted action and clear policy at the government level. However, recognising that privacy and cybersecurity can be mutually reinforcing is key. "

"Given the government's obsession with passing cybersecurity legislation, you would think they'd be happy that Apple and Google are making it harder for foreign governments and criminals to break into people's phones or company servers to steal your data. But you'd be forgetting that the head of the FBI and his fellow fear-mongerers are still much more concerned with making sure they retain control over your privacy, rather than protecting everyone's cybersecurity."

"A "category one" cyber-attack, the most serious tier possible, will happen "sometime in the next few years", a director of the National Cybersecurity Centre has warned. According to the agency, which reports to GCHQ and has responsibly for ensuring the UK's information security, a category one cybersecurity incident requires a national government response. "

"That is, when you are continuously surveilled, when your every word - even your private conversations, even your personal journals - are subject to continuous monitoring, you never have the space in which to think things through. If you doubt a piece of popular wisdom and want to hash it out, your ability to carry on that discussion is limited the knowledge that your testing of the day's received ideas is on the record forever and may be held against you."

"Cybersecurity experts have warned for years that malfeasance, technical breakdown or administrative incompetence could easily wreak havoc with electronic systems and could go largely or wholly undetected. This is a concern made much more urgent by Russia's cyber-attacks on political party servers and state voter registration databases in 2016 and by the risk of a repeat - or worse - in this November's midterms. "

"A major data breach at Phetchabun Hospital last week served as a loud wake-up call to state and private organisations to pay attention to their cybersecurity measures, as experts warned cybercrimes could become more commonplace in the years to come. The breach involved the data of 10,095 patients, including their names and dates of admission and discharge."

"How do you maximize food production and prevent waste in your supply chain at a time when climate change and a growing global population are placing an increasing strain on resources?  According to Israeli startup Blue Circle, you do it in the same way you protect your technology from hackers: with artificial intelligence, machine learning and huge amounts of data. "

"Owned by the Chinese company ByteDance, TikTok's success - more than 1 billion users worldwide - is combining with well-established fears about social media's data collection practices and concerns over China's geo-political ambitions to generate a background hum of distrust about the app. "As the geopolitical situation changes I suspect we will see companies such as TikTok will continue to be treated with some caution in the west," says Alan Woodward, a professor of cybersecurity at Surrey University."

"Microsoft will also launch Content Credentials for digital watermarking, create teams to work with political campaigns on cybersecurity and AI, and endorse a bill banning AI in political ads."

"The school will teach cyber skills to some of the UK's most gifted 16- to 19-year-olds. It will select on talent alone, looking in particular for exceptional problem solvers and logic fiends, regardless of wealth or family background, according to Alastair MacWillson, a driving force behind the initiative. "The cyber threat is the real threat facing the UK, and the problem it's causing the UK government and companies is growing exponentially," said MacWillson, chair of Qufaro, a not-for-profit organisation created by a consortium of cybersecurity experts for the purposes of education."

"But with all of the successes of AI, it's also important to pay attention to when, and how, it can go wrong, in order to prevent future errors. A recent paper by Roman Yampolskiy, director of the Cybersecurity Lab at the University of Louisville, outlines a history of AI failures which are "directly related to the mistakes produced by the intelligence such systems are designed to exhibit." According to Yampolskiy, these types of failures can be attributed to mistakes during the learning phase or mistakes in the performance phase of the AI system."

"One of the biggest arguments against mandating backdoors in encryption is the fact that, even if you trust the United States government never to abuse that power (and who does?), other criminal hackers and foreign governments will be able to exploit the backdoor to use it themselves. A backdoor is an inherent vulnerability that other actors will attempt to find and try to use it for their own nefarious purposes as soon as they know it exists, putting all of our cybersecurity at risk. "

"Vietnam has introduced a new cybersecurity law, which criminalises criticising the government online and forces internet providers to give authorities' user data when requested, sparking claims of a "totalitarian" crackdown on dissent. The law, which mirrors China's draconian internet rules, came into effect on 1 January and forces internet providers to censor content deemed "toxic" by the ruling communist government. Vietnam's ministry of public security said it will tackle "hostile and reactionary forces", but human rights groups said it was authorities' latest method of silencing free speech."

"While some experts still disagree, most now believe that Conficker was the work of Ukrainian cybercriminals building a platform for global theft who succeeded beyond all expectation, or desire. The last thing a thief wants is to draw attention to himself. Conficker's unprecedented growth drew the alarmed attention of cybersecurity experts worldwide. It became, simply, too hot to use."

"As more governments turn to contact tracing apps to aid in their efforts to contain the coronavirus outbreak, cybersecurity experts are warning this may spark renewed interest in Bluetooth attacks. They urge developers to ensure such apps are regularly tested for vulnerabilities and release patches swiftly to plug potential holes, while governments should provide assurance that their databases are secure and the data collected will not be used for purposes other than as originally intended. "

"Hostile states are attempting to hack British universities and scientific facilities to steal research related to Covid-19, including vaccine development, cybersecurity experts have warned."

"Computer security experts suggested that the crisis could reflect weaknesses in the NHS's cybersecurity. Ross Anderson, of Cambridge University, said the attack appeared to exploit a weakness in Microsoft's software that was fixed by a "critical" software patch earlier this year but which may not have been installed across NHS computers."