ICYMI:Seagate, DGSE, CREST and the NSA, Google encryption shaming and the NAO wags its finger at the cabinet

Google are about to start shaming sites that don't encrypt their traffic
Google are about to start shaming sites that don't encrypt their traffic

Hackers hit Seagate NAS devices with cryptomining malware

Thousands of Seagate devices have been found to be infected with cryptocurrency mining software, entitled Miner-C.

The malware targets a cryptocurrency called Monero and is supposed to have won £64,000 in ill gotten gains. It's estimated that 70 percent of devices worldwide are infected. Seagate aren't having a very good week as many of their employees prepare to sue them.

Former DGSE head confirmed French targeted foreign countries

Bernard Barbier,the former head of France's premiere foreign intelligence agency, has admitted, perhaps predictably, that the DGSE targeted foreign countries while he was in office.

Campaigns took aim  at Iran, Canada, Spain, Greece, Norway and others. This is the first confirmation of such activity by the DGSE, despite campaigns like these being strongly suspected.

CREST takes over cyber-assurance programme from NSA in America

CREST, will take over the reinsfrom the NSA in running the US Cyber Incident Response Accreditation programme (CIRA),

The deal is apparently the fruit of a year-long relationship, between CREST and the US government.

The deal is being lauded as an example of the great strengths of industry-government collaboration in the field of cyber-security.

Google to start encryption shaming

Google will now show users which websites are encrypting their traffic and which aren't. This encryption-shaming will come in the form, initially, of showing Chrome users which websites send passwords and credit card numbers unencrypted with aview to doing this for all HTTP sites in the future.

NAO slams Cabinet Office for lack of leadership in information security

The National Audit Office had some unkind words for the Cabinet Office when it comes to information security. A report released earlier this week said that departments do not collect enough data on their own security and so fail to properly arm themselves against threats.

The decentralised nature of information collection, gives the Cabinet Office no reliable overview of the problem. The reporting of personal data breaches, added the report, is no less than ‘chaotic'