Government News, Articles and Updates

FireEye ties APT33 to Iran and attacks on US, Saudi Arabian interests

FireEye has laid out evidence that it believes connects the hacking of several US, Saudi Arabian and South Korean aerospace and petrochemical facilities to an Iranian cyber-group it has labeled APT33.

State surveillance tool uses ISP to deliver malware to privacy seekers

Unnamed major internet providers are reported to be the distribution route for the spread of a new variant of government spyware FinFisher (also known as FinSpy) in two countries, targeting people seeking privacy.

WhatsApp rebuffs government request for backdoor

WhatsApp apparently refused the UK government's entreaties to build what would essentially be a backdoor into its app earlier this year.

US Kasperky ban draws Kremlin rebuke, raises concerns among users

The US government's decision to ban Kaspersky Lab security software raised concerns from users over their own Kaspersky purchases and drew a sharp rebuke from the Kremlin about anti-competitive practices

Shipping organisations get code of practice for tackling cyber threats

Department for Transport launches new Cyber Security code of practice for ships as "Cyber-security ... threatens the reliability and performance of a shipping sector that carries 95 percent of our trade [so] has to be taken seriously."

US bans use of Kaspersky Labs software on government systems

Acting on concerns that Russian company Kaspersky Lab has connections to cyber-espionage activities, the US government has banned the use of Kaspersky Lab security software.

New UK data protection bill to be published tomorrow

Tomorrow the UK's new Data Protection Bill is to be published as part of a multi-billion pound National Cyber Security Strategy

US Senator pushes for US government wide ban on Kaspersky software

US Senator Jeanne Shaheen (D-N.H.) is pushing for a US federal government-wide ban of security software developed by Kaspersky Lab.

The metropolis and security: Should the UK look to Israel's experience?

In addition to intrusion detection and surveillance hardware, technology decision-makers within major cities must consider additional technologies to ensure the hardware and tools themselves are protected says Maya Canetti.

Ukrainian malware author accuses Russia in US DNC hack investigation

A Ukrainian who authored malware that US intelligence officials say was used by an Russian APT group to hack the Democratic National Committee has become a witness for the FBI.

If you visited anti-Trump site, the US Justice wants your details

The US Justice Department has pressed DreamHost to hand over what amounts to more than 1.3 million IP addresses associated with visitors to disruptj20.org, the group that organised protests against Donald Trump on Inauguration Day 2017.

NSA tools used to hack hotels; WikiLeaks in CIA Couch Potato dump

Travellers to Europe and the Middle East need to be aware of an on-going malware campaign that is targeting hotel and hospitality Wi-Fi networks and being used to glean guest and corporate information.

Updated: Guidelines to ensure vehicle design includes cyber-security

The UK government has issued a range of guidelines designed to ensure vehicle design includes cyber-security at all stages of development.

ICYMI: Crypto-crash; privacy shield; AI-weapons; Alexa, Swedish breach

In Case You Missed It: Rudd crypto-crash; privacy shield invalid; AI weaponised?; Alexa pwned; Swedish breach fallout

Rudd reaps tech industry backlash for proposal to undermine encryption

UK home secretary Amber Rudd faced a barrage of criticism after she warned social media and tech companies that the Government may introduce laws to clamp down on extremist content if companies do not take action themselves.

Teen arrested for reporting bug in Budapest transit system

Budapest teen detained by police after reporting a security glitch in the city's new BBK public transportation e-ticket system.

£14.5 m cyber-security technology innovation centre plans announced

The UK Department for Digital, Culture, Media & Sport is to spend £14.5 million over three years on an innovation centre to foster the next of generation of cyber-security technology.

Wikileaks releases CIA tool set which help malware onto air-gapped PCs

WikiLeaks on Thursday dumped more leaked CIA documents with its latest Vault 7 disclosures, this time publishing materials from a tool suite called Brutal Kangaroo that allows attackers to indirectly infiltrate a closed network or air-gapped computer using a compromised flash drive.

UK leaders more concerned with cyber-threats than their global peers

New Government statistics have revealed that in the last 12 months, half of UK businesses have suffered a cyber-security breach.

Russian hackers breached electoral systems of 39 US states

Russian hackers reportedly breached the electoral systems of at least 39 states during the summer and fall of 2016 accessing software designed to be used by poll workers on Election Day.

ICYMI: £1m CISO; WannaCry; Terror kit; GDPR penalties; Dutch rank

In Case You Missed It: £1m CISO: WannaCry- Exploit hoarding; Terror exploit kit; GDPR penalty driven; Dutch & 7 others ranked

German lawmakers press for encryption-busting Trojan

With a federal election scheduled for September, government officials in Germany are pressing for expanded hacking powers to be granted to law enforcement agencies, according to an article on ZDNet.

ICYMI: WannaCry - NHS hit; Round 2? who to blame?; predecessor; MalwareTech

In Case You Missed it: WannaCry global ransomware attack freezes NHS, Apportioning blame, Backgound and precedents, Saving the day

'MacronGate' reportedly linked to black hat troll

Qurium researchers claim to have traced the falsified emails allegedly stolen from then French President Emmanuel Macron claiming the then candidate had offshore accounts in the Bahamas during his 2017 campaign to the black hat troll weevlos.

Was the government and its agencies' response to WannaCry adequate?

It's hardly a surprise that opposition politicians criticised the government's response to WannaCry, but what's the CISO perspective? What do we think actually did work, what didn't, and what more can and should we be doing?

The role of universities in developing the future cyber-workforce

Dr Frank Stajano discusses how two of the world's leading universities are coming together to tackle the cyber-skills gap.

What UK SMEs need from the National Cyber Security Centre - Education

Joe Siegrist shares ideas on how the government could help SMEs train their staff to protect their assets.

Asian Interpol operation finds nearly 270 compromised websites

Authorities from seven Southeast Asian nations recently collaborated on an operation that exposed regional threats including malware, ransomware, DDoS attacks, and spam campaigns.