Government News, Articles and Updates

ACLU to deliver petition that Amazon stop selling surveillance tech to the gov't

The American Civil Liberties Union (ACLU) and other advocacy groups are delivering a petition to Amazon's Seattle headquarters today requesting that the company stop selling surveillance technology to the government.

Israel Cyber Week: Government priorities & the rise of the 'cyber-mensch'

Key to Israel's cyber-success is that Prime Minister Benjamin Netanyahu put himself in charge of cyber as he had identified it as both one of the biggest threats facing the country as well as one of its biggest business opportunities.

Cyber export strategy: British cyber goes global

The UK has committed to its Cyber Security Export Strategy but a plethora of government bodies are all saying the same message; ideally a consolidated source of government funding should be made more readily accessible.

Court dismisses Kaspersky suits challenging US government ban

A US District Court Judge Wednesday ruled that a ban on Kaspersky Lab products by the US government set to take effect 1 October is constitutional and tossed two lawsuits filed by the Russia-based security firm.

Cryptojacking campaign hits 400 Drupal-based sites

Nearly 400 websites running outdated and vulnerable versions of the Drupal content management system, many affiliated with governments and educational institutions, were recently discovered to be infected.

Cryptojacking hits hundreds of high level Drupal sites

A widely-publicised Drupal flaw dubbed "Drupalgeddon2" has been exploited to cryptojack more than 340 government, corporate, and university websites.

43% businesses, 19% of charities hit by data breaches: Cyber Breach survey

In a month from now, the UK will welcome GDPR which will give the ICO more powers to defend consumer interests and issue fines of up to £17 million or four percent of global turnover on organisations in the event of data breaches.

£50m for law enforcement as Government ups ante on Cyber Defence

UK Home Secretary speech and announcements at CYBER UK Conference: Over £50 million investment pledged for the UK's cyber-defensive capabilities within law enforcement at a national, regional and local level.

£13.5 million cyber-innovation centre to be built at London Olympic Park,

A £13.5 million cyber-innovation centre is to be built at London's Queen Elizabeth Olympic Park, intended to boost the thriving East London digital cluster and help create 2,000 UK jobs in cyber-security.

Governments need to act now to protect citizens and society from cyber-war

Containing the cyber-threat to society requires both coherent government leadership and strategy. There is a danger of unintentionally drifting into war by pushing the envelope too far or through careless significant collateral damage.

US lawmakers ask Mexican government for updates on spyware probe

Nine months after the Mexican government was found to be using spyware to spy on journalists, activists and HR lawyers, US lawmakers sent a letter to Mexico's US Ambassador, calling for a comprehensive and transparent probe.

New Sanny info-stealer campaign features targets US government agencies

Researchers this month discovered a new spear phishing campaign targeting US government agencies with an evolved version of Sanny malware, a 5-year-old information-stealer that now features a multi-stage infection process.

Two East Asian APT groups stage cyber-espionage attacks

OceanLotus hits targets in Southeast Asia, while PlugX malware steals pharmaceutical data. APT groups are targeting high-profile corporate and government targets in Southeast Asia, security researchers have discovered.

Sophisticated hacking tools now in the hands of petty cyber-criminals

Sophisticated hacking tools and techniques like watering-hole attacks, once used only by nation states or proxies, now increasingly used by criminal hackers, fueling concerns that state-sponsored hackers may have gone rogue.

Cyber-attacks against Russia may follow attempted nerve agent killing in UK

Offensive cyber-attacks against Russia are reported to be among options under consideration by the UK if it is dissatisfied with Russia's explanation by midnight today of the use in this country of Russian nerve agent Novichok.

Newsbite: New Defence Cyber School opens at the Defence Academy, Shrivenham

Defence Cyber School at the Defence Academy, Shrivenham opens as part of government moves to increase the country's cyber-defence capability - while government restates willingness to use offensive cyber-weapons.

Government calls for revamp in IoT security; will manufacturers listen?

Government plans for IOT security welcomed but also criticised as being only a set of advisories and recommendations which do not include watertight regulations around credentials and authentication.

Newsbite: New laws for driverless vehicles to look at hacking risks

The government is reviewing transport laws to take account of automated vehicles and may introduce specific new criminal offences to deal with interference, which would include vehicle hacking.

Head Games: The human side of nation-state attacks

When you compare information security to other professional fields, it's a relatively new player on the block by contrast. However, over its relative short lifespan information security has evolved at a comparatively rapid rate.

After 'isolated' hack, Germany says government computers are secure

The German government said on Wednesday that hackers had breached the network of government computers with an isolated attack that had been brought under control and which was being investigated by security officials.

Apple's China-based iCloud data centre raises privacy, human rights fears

Human rights activists are concerned that the Chinese government's regulation requiring that Apple host its citizen's iCloud accounts on servers in China could make it easier for that nation to track down dissenters.

Intel says it followed industry standards with Spectre/Meltdown reveal

Intel is stating the reason behind its decision to not inform industry organisations and the US federal government of crucial flaws in its processors is it was following established industry reporting standards.

France mulls manufacturer liability & open-sourcing, IoT industry on edge

The French government has floated a proposal to make manufacturers of internet-connected devices liable for the security of their devices while they are on the market.

Government £50k grants for cybersec training and £1.8m for airport security

The government is making £50,000 cyber-security training grants available, and separately it has invested £1.8 million in 'innovative' machine learning technologies that will help improve threat detection capabilities at airports.

UK government publicly blames Russia for NotPetya attacks

The UK government publicly accused Russia of carrying out the June 2017 NotPetya ransomware attacks in June 2017 as part of a deliberate attack on the Ukraine state.

DHS Manfra: Russians successfully penetrate some US state election systems

Russian hackers successfully penetrated voter registration rolls in a number of US states, US Department of Homeland Security (DHS) cyber-security chief Jeanette Manfra said Wednesday.

US Congressional Committee threaten DHS with subpoena over Kaspersky docs

US Republican senator Lamar Smith threatened to subpoena the US Department of Homeland Security for documents related to the US federal government's purge of products made by the Russian software firm.

Concern expressed over possible prior Chinese knowledge of Spectre/Meltdown

In the US, the House Energy and Commerce Committee chairman expressed concern over reports that Intel informed Chinese companies about the Spectre/Meltdown vulnerabilities before it told US officials.

FIC 2018: Defending France - 5 year plan to operate on a larger scale

Gérard Collomb Ministre de l'Intérieur de France: France is currently developing its five year strategy to fight cyber-crime on a large scale. The new ambition is to protect France. 800 extra police dedicated to cyber. Increased spend.

A high-impact cyber-attack on UK likely in the next 2 years

It is a matter of "When, not if" a major cyber-attack on the UK will happen says Ciaran Martin, head of the NCSC. This statement raises the prospect of huge disruptions to the British government and critical infrastructure.