Government News, Articles and Updates

£50m for law enforcement as Government ups ante on Cyber Defence

UK Home Secretary speech and announcements at CYBER UK Conference: Over £50 million investment pledged for the UK's cyber-defensive capabilities within law enforcement at a national, regional and local level.

£13.5 million cyber-innovation centre to be built at London Olympic Park,

A £13.5 million cyber-innovation centre is to be built at London's Queen Elizabeth Olympic Park, intended to boost the thriving East London digital cluster and help create 2,000 UK jobs in cyber-security.

Governments need to act now to protect citizens and society from cyber-war

Containing the cyber-threat to society requires both coherent government leadership and strategy. There is a danger of unintentionally drifting into war by pushing the envelope too far or through careless significant collateral damage.

US lawmakers ask Mexican government for updates on spyware probe

Nine months after the Mexican government was found to be using spyware to spy on journalists, activists and HR lawyers, US lawmakers sent a letter to Mexico's US Ambassador, calling for a comprehensive and transparent probe.

New Sanny info-stealer campaign features targets US government agencies

Researchers this month discovered a new spear phishing campaign targeting US government agencies with an evolved version of Sanny malware, a 5-year-old information-stealer that now features a multi-stage infection process.

Two East Asian APT groups stage cyber-espionage attacks

OceanLotus hits targets in Southeast Asia, while PlugX malware steals pharmaceutical data. APT groups are targeting high-profile corporate and government targets in Southeast Asia, security researchers have discovered.

Sophisticated hacking tools now in the hands of petty cyber-criminals

Sophisticated hacking tools and techniques like watering-hole attacks, once used only by nation states or proxies, now increasingly used by criminal hackers, fueling concerns that state-sponsored hackers may have gone rogue.

Cyber-attacks against Russia may follow attempted nerve agent killing in UK

Offensive cyber-attacks against Russia are reported to be among options under consideration by the UK if it is dissatisfied with Russia's explanation by midnight today of the use in this country of Russian nerve agent Novichok.

Newsbite: New Defence Cyber School opens at the Defence Academy, Shrivenham

Defence Cyber School at the Defence Academy, Shrivenham opens as part of government moves to increase the country's cyber-defence capability - while government restates willingness to use offensive cyber-weapons.

Government calls for revamp in IoT security; will manufacturers listen?

Government plans for IOT security welcomed but also criticised as being only a set of advisories and recommendations which do not include watertight regulations around credentials and authentication.

Newsbite: New laws for driverless vehicles to look at hacking risks

The government is reviewing transport laws to take account of automated vehicles and may introduce specific new criminal offences to deal with interference, which would include vehicle hacking.

Head Games: The human side of nation-state attacks

When you compare information security to other professional fields, it's a relatively new player on the block by contrast. However, over its relative short lifespan information security has evolved at a comparatively rapid rate.

After 'isolated' hack, Germany says government computers are secure

The German government said on Wednesday that hackers had breached the network of government computers with an isolated attack that had been brought under control and which was being investigated by security officials.

Apple's China-based iCloud data centre raises privacy, human rights fears

Human rights activists are concerned that the Chinese government's regulation requiring that Apple host its citizen's iCloud accounts on servers in China could make it easier for that nation to track down dissenters.

Intel says it followed industry standards with Spectre/Meltdown reveal

Intel is stating the reason behind its decision to not inform industry organisations and the US federal government of crucial flaws in its processors is it was following established industry reporting standards.

France mulls manufacturer liability & open-sourcing, IoT industry on edge

The French government has floated a proposal to make manufacturers of internet-connected devices liable for the security of their devices while they are on the market.

Government £50k grants for cybersec training and £1.8m for airport security

The government is making £50,000 cyber-security training grants available, and separately it has invested £1.8 million in 'innovative' machine learning technologies that will help improve threat detection capabilities at airports.

UK government publicly blames Russia for NotPetya attacks

The UK government publicly accused Russia of carrying out the June 2017 NotPetya ransomware attacks in June 2017 as part of a deliberate attack on the Ukraine state.

DHS Manfra: Russians successfully penetrate some US state election systems

Russian hackers successfully penetrated voter registration rolls in a number of US states, US Department of Homeland Security (DHS) cyber-security chief Jeanette Manfra said Wednesday.

US Congressional Committee threaten DHS with subpoena over Kaspersky docs

US Republican senator Lamar Smith threatened to subpoena the US Department of Homeland Security for documents related to the US federal government's purge of products made by the Russian software firm.

Concern expressed over possible prior Chinese knowledge of Spectre/Meltdown

In the US, the House Energy and Commerce Committee chairman expressed concern over reports that Intel informed Chinese companies about the Spectre/Meltdown vulnerabilities before it told US officials.

FIC 2018: Defending France - 5 year plan to operate on a larger scale

Gérard Collomb Ministre de l'Intérieur de France: France is currently developing its five year strategy to fight cyber-crime on a large scale. The new ambition is to protect France. 800 extra police dedicated to cyber. Increased spend.

A high-impact cyber-attack on UK likely in the next 2 years

It is a matter of "When, not if" a major cyber-attack on the UK will happen says Ciaran Martin, head of the NCSC. This statement raises the prospect of huge disruptions to the British government and critical infrastructure.

Allscript still recovering from SamSam ransomware attack

A new variant of SamSam ransomware was observed targeting multiple industries including government, healthcare and Industrial Control Systems in a series of attacks that don't appear to be highly targeted but more opportunistic.

Japan to Join the NATO CCDCOE in Tallinn

Japan is to join the ATO Cooperative Cyber Defence Centre of Excellence (CCDCOE) in Tallinn, Estonia which the organisation said in a statement will further strengthen the knowledge base and reach of the 20-nation-strong centre.

Proposed law would levy penalties on breached credit reporting agencies

A newly proposed legislation introduced by two Democratic US senators aims to impose stiff, mandatory penalties on credit reporting agencies (CRAs) that fail to protect consumers' sensitive information from data breaches.

Report: Vietnamese unit formed to fight controversial ideas on internet

The Vietnamese government has reportedly deployed a military cyber-warfare unit compromised of more than 10,000 digital soldiers to combat and censor views on the internet that it finds threatening or "wrong."

Trump signs bill banning Kaspersky products into law

US President Donald Trump signed into law the US National Defence Authorisation Act for Fiscal Year 2018, which prohibits US federal use of products and services from Russian-based cyber-security firm Kaspersky Lab.

A country of unicorns: Can we learn from innovation in French cyber security?

France is working hard to raise awareness of cyber-security and is focused on developing innovative security technologies, and has has already seen numerous successes and innovative cyber- security projects take off.

Budget: tech & skills investment welcome, why no mention of cyber-security?

The UK Chancellor Philip Hammond, announced his autumn budget today, and while it was a pro-tech budget, he had nothing to say specifically about cyber-security, hence the industry has had a lot to say about his plans.