ICD Brief 54.
18.09.2017. – 24.09.2017.
This week’s edition showcases the growing global push for new laws, and new partnerships to better organize and manage cyber-attack and cyber innovation. This is good news if late. Yet last week Equifax finally reported a breach affecting 144 million and this week we see a Federal Agency-the Securities and Exchange Commission take a year to report a massive cyber breach.
In October, our bi-weekly deep dives are going to focus on the topic of Accountability, Responsibility and Innovation in Cybersecurity. This week, we reached out to French Caldwell, Chief Evangelist, MetricStream with the question: Who Should Take the Blame for Data Breaches? Read the full article HERE.
Please let us hear from you! We invite you our readers to join us online and in real time events to build a context that represents more than the cyber sphere’s parts. Each month, we will publish a report summarizing your answers on our website.
You will join our International Expert Advisors both public and private sector, in demographics, defense, energy, ethics, finance, horizon scanning, insurance, law, telecommunications, transport, soft and hard sciences. They participate as speakers in ICD events and provide their insights, knowledge and experience to our work.
The International Cybersecurity Dialogue was founded in 2012 by Anne Bader and Richard Stiennon to promote a working relationship between policy and technology communities. It is an initiative of Bader Resources LLC, a small international consulting known for its innovative programs that build self-sustaining initiatives and multi-stakeholder networks for clients in government, business and academe.
USA
Hack at US Market Regulator Displays Persistent Government Cyber Woes
“A major computer hack at America’s top stock market regulator is the latest sign that data stored in the highest reaches of the U.S. government remains vulnerable to cyber attacks, despite efforts across multiple presidencies to limit high-profile breaches that are so frequent many consider them routine.”
US Homeland Security Found SEC Had ‘Critical’ Cyber Weakness in January
“The U.S. Department of Homeland Security detected five “critical” cyber security weaknesses on the Securities and Exchange Commission’s computers as of January 23, 2017, according to a confidential weekly report reviewed by Reuters.”
“SmartFlow Compliance Solutions, a leading developer of anti-piracy and software license compliance technology, announces that cyber security experts from both the private sector and the U.S. government will speak at the fourth annual Anti-Piracy and License Compliance Summit, to be held at Keysight Technologies in Santa Rosa, California, October 4-6, 2017.”
Australia
Govt and Industry Pour Millions into New Cybersecurity Research Centre
“The Federal Government, local private sector players and research organisations are pooling more than $139 million worth of investment into a new cyber security cooperative research centre (CRC). The Government revealed on 22 September that it will invest $50 million over the next seven years to establish the Cyber Security CRC, the latest such cooperative research centre in the Government’s initiative to better collaborate with industry.”
Baltics/Estonia
Ilves: Legislation More Important than Technology in Creating Digital State
“Former Estonian President Toomas Hendrik Ilves, an advocate of Estonia as an e-state, stressed after a potential security risk was detected in Estonian ID cards that the country’s reputation as an e-state was not under threat. The establishment of a digital state does not depend solely on technology, but also, more importantly, on a legislative basis, Ilves finds.”
China
China Extends Rule of Law on Internet
“China has accelerated the development of cyber laws since the 18th National Congress of the Communist Party of China (CPC), by actively engaging the government, Internet service providers and netizens in creating a clean cyber environment, observers said.”
New Developments on the PRC Cyber Security Law
“It has been more than three months since the PRC Cyber Security Law (“CSL”) has taken effect on 1 June 2017. Except for the Provisions on Examination of Network Products and Services (Trial) (“NPS Provisions”) which have come into effect on the same day as the CSL, other regulations to supplement and implement the CLS have not yet been enacted. So far, only some supplementary regulations are available in draft versions for public consultation purposes.”
EU
Europe to Set Up Cybersecurity Agency
“The European Commission has proposed measures to improve cybersecurity in the EU, including a cybersecurity agency that would help EU countries hit by cyber- attacks and a European certification scheme to ensure that digital products and services are safe to use.”
Singapore
Singapore and Japan Ink Accord to Strengthen Cybersecurity Cooperation
“Singapore and Japan signed a pact on Monday to boost cybersecurity cooperation between the two countries. The memorandum of cooperation provides for the holding of regular policy dialogues between the two countries in addition to information exchanges, collaborations to enhance cybersecurity awareness, joint regional capacity-building efforts, and sharing of best practices, Singapore’s Cyber Security Agency said in a statement.”