Significant Updates – Brief 192 – September 5, 2020


Welcome back! Today’s edition is encouraging by and large. You will read of progress in integration of best practices, new working partnerships, public awareness, citizen engagement and the value of increased attention to information security from media standards to sabotage.

In that vein, I want to recognize the Journalism Institute of the National Press Club for its exceptional programs and dedication “to promote an engaged global citizenry through an independent and free press, and equips journalists with skills and standards to inform the public in ways that inspire civic engagement.” I am proud to be a NPC member for more than 25 years.

Here’s a sampling.

flight map


Cybersecurity Officials from the U.S., U.K., Australia, Canada and New Zealand Release Best Practices for Incident Response
“WASHINGTON – Today, the U.S. Cybersecurity and Infrastructure Security Agency (CISA), Australian Cyber Security Centre (ACSC), New Zealand’s National Cyber Security Centre (NCSC NZ) and Computer Emergency Response Team NZ (CERT NZ), Canada’s Communications Security Establishment, and the United Kingdom’s National Cyber Security Centre (NCSC UK), are releasing a Joint Cybersecurity Advisory: Technical Approaches to Uncovering and Remediating Malicious Activity.”

Beyond Secret Cyber Deals, Israel and UAE Ties May Be a Boon for AI
Haaretz, Uri Eliabayev
“The UAE is the only country in the world to have an artificial intelligence minister and it has even opened a university dedicated to the field – they have much to gain from cooperating with Israel.”

Washington DC

United States of America

US Intelligence Agencies Warn of North Korean Hackers Running Cyber Attacks Against Banks, Stealing Billions
“A new warning from a collection of US government agencies indicates that they have really stepped up cyber attacks of this nature during the Covid-19 pandemic months, with a group that has been active since 2015 stealing tens of millions this year alone.”

Tesla employee foregoes $1M payment, works with FBI to thwart cybersecurity attack
“Tesla employee foregoes $1M payment, works with FBI to thwart cybersecurity attack. Sometimes, the events that transpire inside a company could be just as exciting and nail-biting as the most popular thrillers in fiction.”

Ready USDHS Cybersecurity Preparedness Public Awareness Site
This DHS one stop reference page with instructions and links provides how to prepare, who to inform before, during, after cyber attack.

Mark Zuckerberg and Priscilla Chan Commit $300 Million to Voting Efforts
Barrons Penta, Fang Block
“Facebook CEO Mark Zuckerberg and his wife, Dr. Priscilla Chan, have committed $300 million to bolster voting rights and democracy during the Covid-19 pandemic.”

OMB, CISA release a trifecta of cyber guidance
Federal News Network, Jason Miller

SynED and US VALOR Help Bring Veterans Into the Cybersecurity Workforce
69 News, By SynEd



Kenya earmarks $140 million to connect public primary schools to the Internet
Techpoint Africa, Emmanuel Paul
“Kenya’s ICT ministry is partnering with the United Nation Children’s Fund (UNICEF) to bring Internet connectivity to 1000 public primary schools in Kenya. From September 2020, the funds will reportedly be used to lay fibre optic cables, build computer laboratories, buy tablets for pupils and train teachers under the country’s Digital Learning Project.”


Code of practice released to help stop smart devices being hacked
Sidney Morning Herald, Anthony Galloway
“The makers of web-connected devices including smart TVs, watches and fridges will be told to make their systems more secure from hackers under a new industry code.”


Brussels Workshop Weighs Risks of Satellite Hacking
Signal, Shaun Waterman
Experts map the dangerous new territory of cyber attacks on spacecraft.


BIS employee hailed for cyber security excellence
CFB Esquimalt Lookout Navy News
“WO (Retired) Sherry Rumbolt, a senior information security officer, was recently honoured as one of Canada’s Top Women in Cyber Security. Rumbolt was among 20 recipients selected in the inaugural award category by the magazine IT World Canada from a list of 170 nominations.”

European Union

What Is the EU Cybersecurity Act and What Does It Mean for US-Based Businesses?
“Are US-based Businesses Affected? Short answer: yes. Any business offering ICT products, services, or processes within the EU, whatever their size, are affected by the Cybersecurity Act and should begin monitoring the ENISA and EU websites for updates on EU cybersecurity certification schemes.”


Indian State To Add 6 Million Jobs In Massive IT Push Over Next Five Years
Taiwan Times, Amy Wu
“Bengaluru: The Karnataka State government announced on Thursday a new information technology (IT) policy for the period 2020 – 2025 envisaging a total job creation of six million during the implementation period.”

Information Security

‘Fake news’ spotlighted in virtual cyber exercise
GCN, Lauren C Williams
“Due to the ongoing pandemic, the National Guard is moving its massive annual cyber exercise, Cyber Shield 2020, completely online and focusing on information operations.”

Microsoft unveils software that can spot ‘deepfake’ photos and videos ahead of the US vote
Economic Times
“SAN FRANCISCO: Microsoft has unveiled software that can help spot ‘deepfake’ photos or videos, adding to the list of programs designed to fight the hard-to-detect images ahead of the US presidential election.”

ASU Journalism School Launches Free Media Literacy Course Online
The Wrap Lindsey Ellefson
“Arizona State University’s Walter Cronkite School of Journalism and Mass Communication is launching a free online course in media literacy.”


NATO to Hire its First CIO
“Non-negotiable: proven experience in consensus building…
The North Atlantic Treaty Organisation (NATO) is hiring a Chief Information Officer (CIO) for the first time. They will face the formidable challenge of bringing IT “coherence” to the NATO Enterprise’s 41 civil and military bodies and 25,000+ users.” NATO Chief Information Officer (CIO) and Director of the CIO Office-200633

Au Revoir


Hackers delete Bykea database, company unaffected due to backups
Pt Profit, Taimoor Hassan, Babar Khan Javed
“LAHORE: Early on Tuesday morning, Bykea experienced a breach wherein hackers managed to infiltrate and delete an entire database, though the company remained unaffected because the attack was caught early on and the company had data backups.”

United Kingdom

BBC boss Tim Davie to crack down on staff airing views on social media
BBC, Mark Sweney
“Tim Davie is to crack down on staff posting their views on social media in a move to restore the view of the BBC as impartial, and raised the question of slashing the corporation’s output by a fifth, cutting more jobs and potentially shutting TV channels.”


AI Now Institute, New York University, Amba Kak, Editor
“Amid heightened public scrutiny, interest in regulating biometric technologies like face and voice recognition has grown significantly across the globe, driven by community advocacy and research. ..Addressing this moment of possibility, AI Now worked with academics, advocates, and policy experts to publish a Compendium of case studies on current attempts to regulate biometric systems, and reflect on the promise, and the limits, of the law.

Edited by Amba Kak, AI Now’s Director of Global Strategy & Programs, the compendium begins with an introduction and a summary chapter which identifies key themes from existing legal approaches, and poses open questions for the future. These questions highlight the critical research needed to inform ongoing national policy and advocacy efforts to regulate biometric recognition technologies.”

mind the gap

Posted in Weekly Brief | Comments Off on Significant Updates – Brief 192 – September 5, 2020

With Expanded Focus on International Cooperation, Minnesota’s Cyber Security Summit is “Unapologetically Ambitious”

Cyber Security Summit Newsletter August 2020

By Anne C. Bader, Founder, The International Cybersecurity Dialogue
August 17, 2020

“A few years ago, I met Eileen Manning, producer of the annual Cyber Security Summit (CSS) in Minneapolis, while attending a security event in Washington D.C.”

Posted in Blog | Comments Off on With Expanded Focus on International Cooperation, Minnesota’s Cyber Security Summit is “Unapologetically Ambitious”

Evanina, Nakasone Warnings – The ICD Brief 191: July 25, 2020

Greetings and fair warning. The week’s news advances clarity and awareness but is all about conflict and concern. ICD 191 opens with warnings from NCSC Director William Evanina and NSA and CyberCom General Paul Nakasone of the importance of informing the public of the dangers surrounding the US election.

It closes with the long awaited UK Intelligence and Security Committee of the Parliament’s Report on Russia. Our Commentary Stop Russia hacking our minds is given by Sir David Omand, former UK Security and Intelligence Coordinator and Director of GCHQ.

This will be our last issue until the first week of September. In the meantime, I wish you some rest and refreshment during August. We hope to have a special addition upon our return.

Here is a sampling.



Stop Russia hacking our minds
By Sir David Omand

chicago navy piier

United States of America

U.S. counterspy gives rare warning on foreign meddling in U.S. election
Reuters, Mark Hosenball
“WASHINGTON (Reuters) – Voters should be on high alert for foreign interference in the Nov. 3 U.S. election, the U.S. counterintelligence agency chief said on Friday in a rare warning that the public should screen information, check online sources and report suspicious actions.”

Spy chief sees 2020 election security as ‘number one goal’
FCW, Lauren C. Williams, Derek B. Johnson
“’Our number one goal, our number one objective at the National Security Agency and U.S. Cyber Command — a safe, secure and legitimate 2020 elections,’ said Gen. Paul Nakasone, who leads both agencies, during an Association of the U.S. Army (AUSA) virtual event on July 20.”

Facebook Sweetens Biometric Privacy Accord to $650 Million
Bloomberg, Malathi Nayak
Facebook Inc. bowed to a judge’s concerns and proposed increasing its settlement offer to $650 million to resolve claims by users that the company illegally gathered biometric data through a photo-tagging tool.”

Garmin services and production go down after ransomware attack
ZDNet Catalin Cimpanu for Zero Day
“Smartwatch and wearable maker Garmin planning multi-day maintenance window to deal with ransomware incident.”


Bug bounty leader Clément Domingo on cybersecurity in Africa, hacking events, and chaining vulnerabilities for maximum impact
The Daily Swig, Adam Bannister
“Critical infrastructure in Africa represents an alarmingly easy target for cybercriminals, a French-Senegalese bug bounty hunter tells The Daily Swig.
In a wide-ranging interview, Clément Domingo, who also works as a security engineer for a major French company, reflects on the gap between French and US attitudes to ethical hacking, why patience can be a virtue when reporting vulnerabilities, and participating in capture the flag competitions for the Hexpresso team.”


Khmer version of UNESCO’s handbook on “Journalism, ‘Fake News’ and Disinformation launched
Khmer Times
“UNESCO in collaboration with the Ministry of Information launched here this morning the Khmer version of UNESCO’s handbook titled ‘Journalism, ‘Fake News’ and Disinformation: A Handbook for Journalism Education and Training’”.


Top Women in Cyber Security Celebration: Honouree roundup
ITWorld Canada, Alex Coop
“Earlier this year, ITWC and WISECRA reached out to the technology community and asked for nominations of individuals who deserved to be recognized as one of the Top Women in Cyber Security.”



Popular Chinese-Made Drone Is Found to Have Security Weakness
New York Times, By Paul Mozur, Julian E. Barnes and Aaron Krolik
“The world’s largest maker of commercial drones, DJI has found itself increasingly in the cross hairs of the United States government, as have other successful Chinese companies. The Pentagon has banned the use of its drones, and in January the Interior Department decided to continue grounding its fleet of the company’s drones over security fears. DJI said the decision was about politics, not software vulnerabilities.”

Two Chinese Nationals Indicted for Stealing Trade Secrets, Coronavirus Research
NextGov, Mila Jasper
“Federal prosecutors allege the pair hacked into corporations and research institutions on behalf of the Chinese government.”


Standoff With China Figures Prominently In India-Israel Defence Talks: Report
India-China Standoff: In a statement, the Defence Ministry said Mr Singh and Lt Gen Gantz expressed satisfaction at the progress of strategic cooperation between the two countries and discussed possibilities of further strengthening the defence engagements.

Remote Working India in Dire Need of Cybersecurity Training
TechPanda, Navanwita Bora Sachdev
“The demand for cybersecurity professionals in India is on an all-time rise, but the dearth of educational institutions that impart cybersecurity training is a key factor responsible for the shortage of skilled professionals in the country.”

India to Train 5000 Women in Cyber-Safety
InfoSecurity, Sarah Coble
Responsible Netism has teamed up with the Maharashtra State Commission for Women to develop a cyber-safety training program for young women in India.

The Digital Stree Shakti program aims to teach 5000 females in 10 Maharashtra cities about how to stay safe while online. Participating students will be aged between 16 and 25. “


COVID19 Home Working Leads to Cybersecurity Hiring Spree
InfoSecurity, James Coker
“The COVID-19 pandemic has led to a major boost in cybersecurity job vacancies in the US, data from the Cybersecurity Jobs Report: Q2, has revealed. The study, produced by the International Consortium of Minority Cybersecurity Professionals (ICMCP) and CyberVista, indicates that the shift to remote working in the crisis has led to organizations investing more heavily in protecting themselves from cyber-threats.”

North Atlantic Treaty Organization

NATO’s approach to countering disinformation: a focus on COVID-19
“COVID-19 has affected almost every person in every NATO state. It is vital that this global health crisis does not turn into a global security crisis as well.

That is because international organisations such as NATO, as well as NATO Allies and partners, have faced a proliferation of disinformation, propaganda and misinformation during the pandemic.

The Alliance has been dealing with these challenges since its inception and has been actively countering a significant increase in disinformation and propaganda since Russia illegally annexed Crimea, Ukraine, in 2014.”

Red Square


Russia’s GRU Hackers Hit US Government and Energy Targets
Wired, Andy Greenberg
“RUSSIA’S GRU MILITARY intelligence agency has carried out many of the most aggressive acts of hacking in history: destructive worms, blackouts, and—closest to home for Americans—a broad hacking-and-leaking operation designed to influence the outcome of the 2016 US presidential election. Now it appears the GRU has been hitting US networks again, in a series of previously unreported intrusions that targeted organizations ranging from government agencies to critical infrastructure.”

Online piracy on the rise again in Russia in lockdown
Bne IntelliNews
“The Russian market of pirated online content is growing due to the activity of illegal online casinos and bookmakers, The Bell reports on July 23 citing the study of Group-IB cyber security experts.
As reported by bne IntelliNews, Russia used to be the world’s second-largest market for pirated content, but the illegal market was purged in 2019 as legitimate online streaming services started gaining speed.”

The United Kingdom

Russia launched cyberattacks and disinformation campaigns on U.K., study says
NBC News, Patrick Smith
“The report from the Intelligence and Security Committee of Parliament, which was delayed for nine months and has been heavily redacted, says the U.K. is clearly a target for Russian disinformation and described Russian influence in Britain as ‘the new normal.’”

UK Report on Russian Interference: Key Points Explained
The Guardian, Simon Murphy

Russian satellite test had ‘characteristics of a weapon’, says UK
Sky News, Alistair Bunkall
“The man in charge of Britain’s space programmes has publicly criticised Russia for a satellite test launch ‘with the characteristics of a weapon’
In an unusual intervention, Air Vice-Marshal Harvey Smyth said Russia‘s actions could ‘threaten the peaceful use of space and risk causing debris that could pose a threat to satellites and the space systems on which the world depends.’”

Original Documents

Blackbaud hack: More UK universities confirm breach
BBC, By Joe Tidy
“More than 20 universities and charities in the UK, US and Canada have confirmed they are victims of a cyber-attack that compromised a software supplier. The US-based firm is the world’s largest provider of education administration, fundraising, and financial management software. Blackbaud is not revealing the scale of the breach.”


Stop Russia hacking our minds
The Article
David Ormand: Professor Sir David Omand is the former UK Security and Intelligence Coordinator and Director GCHQ.

“The first Government response to the Report out this week includes the disturbing admission that “following extensive analysis, the Government has concluded that it is almost certain that Russian actors sought to interfere in the 2019 General Election through the online amplification of illicitly acquired and leaked Government documents”. This confirms what a mistake it was not to allow the Report, with its dramatic description of hostile Russian activities, to be published before the December 2019 election.”


mind the gap

Posted in Weekly Brief | Leave a comment

“You Cannot Give Up Now!” – Report 190, July 18, 2020

Black Lives Matter
It’s been a dramatic week of emergencies. Privacy Shield shut down, Twitter down, Cloudflare down, Iran and China, a growing trend to move companies out of China and numerous others that I will leave for you to discover.
There’s a sampling below.

We lost two great men yesterday. Here’s a brief celebration of their lives.
America lost two civil rights icons in less than 24 hours, Rep John Lewis and Rev. C.T. Vivian Bloomberg 1:43

american flag


Cloudflare DNS goes down, taking a large piece of the internet with it
Tech Crunch, Devin Coldewey
“’This afternoon we saw an outage across some parts of our network. It was not as a result of an attack,’ the company said in a statement. ‘It appears a router on our global backbone announced bad routes and caused some portions of the network to not be available. We believe we have addressed the root cause and monitoring systems for stability now. We will share more shortly—we have a team writing an update as we speak.’” Blog report

CIS0A, Christopher C. Krebs, Director
“The last few weeks have been something else, indeed. CISA and our cybersecurity partners have responded to several major vulnerabilities such as Trek TCP/IP (Ripple 20), F5 BIG-IP Traffic Management User Interface (CVE-2020-5902), SAP, and now Microsoft Windows Server. Each of these presents its own unique risks, and our team has worked to amplify awareness of them throughout the cybersecurity community.
However, due to the wide prevalence of Windows Server in civilian Executive Branch agencies, I’ve determined that immediate action is necessary, and federal departments and agencies need to take this remote code execution vulnerability in Windows Server’s Domain Name System (DNS) particularly seriously.”

FBI investigates Twitter attack on high-profile celebrities
OpenAccess Government
“The FBI stated on Thursday (16 July) that it has launched an investigation into the cyberattack after twitter accounts belonging to Kim Kardashian West, Barack Obama, Joe Biden, Elon Musk, Bill Gates, and Kanye West were accessed by hackers to use them to solicit digital currency.”

Bipartisan Members and Experts Agree that H.R. 7331, the National Cyber Director Act, is Essential to Protecting National Security
House Committee on Oversight and Reform
“Washington, D.C. (July 15, 2020)—Today, Rep. Carolyn B. Maloney, the Chairwoman of the Committee of Oversight and Reform, held a hearing to examine U.S. cybersecurity preparedness and the bipartisan H.R. 7331, the National Cyber Director Act, which would create the position of a National Cyber Director to lead national-level coordination of cyber strategy and policy.”

Navy cyber security experts say they plan to deploy shipboard cyber defenses aboard 180 ships by next year
Military and Aerospace Electronics via Defense News
“Delivering cyber baselines enables Navy experts to identify capability risks during a ship’s availability or scheduled modernization.”
dust storm


Massive Rise in Cybersecurity Awareness Across Nigeria, Kenya and South Africa
IT News Africa, Jenna Delport
“Nearly two thirds (66%) of remote workers in Nigeria, Kenya and South Africa say they are more conscious of their organisation’s cybersecurity policies since the lockdown began – according to a new study from Trend Micro.”


AU Manufacturing
“Ellie Vaisman, co-founder at Sourci, says there’s a definite trend for medium- and large-sized businesses to shift manufacturing out of China. ‘We’ve actually been helping quite a lot of businesses to diversify their supply chain into countries such as India, which is a really good emerging manufacturing economy, as well as Vietnam and Indonesia as well,’ he tells @AuManufacturing.”


Canadian minister promises review after security contracts awarded to Chinese-state tech company
Global News, Sam Cooper & Andrew Russell
“Nuctech, a high-tech company connected to former Chinese president Hu Jintao, has been awarded sensitive contracts in Canada”

Ottawa in talks with Lloyd’s of London for insurance partnership to withstand ‘black swan’ events
Financial Post, Barbara Shecter
“The Canadian government is interested in an “exploratory discussion” with the Lloyd’s of London about creating a public-private insurance partnership to help withstand systemic risks to the economy from “black swan” events such as the coronavirus pandemic, says John Neal, chief executive of the U.K.-based global insurer.”


Defying U.S., China and Iran Near Trade and Military Partnership
New York Times, Farnaz Fassihi and Steven Lee Myers
“The investment and security pact would vastly extend China’s influence in the Middle East, throwing Iran an economic lifeline and creating new flash points with the United States.”


EU court kills Privacy Shield, wreaks havoc on digital economy
SCMedia, Teri Robinson
“Factoring into the decision by the European Court of Justice is the jumble of state privacy laws currently governing personal data.

The EU court decision in the Schrems II case that effectively kills the Privacy Shield pact hammered out four years ago between the U.S. and EU could cripple multinational companies’ ability to operate as they scramble to scrutinize their data transfer mechanisms.”

ENISA unveils its New Strategy towards a Trusted and Cyber Secure Europe


Iranian Spies Accidentally Leaked Videos of Themselves Hacking
Wired, Andy Greenberg
“ IBM’s X-Force security team obtained five hours of APT35 hacking operations, showing exactly how the group steals data from email accounts—and who it’s targeting.”


Cyber attacks again hit Israel’s water system, shutting agricultural pumps
Times of Israel TOI STAFF
“Two cyber attacks were carried out against Israeli water infrastructure in recent weeks, the Ynet news site reported late Thursday. The Water Authority confirmed the report, but said no damage was done to Israel’s water system.”


Japan to Pay at Least $536 Million for Companies to Leave China
“Fifty-seven companies including privately-held facemask-maker Iris Ohyama Inc. and Sharp Corp. will receive a total of 57.4 billion yen ($536 million) in subsidies from the government, the Ministry of Economy, Trade and Industry said Friday. Another 30 firms will receive money to move manufacturing to Vietnam, Myanmar, Thailand and other Southeast Asian nations, according to a separate announcement, which didn’t provide details on the amount of compensation.”


North Macedonia Probes Election Day Cyber Attacks
BalkanInsight, Bojan Stojkovski
The state electoral commission website is still reeling from a cyber attack on Wednesday’s election day and is not yet functioning properly.

“’It is not clear whether the [SEC] website was tested to withstand a large amount of connections for a short period of time, and whether it had the necessary DDoS protection,’ cyber-security engineer Milan Popov told BIRN on Friday.”



Pakistani InfoSec researchers to debut at DEFCON Hacking Conference
PtProfit,Babar Khan Javed
“Two top-ranked ethical hackers from Pakistan have been invited to speak at the world’s largest hacker convention.”


Make $100,000/Year By Filling The Cyber Skills Gap
Forbes, Christos Makridis
“A groundbreaking new report by Emsi finds that the United States has less than half the cybersecurity candidates that it needs to handle increasing demand. In other words, help wanted!

While some cities exhibit a bigger gap than others—with Washington DC touting the largest gap—in nearly every case, demand outstrips supply.”


UK and allies expose Russian attacks on coronavirus vaccine development
“The NCSC assesses that APT29, also named “the Dukes” or “Cozy Bear” almost certainly operate as part of Russian intelligence services. This assessment is also supported by partners at the Canadian Communication Security Establishment (CSE), the US Department for Homeland Security (DHS) Cybersecurity Infrastructure Security Agency (CISA) and the National Security Agency (NSA).”

Start-Up That Detects Fake News Raises £2.5m To Prepare For US Elections
“Logically – a tech start-up using AI to detect misinformation and to provide a fact-checking service to combat fake news – has raised £2.5m to further develop its product in time for the US election.”


4 Steps to Prevent Ransomware Attacks (Contributed)
Samuel S. Visner is the director of the National Cybersecurity Federally Funded Research and Development Center, operated by MITRE. He is also a professor of cybersecurity policy, operations, and technology at Georgetown University. The opinion expressed is the author’s and does not necessarily reflect the views of MITRE.

“While COVID-19 has made continuity of public services more critical than ever, it has also made them more vulnerable. A few guidelines can help organizations prepare for and prevent ransomware incidents.

City officials in Florence, Ala., recently found themselves between a rock and a hard place when confronted by a ransomware attack that disrupted the city’s email systems and led to a continuing network outage. Paying ransoms can undermine public trust in the government to protect its citizens and ensure their quality of life. But, as Florence Mayor Steve Holt noted, not paying could jeopardize citizens’ personal and financial data.

Florence, unfortunately, is not alone in having to respond to and recover from these kinds of attacks. And the dangers are even greater now as ransomware attackers are making urgent demands of the state and local

mind the gap

Posted in Weekly Brief | Leave a comment

“”…to Subdue the Enemy Without Fighting” – Report 189, July 12, 2020

In spite of the obvious, I hope that your week has gone well. Our 189th edition reflects a malaise of rancor and division across our world with a few upbeat stories. Here’s a sampling:


House’s DHS funding bill would create public-private cyber center
FCW, By Derek B. Johnson
“The Cybersecurity and Infrastructure Security Agency would receive a hefty budget increase and establish a joint cybersecurity center under a new $56 billion Homeland Security funding bill crafted by the House Appropriations Committee.

The bill would set aside $2.25 billion for CISA operations, about $239 million above 2020 spending levels and nearly half a billion more than the agency requested. Approximately $11.6 million would go toward establishing a new Joint Cyber Center for National Cyber Defense.”

How the US steamrolled Chinese tech giant out of Five Eyes
Brisbane Times Eryk Bagshaw
“Huawei has lost the anglosphere. The telecommunications giant that came to symbolise China’s economic rise and the risks of its unique brand of state-linked corporations will no longer have a role in building Britain’s 5G network or that of any Five Eyes partner.”

One in 2 Companies Unable to Cope with Remote Work Security Risks
Security Boulevard, by Filip Truta on July 10, 2020
“Half of infosec professionals in a recent Bitdefender study revealed that their organization doesn’t have a contingency plan in place, or didn’t know if they did, for a situation like COVID-19 or a similar scenario.”

Biden campaign hires ex-White House official Chris DeRusha as CISO
Cyberscoop, Sean Lyngaas
“Biden’s campaign said Friday it had hired Chris DeRusha, who served as a White House cybersecurity adviser when Biden was vice president, as the campaign’s chief information security officer. “


Canada Not Joining U.S. In Warning Against TikTok, Bill Blair’s Office Says
Huffpost, By Althia Raj
“OTTAWA — The Canadian government is not warning against downloads of the popular Chinese app TikTok, Public Safety Minister Bill Blair’s office confirmed Tuesday, though the United States is telling its citizens using the platform means they’re handing their private data over to the Chinese Communist Party.”


France won’t ban Huawei, but encouraging 5G telcos to avoid it: report
“PARIS (Reuters) – The head of the French cybersecurity agency ANSSI said there would not be a total ban on using equipment from Huawei in the rollout of the French 5G telecoms network, but that it was pushing French telcos to avoid switching to the Chinese company.”

Airbus to Maintain French Navy’s Coastal Surveillance Systems
“The French Navy has renewed the maintenance contract of its Coastal Surveillance System, SPATIONAV, with Airbus.
The SPATIONAV system has been built under the supervision of the DGA (French General Armament Directorate) for the program direction and the SSF (Service de Soutien de la Flotte) for the sustainment, to support the French authorities gather information, direct maritime surveillance and intervention at sea. ”


Hong Kong security law: Police handed power to do warrantless searches, freeze assets, intercept comms, control internet
Hong Kong Free Press, KELLY HO
“Hong Kong police will be authorised to conduct searches at private properties without a warrant, restrict suspects’ movements, freeze their assets, intercept communications and require internet service providers to remove information, as the city’s leader handed more powers to the force for implementing the new national security law.”


Risk for Cyberattacks Heightened as Remote Work Continues
“To drive the urgency home, lawsuits alleging cyberfraud negligence have been on the rise—MandMarblestone Group (MMG), Nationwide, Abbott Laboratories, Alight Solutions and Estee Lauder have all faced litigation in the past year.”


Israel’s alleged Natanz strike ‘as complex as Stuxnet,’ a major blow to Iran
Times of Israel
“Blast at centrifuge assembly facility may have set back development by 2 years, experts tell the NY Times, with series of strikes causing ‘extreme internal and external pressure’”


Cyber Researchers Determine How to Accurately Pinpoint Malicious Drone Operators
Ben-Gurion University of the Negev
“Researchers at BGU have determined how to pinpoint the location of a drone operator who may be operating maliciously or harmfully near airports or protected airspace by analyzing the flight path of the drone.”


Lithuania’s central bank is releasing LBCOIN — its blockchain-based digital collector coin
The Block, Yogita Khatri
“The Bank of Lithuania, the country’s central bank, is set to issue LBCOIN ⁠— its blockchain-based digital collector coin — on July 23.”


China Is NATO’s New Problem
“The alliance has been so focused on Moscow that it has missed Beijing’s growing clout across Europe.”


Nigerian Instagram Star Extradited to U.S. Over Role in Cybercrime Schemes
Security Week, Ionut Arghire
“A Nigerian national who has more than 2.5 million followers on Instagram, where he flaunts his lavish lifestyle, was extradited from the United Arab Emirates (UAE) and appeared in court in the United States to face cybercrime-related charges.”


Russian hacker found guilty for Dropbox, LinkedIn, and Formspring breaches
ZDNet, Catalin Cimpanu for Zero Day
“The jury verdict was passed on Friday during what was the first trial to be held in California since the onset of the coronavirus (COVID-19) pandemic.”


UK Cyber Startups Raise Almost £500m During First Half of 2020
Infosecurity, James Coker
“UK cyber-startups have raised £496m in funding during the first half of 2020, already close to eclipsing the record £521m invested in these companies last year, according to the London Office for Rapid Cybersecurity Advancement (LORCA)’s new study, The LORCA Report 2020.”


There’s a Fake News Pandemic. Could COVID-19 and Trademarks be the Cure?
National Law Review, Rebeca Echevarria Harasimowicz
“As political divides widen, accusations of differing viewpoints being “fake news” have become almost commonplace. But during the COVID-19 pandemic, fake news has taken a more dangerous and sometimes deadly turn.

Fake news stories with fabricated COVID-19 data, sensational origin stories (it was NOT predicted by Nostradamus or created in a lab in China as a biological weapon), and baseless advice on how to protect against the illness are spreading almost as fast as the virus itself. “

mind the gap

Posted in Weekly Brief | Comments Off on “”…to Subdue the Enemy Without Fighting” – Report 189, July 12, 2020

ICD Report 188, July 3, 2020

Sent out today to wish you and yours a future of good health, safety and freedom on this US Independence Day! It’s been a dazzling week of interventions leading with a suspicious series of Iranian explosions and a historic multinational police hack of organized crime across Europe, the Middle East and beyond.

Here’s a sampling.


How Police Secretly Took Over a Global Phone Network for Organized Crime
“Police monitored a hundred million encrypted messages sent through Encrochat, a network used by career criminals to discuss drug deals, murders, and extortion plots.

French authorities had penetrated the Encrochat network, leveraged that access to install a technical tool in what appears to be a mass hacking operation, and had been quietly reading the users’ communications for months. Investigators then shared those messages with agencies around Europe.

Only now is the astonishing scale of the operation coming into focus: It represents one of the largest law enforcement infiltrations of a communications network predominantly used by criminals ever, with Encrochat users spreading beyond Europe to the Middle East and elsewhere. French, Dutch, and other European agencies monitored and investigated “more than a hundred million encrypted messages” sent between Encrochat users in real time, leading to arrests in the UK, Norway, Sweden, France, and the Netherlands, a team of international law enforcement agencies announced Thursday.”

ICD Co-Founder Richard Stiennon’s Interview on Encrochat
Richard Stiennon, Chief Research Analyst IT-Harvest, author.
“The Encrochat hack is one of the most astoundingly successful international law enforcement actions ever.“



SASC Pushes Cyber Overhaul In New NDAA
Breaking Defense, KELSEY ATHERTON
“ALBUQUERQUE: Sen. Angus King, co-chair of the Cyberspace Solarium Commission, thinks a cyber threat could be as dangerous — or worse — than the COVID-19 pandemic. The Senate Armed Services Committee is listening and has incorporated 11 of the commission’s recommendations in the 2021 NDAA, with another 18 ready to be introduced as amendments.”

US Cyber Command says foreign hackers will attempt to exploit new PAN-OS security bug
ZDNet, Catalin Cimpanu for Zero Day
“Palo Alto Networks disclosed today a major bug that lets hackers bypass authentication on its firewall and corporate VPN products.

Verizon Media, PayPal, Twitter Top Bug-Bounty Rankings
Threat Post, Tara Seals

California’s Big Privacy Law Gets Teeth
Consumer Reports, Kaveh Waddell
“Consumer Reports research shows that people trying to use the mandated controls often run into confusing red tape, and some ultimately give up on the process.”


Cybersecurity spending gets $1.35 billion boost in wake of online attacks against Australia
ABC AU Jade Macmillan
“The Federal Government wants to create more than 500 new jobs in its highly secretive cyber intelligence agency as part of what it says is Australia’s largest-ever investment in cybersecurity.”


Discussion: online voting is a long process that can start with voters abroad
“French officials and Baltic experts debated France’s electoral case study, as the Lithuanian parliament considered diaspora’s internet voting bill this week, and France just completed the second round of municipal elections.”


ENISA Launches Public Consultation for First Candidate Cybersecurity Certification Scheme
“Today, the European Union Agency for Cybersecurity, ENISA, is launching a month-long public consultation for the first candidate cybersecurity certification scheme, the Common Criteria based European cybersecurity certification scheme (EUCC). The scheme aims to replace the existing schemes operating under the SOG-IS MRA for ICT products, to add new elements and to extend the scope to cover all EU Member States.”


Joint Press Statement of the French Minister of State for European Affairs and the Estonian Minister for Foreign Affairs (Tallinn, 1 Jul. 2020)
France Diplomacy Ministry of State for European Affairs
“At a moment when Europe is facing unprecedented challenges due to the pandemic of Covid-19, France and Estonia have decided to strengthen their cooperation in order to help Europe come out of this crisis united and stronger.”


India TikTok Ban Threatens China’s Rise as Global Tech Power
“China over the past decade built an alternate online reality where Google and Facebook barely exist. Now its own tech corporations, from Alibaba Group Holding Ltd. to Tencent Holdings Ltd., are getting a taste of what a shutout feels like.”

China’s Twitter-like service Weibo removes Modi’s account at the request of India
CNBC Arjun Kharpal


Analysts: Fire at Iran nuclear site hit centrifuge facility
Federal News Network, By The Associated Press
“DUBAI, United Arab Emirates (AP) — A fire and an explosion struck a centrifuge production plant above Iran’s underground Natanz nuclear enrichment facility early Thursday, analysts said, one of the most-tightly guarded sites in all of the Islamic Republic after earlier acts of sabotage there.

Satellite photos show an explosion last Friday that rattled Iran’s capital came from an area in its eastern mountains that analysts believe hides an underground tunnel system and missile production sites. Iran has blamed the blast on a gas leak in what it describes a “public area.”

Another explosion from a gas leak at a medical clinic in northern Tehran killed 19 people Tuesday.”


Siemens and NATO CCDCOE announce cooperation on cybersecurity for critical infrastructure
“With the new agreement, the parties advance their existing cooperation on cyber security training for power grids.

Colonel Jaak Tarien, Director of the NATO CCDCOE said: ‘Our long-term cooperation with Siemens in training the cyber experts to protect critical infrastructure in general and power grids in particular has been a major asset for the NATO CCDCOE technical cyber defence exercises.’”


South Africa’s Postbank Replaces 12 Million Bank Cards After Internal Security Breach Exposes Master Key
“Postbank, the South African Post Office Bank, has suffered a major internal security breach, serving to underscore the ever-present threat of insider data theft.”


Met police commissioner Dame Cressida Dick said the raids hit organised crime ‘where it hurts most’.

Hundreds arrested as crime chat network cracked
BBC, Danny Shaw
“A top-secret communications system used by criminals to trade drugs and guns has been “successfully penetrated”, says the National Crime Agency.

The NCA worked with forces across Europe on the UK’s “biggest and most significant” law enforcement operation.
Major crime figures were among over 800 Europe-wide arrests after messages on EncroChat were intercepted and decoded.

More than two tonnes of drugs, several dozen guns and £54m in suspect cash have been seized, says the NCA.
While the NCA was part of the investigation, it was initiated and led by French and Dutch police, and also involved Europol – the EU agency for law enforcement cooperation.”

mind the gap

Posted in Weekly Brief | Comments Off on ICD Report 188, July 3, 2020

The Hungarian Information Technology Landscape

by Károly Gergely

A country most frequently discussed in Western media in relation to its politics, Hungary’s information technology scene is in itself one of noteworthy vibrancy.

Discussing Budapest, one often talks about its historical buildings, its cultural buzz, its attraction to tourists of all kinds, or even the Budapest Convention, the only binding international instrument on cybercrime. However, the capital is also ripe with IT start-ups, to the extent that some named it as the top European city for up-and-coming businesses. According to the European Digital City Index, the city’s start-up ecosystem is the first in the region and 33rd on the continent. The report notes that the number of tech start-ups has skyrocketed between 2010 and 2016. There are more than 28 private funds and VC funds in town, as well as a number of government-owned venture funds. In recent years, the number of incubators, accelerators, and co-working spaces has also risen, as well as competitions aiming to select viable start-ups for funding.  A large number of these enterprises are tech-focused, including AImotive, Bitrise, Scipher Medicine, Shapr3D, Recard, PublishDrive, Banzai Clou, or Turbine AI. Continue reading

Posted in Blog | Leave a comment

ICD Reader Book Review


Nadine Schön and Thomas Heilmann

Anna Juhos, External Fellow, Institute for Foreign Affairs and Trade.

The current crisis has made it obvious that in our interdependent world new tools are required to tackle the challenges faced by society and government. But how can we capitalize on the opportunities to adapt to the new realities and deal with international rivalry, pandemics, societal changes and digitalization? In their new book, Neustaat, Nadine Schön and Thomas Heilmann, Members of the German Parliament’s Committee on the Digital Agenda make a compelling case for the transformation of policy, society and state in this new, increasingly digitalized era. Continue reading

Posted in Blog | Leave a comment

Sapere Aude – ICD Brief 142.

ICD Brief 142.


Greetings from London. I’ve been meeting with colleagues in Paris and London all week. Last year’s more proactive activities regarding threats and innovations are producing this week’s top news.



Lawmakers, Experts See Combating Russian Disinformation as a “Battle”

“House Appropriations Committee Chairwoman Nita Lowey (D-N.Y.) is describing the fight against Russian efforts to spread disinformation on social media as a conflict that the U.S. has “got to win.” The Hill

Joint Chiefs Nominee Wants to Boost Information Warfare

“The White House nominee to be the Pentagon’s top uniformed official said the Department of Defense needs to improve its non-kinetic capabilities.” C4isrnet

The Privacy and Civil Liberties Oversight Board Signals It Will Investigate NSA Surveillance, Facial Recognition, and Terror Watchlists Electronic Frontier Foundation

“After a long dormant stretch, the Privacy and Civil Liberties Oversight Board (PCLOB) has signaled it’s ready to tackle another big review of government surveillance and overreach. The PCLOB, an independent agency in the executive branch, last published a 2014 report on warrantless surveillance of the Internet by the U.S. intelligence community. While EFF welcomes the PCLOB’s efforts to bring oversight and transparency to the most controversial surveillance programs, we’ve disagreed with some of the Board’s findings, particularly on surveillance under FISA Section 702. So while it’s a good sign that the board is turning its attention to other major issues, its mixed history means it may be a little too soon to get your hopes up.”

Mayors Pass Resolution Against Paying Ransomware Ransoms

“Baltimore Mayor Jack Young announced on Wednesday that the U.S. Conference of Mayors has passed a resolution calling on cities not to pay ransom to hackers who have taken over government computer systems through cyberattacks.” Statescoop

Mozilla Blocks UAE Bid to Become an Internet Security Guardian after Hacking Reports Reuters

“Firefox browser maker Mozilla is blocking the United Arab Emirates’ government from serving as one of its internet security gatekeepers, citing Reuters reports on a UAE cyber espionage program.”

Small Business Cybersecurity Assistance Act Offers Training, Tools, and Resources SmallBizGenius

“If the Small Business Cybersecurity Assistance Act makes it through the Congress, U.S. small businesses will gain access to top-notch cybersecurity training, consulting, tools, and resources developed by the Department of Homeland Security (DHS).”

NASCIO Endorses State and Local Government Cybersecurity Act

“The National Association of State Chief Information Officers (NASCIO) announced today that it endorsed S. 1846, the State and Local Government Cybersecurity Act of 2019.” Meritalk

New ISA Global Cybersecurity Alliance Accelerates Education, Readiness, and Knowledge Sharing ISA

“The International Society of Automation (ISA), developer of ANSI/ISA 62443 series of automation and control systems cybersecurity standards (adopted by the International Electrotechnical Commission and endorsed by the United Nations), has created an open, collaborative forum to advance cybersecurity awareness, readiness, and knowledge sharing.”


Defence Gives Penten AU$2.2m to Up Australian Army’s Cyber Capability ZDNET

“Under the deal, Penten will develop technology that seeks to enhance the Australian Army’s capacity to send communications over unsecured networks. A statement from Minister for Defence Industry Melissa Price said funding has also been provided to help the Canberra-based startup develop a cyber-management capability and enhance security countermeasures.”


RIA Urges Residents to Pay Greater Attention to Data Protection

“In a press release published after reports that data security flaws have allowed outsiders to get access to the data of customers of some Estonian retailers and service providers, the Information System Authority (RIA) urged all individuals and businesses to take a serious approach to data protection.” Baltic Times


Second Chinese Cybersecurity Centre Opens in Brussels

“China’s ZTE is opening a cybersecurity centre in Brussels, four months after a similar move by Huawei. ZTE said in a press release that its “lab” will be installed “in the political and administrative heart of the European Union.” Brussels Times


Massive Fines in Travel and Hospitality Illustrate Investments in Cyber Security Are Risk Management Strategies TechZone360

“The EU imposed record fines this week on British Airways and Marriott, in fact the largest fines under the General Data Protection Regulation (GDPR) which is just over one year old.”


France Passes Tax on Tech Giants Despite US Threats BBC

“France has approved a digital services tax despite threats of retaliation by the US, which argues that it unfairly targets American tech giants. The 3% tax will be levied on sales generated in France by multinational firms like Google and Facebook.”


German Banks Are Moving Away from SMS One-Time Passcodes

“Multiple German banks have announced plans to drop support for SMS-based one-time passcodes (OTP) as a login authentication and transaction verification method.” ZDNet


Businesses in India Tapping AI to Improve Cybersecurity

“Businesses in India are increasingly tapping the potential of artificial intelligence to defend themselves against cyberattacks, according to a new study by French consulting firm Capgemini Research Institute.” Fortune India


Israeli Firm Presents Its Anti-Terror Tech to High-Profile US Delegation

“A bipartisan delegation of US House members headed by Florida Representative Ted Deutch visited an Israeli cybersecurity company Cobwebs Technologies during their visit to Israel last week.” Jerusalem Post


Coding Classes for Primary School Pupils to Be Rolled Out Next Year Channel News Asia

“The Government is taking steps to make sure that Singaporeans, both young and old, will have the fundamental skills and attributes to thrive in the digital age.”


UK Businesses Face One Cyber-Attack Every 50 Seconds

“Businesses in the UK faced an average of 146,491 attempted cyber-attacks in the second quarter of 2019, according to an analysis from Beaming. This equates to one attack every 50 seconds, the highest level since Beaming started monitoring attacks in 2016.” SC Magazine


Former Heads of DHS and NSA Explain How the U.S. Can Keep Huawei at Bay

Michael Chertoff and Mike McConnell                  CNBC

  • “Former DHS secretary Michael Chertoff and former NSA head Mike McConnell write for CNBC that Wednesday’s FCC spectrum upgrades are a positive step in 5G support, and bring us another step closer to a more connected internet of things.
  • But the move also means the U.S. needs to expand it’s cyber industrial base as well as its cooperation with other countries beyond our four biggest allies, in order to avoid using products developed by companies including Huawei.”

Machine Politics: Europe and the AI Revolution

By: European Council on Foreign Relations

“Across Europe, governments are either writing or have already published national strategies on how best to support the development and application of AI. The European Union’s AI strategy, called the “Coordinated Plan on Artificial Intelligence”, asks its member states to put in place national AI strategies or programmes by mid-2019. So far, at least seven EU member states – Belgium, Denmark, France, Finland, Germany, Sweden, and the United Kingdom – and the Nordic-Baltic region have published such strategies. At least ten others – Austria, the Czech Republic, Estonia, Italy, Latvia, Poland, Portugal, Slovenia, Slovakia, and Spain – are in the process of writing them. (…) The paper concentrates on two main issues. Firstly, it examines the role of European cooperation. (…) Secondly, the paper examines the extent to which their strategies deal with the role of AI in defence and security.”

Posted in Weekly Brief | Leave a comment

Of Ooda Loops and Venn Diagrams – ICD Brief 141.

ICD Brief 141.



Greetings from Dulles. This may be a two week edition as I am headed to Paris and London and ports beyond on business and pleasure.

Each week’s brief is a mixture of “intent” and “execution”. This year those intentions are more specific and much more likely to move towards implementation. Witness, today’s edition emanating from Washington, Canberra, Tallinn, Brasilia, Ottawa, Beijing, Brussels, Berlin, Budapest, New Delhi, Jakarta, Tel Aviv, Tokyo, Singapore, and London.


US Military Warns Outlook Users to Update Immediately Over Hack Linked to Iran                  Forbes

“Less than two weeks ago, U.S. Cyber Command launched an offensive on Iran to disable computer systems used by the country’s Revolutionary Guard Corps to control rocket and missile launches. Now, the agency has issued an unprecedented public warning that is has discovered the “active malicious use” of a Microsoft Outlook vulnerability that appears to be linked to Iran.”

New York Legislature Passes Bill that Toughens Breach Notification Standards SCMagazine

“The New York State Legislature last month passed The Stop Hacks and Improve Electronic Data Security (SHIELD) Act, which is intended to strengthen the state’s data security laws by more explicitly defining when and how businesses must notify the public and attorney general of a data breach incident.”

US Wants to Isolate Power Grids with “Retro” Technology to Limit Cyber-Attacks             ZDNet

“The US is very close to improving power grid security by mandating the use of “retro” (analog, manual) technologies on US power grids as a defensive measure against foreign cyber-attacks that could bring down power distribution as a result.”

Here’s How Hackers Are Making Your Tesla, GM and Chrysler Less Vulnerable to Attack USA Today

“In March, a Tesla Model 3 was hacked.

It was all part of a three-day cybersecurity contest called Pwn2Own, an event where Tesla pays top dollar to anyone masterful enough to find previously unknown bugs. Correcting any weakness helps the electric car company protect the people who drive its vehicles, it hopes. “

The Week in Tech: What Should Your City Do if It’s Hit by Ransomware? By Jamie Condliffe         New York Times

“Imagine you’re a mayor trying to spend your city’s money wisely. You’ve heard about ransomware attacks, where hackers locking I.T. systems using encryption and demanding money for their release. But what should you do about them?”

Security Homesteads the Chip            Signal

“Bad things may come in small packages, so experts safeguard the microelectronics supply chain.”


Hoping for the Best, Planning for the Worst: The Cyber-Attack Plan Every Australian Business Needs to Have              CSO

“Has your organisation fallen victim to a hacking attack or serious data breach? They’ve become unremarkable occurrences in the digital era, in Australia and around the world. Preventing them while simultaneously planning for the worst, should your defences prove inadequate, should be on your list of standard business housekeeping chores, along with tasks such as reviewing insurance policies, keeping accounts up to date and paying superannuation contributions regularly.”

Australia Post Told to Improve Cybersecurity Practices            ITVNews

“Australia Post has been told to improve its cyber security practices after the national auditor found risk management gaps relating to two of its critical systems.”


Estonian Minister: Cybersecurity Cooperation of Estonia, US Has Reached a New Level                  Baltic Times

“Cooperation between Estonia and the United States in cybersecurity has been fruitful through the years and has now reached a new level, Foreign Minister Urmas Reinsalu said following consultations in Estonia between the Foreign Ministry of Estonia and the US Department of State.”


Concern in Brazil About Messaging App Security          BNAmericas

“Can a messaging app like Telegram be hacked? The question has gained relevance in Brazil, where leaked messages between a federal judge and Lava Jato prosecutors has raised ethical questions and created a political scandal.”


Canada’s Spy Agency Says Voters Are Being Targeted By Foreign Influence Campaigns 

BuzzFeed News

“Canada’s intelligence community has identified foreign actors attempting to directly influence the upcoming federal election campaign, a Toronto Star and BuzzFeed News investigation has learned.”

N.W.T. to be 1st province or territory to use online voting in general election CBC

“N.W.T. voters can use a new website called Electorhood to access an online voting system called Simply Voting to cast their ballots. Using the site, voters in the territory can vote online from Sept. 6 up until the end of voting day on Oct. 1.”


China’s New Data Protection Scheme          The Diplomat

“China had held off on publicly releasing several cybersecurity and privacy regulatory measures due to fears of complicating the U.S.-China trade talks. But after the talk stalled in early May, they went out at short intervals. On June 13, the Cyberspace Administration of China released a draft regulation on outbound transfers of personal information that fleshed out the personal information (PI) protection component of the Chinese cybersecurity law.”

Surveillance Apps Are Being Secretly Installed on Phones of Visitors to China, Report Says               CNBC

“Police in China are secretly installing spy apps on phones of visitors to the country that can extract emails, texts and address contacts, according to a cross-media investigation.”


Cybersecurity in Hospitals and Care Centres         OpenAccessGovernment

“Dr Peter Leitner and Stela Shiroka, at INTERSPREAD GmbH, detail cybersecurity in hospitals and care centres and their thoughts on the need for increased awareness and enhanced training capabilities in Europe.”

EC-Council Cybersecurity Masterclass Launched in 3 Major Cities in APAC with Tremendous Success EC Council Blog

“EC-Council simultaneously organized three Masterclass boot camps in three different, major cities of the Asia Pacific region: Hong Kong, Mumbai, and Bangalore. This event is the fifth boot camp in the past two months, running from June 24 to 27.”


Ursula von der Leyen’s Unfinished Cyberagency            Euroactiv

“Ursula von der Leyen, the European Council’s pick for the EU Commission boss, had been setting up her prestigious ‘Agency for Innovation in Cybersecurity’ in Germany. However, due to concerns raised by the German court of auditors, it will be her successor at the defence ministry who will have to pick up the pieces.”


Despite Security Concerns, Huawei Commits to Hungary Emerging Europe

“Chinese telecommunication giant Huawei will participate in Hungary’s ICT sector development, despite the many security concerns that the company has faced across the world.”


Not a Bloodless Option for India          The Hindu

“A cyberattack may not prove to be a feasible retaliatory measure for strategists in New Delhi.”


Indonesian ‘Cyber-Jihadist’ Arrested for Spreading Fake News and Hate Speech on Social Media         South China Morning Post

“Indonesian police have arrested a member of the Muslim Cyber Army – a self-proclaimed cyber-jihadist network – for spreading fake news and hate speech via social media, though analysts say it will do little to dampen such propaganda as there is no shortage of people to replace him.”


Look Out for Israeli Technology as the Country Is Turning into a Cybersecurity Hub          Enterprise Talk

“With investments in cybersecurity from the across the globe, as well as the government efforts, Israel is soon to become a global leader in security.”


Cybersecurity Threat Looms Large in Japan            Japan Times

“As host of last week’s Group of 20 summit and the upcoming 2020 Olympic and Paralympic Games, Japan has had many reasons to focus on the security of the nation’s cyberdefenses. For their part, the Japanese public worries that cyberattacks from other countries pose a major threat, and they have doubts about their government’s preparedness for dealing with an attack of this kind.”


Lloyd’s of London Calls for Cyber Cover Clarity in Insurance Policies  EuroNews

“(Reuters) – Lloyd’s of London [SOLYD.UL] wants all insurance and reinsurance policies to clearly state whether coverage will be provided for losses caused by a cyber attack, saying this was in the best interest of both brokers and customers.”


Can Singapore Become the Latest and Greatest Regional Cybersecurity Hub? Singapore Business Review

“Mass data breaches have been impacting our region, reiterating the fact that no business or nation is truly immune from cyber threats. This has been a driving force for the development of cybersecurity capabilities from within by regional governments, including Singapore’s, and businesses, by fostering the development of startups in the cybersecurity space.”


Eurofins Scientific: Forensic Services Firm Paid Ransom after Cyber-Attack  BBC News

“The UK’s biggest provider of forensic services has paid a ransom to criminals after its IT systems were disrupted in a cyber-attack, BBC News has learned.”

NHS Must Take Urgent Steps to Defend Against Hackers, Says White Paper

Imperial College London

“The NHS remains vulnerable to cyber-attack, and must take urgent steps to defend against threats which could risk the safety of patients.”

Posted in Weekly Brief | Leave a comment