Biden Administration Orders Agencies to Repair Cyber Flaws

The Biden administration ordered federal agencies to patch roughly 300 cybersecurity vulnerabilities believed to expose government computer systems to potentially damaging intrusions. About 200 of the threats were discovered by cybersecurity experts between 2017 and 2020, while another 90 flaws were found in 2021. All are known to be used by malicious cyber actors, said Cybersecurity and Infrastructure Security Agency director Jen Easterly in a statement accompanying the directive. The agencies have been given two weeks to patch the 2021 threats and six months to fix the older defects. Continue reading Biden Administration Orders Agencies to Repair Cyber Flaws

Multi-Cloud Strategy Over a Single Provider Gains Momentum

Amazon and Microsoft dominate cloud computing but more businesses are leveraging smaller cloud rivals such as Google, Oracle and IBM. Experian, for example, launched with Amazon Web Services (AWS) in 2014, but is now using Microsoft, Google and Oracle, according to Experian global chief enterprise architect Mervyn Lally. At Oracle Cloud Infrastructure, executive vice president Clay Magouyrk said that more customers “adopt a multi-cloud strategy simply because some workloads run better or more cost-effectively on different clouds.” Continue reading Multi-Cloud Strategy Over a Single Provider Gains Momentum

Pentagon Cancels JEDI Contract, Reveals New Cloud Initiative

The Defense Department stated that the contract for the Joint Enterprise Defense Infrastructure (JEDI) project “no longer meets its needs,” canceling a highly contentious $10 billion cloud computing contract awarded to Microsoft. In January, the department warned Congress that it would do so if a federal court agreed to hear whether former President Trump used his influence to award the contract to Microsoft over its rival Amazon. Such a suit, it pointed out, would result in a lengthy court cost and unacceptable delays. Instead, the Pentagon announced a new cloud program. Continue reading Pentagon Cancels JEDI Contract, Reveals New Cloud Initiative

Cybersecurity: White House Pursues Public-Private Alliances

Russia and China recently ran sophisticated hacks from servers inside the United States, going undetected by the National Security Agency, which is prohibited from conducting surveillance in the U.S., as well as the FBI and Department of Homeland Security. Private computer security firms were the first to raise the alarm on these foreign attacks, and Microsoft reported that its patches are being reverse-engineered by criminal groups to launch ransomware attacks on corporations. The White House is paying attention. Continue reading Cybersecurity: White House Pursues Public-Private Alliances

Oracle-TikTok Deal Is Under Review by Federal Government

In an effort to avoid a ban in the U.S., popular social video platform TikTok aims to partner with cloud services company Oracle. TikTok parent ByteDance proposed a deal in which Oracle would serve as tech provider in the U.S., although details have not been revealed regarding any potential changes to TikTok’s ownership structure. ByteDance submitted the proposal to the U.S. Treasury Department and Secretary Steve Mnuchin announced plans to review it this week with a particular emphasis on security issues. If approved, the deal could make Oracle a major advertising player that is more relevant to younger audiences. Continue reading Oracle-TikTok Deal Is Under Review by Federal Government

TikTok and U.S. Reportedly in Talks on Possible Partnership

According to sources, ByteDance and the U.S. government are discussing avoiding a full sale of TikTok’s U.S. operations. Although President Trump issued an executive order for ByteDance to do so by a November 12 deadline, the Chinese government restricted the export of AI technology, making the sale more difficult. One possibility is that TikTok will partner with a U.S. company that would help secure its data. Sensor Tower reported that, again, TikTok was the most downloaded non-gaming app globally in August 2020. Continue reading TikTok and U.S. Reportedly in Talks on Possible Partnership

Government Surveillance Bill Is Sidelined by Privacy Question

The House of Representatives, after closed-door negotiations, came to an agreement to bring an amendment to vote that would protect Americans from FBI and CIA surveillance of their web browsing history without a warrant. The amendment, introduced by Zoe Lofgren (D-California) and Warren Davidson (R-Ohio), would be a “significant reform to Section 215 [of the USA Patriot Act] that protects Americans’ civil liberties,” said Lofgren. However, after full details of the proposal were released, debate over who would specifically be protected led to the amendment’s downfall. Continue reading Government Surveillance Bill Is Sidelined by Privacy Question

Defense Dept. Taps Microsoft For Cloud Computing Project

Microsoft won a $10 billion, 10-year technology contract with the Department of Defense for its Joint Enterprise Defense Infrastructure (JEDI) project. Although Amazon was the front-runner, President Trump had upped his criticism of Amazon founder Jeff Bezos and stated he might intervene to prevent Bezos’ company from getting the JEDI contract. Google, IBM and Oracle also competed for the contract. A group of Microsoft employees has protested the company’s involvement in the military project. Continue reading Defense Dept. Taps Microsoft For Cloud Computing Project

Federal Government Takes Additional Steps to Block Huawei

The U.S. government is reportedly pushing for foreign allies to stop using hardware from China-based Huawei Technologies Co. According to people familiar with the initiative, the government is aiming to convince wireless and Internet service providers to avoid telecom equipment that comes from Huawei in an effort to increase security. Washington officials are particularly concerned about countries that host military bases. The U.S. and Australia already have bans in place to curb the risk of cyberattacks. Huawei is the world’s largest telecommunications provider. Continue reading Federal Government Takes Additional Steps to Block Huawei

China Reportedly Used Tiny Chips to Hack U.S. Companies

According to a Bloomberg Businessweek cover story today, Chinese spies infiltrated nearly 30 U.S. companies including Amazon and Apple by embedding tiny chips into servers in the technology supply chain. In 2015, malicious microchips were reportedly embedded in servers bound for U.S. companies, which resulted in compromised software used in numerous hardware devices. While the report cites former government officials and “senior insiders” at Apple, both Amazon and Apple — as well as motherboard manufacturer Supermicro and China’s Ministry of Foreign Affairs — have firmly disputed the findings. Continue reading China Reportedly Used Tiny Chips to Hack U.S. Companies

Advice on Keeping Smaller Businesses Safe From Cybercrime

The threat of ransomware and malware are growing. The “WannaCry” attack impacted at least 200,000 computers in 150 countries before peaking last week. Adylkuzz is another piece of malware currently threatening computers around the world. As computers become increasingly connected, so opportunities for cybercrime expand, say the experts. Part of the problem is that the Internet wasn’t designed with cybersecurity protections, and criminals are attracted to cybercrimes for the relatively easy profits they can make. Continue reading Advice on Keeping Smaller Businesses Safe From Cybercrime

WikiLeaks Claims of CIA Hacking Could Impact Tech Industry

WikiLeaks released thousands of documents yesterday that it claims detail methods used by the CIA “to break into smartphones, computers and even Internet-connected televisions,” reports The New York Times. According to WikiLeaks, the CIA and allied intelligence services bypassed encryption on messaging services including Signal, Telegram and WhatsApp. WikiLeaks also suggests that agencies can collect audio and messaging data from Android phones “before encryption is applied.” The Wall Street Journal notes that such activities, if actually taking place with consumer electronics, could fuel tensions between intelligence agencies and the tech industry, which has been concerned about customer privacy. Mobile devices are a major concern; NYT published an article detailing potential smartphone vulnerabilities. Continue reading WikiLeaks Claims of CIA Hacking Could Impact Tech Industry

Signal Emerges as a Must-Have Hacker-Proof Messaging App

The free encrypted messaging app Signal is gaining users, not just because privacy advocates and security researchers have all given it a seal of approval. The app, available for smartphone and computer, is a bulwark against hacking, which got a national spotlight when WikiLeaks posted emails from Hillary Clinton campaign chair John Podesta. Others fear increased government surveillance under the incoming President Donald Trump, a reaction to Trump’s choice of CIA chief, Mike Pompeo, who advocates just that. Continue reading Signal Emerges as a Must-Have Hacker-Proof Messaging App

Leaked Documents Offer Details of U.S. Military’s Drone Wars

Two years after government contractor Edward Snowden famously leaked secret NSA documents, another release of classified information has occurred. This time, The Intercept — which is staffed by journalists who previously worked with Snowden — has published what it claims is a comprehensive breakdown of the U.S. government’s military drone program. The report, featuring documents provided by another whistleblower, offers details regarding U.S. strategy to kill foreign targets in Afghanistan, Somalia and Yemen — and highlights the unintended consequences involved with drone wars. Continue reading Leaked Documents Offer Details of U.S. Military’s Drone Wars

White House Creates Cybersecurity Agency to Combat Threats

The Obama administration announced Tuesday that it will establish a new agency tasked with protecting the U.S. from cyberattacks. The Cyber Threat Intelligence Integration Center will gather intelligence from both the Central Intelligence Agency and the National Security Agency to help prevent hackers from stealing information. This announcement comes on the heels of a major security breach last week, when hackers broke into the system of health insurance company Anthem. Continue reading White House Creates Cybersecurity Agency to Combat Threats