U.S. Cybersecurity Agency Enlists Amazon, Google, Microsoft

The U.S. Cybersecurity and Infrastructure Security Agency (CISA), part of the Department of Homeland Security, debuted the Joint Cyber Defense Collaborative (JCDC), which will leverage the expertise of Big Tech companies including Amazon, Google and Microsoft. According to CISA director Jen Easterly, the initiative’s aim is first to combat ransomware and cyberattacks on cloud-computing providers and ultimately to improve defense planning and information sharing between the government and private sectors. Continue reading U.S. Cybersecurity Agency Enlists Amazon, Google, Microsoft

China Mobile Limits Purchasing From Non-Chinese Suppliers

Government-owned wireless company China Mobile has cut its use of non-Chinese suppliers to 5.4 percent from 11 percent in its last 2020 buying round. Hardest hit was Sweden’s Ericsson, whose 5G gear sales were cut to a mere 1.9 percent, compared to 11 percent in the 2020 round. China stated the move was “retaliation” for Sweden’s decision to ban Huawei Technologies and ZTE Corp. gear from its 5G networks. The U.S. also banned Huawei, the world’s biggest mobile gear maker, from its networks as have other regions in the world. Continue reading China Mobile Limits Purchasing From Non-Chinese Suppliers

The FTC Votes Unanimously to Support Right to Repair Laws

The Federal Trade Commission (FTC), under the new leadership of chairperson Lina Khan, voted unanimously to enforce Right to Repair legislation. The vote will ensure that U.S. consumers will be able to repair their own electronic and automotive devices. The FTC published a report in May excoriating manufacturers for not adhering to the Right to Repair rules, one of them the Magnuson-Moss Warranty Act. The Right to Repair movement has been led by the U.S. Public Interest Research Group and iFixit, among others. Continue reading The FTC Votes Unanimously to Support Right to Repair Laws

Google Develops New Security Solutions to Strengthen Cloud

Google is introducing new security solutions for Google Cloud, in addition to expanding availability of its Risk Protection Program. Google Cloud vice president and general manager Sunil Potti explained that the updates are part of a larger vision of “invisible security” within the cloud where silos will “eventually” disappear after all security tech is engineered into it. He added that, “rather than essentially build products that fix problems with other products … you have to hit the reset button and embrace something fundamental.” Continue reading Google Develops New Security Solutions to Strengthen Cloud

House Calls for Regulating Use of Facial Recognition Software

The House Judiciary Subcommittee on Crime, Terrorism and Homeland Security has determined that the use of facial recognition software by law enforcement should be regulated. Subcommittee chair Sheila Jackson Lee (D-Texas) and top Republican Andy Biggs (R-Arizona) agreed that there should be “some kind of meaningful regulation and oversight of facial recognition.” Last month, the Government Accountability Office (GAO) reported that federal law enforcement agencies should do more to prevent facial recognition bias and misuse. Continue reading House Calls for Regulating Use of Facial Recognition Software

Google Chief Warns That Free, Open Internet Is Under Attack

In an in-depth interview with the BBC, Alphabet and Google chief executive Sundar Pichai suggested that an open Internet is under attack in different parts of the world where the free flow of information is often restricted and the Internet model is generally taken for granted. He also expressed concern about key areas that have become increasingly controversial, such as privacy, data and taxes — and defends his company’s record on these fronts. Meanwhile, he also believes that the development of artificial intelligence will change the world and may prove “more profound” than the creation of fire, electricity or even the Internet. Continue reading Google Chief Warns That Free, Open Internet Is Under Attack

China Cyberspace Agency Tightens Rules on Foreign Listings

The Cyberspace Administration of China, an agency set up by President Xi Jinping that reports to a leadership group he chairs, increased interagency oversight of companies traded in the United States and elsewhere overseas. The agency also will harden rules related to domestic companies listed on foreign stock exchanges and better coordinate various regulators. That lack of coordination was apparent in DiDi Global’s IPO last month, which was supported by financial regulators but tagged by the country’s cybersecurity regulator. Continue reading China Cyberspace Agency Tightens Rules on Foreign Listings

ByteDance Pauses its IPO After Meeting with Chinese Officials

Beijing-based ByteDance, parent company of social video app TikTok, which was valued at $180 billion in December, indefinitely put plans on hold for a public offering. The company had been considering an IPO in the United States or Hong Kong but its founder and CEO Zhang Yiming changed his mind after meeting with China’s cyberspace and security regulators who reportedly told him to focus on data-security risks and other issues. Another reason for holding off is that the company did not have a chief financial officer at the time. Continue reading ByteDance Pauses its IPO After Meeting with Chinese Officials

New York Is First City to Open a Cyberattack Defense Center

New York City just opened its Cyber Critical Services and Infrastructure (CCSI) Project, a real-time operational center to protect the metropolitan area against cyberattacks. Located in lower Manhattan, the center shares intelligence with 282 partners, including the New York Police Department (NYPD), Amazon, International Business Machines (IBM), the Federal Reserve Bank and several New York healthcare systems. The anti-cybercriminal effort started two years ago but has been entirely virtual until now. Continue reading New York Is First City to Open a Cyberattack Defense Center

U.S. Offers Incentives for Countries to Avoid China’s 5G Gear

The U.S. Commerce Department’s Commercial Law Development Program (CLDP) is leading a program to encourage nations to avoid gear from Chinese companies Huawei and ZTE in building their own 5G networks. The workshops on how to do so, combined with a handbook and some financial incentives, are aimed at legislators in Central and Eastern Europe as well as developing countries around the world. The handbook will include case studies of how the United Kingdom, for example, deployed 5G without Chinese equipment. Continue reading U.S. Offers Incentives for Countries to Avoid China’s 5G Gear

Biden Introduces Broader Review of Foreign-Controlled Apps

President Biden revoked former President Trump’s executive order banning social-networking services TikTok and WeChat — developed by Chinese companies ByteDance and Tencent Holdings, respectively — but didn’t let Chinese companies off the hook. Instead, he replaced the previous order with another that establishes a broader review of the potential security risks found in numerous foreign-controlled apps. Biden officials said the new order would create “clear intelligible criteria” to evaluate those risks. Trump’s executive order was immediately challenged in court, and Biden’s move, said analysts, is intended to withstand such a test. Continue reading Biden Introduces Broader Review of Foreign-Controlled Apps

MoviePass Settles with FTC Over Fraud, Data Security Issues

MoviePass, which shut its doors in January 2019, just settled with the Federal Trade Commission over allegations that it prevented customers from using the service as advertised and did not protect their data privacy. The company offered users one movie ticket per day for any movie at any theater for $9.95 a month but soon had to raise subscription fees and limit movie tickets. The FTC accused the company of deceptively marketing its services, invalidating customer passwords to prevent users from obtaining tickets, and failing to secure user data. Continue reading MoviePass Settles with FTC Over Fraud, Data Security Issues

Facebook Will No Longer Offer Politicians Special Treatment

Facebook revealed that former President Donald Trump’s suspension from its platform would last for at least two years. Trump will be eligible for reinstatement on the social network in January 2023, before the next U.S. presidential election. At that time, experts will decide “whether the risk to public safety has receded.” Further violations would trigger “rapidly escalating sanctions” and potentially a permanent suspension. The company also announced that it would end its policy of treating the posts of world leaders and other politicians differently than those of other Facebook users. Continue reading Facebook Will No Longer Offer Politicians Special Treatment

FBI Director Raises Alarm Over Ransomware Threats to U.S.

The FBI is investigating 100 ransomware variants, stated director Christopher Wray, who revealed that many of them trace back to Russian hackers. He noted that the cyberattacks share “a lot of parallels … a lot of importance, and a lot of focus by us on disruption and prevention” with the September 11 terrorist attacks. Most recently, a ransomware attack on Colonial Pipeline cost its operators $4.4 million to regain control and restore services (however, federal authorities recovered $2.3 million in cryptocurrency yesterday). Another attack targeted JBS, the world’s largest meat processing company.  Continue reading FBI Director Raises Alarm Over Ransomware Threats to U.S.

European Union Plans Framework for Secure Digital Identities

The European Commission, the executive branch of the European Union, announced a proposal yesterday to create a European Digital Identity system that would “be available to all EU citizens, residents and businesses in the EU.” The goal is to enable citizens who are interested “to prove their identity and share electronic documents from their European Digital Identity wallets with the click of a button on their phone.” In addition, these citizens would “be able to access online services with their national digital identification,” that would be recognized throughout European Union’s Member States. Continue reading European Union Plans Framework for Secure Digital Identities