SecureRedact

View Original

The changing cyber security landscape

No. 17: Bringing you the news that matters in video privacy and security

A note from our Editor

Hi all,

This week's articles focus on the latest cyber security guidelines for smart cities, the changing cyber landscape thanks to Ransomware-as-a-service operations, and the potential modification of HIPAA; the US' Health Data Privacy Act.

Once again, the US has suffered yet another cyber attack - this time, after nearly half of the East Coast's fuel was halted as a result of a ransomware attack by DarkSide. The ransomware gang have gone one step further, by announcing publicly their plans to vet future targets and why.

Meanwhile, what seems like an accidental data breach of Amazon's database has revealed the nature of a huge fake review scam; where vendors exchange free products for 5 star reviews. As a result, nearly 200,000 people can be potentially implicated for unethical practices.

WhatsApp is once more in the headlines, as users are told they can have basic privileges revoked - such as messaging and calls to new contacts - if they do not agree to the new privacy policy that was released earlier this year in February.

As always, please let me know if you have any feedback on any of the articles or want to see any other topics covered.

Emma


News

DarkSide ransomware attacks the US' largest fuel pipeline

The US pipeline that delivers nearly half of the East Coast's fuel has been under attack thanks to gang DarkSide. With the pipeline to be hopefully restored by the end of the week, DarkSide have announced further plans regarding their next targets; highlighting their power as a ransomware-as-a-service operation.

WIRED: DarkSide create unholy mess after hitting Colonial Pipeline

Bleeping computer: DarkSide now vetting targets after pipeline cyberattack

Forbes: Colonial Pipeline attack is huge national security incident

The Independent: Ransomware gangs go on the attack against Law Enforcement


WhatsApp will stop you messaging if you don't agree to their privacy terms

WhatsApp will slowly begin taking away access to messages and calls, if users do not agree to their new privacy policy outlined in February. With talk this could only apply to business accounts, users will only be able to contact someone if they have reached out first, and they have clicked on the notification.

Business Insider: WhatsApp’s privacy policy means they will stop you messaging

Tech Radar: WhatsApp backtracks on threat to ban those who don’t accept privacy policy


Overhaul of HIPAA? 

There's been continued concern to completely modify HIPAA regulations so as to encourage patient care coordination and access; however, healthcare providers are worried about the privacy and security factors that would be compromised if health data becomes more widely available.

Healthcare Dive: Providers push to overhaul HIPAA regulations


NCSC publishes guidelines for smart cities

The National Cyber Security Centre (NCSC) has published cyber guidelines on how smart cities can secure their infrastructure, in a bid to build awareness of what exactly keeps people and connected places safe and secure.

Computer Weekly: NCSC latest smart city guidelines

Reuters: Britain’s NCSC warns smart cities of hackers


Data breach exposes Amazon fake review scam

Cyber security researchers have found an unsecured database detailing an Amazon scam that exposes over 200,000 people for unethical activities. Amazon vendors send reviewers the names of products they want to have 5 stars for, who then review them in exchange for free products.

IT Pro: Data breach exposes widespread fake review scam on Amazon

InfoSecurity: Insecure database exposes unethical behaviour in Amazon scam


AI Snippet of the Week

Transport for NSW is tapping into machine learning

Transport for New South Wales has turned to machine learning to provide key analytics that will help curb the spread of COVID-19, and in turn, restore public confidence.

Computer Weekly: How Transport for NSW is using Machine Learning


Policy Updates

UK's ICO creating a new way to share data globally

Now that Britain has left the EU, the ICO is devising new plans to help the UK share data with the rest of the world for business intent. They will work with other data practitioners and with organisations to help replace the current EU standard contractual clauses (SCCs).

IT Pro: UK creating an alternative way to share data globally


To subscribe to our fortnightly newsletter, please click here

Thanks for reading, if you have any suggestions for topics or content that you want to see covered in future please drop a note to: info@secureredact.co.uk