The changing cyber security landscape
No. 17: Bringing you the news that matters in video privacy and security
A note from our Editor
Hi all,
This week's articles focus on the latest cyber security guidelines for smart cities, the changing cyber landscape thanks to Ransomware-as-a-service operations, and the potential modification of HIPAA; the US' Health Data Privacy Act.
Once again, the US has suffered yet another cyber attack - this time, after nearly half of the East Coast's fuel was halted as a result of a ransomware attack by DarkSide. The ransomware gang have gone one step further, by announcing publicly their plans to vet future targets and why.
Meanwhile, what seems like an accidental data breach of Amazon's database has revealed the nature of a huge fake review scam; where vendors exchange free products for 5 star reviews. As a result, nearly 200,000 people can be potentially implicated for unethical practices.
WhatsApp is once more in the headlines, as users are told they can have basic privileges revoked - such as messaging and calls to new contacts - if they do not agree to the new privacy policy that was released earlier this year in February.
As always, please let me know if you have any feedback on any of the articles or want to see any other topics covered.
Emma
News
DarkSide ransomware attacks the US' largest fuel pipeline
The US pipeline that delivers nearly half of the East Coast's fuel has been under attack thanks to gang DarkSide. With the pipeline to be hopefully restored by the end of the week, DarkSide have announced further plans regarding their next targets; highlighting their power as a ransomware-as-a-service operation.
WIRED: DarkSide create unholy mess after hitting Colonial Pipeline
Bleeping computer: DarkSide now vetting targets after pipeline cyberattack
Forbes: Colonial Pipeline attack is huge national security incident
The Independent: Ransomware gangs go on the attack against Law Enforcement
WhatsApp will stop you messaging if you don't agree to their privacy terms
WhatsApp will slowly begin taking away access to messages and calls, if users do not agree to their new privacy policy outlined in February. With talk this could only apply to business accounts, users will only be able to contact someone if they have reached out first, and they have clicked on the notification.
Business Insider: WhatsApp’s privacy policy means they will stop you messaging
Tech Radar: WhatsApp backtracks on threat to ban those who don’t accept privacy policy
Overhaul of HIPAA?
There's been continued concern to completely modify HIPAA regulations so as to encourage patient care coordination and access; however, healthcare providers are worried about the privacy and security factors that would be compromised if health data becomes more widely available.
Healthcare Dive: Providers push to overhaul HIPAA regulations
NCSC publishes guidelines for smart cities
The National Cyber Security Centre (NCSC) has published cyber guidelines on how smart cities can secure their infrastructure, in a bid to build awareness of what exactly keeps people and connected places safe and secure.
Data breach exposes Amazon fake review scam
Cyber security researchers have found an unsecured database detailing an Amazon scam that exposes over 200,000 people for unethical activities. Amazon vendors send reviewers the names of products they want to have 5 stars for, who then review them in exchange for free products.
IT Pro: Data breach exposes widespread fake review scam on Amazon
InfoSecurity: Insecure database exposes unethical behaviour in Amazon scam
AI Snippet of the Week
Transport for NSW is tapping into machine learning
Transport for New South Wales has turned to machine learning to provide key analytics that will help curb the spread of COVID-19, and in turn, restore public confidence.
Computer Weekly: How Transport for NSW is using Machine Learning
Policy Updates
UK's ICO creating a new way to share data globally
Now that Britain has left the EU, the ICO is devising new plans to help the UK share data with the rest of the world for business intent. They will work with other data practitioners and with organisations to help replace the current EU standard contractual clauses (SCCs).
IT Pro: UK creating an alternative way to share data globally
To subscribe to our fortnightly newsletter, please click here
Thanks for reading, if you have any suggestions for topics or content that you want to see covered in future please drop a note to: info@secureredact.co.uk