Civil liberty organisations slam Apple child safety tech
Fears that client-side scanning could be abused for surveillance.
Month: August 2021
Online account takeover bill faces 33 changes to pass parliament
PJCIS wants greater oversight, new assurances on use.
OAIC launches investigation into Optus over White Pages data leak
After details of 50,000 customers published online.
Kmart Australia shows off autonomous mobile robot sorter technology
And some data analytics work around it.
Experts call for rethink of COVIDSafe app
Offer frank assessment in wake of govt report.
Two US senators want to target ransomware by sanctioning nations that allow it
As part of Sanction and Stop Ransomware Act.
Apple to scan iCloud photo uploads for child abuse images
System to perform on-device matching.
Nine security flaws found in critical hospital infrastructure
White House backs away from banning ransomware payments
Emphasises disrupting the gangs instead
The US government has decided against banning payments to ransomware gangs.
The decision came after discussions with representatives of private sector organisations and cyber security experts on Wednesday.
Following the attacks on fuel transport firm Colonial Pipeline and meatpacker JBL, which saw multimillion dollar ransoms paid to cyber gangs in return for decryption keys, some US lawmakers had called for such payments to be banned.
Energy secretary Jennifer Granholm said in May: "We need to send this strong message that paying of ransomware only exacerbates and accelerates this problem. You are encouraging the bad actors when that happens."
However, most voices, including that of the FBI, cautioned against this approach.
"If we ban ransom payments now, you're putting US companies in a position to face yet another extortion, which is being blackmailed for paying the ransom and not sharing that with authorities," Bryan Vorndran, assistant director of the FBI's cyber division, told Congress in June.
Other cyber security experts noted that the most expensive part of an attack is repairing the damage rather than the ransom itself, and that without the option to resolve the matter quickly, some organisations could go under.
"Initially, I thought that was a good approach," said deputy national security advisor for cyber and emerging technology Anne Neuberger on Wednesday, as reported by Cyberscoop. "We know that ransom payments are driving this ecosystem."
She continued: "We heard loud and clear from many that the state of resilience is inadequate, and as such, if we banned ransom payments we would essentially drive even more of that activity underground and lose insight into it that will enable us to disrupt it."
As part of these efforts to disrupt ransomware gangs, the US government set up the Ransomware Task Force, an alliance of big tech firm and government agencies, which seeks to tackle ransomware groups by going after their financial operations and limiting their ability to get paid.
The US authorities how that by making life difficult for attackers, they will avoid hitting high-profile US targets, although that approach might leave smaller ones more vulnerable.
President Biden has also been in discussions with Russian president Putin about reining in ransomware gangs, many of which are thought to operate on Russian soil.
Some states, including New York, North Carolina and Pennsylvania, are separately considering their own legislation to ban state and local government agencies from paying a ransom to cyber criminals.
UK considers blocking Nvidia’s takeover deal for Arm over national security
The government is likely to take the final decision following a deeper review of the deal
The UK government is considering blocking acquisition of British chip designer Arm by American graphics hardware giant Nvidia over potential national security risks, Bloomberg reported on Tuesday citing people with knowledge of the matter.
According to the report, the preliminary investigation of the deal conducted by the UK's Competition and Markets Authority (CMA) has found worrying implications for the UK's national security.
The CMA submitted the completed Phase 1 investigation report to the government on 20 July, and now the government is inclined to block the deal, a source told Bloomberg.
Another person said that the government could order a deeper review of the deal, and the final decision will be taken after the review.
The government could also approve the deal, but with certain conditions, the sources added.
In a statement to Bloomberg, Nvidia said that it would "continue to work through the regulatory process with the UK government".
"We look forward to their questions and expect to resolve any issues they may have."
British chip designer Arm is currently owned by Japan's SoftBank, and its chip designs are widely used by various smartphone makers - including Apple and Samsung - as well as in laptops, data centres, and IoT devices.
In September 2020, Nvidia announced that it had entered into a definite agreement with SoftBank Group to acquire the British chip and IP design firm Arm in a $40 billion transaction.
The American firm said that Arm would operate as a separate division after completion of the deal and that it would provide more support for its R&D efforts as well as access to Nvidia's entire suite of products.
Because Nvidia is a licensee of Arm chips, the deal triggered concerns among other licensees, who were worried about its potential impact on Arm's position as a neutral supplier.
Tech firms like Google, Microsoft, Amazon and Graphcore are thought to have written to the CMA asking for the deal to be blocked.
Some of Nvidia's competitors are ready to invest in Arm, if Nvidia isn't allowed to acquire it. Broadcom, Marvell and MediaTek have said that they support the takeover deal.
Earlier this year, the CMA said that it was inviting views from other companies and organisations on the impact of the deal on competition in the UK.
In April, the UK digital secretary Oliver Dowden issued an intervention notice instructing the CMA to review any potential security implications, as well as jurisdictional and competition issues posed by the deal.
"At the end of a phase-two investigation, the digital secretary has the power to take action to remedy, mitigate or prevent any effects adverse to the public interest," the government said in its press release.
The UK government is also currently reviewing the takeover deal for Newport Wafer Fab Ltd., after the company agreed to be sold to Chinese-owned Nexperia for around £63 million ($87 million).
After Nexperia announced the deal in early July, Tom Tugendhat, Conservative MP for Tonbridge and Malling and chair of the Foreign Affairs Select Committee, said he was "surprised" to see that the government had not ordered a review of the NWF acquisition under the National Security and Investment Act (NSIA).
Kwasi Kwarteng, the Business Secretary, said the deal was carefully considered from a national security perspective and that it was not believed to raise any issues. However, Prime Minister Boris Johnson later said that he had referred the matter to Sir Stephen Lovegrove, the national security adviser.
"We are looking into it," the prime minister told Westminster's Liaison Committee, adding that the government needs to judge whether the items being manufactured at NWF are "of real intellectual property value and interest to China" and whether there are any security implications for the UK.