Cybersecurity Starts in the Boardroom
The deadline for implementing a range of infosec directives, issued by India’s Ministry of Electronics and Information Technology (MeitY) and the Indian Computer Emergency Response Team (CERT-In) has been extended by 90-days. India extends deadline for compliance with IT Directions • The Register InfoSec in Indian now always seems to …
Continue reading “Indian government VPN logging deadline extended”
In many of my posts about privacy and governments and organisations that want to reduce encryption, do away with VPN privacy or just make things easy for law enforcement at the expense of the law abiding citizen’s privacy, I refer to law enforcement using due process. UK judges agree with …
Continue reading “Privacy assured by UK judge as ruling states law enforcement must use due process”
I think it is a good thing that the Indian government is giving it’s full support to tightening up cyber security in the country. However it seems that their responses, which seem good on paper are not so when translated into the real world: Indian authorities issue conflicting advice about …
The Pegasus commercial spyware gets a lot of press, but there are other companies out there selling malware and spyware to law enforcement agencies and governments. Cytrox is one and their product is called Predator. Predator spyware uses in Chrome, Android zero-day exploits • The Register Here is a report …
Following the Indian government directives about reporting of cyber-security incidents and the requirement to keep VPN user logs, both of which had ridiculously short deadlines for compliance – here is another: Indian stock markets given ten day deadline to file reports • The Register India in the news – when …
Continue reading “InfoSec in Indian now always seems to be in hurry”
