Cybersecurity Starts in the Boardroom
I quite like the UK government’s Online Safety Bill. It compels the Big Tech companies to take action over child sex abuse material (CSAM) and promises huge fines if they fail to do so. However, the requirement to monitor communication apps with end-to-end encryption (E2EE), for CSAM causes me a …
The deadline for implementing a range of infosec directives, issued by India’s Ministry of Electronics and Information Technology (MeitY) and the Indian Computer Emergency Response Team (CERT-In) has been extended by 90-days. India extends deadline for compliance with IT Directions • The Register InfoSec in Indian now always seems to …
Continue reading “Indian government VPN logging deadline extended”
In many of my posts about privacy and governments and organisations that want to reduce encryption, do away with VPN privacy or just make things easy for law enforcement at the expense of the law abiding citizen’s privacy, I refer to law enforcement using due process. UK judges agree with …
Continue reading “Privacy assured by UK judge as ruling states law enforcement must use due process”
I think it is a good thing that the Indian government is giving it’s full support to tightening up cyber security in the country. However it seems that their responses, which seem good on paper are not so when translated into the real world: Indian authorities issue conflicting advice about …
The Pegasus commercial spyware gets a lot of press, but there are other companies out there selling malware and spyware to law enforcement agencies and governments. Cytrox is one and their product is called Predator. Predator spyware uses in Chrome, Android zero-day exploits • The Register Here is a report …
