As a valued subscriber, we'd like to better understand your needs and challenges. Complete our 15 minute survey for a chance to win a $100 gift card and to allow us to learn how we can better serve you.
The variegated pattern of US cyber law. India's ambivalence about the Chinese threat in cyberspace.
At a glance.
- US cyber laws, at the Federal and state level.
- India's ambivalence about Chinese kit.
Draft US state cyber laws: chaos, or subsidiarity and competition?
Faced with roughly 60 million cyberattacks on Government networks every day, the US state of Oklahoma is considering a bill that would criminalize ransomware and other malicious cyber activity, according to The Oklahoman. The goal is to increase prosecution of hacks, but some are skeptical about the state’s ability to apprehend such slippery scofflaws.
Out East, the US state of Connecticut is weighing legislation that would incentivize organizations to enact best practices like those outlined in the National Institute of Standards and Technology Cybersecurity Framework, PR Newswire reports.
Some see the patchwork of cybersecurity legislation represented by this sample of recent bills as an obstacle to industry and a sign of inadequate universal protections. Others applaud the opportunity for the lowest structural level capable of dealing with a problem—and the people closest to the problem—to innovate custom solutions. The room for interstate competition afforded by a diversity of cyber laws could also be a driver of optimized regulations.
Unifying Federal laws could soon wind their way through Capitol Hill, however, according to the National Law Review. Several Democratic members of Congress have signaled their intention to introduce data protection proposals in the near future. The Information Transparency and Personal Data Control Act is already headed to committee.
India moves to approve Huawei as infrastructure hacks continue.
New Delhi’s Tribune says India’s Ministry of Road Transport and Highways is urging the National Informatics Centre, National Highways Authority, National Highways and Infrastructure Development Corporation, Indian Road Congress, Indian Academy of Highway Engineers, public works departments, auto makers, and other related organizations to batten the cyber hatches following a warning from the Indian Computer Emergency Response Team that the transportation sector might be under attack. The Ministry described the threat event as “intrusion activities…with possible malicious intentions,” according to Business Standard.
Mint links the incident to Recorded Future’s alert earlier this month that “at least one connection opened by Chinese state-sponsored hackers into the network system of an Indian port remains active.” Hindu Businessline goes further, tying the activity to Beijing’s ongoing (suspected) espionage campaign against strategic in-country targets.
Meanwhile, ETTelecom reports that New Delhi is on the verge of inviting Huawei and ZTE into its 5G networks, which are planned to launch within months. Some are expecting the suppliers to join a “trusted sources” list. Cautioning that the future is yet unknown, the Diplomat unpacks the effects of evolving Huawei commitments on Indo-US dealings. The two nations might pursue different solutions to similar concerns, the piece noted, but other areas of “convergence in the tech relationship” remain strong.
What We Learned in the DNI’s New Election Report (Defense One) The newly released assessment is more complex and comprehensive than its 2017 predecessor, reflecting just how much the issue of foreign interference has evolved.
China’s Huawei, ZTE may qualify for trusted gear vendors list: Report - ET Teleco (ETTelecom.com) Along with Chinese equipment makers, Nokia, Samsung, and Ericsson as well as semiconductor manufacturers such as Intel and Qualcomm will also face scr..
The Huawei Factor in US-India Relations (Diplomat) U.S. and Indian decisions about Huawei have implications not just for their separate relations with China, but the U.S.-India bilateral as well.
US government calls for better information sharing in wake of SolarWinds, Exchange attacks (CSO Online) The Biden administration seeks ways to better gather and share security intelligence from the private sector, but experts see barriers to success.
CYBERSEC 2021: Progress, diplomacy, and competing claims: notes from the conference. (The CyberWire) The fourth CYBERSEC Brussels Leaders Foresight Conference, “Together Against Adversarial Internet,” convened Western leaders on March 18, 2021, to survey questions of policy, economics, security, and innovation through the lens of their shared digital future.
CYBERSEC 2021: Regulatory obstacles to data flow. (The CyberWire) The Kosciuszko Institute's fourth CYBERSEC Brussels Leaders Foresight Conference, “Together Against Adversarial Internet,” convened Western leaders on March 18th, 2021, to survey questions of policy, economics, security, and innovation through the lens of their shared digital future. This article describes the discussions that took place surrounding data flows, and in particular ways of overcoming regulatory obstacles, post-Schrems II.
CYBERSEC 2021: Partnering across oceans and seas. (The CyberWire) The Kosciuszko Institute's fourth CYBERSEC Brussels Leaders Foresight Conference, “Together Against Adversarial Internet,” convened Western leaders on March 18th, 2021, to survey questions of policy, economics, security, and innovation through the lens of their shared digital future. The Three Seas Initiative remains an important capacity-building exercise.
New Cybersecurity Programs to Protect US Energy (Infosecurity Magazine) US to launch three new research programs to safeguard energy security
DOE Announces Cybersecurity Programs for Enhancing Safety and Resilience of U.S. Energy Sector (Energy.gov) CESER Adding Three New Research Programs to Develop New Safeguards Against Physical and Cyber Threats
Biden to nominate tech antitrust pioneer Lina Khan for FTC commissioner (The Verge) A leading voice in tech antitrust.
Analysis | The Cybersecurity 202: DHS official promises help for states struggling with digital attacks on critical services (Washington Post) CISA is readying the use of some new tools to combat the rise in ransomware.
Connecticut Legislature Considers Incentivizing Adoption of Cybersecurity Best Practices (PR Newswire) The Center for Internet Security, Inc. (CIS®) testified before the Commerce Committee of the State of Connecticut General Assembly last...