We’re very pleased to announce that the Retail & Hospitality ISAC Podcast has joined the CyberWire Podcast Network. Join host Luke Vander Linden for chats with members of the InfoSec community to discuss the latest challenges, opportunities, and best practices unique to cybersecurity in the retail and hospitality industry. Tune in and subscribe.
The European Commission announced yesterday that its Corporate Management Board will be suspending the use of TikTok on corporate devices or personal devices used by the Commission's mobile device service. As the announcement reads, “This measure aims to protect the Commission against cybersecurity threats and actions which may be exploited for cyber-attacks against the corporate environment of the Commission.” The decision follows a series of similar TikTok bans enacted by US government agencies and even universities amid concerns that the popular Chinese-owned video streaming app could be a threat to national security.
But as Wired notes, some experts wonder if the bans have been put in place for the right reasons. Some officials have noted that Americans find TikTok inherently untrustworthy because of its connections to China, while American tech companies and even government security agencies are hoovering up US user data at an alarming rate, often without explicit consent. The underlying assumption is that US data is safe in American hands. “But it may not always be factually true,” said Senate Intelligence Committee chair Mark Warner, a Virginia Democrat, “since we've seen some of these large [US] companies sell that data to third parties.” Florida Democratic senator Marco Rubio disagrees. “Privacy, and the privacy of our data, in and of itself, is an issue that should be confronted, but the fact that a foreign government could gain immediate access on-demand to a massive trove of American data rises to a completely different level,” Rubio says. “Just a completely different level. And not just a foreign government but our chief adversary and competitor in the world.”
Chris Vaughan, AVP - Technical Account Management, EMEA, at Tanium, sees the EU's restrictions as an expression of concern over the extent of Chinese influence on public affairs. “These national bans are part of a wider issue about how much Chinese influence is deemed acceptable when it comes to national infrastructure and everyday life, Vaughan says. "We have seen concerns increase in the West in recent months, with the use of Chinese surveillance technology being restricted and Chinese computer chips being rejected. There have been numerous reports of Chinese efforts to sway politicians by way of lobbying and donations, and the public via social media and the spread of disinformation.”
In some respects the concerns are following a shift in Chinese strategy, Vaughan thinks. “Historically, Russia has been the most prominent user of information operations as we saw from its activities related to the 2016 US election and the Brexit referendum. China has been more focused on stealing intellectual property which it can then use to its own advantage. However, there are indications that the CCP will start to focus more on information and influence operations to achieve its strategic goals. Any instances of this need to be met head on by western political leaders who should take a strong stance against it at the government level, rather than leaving the responsibility to individual institutions like colleges.”
Matt Marsden, VP, Technical Account Management, also at Tanium, thinks that both the EU and the US should consider a more comprehensive approach to influence operations:
“We’ve recently seen steps taken by the government in the US, at both the state and federal level, to ban TikTok from state-owned devices, so it’s no surprise to see the EU do so as well. This is a good start, but a more comprehensive approach needs to be taken to protect our citizens from social media campaigns designed to further foreign political objectives.
“Chinese intelligence tactics are focused on longer-term objectives and are fueled by the sustained collection of data. The immense collection of user data, to now include commerce and purchasing information, combined with biometrics and activity tracking, feeds detailed intelligence to be used in operations. This data can be leveraged to deliver targeted, timely, and often personalized psychological operations against individuals or groups of citizens. This has been observed during election cycles and politically charged events in recent years."
The White House is preparing a cybersecurity strategy document focused on requiring larger tech companies to take greater responsibility when it comes to the security of their products, and FedScoop reports that Camille Stewart Gloster, the deputy national cyber director for technology and ecosystem security, spoke about the document at a Thursday CyberScoop event. Gloster stated that broader security gains can be achieved by “shifting the burden back from the smaller players” and toward larger companies “that can build in security by design.” Unlike previous US policy that relied on a mostly voluntary approach, the new strategy includes a swath of mandatory security regulations for critical infrastructure companies. It also gives law enforcement and intelligence agencies the authority to take a more offensive approach to defending US systems by hacking into foreign networks to prevent attacks or respond after they've occurred. The Biden administration has been working on the new strategy for over a year, with recently retired National Cyber Director Chris Inglis as the main author of the document.
Elections: FG unveils committee on cyberattack prevention (Punch Newspapers) The President, Major General Muhammadu Buhari (retd.), has unveiled a committee to coordinate the activities of computer security centres in the Information and Communication Technology industry to intercept potential cyberattacks during the 2023 general election.
Commission strengthens cybersecurity and suspends the use of TikTok on its corporate devices (European Commission - European Commission) To increase its cybersecurity, the Commission's Corporate Management Board has decided to suspend the use of the TikTok application on its corporate devices and on personal devices enrolled in the Commission mobile device service.
The Push to Ban TikTok in the US Isn’t About Privacy (WIRED) Lawmakers are increasingly hellbent on punishing the popular social network while efforts to pass a broader privacy law have dwindled.
When States Buy Chinese, America Is Put at Risk (Newsweek) China is everywhere—operations targeting American politicians and theft of commercial information from American companies are just two deeply established (and frankly, successful) lines of effort. While American leaders are thankfully working to close these security gaps, they are still paying
White House cybersecurity strategy to force large companies to make systems secure by design (FedScoop) The highly anticipated strategy document aims to deliver security improvements to the broader digital ecosystem.
Large Telecoms Pitch Strike Force for Internet Traffic Security Over Global Gateway (Broadband Breakfast) Verizon, AT&T and Lumen warned about prescriptive rules that could diminish security.
The new era of counterintelligence must shift focus to the gray zone (The Hill) There’s a quiet, low-level competition for influence playing out in gray zones from Africa to Asia.
US Navy mulls adding info warfare specialists on more submarines (C4ISRNet) The service years ago made information warfare commanders fixtures of carrier strike groups.
Cybersecurity project from DoD hits targets, moves to next phase (Military Embedded Systems) The U.S. Department of Defense (DoD) Defense Information Systems Agency (DISA) reported that its "Thunderdome" cybersecurity and network architecture project hit its initial criteria for success and will be moving on to add elements and roll out to more locations.
Regulatory gaps drive systemic under-reporting and poor situational awareness (Control Global) Malicious IT and OT network cyberattacks continue to occur, particularly ransomware
DHS S&T Looking for Partners to Develop Innovative Solutions to Confront Accelerating Homeland Security Threats (HS Today) “There are lots of problems but the solutions are there, too – we just have to surface them," Chief Scientist Sam Howerton said at GTSC's S&T Day.
NSA Engages with Partners, Public During Top Scientific Conference in Hawaii (National Security Agency/Central Security Service) This year, NSA attended and sponsored the Hawaii International Conference on System Sciences (HICSS) at the Hyatt Regency Maui. Held over three days in January, it serves as the longest-standing
Pentagon investigating how internal emails leaked for 2 weeks without its knowledge (CNN Politics) The Pentagon is investigating how a trove of internal US Special Operations Command emails was apparently exposed publicly online and leaked unclassified data for nearly two weeks without the military's knowledge, a Pentagon spokesperson told CNN.
