Tag Archive for: promote

Cybersecurity event opens in Shanghai to promote security in the digital era

/in


Cartoon images and mini videos have become the new format for promoting Internet security and warning the public of risks like telecommunication fraud and privacy leaks, Shanghai Daily learned during the China Cybersecurity Week event which began on Monday.

The annual nationwide event is aimed toward enhancing national cybersecurity and promoting a healthy online environment.

Shanghai released two new cartoon images, named Yulan and Hubao, in mini-dramas to promote cybersecurity, with the two characters representing Shanghai’s nickname and the floral emblem of the city.

With attendees numbering over 1 million, a total of 22 short videos and numerous new types of artwork were presented during the opening session of the event in Shanghai. They covered topics and issues including data security, personal information protection and password security.

The city is using digital networks to improve city management. It’s important for people to heighten their awareness of the cybersecurity in today’s digital society, local officials said during the opening ceremony on Monday.

These events help people parse online rumors from facts, prevent online fraud, and protect their personal information across various industries and areas.

China’s cybersecurity market revenue is expected to hit US$16.7 billion (US$2.6 billion) in 2024, with an annual average growth rate of 18.7 percent, according to market researcher IDC.

In Shanghai, various events and activities will be held during the week which will end on Sunday, including a forum regarding the city’s digital transformation and other events covering health care, telecom, emergency response, campus environment, fintech and the energy sector.

Source…

NCSC joins 2 organisations to promote domestic cybersecurity

/in


Ursula

Mrs Ursula Owusu-Ekuful, Minister of Communications and Digitalisation

The National Cyber Security Centre (NCSC) has joined two different international organisations, the Global Forum on Cyber Expertise (GFCE) and the Forum of Incident Response and Security Teams (FIRST), to promote and strengthen capacity building and incident response through international collaboration.

This feat stems from the government’s commitment to developing the country’s cyberspace to be secure and resilient for the country’s sustained digital transformation.

Capacity building

A press release issued by NCSC on June 2 in Accra, quoted the Minister of Communications and Digitalisation, Mrs Ursula Owusu-Ekuful, of highlighting the importance of international collaboration for effective implementation of the recently passed Cybersecurity Act, 2020 (Act 1038).

“Ghana’s domestic cyber resilience is very much dependent on strong international collaboration arrangements and our membership of these industry-led global institutions is timely as we begin the implementation of the Cybersecurity Act, 2020.”

As a member of these international bodies, the minister said the NCSC was expected to benefit from joint capacity building programmes, information sharing and technical tools to effectively detect and prevent cybersecurity incidents.

Cybersecurity Act

The release stated that the ministry, under the leadership Mrs Owusu-Ekuful, led efforts for the passage of the Cybersecurity Act, 2020 (Act 1038) by Parliament on November 6, 2020.

The Act was subsequently assented to law by the President Nana Addo Dankwa Akufo-Addo on December 29, 2020.

With the passage of Act 1038, the NCSC is expected to transition into a Cyber Security Authority (CSA) before the end of the year. The Act makes provision for the protection of critical information infrastructures, capacity building efforts, incident response and reporting procedures, among others.

Ghana’s membership of the Global Forum on Cyber Expertise (GFCE) and the Forum of Incident Response and Security Teams (FIRST), is part of efforts to improve the country’s cybersecurity.

Cybersecurity collaboration 

Security Governance Initiative (SGI), a…

Source…

NSA, Microsoft promote a Zero Trust approach to cybersecurity

/in


The National Security Agency (NSA) and Microsoft are advocating for the Zero Trust security model as a more efficient way for enterprises to defend against today’s increasingly sophisticated threats.

The concept has been around for a while and centers on the assumption that an intruder may already be on the network, so local devices and connections should never be trusted implicitly and verification is always necessary.

Cybersecurity companies have pushed the zero-trust network model for years, as a transition from the traditional security design that considered only external threats.

The model was created in 2010 by John Kindervag, who also coined the term “zero trust,” principal analyst at Forrester Research at the time but talks about it had started in early 2000s. Google implemented zero-trust security concepts following Operation Aurora in 2009 for an internal project that became BeyondCorp.

Zero Trust defense for critical networks

The recent SolarWinds supply-chain attack, also attributed to a nation-state actor, renewed the discussion on the benefits of the zero trust security architecture for sensitive networks.

Microsoft President Brad Smith advocated for the zero-trust model in his U.S. Senate testimony regarding the SolarWinds cyberattack, saying that this concept is the best approach for an organization or agency to ensure the security of identity in their networks.

Talking about the security of U.S. government networks targeted by the attack, Smith said:

“Basic cyber hygiene and security best practices were not in place with the regularity and discipline we would expect of federal customers with the agencies’ security profiles. In most cases, multi-factor authentication, least privileged access, and the other requirements to establish a “zero trust” environment were not in place. Our experience and data strongly suggest that had these steps been in place, the attacker would have had only limited success in compromising valuable data even after gaining access to agency environments” – Brad Smith, Microsoft President

Now, both the NSA and Microsoft are recommending the zero-trust security model for critical networks (National Security Systems,…

Source…

Mass hijacking spree takes over subreddits to promote Donald Trump

/in
Mass hijacking spree takes over subreddits to promote Donald Trump

Enlarge

Dozens of discussion groups on Reddit—including those dedicated to the National Football League, the San Francisco 49ers, and the Gorillaz—were hit in a Friday morning mass takeover spree that used the subreddits to spread messages promoting President Trump.

The hijacked accounts had tens of millions of combined members. The 148,000-member subreddit Supernatural, dedicated to the TV show by the same name, was emblazoned with pro-Trump images and slogans. Reddit personnel have since restored the moderator account to its rightful owner. The image above is how the subreddit appeared when the takeover was still active. The takeovers came five weeks after Reddit banned /r/The_Donald, a leading forum for fans of the president, and hundreds of other unrelated subreddits for violating recently rewritten content rules.

Reddit personnel published this post captioned, “Ongoing incident with compromised mod accounts.” Reddit personnel then warned that moderator accounts were being compromised and used to vandalize subreddits. It asked moderators of affected subreddits to report them in responses. At the time this post when live, the list of reported subreddits included:

Read 7 remaining paragraphs | Comments

Biz & IT – Ars Technica