Security News
Digital supply chain risk a new security threat for 2022. Gartner has identified digital supply chain risk as a new security threat and one of its top seven security and risk management trends for 2022.
Ten months after attempts first began to extract the medical information of 55 million citizens in England, NHS Digital's former chairman is warning the merger of the agency with NHS England threatens the privacy of people's personal data. The view was that if a patient had chosen to use the NHS they had implicitly agreed that their data could be used for the benefit of the NHS. Writing in trade publication the British Medical Journal, Kingsley Manning said health secretary Sajid Javid's decision to merge NHS Digital into NHS England and NHS Improvement last year was a "Retrograde step not least in the context of this government's clear intent to weaken the constraints on the use of patient data."
The global digital supply chain market was pegged at $3.91 billion in 2020, and is expected to reach $13.67 billion by 2030, growing at a CAGR of 13.2% from 2021 to 2030, according to Allied Market Research. Increase in demand for reliable, fast, and effective order execution, rise in demand for cloud-based supply chain management solutions, and improved use of industrial-grade digital technology drive the growth of the global digital supply chain market.
The U.S. Cybersecurity and Infrastructure Security Agency last week published an industrial control system advisory related to multiple vulnerabilities impacting Schneider Electric's Easergy medium voltage protection relays. "Successful exploitation of these vulnerabilities may disclose device credentials, cause a denial-of-service condition, device reboot, or allow an attacker to gain full control of the relay," the agency said in a bulletin on February 24, 2022.
I suggested, let's just be realistic and say we should accept that we can't have a realistic expectation of privacy. Btrower said this issue is a "Slam dunk" - yes, but how? Because, "You have no hope of privacy if a powerful enough adversary targets you. There are many routes to failure and exposure. The only hope of modest privacy is being someone who is not interesting enough to look at. Given the value of successfully targeting you as a consumer, you are indeed interesting to look at for anybody who can capitalize on this."
The global digital payment market size is projected to grow from $89.1 billion in 2021 to $180.4 billion by 2026, at a CAGR of 15.2% during the forecast period, according to ResearchAndMarkets. Major growth factors for the market include worldwide initiatives for the promotion of digital payments, high proliferation of smartphones enabling mCommerce growth, increase in eCommerce sales, and growth in internet penetration.
Working from home has spiked since the onset of the Covid-19 pandemic in March of 2020. This effort to reduce health risks may have limited the spread of the virus, but according to an analysis by F-Secure, it may also have helped increase digital anxiety for those working remotely.
Threat actors are hijacking the devices of India's human rights lawyers, activists and defenders, planting incriminating evidence to set them up for arrest, researchers warn. Arsenal Consulting's digital analysis shows that the file - one of the more incriminating pieces of data seized by police - was one of many files delivered via a NetWire RAT remote session associated with ModifiedElephant.
A study from Juniper Research has found that revenue for digital identity vendors will exceed $53 billion globally in 2026, doubling from $26 billion in 2021. Digital identity revenue includes third-party and civic identity apps, centralised identity schemes, and digital identity verification.
A previously unknown hacking group has been linked to targeted attacks against human rights activists, human rights defenders, academics, and lawyers across India in an attempt to plant "Incriminating digital evidence." Cybersecurity firm SentinelOne attributed the intrusions to a group it tracks as "ModifiedElephant," an elusive threat actor that's been operational since at least 2012, whose activity aligns sharply with Indian state interests.