Security News

China's Ministry of Commerce said on Monday the country has officially applied for entry into the Digital Economy Partnership Agreement. Singapore's Ministry of Trade and Industry described DEPA as "a first of its kind agreement that establishes new approaches and collaborations in digital trade issues, promotes interoperability between different regimes and addresses the new issues brought about by digitalisation."

Digital transformation programs could be vulnerable to cyber attacks due to increased risk tolerances and ongoing cybersecurity challenges, according to a global research of 500 cybersecurity decision makers by NCC Group. Seventy-six per cent admitted that they had increased their risk tolerances to allow changes to their operating model during the pandemic.

The survey shows that robust security and a seamless user experience are still non-negotiables when it comes to building digital trust, and the speed of service has also become essential to the digital consumer when setting up an online account. Approximately half of consumers expect that it should take less than three minutes to approve a banking transaction or place a bet, and roughly 35% consumers believe it should take the same time to fill a prescription.

A "Potentially devastating and hard-to-detect threat" could be abused by attackers to collect users' browser fingerprinting information with the goal of spoofing the victims without their knowledge, thus effectively compromising their privacy. Academics from Texas A&M University dubbed the attack system "Gummy Browsers," likening it to a nearly 20-year-old "Gummy Fingers" technique that can impersonate a user's fingerprint biometrics.

NHS Digital has scored a classic Mail All own-goal by dispatching not one, not two, not three, but four emails concerning an infosec breakfast briefing, each time copying the entirety of the invite list in on the messages. The first email sent yesterday morning thanked participants for "Registering for NHS Digital's Full Digital Breakfast: Let's talk cyber, scheduled for Thursday 21 October 2021, 8:00-9:00am."

Data management initiatives in the finance sector, such as data collection, integration, and automation, are being constrained by a severe lack of digital skills and maturity. 64% of technical decision makers feel their organizations lack the skilled technical resources to integrate external data into core platforms, and, 57% believe they are only at a foundational level of digital maturity.

Visible, a US digital wireless carrier owned by Verizon, admitted that some customer accounts were hacked after dealing with technical problems in the past couple of days. The announcement was made on Visible's official sub-reddit by an employee who said the company is investigating an incident that led to a small number of accounts being breached.

Leading organizations are investing in the mainframe, innovating with DevOps, and integrating systems and teams to drive digital transformation, according to a BMC survey. After surveying more than 1,300 executives and technical professionals globally, it is clear the mainframe will continue to be instrumental in powering digital businesses in an unpredictable world.

The maintainers of LibreOffice and OpenOffice have shipped security updates to their productivity software to remediate multiple vulnerabilities that could be weaponized by malicious actors to alter documents to make them appear as if they are digitally signed by a trusted source. Successful exploitation of the vulnerabilities could permit an attacker to manipulate the timestamp of signed ODF documents, and worse, alter the contents of a document or self-sign a document with an untrusted signature, which is then tweaked to change the signature algorithm to an invalid or unknown algorithm.

The same technology that gives us wireless earbuds and allows our phones to connect wirelessly to all manner of devices, is now helping build a more secure future with digital keys. While the digital key has not reached the same level of penetration as digital payments, the technical foundation and social norm is there for the capability to gain rapid adoption.