Security News

Three weeks after an independent researcher found a critical bug in the Services Australia COVID-19 digital vaccine certificate that would allow an attacker to falsify someone's vaccine status, it still hasn't been fixed. Researcher Richard Nelson looked into the security behind a new digital vaccine passport app from the Australian government's Express Plus Medicare program, which automatically pulls someone's vaccine status from the Australian Immunization Register.

Apple has unveiled the first eight states that will roll out digital IDs and drivers licenses on its mobile devices, despite critics' concerns that the introduction of purely digital forms of identification will raise privacy, security and equanimity issues. To assuage security fears that come with storing people's identity on its devices, Apple is asserting that state DLs and IDs stored in Wallet on iPhone and Apple Watch will "Take full advantage of the privacy and security" built into the devices, the company said.

Singapore's governmental digital services arm, GovTech, has launched a "Rewards programme" to further crowdsource tests of the nation's cybersecurity. The Vulnerability Rewards Programme joins the Government Bug Bounty Programme and the Vulnerability Disclosure Programme, all of which work alongside the government's own security checks.

Western Digital has confirmed that it changed the NAND flash memory in one of its most popular M.2 NVMe SSD models, the WD Blue SN550, which crippled writing speeds according to several reports, leading to a 50% performance hit. The company says that, in the future, it will also introduce a new model number when making any hardware changes to its products that impact performance.

A company is suing the Police Digital Service over a framework worth up to £18m after losing a bid to provide a mass surveillance platform, claiming police managers broke laws on the awarding of public contracts. Excession Technologies Ltd is suing the organisation formerly known as the Police ICT Company on the grounds that it broke the Defence and Security Public Contracts Regulations after allegedly misunderstanding Excession's platform was capable of doing.

Digital Guardian announced new enhancements to its endpoint DLP visibility and security controls specifically to secure a hybrid work model. "According to a recent Gallup polli, seven in 10 U.S. white-collar workers are still working remotely and many organizations have turned to Secure Access Service Edge to secure those employees, despite some clear gaps in those solutions," said Mordecai Rosen, Digital Guardian CEO. "Our new endpoint DLP features are purpose-built to address those SASE gaps and the market is responding as evidenced by Digital Guardian's record year over year new business sales bookings and revenue growth."

Digital trailblazers: Only 10% enterprises have the most advanced digital operating models, connectivity platforms and strategies ensuring secure and trusted operations. Digital migrants: 52% of enterprises have limited digitalization in their business, but still need to improve in several areas of digital capability.

Nutanix and Cyxtera announced their partnership to launch the first Nutanix Federal Innovation Lab, powered by Cyxtera's digital exchange and Enterprise Bare Metal. The Federal Innovation Lab, located in a Cyxtera data center in Northern Virginia, provides U.S. Federal customers as well as industry partners with an environment to build proofs of concept and test mission-critical applications using on-demand infrastructure that readily supports hybrid multicloud solutions via a single operating platform.

As the prevalence of digital fraud attempts on businesses and consumers continues to rise, TransUnion's analysis found that fraudsters are re-focusing their efforts from financial services to the travel and leisure and gaming industries. Gaming and travel and leisure were the two most impacted industries globally for the suspected digital fraud attempt rate, rising 393.0% and 155.9% in the last year, respectively.

ACI Worldwide announced a collaboration with PayPal to bring digital wallet payment options to ACI's biller clients like Monroe County Water Authority. PayPal and Venmo will be integrated with ACI Speedpay, giving consumers more options to make bill payments conveniently and securely using the digital methods that suit them best.