Security researchers warned that an adware program called Superfish, which was preloaded on some Lenovo consumer laptops, opened computers to attack. However, it seems that the same poorly designed and flawed traffic interception mechanism used by Superfish is also used in other software programs. Superfish uses a man-in-the-middle proxy component to interfere with encrypted HTTPS connections, undermining the trust between users and websites. It does this by installing its own root certificate in Windows and uses that certificate to re-sign SSL certificates presented by legitimate websites.
There have always been worries that the Chinese government could use its power to force homegrown technology companies like ZTE, Huawei, Qihoo 360 and Lenovo to spy on user communications, but now a bombshell has landed that shows Lenovo is forcing adware onto users’ computers on the company’s own volition.
Computer giant Lenovo has come under fire from users and security pundits after its consumer laptops were found to contain pre-installed adware/malware which could be used to intercept and hijack encrypted Transport Layer Security communications in Microsoft Windows. The ‘Superfish’ adware is a third-party application that was, until last month, installed on all Lenovo consumer laptops.
To eliminate fake social media accounts that impersonate public figures, the Chinese government has issued new rules that go much further and outlaw anonymity in blogs, social networks, discussion forums and IM services. The move, announced Wednesday, is the latest in a recent string of Chinese government actions that have increased online censorship in the country.
China plans to impose a ban on internet accounts that impersonate people or organisations, and force users to register with their real names online, its internet watchdog said on Wednesday. China has repeatedly made attempts to require internet users to register for online accounts using their real names, although with mixed success.
The Korea Communications Commission (KCC) plans to inspect Google Korea and other leading location-based services (LBS) providers over data and privacy protection. It will look into the Korean offices of Google, Apple, Microsoft, Qualcomm and BMW to check their latest updates for addressing privacy concerns. The nation’s dominant web portals Naver, Daum Kakao, along with the country’s three carriers ― SK Telecom, KT and LG Uplus ― Samsung and LG Electronics, SK Energy and Hyundai Motor will all be subject to questioning about their privacy policies, said a senior official at the KCC.
TAIPEI: Taiwan’s communication regulator on Tuesday said 12 mobile phone brands sold locally, including Chinese smartphone maker Xiaomi Inc, do not violate personal data protection laws. Handsets made by China’s Huawei Technologies Co Ltd and ZTE Corp, Apple Inc, Samsung Electronics Co Ltd, LG Electronics Inc and Sony Corp also do not breach the laws, the National Communications Commission said.
People across Asia Pacific are working in new ways, at varying times and from different locations. They can work from home or semi-permanent locations including project sites, customer event sites or even on-the-go. The era of connectivity and technological speed has improved internal and external collaboration while enhancing employee engagement within and between organizations that transcends geographies.
Coolpad, the world’s sixth largest smartphone manufacturer, installed a back door that allows the company to install applications, send alerts, and monitor communications without user knowledge or approval. According to Palo Alto Networks, which discovered the security flaw, the “CoolReaper” backdoor has been found on 24 Coolpad phone models sold in China, adding up to over 10 million devices.
Apple can have access to China, as long as it protects users’ privacy, a top Chinese official told the company’s CEO last week. The head of the country’s Cyberspace Administration, Lu Wei, met with Apple’s Tim Cook on Saturday as part of a visit to the company, China’s state-run Xinhua News Agency said in a Monday report.
The warning was given after Bkav Security conducted a survey from August to November 2014 in large cities where wifi is provided for free, such as Da Nang, Hai Phong, Hoi An and Ha Long. The experts pointed out that there could be three forms of attacks, including Man in the Middle (cyber attacks where a malicious actor goes between two parties & gains access to private information), Phishing (when internet fraudsters impersonate a business to trick users into giving out their personal information) and SSID Spoofing (criminals use spoofed service set identifiers (SSIDs) to lure wireless users).
Cloud computing, privacy and big data will increase in priority for enterprises in 2015, while the smart cities trend will continue in Asia Pacific as countries such as China try to address urbanisation issues, according to Hitachi Data Systems (HDS) Asia Pacific CTO Adrian De Luca. Speaking at the vendor’s Innovation Forum 2014 in Singapore, De Luca outlined the company’s predictions for 2015.
The Malaysian government is drafting a new policy to better protect information being accessed by officials through their mobile devices, the Government Chief Information Officer has told FutureGov. “The new policy will be about protecting information, regardless of what channel or endpoint device is accessing the information,” said Dr. Suhazimah Dzazali. It will tier access to information, acknowledging that access from both government and personal devices are likely.
Four months after Singapore’s first privacy protection laws came into effect, the chief counsel to the nation’s Personal Data Protection Commission concedes there is “still a fair amount of work to do” to get the business community up to date with the demands of the new regime. Speaking in Sydney to the ANZ branch of the international association of privacy professionals (iappANZ), David Alfred said a recent survey of ‘privacy readiness’ amongst Singapore business showed that 65 percent of organisations were prepared for the new laws, key elements of which came into effect in 2 July 2014.
MUMBAI – Chinese smartphone maker Xiaomi Inc said on Monday it plans to set up a data centre in India next year to store local user data, as the fast-growing company seeks to deflect concerns about privacy that could hamper its efforts to expand overseas. The move by privately owned Xiaomi comes after it said last week saying it was migrating some data on non-Chinese customers away from its servers in Beijing due to performance and privacy considerations.
BEIJING: Apple Inc chief executive Tim Cook was quoted on Friday as saying he had “very open” talks on privacy and security with a senior Chinese official, days after a web monitoring group linked the government to a hack into Apple’s iCloud service in China. Cook’s remarks, made in an interview to the official Xinhua news agency, were his first public comments since meeting Vice Premier Ma Kai in Beijing on Wednesday.
The office of NSW Attorney-General Brad Hazzard has confirmed the government’s intentions to update the state’s privacy legislation to make it clear where agencies and healthcare providers stand when it comes to storing data offshore, particularly as part of cloud computing arrangements. The NSW Privacy Commissioner, Elizabeth Coombs, finalised her draft code of practice for offshore data hosting and handed it to the Attorney-General in May this year, after a number of aborted attempts by her predecessors.
For better or for worse, Korea is one of the world’s most connected nations, with about 85 percent of their population on the internet as of last year . Local KakaoTalk users – who make up three-quarters of the almost 50 million monthly active users – recently found out the downside when the government announced a crackdown on online defamation. This was in light of the discovery of what President Park Geun-hye termed as rumors spreading on the chat app that “divided the society”, according to StarTribune .
[Seoul] South Korea is trying to ease worries about online privacy after a domestic chat app lost customers to a foreign rival because of fears prosecutors in one the world’s most wired countries might get access to online conversations. Prosecutors last month launched a cyber investigation team after President Park Geun-hye spoke out against online rumours that she said “crossed the line” and were deepening divisions in society.