Telstra promises to keep customer metadata safe

AustraliaAustralia’s largest telco Telstra has pleged to keep the metadata it is required to store on its customers for two years safe after the data retention scheme passed the Senate last night. The Government and the Labor Party united last night to vote through the Coalition’s data retention bill, despite a last-ditch effort by the Greens and several independents to make changes to the bill.

http://www.itnews.com.au/News/402150,telstra-promises-to-keep-customer-metadata-safe.aspx

Indonesia’s technology minister needs to step up on censorship and privacy

IndonesiaPart of Indonesia’s future development hinges on how quickly and efficiently the world’s fourth most populous nation is able to embrace digitization and make it work in its favor. The man in charge of shepherding Indonesia’s digital development is Minister of Communications and Information Technology, Mr. Rudiantara. He was inaugurated in October 2014 as part of President Joko Widodo’s new cabinet.

https://www.techinasia.com/indonesias-technology-minister-working-regulations-ecommerce-smartphones-step-censorship-privacy/

Bogus Qantas Facebook page fools consumers

AustraliaMore than 100,000 people have been fooled by a fake Qantas Facebook page offering free first-class flights. The like-farming scam promises free first class flights in return for liking and sharing an image of what purports to be a complimentary invitation to the airline’s first class lounge.  The post claims the reward is a celebration of the airline’s achievement in seating more than three million passengers since the start of January this year.

http://www.itnews.com.au/News/401716,bogus-qantas-facebook-page-fools-consumers.aspx

Singapore to install more CCTVs at border checkpoints, public houses

SingaporeOver 1000 CCTV cameras will be installed at Singapore’s two land checkpoints by June 2017 to get greater coverage of activities, the Ministry of Home Affairs has said. This is on top of the existing 119 cameras monitoring the Tuas and Woodlands checkpoints. “These cameras will be connected to a video analytics system to enhance the identification of vehicles, and security threats such as intrusions and unattended baggage,” said Teo Chee Hean, Minister for Home Affairs and Deputy Prime Minister.

http://www.futuregov.asia/articles/6278-singapore-to-install-more-cctvs-at-border-checkpoints-public-houses

China Blocked 28,000 Mobile Malware Apps In 2014

ChinaThe Ministry of Industry and Information Technology of China tracked over 5.4 million mobile phone apps from 135 Chinese app stores in 2014 and discovered 28,000 apps were malware. According to the ministry’s website, those 28,000 malware apps were banned and removed from the app stores, and 155 other “bad software” were exposed. MIIT said that in 2014, China’s telecom industry user complaint rate was 32.9 times per million users, representing a decrease of 30% compared with the previous year.

http://www.chinatechnews.com/2015/03/12/21473-china-blocked-28000-mobile-malware-apps-in-2014

Pakistan cyber firm found accessing computers of Indian bureaucrats

PakistanBENGALURU: A Pakistani cyber security firm with close ties to Islamabad has been found stealing information from Indian government and defence establishments, according to a two-year investigation by a US-based IT security firm.  The Pakistani company targeted Indian establishments using leased US hosting services, the US security firm, FireEye, said, the findings revealing that India remains a vulnerable target for cyber attacks even after documents leaked by whistleblower Edward Snowden exposed widespread spying on the country by the US National Security Agency.

http://economictimes.indiatimes.com/tech/internet/pakistan-cyber-firm-found-accessing-computers-of-indian-bureaucrats/articleshow/46535141.cms

How NAB, Westpac and CBA try to get the jump on new attackers, from AU

AustraliaSecurity chiefs at three of Australia’s big four banks are turning to “detective” controls and predictive analytics in the hope of identifying new threats, attacks or instances of fraud before they turn into bigger problems. National Australia Bank’s head of cyber security Nick Scott highlighted the importance of speed to detection and response at FST Media’s Future of Security in Financial Services Summit last week.

http://www.itnews.com.au/News/401455,how-nab-westpac-and-cba-try-to-get-the-jump-on-new-attackers.aspx

Malaysia draws up cyber security plans till 2050

MalaysiaMalaysia is reviewing its National Cyber Security Policy as part of broader plans to strengthen internet security in the country, Deputy Minister of Science, Technology and Innovation, Dr Abu Bakar Mohamad Diah (pictured, right) announced. The revised policy is expected to be ready in two years, said Dr Amirrudin Abdul Wahab, CEO of Cybersecurity Malaysia, which is reviewing the policy with the National Security Council (MKN).

http://www.futuregov.asia/articles/6253-malaysia-draws-up-cyber-security-plans-till-2050

Local websites risk attacks through SSL security protocol, from VN

VietnamSome Vietnamese websites have been attacked through a security hole in SSL protocol, said Bkav security company. Photo genk.vn. This revelation was made by Bkav security firm on March 4. A bug, named FREAK, has been discovered on the Secure Sockets Layer/Transport Layer Security (SSL/TLS) cryptographic protocol. It attacks Google and Apple mobile devices when they are used to access Hypertext Transfer Protocol over Secure (HTTPS) websites.

http://english.vietnamnet.vn/fms/science-it/124809/local-websites-risk-attacks-through-ssl-security-protocol.html

Microsoft rolls out Singapore cybercrime center for APAC

SingaporeMicrosoft has launched its new Cybercrime Satellite Centre in Singapore, one of the five globally including in Beijing, Berlin, Tokyo and Washington. The Singapore center will serve as the regional hub for Microsoft to undertake cybercrime and cybersecurity initiatives in Asia Pacific, through public-private partnerships and cross-industry collaboration. It will support all major Southeast Asian countries as well as Australia, India, Korea and New Zealand.

http://enterpriseinnovation.net/article/microsoft-rolls-out-singapore-cybercrime-center-apac-1563052755

38,000 cyber fraud cases reported in four years: India Govt

IndiaNEW DELHI: As many as 37,721 cyber fraud cases involving Rs 497 crore have been reported by the RBI and CBI in the last four years, telecom and IT minister Ravi Shankar Prasad informed Lok Sabha on Wednesday.  Several cyber attack techniques are used in engineering these crimes and are normally reported as ATM/ debit card, credit card, internet banking frauds, Prasad said in a written reply to the House.

http://timesofindia.indiatimes.com/tech/tech-news/38000-cyber-fraud-cases-reported-in-four-years-Govt/articleshow/46463003.cms?

27% of Asian government departments targeted by Advanced Persistent Threats

APACA global shortage of cybersecurity professionals is being acutely felt by the region’s government organisations – and they are increasingly under attack as a result. New findings have identified Southeast Asia as a region that is increasingly under cyber- attack. A joint Singtel-FireEye report, “Southeast Asia: An Evolving Cyber Threat Landscape”, details how Advanced Persistent Threat (APT) actors and other cyber-attack groups are among those keenly interested in targets located in Singapore, The Philippines, Malaysia, Thailand, Vietnam, Indonesia and Brunei.

http://www.futuregov.asia/articles/6211-of-asian-government-departments-targeted-by-advanced-persistent-threats

PM Narendra Modi asks IT industry to develop security solutions, new ideas

IndiaNEW DELHI: With cyber security worrying the world, Prime Minister Narendra Modi today asked the Indian IT industry to innovate solutions to counter the global menace as well as work on pathbreaking ideas like ‘cloud godowns’ and ‘cloud lockers’ to help keep data secure.  “The whole world is concerned. Since I have become the Prime Minister, I have met around 50 world and political leaders and out of that, almost 25-30 have said cyber security is a concern. Can Indian youth work on solutions for cyber security?” Modi said at a Nasscom event.

http://economictimes.indiatimes.com/tech/ites/pm-narendra-modi-asks-it-industry-to-develop-security-solutions-new-ideas/articleshow/46421679.cms

Cyber Security Agency to take preventive approach against attacks

SingaporeSingapore’s upcoming Cyber Security Agency (CSA) will focus on preventing online attacks, telling organisations to adopt cyber security measures early, said Minister for Communication and Information, Yaacob Ibrahim. The agency will promote cyber security-by-design, he said. “Cyber security should be an important consideration when companies design their systems and networks”, he said. “For many businesses, cyber security is an afterthought, often the last measure to be implemented after a system is installed, or strengthened only after a cyber attack has done its damage.”

http://www.futuregov.asia/articles/6207-cyber-security-agency-to-take-preventive-approach-against-attacks

Govt bans Gmail for official work, to monitor staff’s online activities

IndiaNEW DELHI: The government will be monitoring online activities of bureaucrats on official computers, block content which it feels is adversely affecting the productivity of the babus and also have a right to delete e-mails or internet history on such computers after intimating the user. The measures are a part of twin notifications issued by the Narendra Modi government on February 18 by which the use of private e-mail networks like Gmail and Yahoo has now also been officially banned for all government use.

http://economictimes.indiatimes.com/tech/internet/govt-bans-gmail-for-official-work-to-monitor-staffs-online-activities/articleshow/46402522.cms

Chunghwa Telecom sees no impact from hack of SIM-maker Gemalto

TaiwanTAIPEI, Taiwan — Chunghwa Telecom Co. (中華電信), Taiwan’s largest mobile provider, gave an assurance Thursday that its customers’ privacy remains secure, despite the alleged hacking of SIM card encryption keys based on technology of Gemalto, the world’s largest maker of mobile SIM cards.  “Based on Gemalto’s response to Chunghwa Telecom, there is no evidence or concern that our customers’ SIM card encryption keys have been exposed in transit,” Lin Kuo-feng (林國豐), president of Chunghwa Telecom’s mobile business group, told a media gathering to announce the company’s 2015 annual targets.

http://www.chinapost.com.tw/business/asia-taiwan/2015/02/27/429773/Chunghwa-Telecom.htm

Researchers uncover signs of Superfish-style attacks

ChinaResearchers at the Electronic Frontier Foundation (EFF) yesterday said that they had found evidence that implies attackers have exploited a security vulnerability in the Superfish adware and a slew of other programs. Superfish, a company that markets a visual search product, made the news last week when Lenovo was found to have pre-loaded the program on its consumer-grade PCs during a four-month span late last year.

http://www.arnnet.com.au/article/569068/researchers-uncover-signs-superfish-style-attacks/

Lenovo Seeks Help of McAfee, Windows Defender for Superfish Removal

ChinaLenovo has enlisted the help of McAfee and Windows Defender security to block any further activity by Superfish, the adware service capable of copying private details and storing them on a server for third-parties to purchase. The move comes a few days after Lenovo tried to deny the privacy and security impact Superfish has on computers, claiming the adware could not track users. This has turned out to be false, and perhaps without Lenovo’s knowledge Superfish has documented thousands of browser based user interactions.

http://www.chinatopix.com/articles/38846/20150224/lenovo-acquires-help-mcafee-windows-defender-superfish-removal.htm

Superfish security flaw also exists in other apps, non-Lenovo systems

ChinaSecurity researchers warned that an adware program called Superfish, which was preloaded on some Lenovo consumer laptops, opened computers to attack. However, it seems that the same poorly designed and flawed traffic interception mechanism used by Superfish is also used in other software programs. Superfish uses a man-in-the-middle proxy component to interfere with encrypted HTTPS connections, undermining the trust between users and websites. It does this by installing its own root certificate in Windows and uses that certificate to re-sign SSL certificates presented by legitimate websites.

http://www.networksasia.net/article/superfish-security-flaw-also-exists-other-apps-non-lenovo-systems.1424593662

Are Lenovo Computers Safe For Consumer Users?

ChinaThere have always been worries that the Chinese government could use its power to force homegrown technology companies like ZTE, Huawei, Qihoo 360 and Lenovo to spy on user communications, but now a bombshell has landed that shows Lenovo is forcing adware onto users’ computers on the company’s own volition.

http://www.chinatechnews.com/2015/02/19/21425-are-lenovo-computers-safe-for-consumer-users