Subterms
KanawatTH/Getty Images All manner of threat actors are trying to compromise OpenAI’s ChatGPT program, according to cybersecurity company Check Point Software Technologies. “At Check Point Research, we can see the Russians trying to break through the geo-regional restrictions put in place around ChatGPT,” said Pete Nicoletti, field chief information security officer for Check Point, in […] More
Image: Getty Reddit has confirmed its systems were hacked last weekend as the result of a sophisticated and highly targeted phishing attack: the attackers gained access to documents, code, and some internal business systems. Late on February 5, Reddit became aware of the phishing campaign that targeted its employees. The attacker sent out “plausible-sounding prompts”, […] More
Image: Getty/Manuel Breva Colmeiro Falling victim to a phishing attack now regularly costs businesses over $1 million — and the financial damages are rising as organizations struggle to protect users and networks against email-based cyberattacks. Phishing attacks are one of the most common cybersecurity threats businesses face today because cyber criminals know that employees at […] More
Image: AerialPerspective Images/Getty Images The US Department of Commerce’s technical standards organization NIST has nominated the Ascon group of cryptographic algorithms for protecting small devices and information transmitted to and from IoT devices. NIST will later this year publish the “lightweight cryptography” standard after picking the Ascon family for the task. Also: What is the […] More
Image: Morsa Images/Getty Images The Cybersecurity and Infrastructure Security Agency (CISA) and the FBI have released a joint advisory warning about an ongoing ESXiArgs ransomware campaign targeting unpatched and out-of-service or out-of-date versions of the VMware ESXi hypervisor for virtual machines (VMs). According to CISA, 3,800 VMware ESXi servers have been compromises globally, potentially […] More
Image: Getty/Georgijevic Email is ubiquitous in the workplace, meaning that — whether we like it or not — it’s still the key method of communication many of us use for getting things done. Unfortunately, cyber criminals and scammers are highly aware of this fact, and try to exploit our reliance on email by distributing business email […] More
Singapore is officially turning off its COVID-19 contact tracing system amidst plans to further ease travel restrictions, as the country exits the “acute phase” of the pandemic. Plans also are in place to retrieve millions of Bluetooth-enabled wearables, distributed nationwide to detect and monitor user proximity, so these can be “refurbished and recycled” for future use when needed. Singapore’s Health Ministry said Thursday that the government had been progressively rolling back the country’s TraceTogether and SafeEntry platforms over the past months, as the global pandemic situation stabilised. Introduced in March 2020, the TraceTogether app tapped Bluetooth signals to detect other participating mobile devices in close proximity, allowing them to identify those who had been in close contact when needed. Data would be captured, encrypted, and stored locally on the user’s phone for 21 days and, when needed in contact tracing, uploaded to the Health Ministry for review.SafeEntry was used as a digital check-in system, gathering data to facilitate contact tracing of individuals and the locations they visited when they tested positive for COVID-19. QR codes were displayed at the entry and exit points of venues, such as supermarkets and shopping malls, which visitors must scan and input their name, national identification number, and mobile number. With Singapore no longer requiring infected individuals to submit TraceTogether and SafeEntry details, the Health Ministry said all identifiable data collected via the two platforms had been wiped from its servers and databases. However, TraceTogether data related to a murder investigation in May 2020 would be retained indefinitely, the ministry said. It noted that this was needed in serious cases where legal applications might be made to challenge convictions or sentences years after the case had concluded, and local law enforcement might need to disclose the data.And while Singapore is readying to exit the acute phase of the pandemic, moving its current DORSCON level from yellow to green from February 13, the country’s contact tracing infrastructure must be ready for reactivation when needed in future should a new variant emerged, the Health Ministry said. “For this purpose, registration details such as name, business UEN (Unique Entity Number), and mobile number will be retained in the system, to minimise the steps taken by individuals and companies to set up and re-register for TraceTogether and SafeEntry, should it be needed,” it noted. It added that residents and businesses can uninstall their TraceTogether and SafeEntry apps, though, these still will be available on Apple’s App Store, Google Play Store, and Huawei AppGallery, for future activation if needed. The public can return their TraceTogether wearables between February 13 and March 12 via 108 community centres located across the island. These will be refurbished and recycled for distribution when needed in future, should contact tracing be reactivated, according to the Health Ministry. At its peak, TraceTogether was used by more than 90% of the local population, but a public outcry erupted when it was revealed the police could access the contact tracing data for criminal investigations, contradicting previous assertions this information would only be used when the individual tested positive for the coronavirus. It prompted the government to pass the COVID-19 (Temporary Measures) (Amendment) Bill, detailing the scope of local law enforcement’s access to contact tracing data. Under the Bill, public sector agencies including the Police can no longer collect and access such data once the TraceTogether and SafeEntry systems are deactivated, with the exception the data is used in criminal investigations and court proceedings. Along with its move to DORSCON Green from February 13, Singapore will no longer require non-fully vaccinated travellers to show proof of a negative pre-departure test. All travellers, however, still need to submit a health declaration via the digital SG Arrival Card upon entering the country.RELATED COVERAGE More
Image: Getty/Morsa Images Google Chrome users who are still running Windows 7 or Windows 8 could be left vulnerable to cyberattacks because they will no longer be able to update to the latest version of the browser. The latest version of Google Chrome (Chrome 110) provides users with protection against several known cybersecurity issues, including […] More
