Daily Cyber Digest

Share this post
EU mulls five-year ban on facial recognition tech in public areas | CSIRO says laws should be published in code | The crime-fighting app that caused a phone-hacking scandal in Italy
aspiicpc.substack.com

EU mulls five-year ban on facial recognition tech in public areas | CSIRO says laws should be published in code | The crime-fighting app that caused a phone-hacking scandal in Italy

ASPI Cyber Policy
Jan 16, 2020
Comment
Share
Produced by the ASPI International Cyber Policy CentreSenetas.com

Follow us on Twitter. The Daily Cyber Digest focuses on the topics we work on, including cyber, critical technologies & strategic issues like foreign interference.

  • The European Union is considering banning facial recognition technology in public areas for up to five years, to give it time to work out how to prevent abuses. Reuters

  • Commonwealth legislation should not only be published in words but in machine-readable code, which would allow it to be read not only by lawyers but also computers, a move CSIRO suggests will boost the adoption of new regulatory technology across the economy, improving compliance while reducing costs. The Australian Financial Review

  • Authorities found that eSurv employees allegedly used the company’s spyware to illegally hack the phones of hundreds of innocent Italians—playing back phone conversations of secretly recorded calls aloud in the office, according to legal documents. The company also struck a deal with a company with alleged links to the Mafia, authorities said. Bloomberg

ASPI ICPC

Australia’s defence department calls time out on TikTok
The Strategist
@fryan
The news that Chinese-owned video-sharing app TikTok is not approved for use on devices owned by Australia’s Department of Defence, as the ABC reported today, is hardly a surprise. Defence’s default position on what apps it allows on its work phones is, in effect, that all apps are banned unless there’s a need for them and they pass a security test. Unsurprisingly, seeing how our defence personnel put their own spin on the ‘Haribo Challenge’ is not a top priority for the department.

U.S. and Iran Are Trolling Each Other — in China
The New York Times
@HernandezJavier
The Chinese authorities operate one of the world’s most aggressive censorship systems, routinely scrubbing reports, comments and posts on the internet that are deemed politically sensitive or subversive. Posts by foreign diplomats are known to have been censored, especially on topics such as North Korea or human rights. But the government has so far allowed the war of words between the United States and Iran to continue, perhaps because it deflects attention away from issues in China, analysts said. “Any topic that provides a distraction from internal problems in China is beneficial to Beijing,” said Fergus Ryan, an analyst with the Australian Strategic Policy Institute who has studied China’s censorship of posts by foreign embassies. “This just happens to be a case where Beijing sees little downside for itself as Iran and the U.S. squabble.”

Twitter avatar for @DaniellesCaveDanielle Cave @DaniellesCave
🚨 @ASPI_ICPC is hiring 🚨 (1) We need a talented technical specialist to work across projects. This person may have skills in 1+ of the following areas: malware analysis, reverse-engineering, data analysis & web scraping +/or deep technical knowledge of critical technologies

January 16th 2020

17 Retweets13 Likes

World

Shutting down the internet to shut up critics
Human Rights Watch
@akshayasays
Governments are increasingly resorting to shutdowns in times of crisis, arguing they are necessary for public safety or curbing the spread of misinformation. But such sweeping measures are more like collective punishment than a tactical response. When the internet is off, people’s ability to express themselves freely is limited, the economy suffers, journalists struggle to upload photos and videos documenting government overreach and abuse, students are cut off from their lessons, taxes can’t be paid on time, and those needing health care cannot get consistent access.

Twitter avatar for @orfonlineORF @orfonline
@raisinadialogue @orfevents @Mastercard @MarinaKaljurand @carlbildt @C_Painter @HenriVerdier @lathareddy51 .@C_Painter: Simultaneously, cyber-laws should include international principle of human rights to ensure wider application and acceptance. #Raisina2020

January 16th 2020

2 Retweets2 Likes
  • Read Chris Painter’s report for ASPI ICPC: Deterrence in cyberspace

Australia

CSIRO says laws should be published in code
The Australian Financial Review
@eyersj
Commonwealth legislation should not only be published in words but in machine-readable code, which would allow it to be read not only by lawyers but also computers, a move CSIRO suggests will boost the adoption of new regulatory technology across the economy, improving compliance while reducing costs.

USA

US may subsidize Huawei alternatives with proposed $1.25 billion fund
Ars Technica
@JBrodkin
The US government should spend at least $1.25 billion "to invest in Western-based alternatives to Chinese equipment providers Huawei and ZTE," a bipartisan group of six US senators said yesterday.

The FBI Got Data From A Locked iPhone 11 Pro Max—So Why Is It Demanding Apple Unlock Older Phones?
Forbes
@iblametom
As the FBI claims it can’t access older versions of the iPhone in Pensacola, a case in Ohio shows that the feds have access to hacking tools that can get data from the latest Apple device.

The AI literacy gap hobbling American officialdom
War on the Rocks
@mchorowitz @Lauren_A_Kahn
Along with the public, companies, universities, civil society organizations, and governments are all rushing to understand exactly what sort of impact AI will have on their respective daily operations. Most people will not be AI experts, but just as military personnel, policymakers, and intelligence analysts in previous generations needed to adapt and learn the basics of electricity and combustion engines in order to drive national security forward then, the same will be true of AI now. A renewed emphasis on AI education for those that will make key decisions about programs, funding, and adoption is essential for safe and effective U.S. adoption of AI in the national security sphere.

Brothers Built A $2.8 Million Dark Web Drug Empire With Help From Mom’s Amazon, FBI Claims
Forbes
@iblametom
Two brothers have been charged with running a six-year dark Web drug-dealing operation under the name Pill Cosby, laundering $2.8 million in the process, according to a federal indictment. And Forbes has discovered that investigators were looking at linked cryptocurrency and Amazon accounts held under their mother’s name.

Expect the US-Iran conflict to continue to play out in cyberspace
Boston Globe
Now that Iran appears to have ended its retaliation for the deadly strike against Islamic Revolutionary Guard Corps Quds Force commander Major General Qassem Soleimani, Americans might be breathing a sigh of relief. Indeed, President Trump indicated Wednesday that he would seek to avoid further kinetic strikes on Iranian targets. This is a good thing, but Americans should expect this conflict to continue to play out in cyberspace within our nation.

Microsoft Raises Stakes in Corporate Climate-Pledge Race
The Wall Street Journal
@aatilley @russellgold
Microsoft Corp. is pledging to eliminate its carbon emissions and invest $1 billion as part of a wider climate commitment, raising the stakes in the corporate race to show greater awareness of environmental concerns.

Southeast Asia

Viet Nam: Arrests and social media crackdown follow deadly clashes over land
Amnesty International
Vietnamese authorities have stepped up a countrywide crackdown marked by arrests and widespread social media censorship as they attempt to stifle public debate about a deadly land dispute, said Amnesty International today.

UK

Former head of MI6: Huawei is a threat to Britain "without question"
The Article
@jayelwes
Richard Dearlove, the former head of MI6, has told the Article that Huawei, the Chinese technology company, poses a threat to British security, “without question”.

Tom Tugendhat: Huawei’s human rights record needs scrutiny before 5G contracts are signed
Conservative Home
The debate about Huawei’s involvement in our key 5G infrastructure has so far focused on the national security risks. These are considerable – both the US and Australia have registered serious concerns, with the US threatening to stop sharing security with the UK if our deal goes ahead. But Huawei’s human rights record has been notably absent from discussion. It is vital that we do our human rights due diligence on companies bidding for massive public contracts, but there is precious little evidence that this critical question regarding Huawei is even on the agenda. Thanks to some superb investigative reporting, the world is slowly waking up to the mass detention of Uyghurs in Xinjiang, China. But Huawei’s role in the surveillance state has barely received a single column inch.

Europe

Angela Merkel warns EU: ‘Brexit is a wake-up call’
The Financial Times
In what sounds like a new European industrial policy, Ms Merkel also says the EU should identify the technological capabilities it lacks and move fast to fill in the gaps. “I believe that chips should be manufactured in the European Union, that Europe should have its own hyperscalers and that it should be possible to produce battery cells,” she says. It must also have the confidence to set the new global digital standards. She cites the example of the General Data Protection Regulation, which supporters see as a gold standard for privacy and proof that the EU can become a rulemaker, rather than a rule taker, when it comes to the digital economy.

EU mulls five-year ban on facial recognition tech in public areas
Reuters
The European Union is considering banning facial recognition technology in public areas for up to five years, to give it time to work out how to prevent abuses, according to proposals seen by Reuters.

The Crime-Fighting App That Caused a Phone-Hacking Scandal in Italy
Bloomberg
The concept behind the company’s product was simple: With the help of Italy’s telecom companies, suspects would be duped into downloading a harmless-seeming app, ostensibly to fix network errors on their phone. The app would also allow Fasano’s company, eSurv, to give law enforcement access to a device’s microphone, camera, stored files and encrypted messages.

In Huawei Battle, China Threatens Germany ‘Where It Hurts’: Automakers
The New York Times
@kbennhold @JackEwingNYT
For months, German lawmakers have danced around the issue of whether effectively to exclude Huawei from the bidding process. The issue is expected to be debated in Parliament again in the coming weeks. As a decision approaches, Chancellor Merkel has found herself caught between worried German automakers, who accompanied her on a dozen junkets to Beijing, and her own wary intelligence community.

Americas

Canada Accidentally Sent an Emergency Alert About a Nuclear 'Incident'
Vice
@mjgault
People in Ontario woke up Sunday morning with phones alerting them to a nuclear incident that hadn’t happened.

Middle East

Turkey Restores Wikipedia After More Than 2-Year Ban
The New York Times
The Turkish government lifted a two-and-a-half-year ban on Wikipedia on Wednesday, restoring access to the online encyclopedia a month after the country’s top court ruled that blocking it was unconstitutional.

Misc

70,000 Tinder Photos Of Women Just Got Dumped On A Cyber-Crime Forum
Gizmodo
More than 70,000 photos of Tinder users are being shared by members of an internet cyber-crime forum, Gizmodo has learned, raising concerns about the potential for abusive use of the photos. Ominously, only women appear to have been targeted.

The dark side of IoT, AI and quantum computing: Hacking, data breaches and existential threat
ZDNet
@dannyjpalmer
Emerging technologies like the Internet of Things, artificial intelligence and quantum computing have the potential to transform human lives, but could also bring unintended consequences in the form of making society more vulnerable to cyberattacks, the World Economic Forum (WEF) has warned.

WhatsApp Backs Off Controversial Plan to Sell Ads
The Wall Street Journal
@kirstengrind
Facebook-owned messaging service to focus on helping businesses connect with customers.

Jobs

Analyst – Technical: ASPI’s International Cyber Policy Centre has an outstanding opportunity for a talented and passionate technically-focused analyst to join its growing centre. We are looking for a creative and passionate individual who can contribute unique technical skills to work across a range of projects in the centre. This individual may possess skills and experience in one or more of the following areas including malware analysis, reverse-engineering, data analysis and web scraping (for work on online disinformation for example) and/or a deep technical knowledge of critical technologies. The successful candidate will be offered a remuneration package at a level aligned with their demonstrated skills and expertise. This is a contract position for an initial 1 year term with the option of extension. At any one time ASPI has multiple people working at the institute who are on secondments or unpaid leave from the Australian Public Service (APS). Similar arrangements - including secondments - can be negotiated in this instance pending approval from the APS department/agency.

Researcher – Cyber, Technology, Asia-Pacific: ASPI’s International Cyber Policy Centre has an outstanding opportunity for an emerging researcher to join its growing centre and work directly with the ICPC Director. Staff in the centre have diverse backgrounds and are usually involved in several projects at once. We are looking for a team member with a flexible, entrepreneurial approach, who is a self-starter, has the ability to deliver to deadlines and enjoys working in a collaborative team environment. Foreign languages (particularly Asian languages) and social media analysis skills are desirable but not essential. We are looking for a creative and passionate individual who can work collaboratively in a team environment to support the centre’s program of work. This will include working with a variety of centre staff to conduct research on a range of priority projects, on project coordination and administration, working to facilitate international fellowships, supporting public and private events and engaging with key stakeholders.

Share Daily Cyber Digest

CommentComment
ShareShare

Create your profile

0 subscriptions will be displayed on your profile (edit)

Skip for now

Only paid subscribers can comment on this post

Already a paid subscriber? Sign in

Check your email

For your security, we need to re-authenticate you.

Click the link we sent to , or click here to sign in.

TopNewCommunity

No posts

Ready for more?

© 2022 ASPI Cyber Policy
Privacy ∙ Terms ∙ Collection notice
Publish on Substack Get the app
Substack is the home for great writing