TechDirt - Glyn Moody - As Techdirt has noted, the UK's Investigatory Powers Act, better known as the Snooper's Charter, has been dubbed "the most extreme surveillance law ever passed in a democracy." It may be the worst, but it's not an isolated case. Governments around the world are bringing in laws that grant them powers to spy on innocent citizens using "bulk collection" of information -- mass surveillance, in other words. As the Dutch site Bits of Freedom reports, the latest country to join the super-snooper club is the Netherlands, where the lower house has just passed the bill for the new Intelligence and Security Services Act:
The controversial new law will allow intelligence services to systematically conduct mass surveillance of the internet. The current legal framework allows security agencies to collect data in a targeted fashion. The new law will significantly broaden the agencies' powers to include bulk data collection. This development clears the way for the interception of the communication of innocent citizens.
Another worrying trend is for spies around the world to pass on information they have gathered to intelligence services in other countries. The Dutch law is particularly bad in this respect, for the following reason:
Beta News -Every once in a while a major software company takes us by surprise by releasing an operating system of its own. Kaspersky has done just that with its new KasperskyOS, which is designed for control systems, Internet of Things devices, and network devices. The most intriguing thing about the 14-year project? It has no Linux underpinnings.
If you want to create your own operating system, basing it on Linux is an obvious choice. The open-source kernel is tried and true, after all, and best of all it's free, so if you want a solid foundation it is a great option. But, "for different applications and purposes," Kaspersky went a different route.
"What matters most for Linux, Windows, macOS and the like is compatibility and universality. The developers do their utmost to popularize their solutions by oversimplifying app development and toolsets. But when it comes to our target audiences (hardware developers, SCADA systems, IoT, etc.), this approach is a no-go: What matters most here is security," explains Kaspersky CEO Eugene Kaspersky.
ZDNet - Europe's computer security agency has set out a list of the top threats in the online world, warning that hacking for profit is one of the biggest trends.
"Undoubtedly, optimization of cyber-crime turnover was THE trend observed in 2016. And, as with many of the negative aspects in cyber-space, this trend is here to stay. The development and optimization of badware towards profit will remain the main parameter for attack methods, tools and tactics," warned the report from the European Union Agency for Network and Information Security (ENISA).
It said criminals had been using unsecured Internet of Things (IoT) devices to launch giant distributed denial of service (DDoS) attacks, and have launched extortion attacks against commercial organisations that have "achieved very high levels of ransom and high rates of paying victims", and demonstrated the ability to affect the outcome of democratic processes like the US presidential elections.
Digital by Default - HMRC is to develop its own ID solution rather than utilise GOV.UK Verify to replace the Government Gateway when it comes to an end in March 2018.
National Cyber Security Centre officially opens as ‘guinea pig’ for piloting UK cyberdefence strategiesFebruary 15, 2017
ZDNet - GCHQ's new arm will test strategies and schemes for businesses and industry to follow in future.
In its continuing effort to reduce the impact of cyberattacks against the UK, the British government is setting itself up as a 'guinea pig' for testing new measures and cybersecurity defences that it wants businesses and industry to eventually follow.
The testing plan has been announced at the official opening of the National Cyber Security Centre (NCSC) in central London, a new part of the GCHQ intelligence service tasked with protecting the UK against cyber espionage and cyberattacks -- particularly those targeting critical national infrastructure.
"We're actively working to reduce the harm caused by cyber attacks against the UK and will use the government as a guinea pig for all the measures we want to see done by industry at national scale," said NCSC Technical Director Dr Ian Levy.