Proprietary Software Leftovers

posted by Roy Schestowitz on Nov 03, 2022

• Cyber incident reporting isn’t the problem — ignorance is [iophk: Windows TCO]

  But simply relying on industry to report incidents voluntarily hasn’t been enough. We still lack key data about cyber incidents: What is the overall rate of incidents? How does it differ by sector or region or company size? Can we use knowledge about an incident at one company to prevent something bad from happening to another?

  Acknowledging that voluntary reporting isn’t sufficient, Congress passed legislation earlier this year requiring critical infrastructure owners to report substantial cyber incidents. While almost everyone supports mandatory reporting in theory, some organizations are trying to weaken the new requirements.

• Ransomware Summit, Twitter Board Dissolved, NetworkX Winners [iophk: Windows TCO]

  A White House official said ransomware attacks are increasing faster than the country’s ability to disrupt them, according to a transcript from the second Counter Ransomware Initiative summit that began this weekend.

• Cyberattack causes shutdown at communication, transportation and aviation agencies [iophk: Windows TCO]

  The Ministry of Infrastructure, Communications and Transport (SICT) announced Tuesday that it had suspended a range of bureaucratic procedures and other work due to a cyberattack.

  In an announcement published in the federal government’s official gazette (DOF), the ministry said that the suspension took effect on Oct. 24 and would remain in force until Dec. 31.

• Apple vs. Everyone: Why Rivals Are Sharpening Knives

  Now, thanks to an update to Apple’s App Store rules, Spotify may soon find a powerful ally in another U.S. company whose own economic downturn has been exacerbated by Apple’s policy changes: Meta. On Oct. 24, Apple, led by Tim Cook, updated its rules, announcing that for boosted posts sold on iOS apps, developers are required to use Apple’s payment system, thus necessitating Apple’s 30 percent cut. “Boosting, which allows an individual or organization to pay to increase the reach of a post or profile, is a digital service — so of course in-app purchase is required,” an Apple rep said.

• Background Press Call by a Senior Administration Official Previewing the Second International Counter Ransomware Initiative Summit

  Just this summer, for example, in the U.S. we saw the largest unified school district in the U.S. attacked by ransomware actors the day before school began. We’ve seen hospitals and networks of hospitals attacked in France and the UK. A significant ransomware attack that occurred just recently in Australia as well.

  So, to take a step back, we launched the CRI last year to build on President Biden’s leadership to rally allies and partners to counter the shared threat of ransomware.

• „Partial unavailability“: Largest EU police database repeatedly down

  Since the Schengen Information System has been run by an EU agency, it has failed completely on at least 34 occasions. The latest incidents are only now being made public.