According to Cisco’s threat intelligence division Talos, an estimated 500,000 routers in 54 countries have been infected by malware that the FBI and cybersecurity experts refer to as VPNFilter. The Justice Department has warned that routers are already under control of the Sofacy Group, which is reportedly directed by Russia’s military intelligence agency. Devices from Linksys, MikroTik, Netgear, QNAP and TP-Link are believed to be among the affected equipment. The FBI has requested that owners of home and office routers turn them off and turn them back on. Rebooting the routers will disrupt the malware if present. Users are also encouraged to upgrade firmware, disable remote-management settings, and select a new password. Continue reading FBI Requests That We Reboot All Routers to Disrupt Malware

The Trump administration has reportedly reached an agreement that would keep Chinese telecom equipment manufacturer ZTE in business. The deal requires that ZTE pay a major fine, make management changes, and place U.S. compliance officers at the company. ZTE had earlier announced it would cease operations after the White House banned it from buying U.S. tech components in response to ZTE violating U.S. sanctions against North Korea and Iran. The new agreement would permit ZTE to resume its business with Qualcomm and other U.S. companies. Continue reading Federal Government Makes Deal to Put ZTE Back in Business

Congress is advancing a bill that would put more power in the hands of the federal government to block deals between U.S. and Chinese companies deemed to risk national security. Tensions between the two countries are high as each threatens and seeks to negotiate with the other. President Trump and Chinese vice premier Liu He met to discuss potential concessions as the U.S. ramps up threats of tariffs, while China’s antitrust division just lifted a many-month delay on Bain Capital’s $18 billion deal with Toshiba’s memory chip unit. Continue reading Congress Advances a Bill That Could Curb U.S.-Chinese Deals

Less than a month ago, the U.S. Commerce Department sanctioned U.S. firms from supplying components to Chinese firm ZTE, claiming that the telecom equipment company had violated terms of a settlement regarding sales to Iran and North Korea. By last week, ZTE had closed its operations and, now, in a surprise intervention, President Donald Trump is stepping in to prevent ZTE’s bankruptcy, tweeting that he is working with Chinese President Xi Jinping. ZTE had made a request for a stay of the sanctions order, and the Commerce Department is reviewing it. Continue reading U.S., China Reportedly Working on Deal That Would Save ZTE

The FCC voted unanimously to push forward a new rule that would prevent federally subsidized telecommunications carriers from buying gear from “suppliers deemed to pose a risk to American national security.” A second vote will make the rule final. The rule is aimed at Chinese companies Huawei and ZTE. The day previous to the vote, the government blocked ZTE from using U.S.-made components, saying it “failed to punish employees who violated American sanctions against North Korea and Iran.” Continue reading FCC Advances Proposed Rule to Block Chinese Telecom Gear

Citing national security concerns, President Donald Trump has put the brakes on Singapore-based Broadcom’s attempt to acquire rival chipmaker Qualcomm. The companies were ordered to abandon the $117 billion acquisition bid and dismiss any proposals for Broadcom’s candidates to run for seats on Qualcomm’s board. Had it been approved, the purchase would have marked the largest tech deal of its kind. Broadcom says it “strongly disagrees that its proposed acquisition of Qualcomm raises any national security concerns.” Continue reading Broadcom’s Bid for Qualcomm Blocked Over Security Issues

The Department of Justice officially charged four people yesterday in connection with Yahoo’s 2014 data breach that reportedly resulted in the theft of data from 500 million Yahoo accounts. According to the indictment, the Russian government used the data obtained by two intelligence officers (Dmitry Dokuchaev, Igor Sushchin) and two hackers (Alexsey Belan, Karim Baratov) to spy on White House and military officials, bank executives, cloud computing companies, a senior level airline official, a Nevada gaming regulator, as well as Russian journalists, business execs and government officials. Continue reading U.S. Claims That Russian Hackers Were Behind Yahoo Attack

WikiLeaks released thousands of documents yesterday that it claims detail methods used by the CIA “to break into smartphones, computers and even Internet-connected televisions,” reports The New York Times. According to WikiLeaks, the CIA and allied intelligence services bypassed encryption on messaging services including Signal, Telegram and WhatsApp. WikiLeaks also suggests that agencies can collect audio and messaging data from Android phones “before encryption is applied.” The Wall Street Journal notes that such activities, if actually taking place with consumer electronics, could fuel tensions between intelligence agencies and the tech industry, which has been concerned about customer privacy. Mobile devices are a major concern; NYT published an article detailing potential smartphone vulnerabilities. Continue reading WikiLeaks Claims of CIA Hacking Could Impact Tech Industry

China has adopted a broad and controversial cybersecurity law that places new requirements on tech companies, which foreign businesses fear may be used to negatively affect competition. The law, designed to tighten state control over technology and information while ramping up online security, addresses areas such as data storage, technical support, censorship and government certification of hardware. According to The Wall Street Journal, “The law drew criticism from foreign business groups due to the expansive list of sectors that are defined as part of China’s ‘critical information infrastructure,’ making sectors including telecommunications, energy, transportation, information services and finance subject to security checks.” Continue reading Global Tech Firms Wary of China’s Broad Cybersecurity Law

Following extensive debate, the European Union has approved the EU-U.S. Privacy Shield data transfer agreement that will replace Safe Harbor, which “was struck down by the European Court of Justice in October of last year over concerns about how EU data was being treated once it was transferred to the U.S.,” reports Digital Trends. According to the European Commission’s press release, “For the first time, the U.S. has given the EU written assurance that the access of public authorities for law enforcement and national security will be subject to clear limitations, safeguards and oversight mechanisms and has ruled out indiscriminate mass surveillance of European citizens’ data.” Continue reading EU Approves Debated Privacy Shield to Replace Safe Harbor

Although the FBI was finally able to decrypt the iPhone belonging to San Bernardino terrorist Syed Rizwan Farook by paying for a third party private hack, the issues around accessing content on a personal smartphone are not resolved. The FBI is figuring out how and if it can re-use the hack, but it’s not simply interested in what’s called “data at rest,” says FBI director James Comey. The FBI is also interested in “data in motion,” the emails, texts and other information in transit over the Internet as “hugely significant” for national security. Continue reading FBI iPhone Hack Could Impact the Future of Law Enforcement

Washington and Silicon Valley are poised to clash again in the ongoing debate over encryption technology in relation to data privacy, law enforcement and national security. Senate Intelligence Committee chair Richard Burr (Republican, NC) and Dianne Feinstein (Democrat, CA), the panel’s vice chair, have introduced proposed legislation that would require companies to unlock encrypted devices when served a court order. Congress has been working on a balance between security and privacy regarding encryption, especially in the wake of the recent iPhone case. Continue reading Proposed Encryption Bill Faces Opposition from Silicon Valley

The Justice Department revealed it has learned a way to unlock Syed Rizwan Farook’s iPhone without help from Apple. Farook was a gunman in the San Bernardino shooting that killed 14 people. The announcement stalls the legal standoff between the federal government and Apple; the Justice Department will withdraw its efforts to enlist the tech company’s help in the investigation. While the news suspends the privacy vs. security debate, at least temporarily, law enforcement’s ability to open the device without Apple’s assistance raises new concerns. Continue reading Government Says iPhone Unlocked, Apple No Longer Needed

Apple’s ongoing privacy battle with law enforcement received a boost yesterday when U.S. Magistrate Judge James Orenstein of New York’s Eastern District denied the federal government’s request that the company release data from an iPhone relevant to a New York drug case. The ruling could provide Apple with a leg up as it pushes forward with its defense of privacy concerns regarding its smartphones, and may impact other cases such as efforts by the FBI to compel Apple to open the iPhone related to last year’s mass shooting in San Bernardino, California. Continue reading Judge Sides with Apple in Closely Watched Encryption Case

WikiLeaks has released what it says is the complete intellectual property chapter of the Trans-Pacific Partnership (TPP) trade deal. With its release, some digital rights activists say their worst fears have been realized. They’re referring to one portion that says any of the 12 signatory countries can curtail legal proceedings to tamp down the public spread of embarrassing information, and a legal action from any signatory can force all signatories to block any online content/website rules to be infringing copyright. Continue reading WikiLeaks Releases IP Chapter of Trans-Pacific Partnership