Cybersecurity chief confirms US election integrity amid disinformation

The head of US cybersecurity, Jen Easterly, announced Monday that, despite an increase in disinformation targeting the 2024 presidential election, there has been no evidence of interference capable of affecting the election outcome. Easterly noted the unprecedented levels of false information spreading across online platforms, much of which has been attributed to foreign actors aiming to sow division among voters.

US authorities have pointed to Russia as one of the primary sources of election-related disinformation, including a widely circulated fake video in Georgia showing an immigrant falsely claiming to have voted multiple times. Officials say that similar tactics are expected to continue beyond Election Day, targeting trust in the electoral process through to January.

Easterly assured voters that election security is stronger than ever, thanks to enhanced protective measures and improved preparedness across voting jurisdictions. Her message emphasised the government’s ongoing commitment to maintaining safe, secure, and reliable elections for all Americans.

International Red Cross adopts resolution to shield civilians from harmful cyber activities in armed conflicts

The 34th International Conference of the Red Cross and Red Crescent has adopted a new resolution to protect civilians and essential infrastructure from the potential risks posed by ICT activities during armed conflict. Recognising the increased likelihood of information and communication technologies (ICTs) being used in future conflicts, the resolution addresses the need to safeguard civilian lives and critical systems from the unintended human costs of these operations.

The resolution highlights concerns over the malicious use of ICT capabilities by parties in conflict, noting that such activities could impact protected persons and objects, including essential infrastructure like power, water, and healthcare systems. It underscores that these civilian objects are crucial for survival and should remain unaffected during hostilities. The resolution further emphasises the importance of preventing these activities from crossing international borders, which could inadvertently impact civilians in other regions.

Acknowledging the limited resources and capacities of some states and humanitarian organisations, the resolution also draws attention to the vulnerability this may create. Without adequate defences, states and components of the Red Cross and Red Crescent Movement could face greater risks from cyber incursions during the conflict.

Another focus of the resolution is the potential for civilians to become involved in cyber activities related to conflict, either by conducting or supporting operations. It points to the need for greater awareness of the risks and legal implications, as civilians may need to fully understand the consequences of their involvement in ICT-related activities in conflict situations.

The resolution also calls for further study and dialogue on how international humanitarian law (IHL) applies to ICT activities in warfare. It acknowledges that while IHL traditionally protects civilians and critical infrastructure during conflict, the unique characteristics of cyberspace may require additional interpretation and understanding.

By adopting this resolution, the Red Cross aims to ensure that, as the nature of conflict changes, a strong international framework remains to protect civilians and essential infrastructure from the emerging threats posed by cyber activities in armed conflict.

Google researchers discover first vulnerability using AI

Google researchers announced a breakthrough in cybersecurity, revealing they have discovered the first vulnerability using a large language model. This vulnerability, identified as an exploitable memory-safety issue in SQLite—a widely used open-source database engine—marks a significant milestone, as it is believed to be the first public instance of an AI tool uncovering a previously unknown flaw in real-world software.

The vulnerability was reported to SQLite developers in early October, who promptly addressed the issue on the same day it was identified. Notably, the bug was discovered before being included in an official release, ensuring that SQLite users were unaffected. Google emphasised this development as a demonstration of AI’s significant potential for enhancing cybersecurity defences.

The initiative is part of a collaborative project called Big Sleep, which involves Google Project Zero and Google DeepMind, stemming from previous efforts focused on AI-assisted vulnerability research.

Many companies, including Google, typically employ a technique known as ‘fuzzing,’ where software is tested by inputting random or invalid data to uncover vulnerabilities. However, Google noted that fuzzing often needs to improve in identifying hard-to-find bugs. The researchers expressed optimism that AI could help bridge this gap. ‘We see this as a promising avenue to achieve a defensive advantage,’ they stated.

The identified vulnerability was particularly intriguing because it was missed by existing testing frameworks, including OSS-Fuzz and SQLite’s internal systems. One of the key motivations behind the Big Sleep project is the ongoing challenge of vulnerability variants, with more than 40% of zero-day vulnerabilities identified in 2022 being variants of previously reported issues.

US Senate pushes for stronger security of internet backbone

The US Federal Communications Commission (FCC) is set to review its oversight of global undersea communications cables, marking the first major revision of its rules since 2001. Undersea cables, which carry over 95% of the world’s internet traffic, are seen as increasingly vulnerable to cyber threats and foreign interference, particularly from China and Russia. On 21 November, FCC Chair Jessica Rosenworcel plans to address how the commission’s regulations could adapt to the evolving economic and security challenges facing these crucial cables.

A bipartisan group of senators recently urged the Biden administration to prioritise securing the United States’ undersea infrastructure, highlighting concerns about possible sabotage and the growing involvement of Chinese firms in cable laying and maintenance. Washington has already restricted China from participating in key subsea cable contracts, citing espionage risks, and prevented direct connections between US territory and mainland China or Hong Kong.

In recent years, the US has blocked or canceled multiple subsea cable projects linked to China, emphasising the need to protect internet traffic from potential rerouting and mismanagement. The upcoming FCC review underscores the agency’s commitment to ensuring the resilience of global data flows, with potential policy shifts expected to impact both domestic and international internet security.

Colt Technology Services and Rivada Space Networks forge alliance for low earth orbit satellite connectivity

Colt Technology Services and Rivada Space Networks collaborate to develop a next-generation connectivity network that leverages innovative satellite technology, specifically utilising a unique global data constellation of 600 low Earth orbit (LEO) satellites. The partnership aims to enhance Colt’s digital infrastructure capabilities by delivering ultra-secure and low-latency connectivity, which combines the high speed of fibre optics with the expansive reach of satellite technology.

Notably, with the first satellite launch planned for 2025 and services expected to commence in 2026, the collaboration effectively addresses the pressing needs of enterprises that require rapid and secure data transfer. Furthermore, Rivada’s ‘Outernet’ allows data to remain in space from origin to destination, resulting in a satellite network with global pole-to-pole coverage and lower latency than traditional terrestrial fibre.

The physically separate network routing enhances security and provides organisations with greater protection when sharing sensitive information, particularly in industries such as banking and finance. In addition to these advancements, Colt Technology Services will join Rivada’s Customer Advisory Board and participate in a series of technical workshops.

These initiatives will facilitate knowledge exchange and strengthen collaboration around the Outernet’s capabilities. Through this strategic alliance, Colt and Rivada aim to revolutionise the connectivity landscape by providing robust, secure, and scalable solutions that meet customers’ evolving needs worldwide.

Big Tech boosts AI investments amid Wall Street pressure

Big technology firms, including Microsoft and Meta, are significantly increasing their investments in AI data centres to meet soaring demand, but Wall Street is looking for quicker returns on these expenditures. Both companies reported rising capital expenses due to their AI initiatives, with Alphabet also indicating that its costs would remain elevated. Amazon is expected to follow suit in its upcoming earnings report.

This surge in capital spending could impact profit margins, causing concern among investors. Shares of major tech companies, including Meta and Microsoft, fell by around 4% in premarket trading, despite reporting better-than-expected profits for the July-September quarter. Analysts warn that while the race to build AI capacity is intensifying, it will take time for these investments to yield returns.

Microsoft’s capital expenditures for a single quarter now surpass its total annual spending from prior years. The company noted a 5.3% increase in spending, amounting to $20 billion, while also predicting further increases related to AI. However, they warned of potential slowdowns in growth for their Azure cloud business due to data centre capacity constraints. Similarly, Meta anticipates a “significant acceleration” in AI infrastructure costs next year.

The tech industry is experiencing bottlenecks, particularly as chipmakers like Nvidia struggle to keep up with the demand for AI chips. Advanced Micro Devices has also reported that AI chip demand is outpacing supply, limiting growth potential. Despite these challenges, both Microsoft and Meta maintain that it is still early in the AI cycle and emphasise the long-term benefits of their investments, echoing earlier experiences during the development of cloud technology.

CISA unveils first international strategic plan for 2025-2026, to enhance global cybersecurity partnerships

The Cybersecurity and Infrastructure Security Agency (CISA) has announced its first International Strategic Plan for 2025-2026, underscoring a robust commitment to securing US critical infrastructure (CI) through global partnerships. Building on its previous 2023-2025 Strategic Plan, this new approach aligns with the National Security Memorandum on Critical Infrastructure Security and Resilience, highlighting the essential role of international cooperation in protecting interconnected cyber and physical systems.

To achieve its mission, CISA has outlined three primary goals for international engagement:

  1. Bolster the Resilience of Foreign Infrastructure on Which the US Depends: Collaborating with foreign partners, CISA aims to fortify international infrastructure, mitigating risks that could disrupt critical US operations.
  2. Strengthen Integrated Cyber Defense: By sharing expertise, resources, and best practices, CISA and its allies can build a unified defence, equipping nations to address emerging threats to critical infrastructure better.
  3. Unify Agency Coordination of International Activities: The agency’s “One CISA” approach seeks to streamline efforts and maximise the impact of global partnerships, reducing redundancy and fostering cohesive international collaboration.

Ericsson partners with MasOrange for ORAN technologies

Ericsson has signed a 5G deal with Spain’s largest telecom operator, MasOrange, to enhance its network using Open Radio Access Network (ORAN) technologies. This marks Ericsson’s first such agreement in Europe following a significant $14 billion, five-year deal with AT&T in the United States last year. ORAN technology is designed to reduce costs by employing cloud-based software and equipment from multiple suppliers rather than relying on a single provider.

Jenny Lindqvist, Ericsson’s senior vice president, noted that this partnership aligns with industry trends and is crucial for scaling Open RAN technology. She emphasised that Europe is still in the early stages of 5G deployment compared to other regions. MasOrange, formed from the merger of the Spanish unit of France’s Orange and local competitor MasMovil, serves over 30 million mobile customers.

While Ericsson did not disclose the specifics of the deal with MasOrange, a source indicated it would involve around 10,000 sites. The agreement aims to meet the growing demand for 5G services across urban and rural areas, as well as large venues like stadiums.

Linux creator supports removing Russian kernel maintainers

Linux creator Linus Torvalds has expressed support for removing several Russian maintainers from the Linux kernel project. This decision, announced by prominent developer Greg Kroah-Hartman, has sparked debate within the Linux community. The removals affect 11 Russian developers, largely due to compliance with new sanctions, though specific details of the removals still need to be fully clarified.

Responding to the concerns, Torvalds stated, “If you haven’t heard of Russian sanctions yet, you should try reading the news sometime,” emphasising that the changes will not be reversed.

The Linux kernel, the operating system’s core, is managed by maintainers who oversee code submissions and updates. Kroah-Hartman noted that those removed may return if they provide documentation proving independence from sanctioned entities, especially organisations associated with the Russian government.

This action has stirred reactions among developers, with some accusing the decision-makers of acting contrary to Linux’s open-source principles. Others warned that the decision could lead to future uncertainties about the participation of maintainers in sanctioned regions.

Responding to criticism, Torvalds dismissed the objections as originating from “Russian troll factories” and reaffirmed his stance, citing his opposition to Russian aggression. The move follows broader trends in the tech industry, where major US companies, like Docker Hub and GitHub, have imposed restrictions on Russian users, reflecting the impact of international sanctions on open-source software projects.

Chinese hackers reportedly target US political figures’ communications in major cybersecurity breach

Chinese hackers infiltrated Verizon’s phone systems to target devices used by individuals connected to Kamala Harris’s campaign, according to a source. Reports also indicated attempts to breach phones linked to Donald Trump and JD Vance, although Reuters could not confirm this.

Investigators are working to establish whether any communications from Trump or Vance were compromised. While the Trump campaign did not verify the targeting, it acknowledged the issue and criticised Harris, claiming her leadership emboldened cyberattacks from China and Iran.

The Chinese embassy in Washington denied involvement, asserting that China does not interfere in US elections and opposes cyberattacks in any form. The Harris campaign did not provide an immediate response to requests for comment.

The FBI and the US Cybersecurity and Infrastructure Security Agency are currently investigating the incident. Verizon confirmed it was aware of a sophisticated cyberattack aimed at US telecommunications and said it is cooperating with law enforcement.