Digital Nasional Berhad (DNB) and Cybersecurity Malaysia (CSM) have signed a collaboration agreement to establish a National 5G Cybersecurity Testing Centre and develop new security guidelines to strengthen Malaysia’s 5G network against cyber threats.
The National 5G Cybersecurity Testing Centre will serve as a platform for industry players to identify vulnerabilities, ensure compliance with standards, and validate security features of 5G networks. The upcoming 5G security guidelines will be used as fundamental requirements for the telecommunications industry and serve as guiding principles for future 5G security baselines.
The partnership will also involve exchanging threat intelligence information between DNB and CSM to enhance the nation’s cyber threat combat capabilities. Digital Minister Gobind Singh Deo emphasised that 5G is a critical national infrastructure sector that impacts national defence, economic stability, governmental functions, and social routines and that cybersecurity is a shared responsibility that requires pooling resources, intelligence, and expertise.
DNB’s Chief Operating Officer Nasution Mohamed stated that collaborating with CSM is crucial in establishing a strong and robust cybersecurity ecosystem as the industrial, commercial, and public sectors accelerate their digitalisation efforts through 5G. CSM’s Chief Executive Officer Dato Ts Dr Haji Amirudin Abdul Wabah highlighted that the National 5G Cybersecurity Testing Centre will enhance the ability to secure 5G networks and protect the digital future of 5G networks for Malaysian users.
Why does it matter?
The collaboration between DNB and CSM marks a significant advancement in Malaysia’s efforts to secure its 5G infrastructure against cyber threats. As the National 5G Cybersecurity Testing Centre takes shape and new guidelines are developed, stakeholders can look forward to a more secure digital landscape that supports innovation and growth in the telecommunications sector.
The former head of Greece’s EYP intelligence service, Panagiotis Kontoleon, has refuted claims that the agency employed illegal spyware between 2019 and 2022. The allegations, which emerged in 2022, prompted a scandal that led to his resignation and that of the prime minister’s general secretary. The controversy centres around Predator spyware, developed by the surveillance firm Cytrox, which was reportedly used to infect the phones of various individuals, including journalists and politicians.
Kontoleon, who led EYP during the period in question, testified in closed hearings that the agency did not acquire or use Predator software. The testimony follows allegations that the phones of opposition party leader Nikos Androulakis and journalist Thanasis Koukakis, among others, were compromised by this spyware. Despite these claims, the EYP has not disclosed the reasons for the surveillance to those affected.
The Greek government has maintained that monitoring was lawful and part of standard wiretapping procedures. Kontoleon emphasised that a prosecutor authorised all wiretapping operations and that his political supervisors were not involved in operational decisions regarding targets or methods. Similarly, Grigoris Dimitriadis, who served as the general secretary and political supervisor, also testified against the use of illegal spyware.
In July, Tal Dilian, founder of Intellexa, which owns Cytrox, denied any involvement or misconduct related to the spyware allegations. This ongoing case raises questions about privacy and government surveillance in Greece.
The US cybersecurity company has successfully restored 97% of its Windows sensors following a global outage caused by a faulty software update. The issue, which began nearly a week ago, affected 8.5 million devices running Microsoft’s Windows operating system, leading to significant disruptions in services, including flights, healthcare, and banking.
The outage was triggered by a fault in CrowdStrike’s Falcon platform sensor, a security agent designed to protect devices from threats. The fault caused computers to crash and display the notorious blue screen of death. In response, CrowdStrike deployed a fix and mobilized all resources to support customers, enhancing recovery efforts with automatic recovery techniques.
The recovery comes amidst scrutiny over the cybersecurity firm’s quality control measures. Despite the challenges, CrowdStrike’s swift response has helped mitigate further impact and restore critical services globally.
Hackers from North Korea, identified as Anadriel or APT45, have conducted a global cyber espionage campaign to steal classified military secrets, supporting Pyongyang’s banned nuclear weapons programme. The joint advisory came from the United States, Britain, and South Korea. The hackers are believed to be part of North Korea’s Reconnaissance General Bureau, which has been under US sanctions since 2015.
These cyber units have targeted a wide range of defence and engineering firms, including those manufacturing tanks, submarines, naval vessels, fighter aircraft, and missile and radar systems. Notable breaches occurred at NASA and US Air Force bases, with significant data extraction. In one 2022 incident, hackers infiltrated NASA’s computer system for three months, extracting over 17 gigabytes of data.
Hackers also employed ransomware to fund their operations, targeting US hospitals and healthcare companies. The US Justice Department has charged one suspect, Rim Jong Hyok, with conspiracy and money laundering. In a 2021 incident, a Kansas hospital paid a ransom in bitcoin, which was traced to a Chinese bank. Authorities are offering a $10 million reward for information leading to Rim’s arrest.
Officials from the FBI and Justice Department have seized some online accounts, recovering $600,000 in virtual currency to be returned to ransomware victims. The operation reveals the extent of DPRK state-sponsored actors’ efforts to advance their military and nuclear programmes. Last year, North Korean hackers breached systems at a Russian rocket design bureau, employing similar phishing techniques and computer exploits.
As US Vice President Kamala Harris emerges as a leading candidate for the Democratic presidential nomination, she has garnered significant support from Silicon Valley’s tech leaders. Prominent figures like Sheryl Sandberg, Reed Hastings, and Melinda French Gates are backing Harris, reflecting a shift in the tech industry’s allegiance.
Harris, a Bay Area native with deep connections to the tech world, has built a reputation for balancing industry relationships with a commitment to tech accountability. Her tenure as California Attorney General and Senator included efforts to address online harassment and user privacy issues. As Vice President, she has focused on AI safety, engaging with top tech executives to establish robust regulations.
Tech leaders see Harris as a preferable alternative to former President Donald Trump, whose policies they view as detrimental to the industry. Trump’s anti-immigration stance and tariff plans contrast sharply with Harris’s more supportive approach to tech and progressive causes, such as climate action and reproductive rights. The alignment with tech values makes Harris a favoured choice in Silicon Valley.
Malta called for urgent international action against the misuse of cyberspace and its significant impact on societies, governments, critical infrastructure, and global peace and security. Malta’s pivotal role as the President of the Organisation for Security and Cooperation in Europe (OSCE) is highlighted, with a strong focus on enhancing cybersecurity during its term.
Minister for Foreign and European Affairs and Trade Ian Borg has called for increased cyber resilience among OSCE member countries, emphasising the need for cooperation between governments and stakeholders to tackle cyber threats effectively.
The advancements in AI present both opportunities and challenges for cybersecurity. While AI can enhance security measures, it also introduces new vulnerabilities like sophisticated cyber-attacks, deepfakes, and disseminating fake news. Minister Borg stressed the importance of effectively harnessing AI technology to combat cyber threats while preventing misuse.
Minister Borg also criticised the Russian Federation for its malicious cyber activities, particularly in the context of its invasion of Ukraine, highlighting the risks posed to critical infrastructure and essential services. He called for Russia to cease its aggression, underscoring the broader implications for global security and stability. He concluded by emphasising the necessity for enhanced cybersecurity measures and international cooperation to address the evolving nature of cyber threats in today’s interconnected world.
Sam Altman, co-founder and CEO of OpenAI, raises a critical question: ‘Who will control the future of AI?’. He frames it as a choice between a democratic vision, led by the US and its allies to disseminate AI benefits widely, and an authoritarian one, led by nations like Russia and China, aiming to consolidate power through AI. Altman underscores the urgency of this decision, given the rapid advancements in AI technology and the high stakes involved.
Altman warns that while the United States currently leads in AI development, this advantage is precarious due to substantial investments by authoritarian governments. He highlights the risks if these regimes take the lead, such as restricted AI benefits, enhanced surveillance, and advanced cyber weapons. To prevent this, Altman proposes a four-pronged strategy – robust security measures to protect intellectual property, significant investments in physical and human infrastructure, a coherent commercial diplomacy policy, and establishing international norms and safety protocols.
He emphasises proactive collaboration between the US government and the private sector to implement these measures swiftly. Altman believes that proactive efforts today in security, infrastructure, talent development, and global governance can secure a competitive advantage and broad societal benefits. Ultimately, Altman advocates for a democratic vision for AI, underpinned by strategic, timely, and globally inclusive actions to maximise the technology’s benefits while minimising risks.
Singapore-headquartered AI cloud provider Sustainable Metal Cloud (SMC) is set to expand globally, driven by fast-growing demand for its energy-saving technology. CEO and co-founder Tim Rosenfield announced plans to extend operations to EMEA (Europe, Middle East, and Africa) and North America in response to client demand. Currently, SMC operates “sustainable AI factories” in Australia and Singapore, with new launches planned in India and Thailand.
Partnering with AI chip giant Nvidia, SMC uses over 1,200 of Nvidia’s high-end H100 AI chips in Singapore to run open-source models like Meta’s Llama 2. Unlike most data centres that rely on air cooling technology, SMC employs immersion cooling, submerging Dell servers fitted with Nvidia GPUs in a synthetic oil called polyalphaolefin. The following method reduces energy consumption by up to 50% compared to traditional air cooling.
The International Energy Agency (IEA) anticipates a tenfold increase in AI demand compared to 2023, with global data centre electricity consumption expected to exceed 1,000 terawatt-hours by 2026. Sustainable Metal Cloud is currently raising $400 million in equity and $550 million in debt to support its expansion, according to sources. That move aligns with the increasing environmental concerns impacting Singapore’s data centre growth and highlights the importance of sustainable technology in meeting future energy demands.
A recent outage has cost Air France KLM around €10 million, according to Chief Financial Officer Steven Zaat. The disruption primarily affected KLM and Transavia, with Air France experiencing minimal impact. The issue originated from a software update by cybersecurity firm CrowdStrike, causing widespread problems, including grounded flights and service interruptions across various sectors.
Air France KLM is among the first airlines to quantify the financial impact of the outage. Zaat detailed that the majority of the disruptions impacted KLM and Transavia, leading to significant operational challenges.
The technology glitch, which occurred last Friday, also disrupted broadcasters and left customers without access to essential services such as healthcare and banking. Delta Air Lines has been the most affected U.S. carrier, cancelling over 6,000 flights since the incident, with potential losses estimated in the hundreds of millions of dollars.
The financial implications of the outage underscore the vulnerability of airlines and other industries to technological disruptions, highlighting the importance of robust cybersecurity measures.
The US Senate has unanimously passed the DEFIANCE Act, allowing victims of nonconsensual intimate images created by AI, known as deepfakes, to sue their creators for damages. The bill enables victims to pursue civil remedies against those who produced or distributed sexually explicit deepfakes with malicious intent. Victims identifiable in these deepfakes can receive up to $150,000 in damages and up to $250,000 if linked to sexual assault, stalking, or harassment.
The legislative move follows high-profile incidents, such as AI-generated explicit images of Taylor Swift appearing on social media and similar cases affecting high school girls across the country. Senate Majority Leader Chuck Schumer emphasised the widespread impact of malicious deepfakes, highlighting the urgent need for protective measures.
Schumer described the DEFIANCE Act as part of broader efforts to implement AI safeguards to prevent significant harm. He called on the House to pass the bill, which has a companion bill awaiting consideration. Schumer assured victims that the government is committed to addressing the issue and protecting individuals from the abuses of AI technology.
