The incoming European Commissioner for Tech Sovereignty, Security, and Democracy, Henna Virkkunen, expressed dissatisfaction with the limited action taken by EU member states to exclude high-risk telecom suppliers, such as China’s Huawei and ZTE, from critical infrastructure. During her confirmation hearing in the European Parliament, Virkkunen noted that although the European Commission adopted 5G security measures in 2020, fewer than half of the EU member states have implemented restrictions on these suppliers. She indicated that this issue will be addressed in the planned revision of the Cyber Security Act next year and stressed the need for more serious action from national governments.
Virkkunen also pointed out that while the EU had adopted the 5G Cybersecurity Toolbox to protect telecom networks, only 11 of the 27 member states have fully implemented measures, including bans and restrictions on high-risk vendors. In addition to her efforts to strengthen cybersecurity, Virkkunen plans to propose a Digital Networks Act in 2025 to overhaul telecom regulations and boost investment and connectivity. On the topic of US Big Tech compliance with EU rules, she reaffirmed the importance of cooperation but emphasised that all companies must adhere to EU regulations, including those set out in the Digital Services Act.
The UK government is considering fines of up to £10,000 for social media executives who fail to remove illegal knife advertisements from their platforms. This proposal is part of Labour’s effort to halve knife crime in the next decade by addressing the ‘unacceptable use’ of online spaces to market illegal weapons and promote violence.
Under the plans, police would have the power to issue warnings to online companies and require the removal of specific content, with further penalties imposed on senior officials if action is not taken swiftly.The government also aims to tighten laws around the sale of ninja swords, following the tragic case of 16-year-old Ronan Kanda, who was killed with a weapon bought online.
Home Secretary Yvette Cooper stated that these new sanctions are part of a broader mission to reduce knife crime, which has devastated many communities. The proposals, backed by a coalition including actor Idris Elba, aim to ensure that online marketplaces take greater responsibility in preventing the sale of dangerous weapons.
Germany is strengthening its cyber defences as elections approach, with Interior Minister Nancy Faeser highlighting the need for robust protections against cyber-attacks and disinformation. Faeser warned of potential threats from Russia and other foreign actors, stressing that democracy must also be safeguarded in the digital realm.
The annual report from the Federal Office for Information Security pointed to Germany’s vulnerability to hybrid threats, which include hacking, manipulation, and disinformation. Faeser confirmed plans to bolster cybersecurity, aiming to counteract any attempts at digital interference that could destabilise the election process.
Germany’s snap elections are set for early next year, following the collapse of Chancellor Olaf Scholz’s coalition government amid economic concerns and rising populism. While recent elections saw no major cybersecurity incidents, authorities continue to monitor for risks.
With the political landscape in flux, security agencies remain vigilant. Enhanced measures are in place to detect and address cyber threats as the nation prepares for a potentially turbulent electoral period.
The US Transportation Security Administration (TSA) has proposed a new cybersecurity rule designed to strengthen the resilience of surface transportation infrastructure. Specifically, the rule mandates high-risk operators, including those in the pipeline, railroad, and bus sectors, to implement comprehensive Cyber Risk Management (CRM) programs to manage and mitigate cybersecurity risks.
In addition to this, operators will be required to report cybersecurity incidents to the Cybersecurity and Infrastructure Security Agency (CISA) and physical security concerns to TSA. Furthermore, the rule stipulates that operators must develop and maintain detailed cybersecurity plans, including a Cybersecurity Assessment Plan (CAP) for annual evaluations and a Cybersecurity Operational Implementation Plan (COIP) to guide improvements.
These plans must incorporate governance structures, designate cybersecurity coordinators, and undergo regular audits to assess their effectiveness. Moreover, the rule promotes a defence-in-depth approach to cybersecurity by including system monitoring, patch management, and incident response planning, all of which aim to reduce the impact of cyberattacks.
Additionally, TSA seeks public feedback on the rule’s potential compliance burdens, economic impacts, and ways to streamline the process, particularly for smaller entities. TSA’s initiative reflects a broader commitment to enhancing the cybersecurity posture of surface transportation systems while ensuring regulatory consistency across federal, state, and local levels.
Why does it matter?
The agency is seeking input on reducing redundancies and improving alignment with existing regulations, particularly in cybersecurity training and personnel vetting for high-risk industries. By gathering feedback, TSA aims to refine the rule and ensure it effectively addresses the evolving cyber threats facing the nation’s critical transportation infrastructure.
South Korea has reported a rise in cyberattacks by pro-Russia hacking groups following North Korea’s recent deployment of troops to Russia in support of its war against Ukraine. Seoul’s presidential office held an emergency meeting after detecting denial-of-service attacks on government and private websites, leading to temporary outages but no significant damage. Officials have pledged to strengthen cybersecurity defences in response to the attacks.
The South Korean government noted that pro-Russian hacktivist attacks have grown more frequent since North Korea sent troops to Russia. Reports indicate that over 10,000 North Korean soldiers are now stationed in Russia, with some reportedly engaged in combat near Ukraine.
The new military partnership between Pyongyang and Moscow has drawn condemnation from South Korea, the US, and Western allies, with Ukrainian President Volodymyr Zelensky warning that these developments mark a new era of global instability.
Australian Prime Minister Anthony Albanese announced a groundbreaking proposal on Thursday to implement a social media ban for children under 16. The proposed legislation would require social media platforms to verify users’ ages and ensure that minors are not accessing their services. Platforms that fail to comply would face substantial fines, while users or their parents would not face penalties for violating the law. Albanese emphasised that this initiative aims to protect children from the harmful effects of social media, stressing that parents and families could count on the government’s support.
The bill would not allow exemptions for children whose parents consent to their use of social media, and it would not ‘grandfather’ existing users who are underage. Social media platforms such as Instagram, TikTok, Facebook, X, and YouTube would be directly affected by the legislation. Minister for Communications, Michelle Rowland, mentioned that these platforms had been consulted on how the law could be practically enforced, but no exemptions would be granted.
While some experts have voiced concerns about the blanket nature of the proposed ban, suggesting that it might not be the most effective solution, social media companies, including Meta (the parent company of Facebook and Instagram), have expressed support for age verification and parental consent tools. Last month, over 140 international experts signed an open letter urging the government to reconsider the approach. This debate echoes similar discussions in the US, where there have been efforts to restrict children’s access to social media for mental health reasons.
The UK’s Financial Conduct Authority (FCA) has successfully prosecuted two men, Raymondip Bedi and Patrick Mavanga, for running a £1.5 million cryptocurrency investment fraud that misled 65 investors. Between 2017 and 2019, Bedi and Mavanga lured investors through cold calls and fraudulent, professional-looking websites, offering high returns on fake crypto platforms. The tactic resulted in substantial losses for their victims, totalling over £1.5 million.
The FCA charged both men with conspiracy to defraud, operating without FCA authorisation, and money laundering. Mavanga also faced additional charges for perverting the course of justice by deleting phone records linked to the scheme. The prosecution underscores the FCA’s mandate to uphold financial service standards and highlights the importance of being wary of unsolicited calls and online investment offers.
Two other suspects were involved: Rowena Bedi was acquitted, while a third defendant awaits a retrial in 2025. Another individual, Minas Filippidis, remains at large. The FCA advises consumers to stay vigilant against scams and only trust financial services authorised by the agency.
Rocket Lab, a leading player in the small satellite launch industry, announced that its CEO Peter Beck’s account on X (formerly Twitter) was compromised on Wednesday. The company, which has a market valuation of $6.5 B and manufactures the Electron rocket, confirmed that they are working closely with X to secure Beck’s account.
The breach came to light after a suspicious post from Beck’s account promoted a new Ethereum-based token supposedly aimed at funding space-themed projects. Rocket Lab quickly issued a statement clarifying that this post was not official, and their team is collaborating with X to restore account control.
Rocket Lab is actively addressing the issue, emphasising their commitment to safeguarding their leadership’s social media presence against further cybersecurity breaches.
The Canadian government has ordered TikTok’s Canadian business to shut down, citing national security concerns over the app’s Chinese ownership. The decision, announced Wednesday, affects the operations of TikTok’s parent company, ByteDance, but does not block Canadians from accessing the app or creating content on it. According to Canadian Innovation Minister Francois-Philippe Champagne, the shutdown aims to address specific security risks posed by ByteDance’s activities in Canada.
This action comes after Canada’s year-long review of TikTok’s investment plans in the country. Canadian law allows the government to scrutinise foreign investments for potential risks, though details of these assessments are confidential. In response, TikTok has announced plans to contest the order in court, citing concerns about job losses for local employees impacted by the decision.
While Canada has already banned TikTok on government-issued devices, the shutdown of ByteDance’s Canadian operations reflects mounting pressure on TikTok in North America. The United States has set a January deadline for ByteDance to divest its US TikTok assets or face a ban. Both countries point to national security risks associated with TikTok’s ownership and data practices as key reasons for these measures
The Federal Trade Commission (FTC) has charged Sitejabber, an online review platform, for violating its new rules on fake reviews. This marks one of the agency’s first enforcement actions under updated regulations designed to curb deceptive practices. The FTC alleges that Sitejabber misled consumers by using point-of-sale reviews—feedback collected before customers had received any products or services—to falsely inflate businesses’ review scores.
The company allowed its clients to publish these premature reviews, giving a false impression that they reflected actual customer experiences. The FTC has now ordered Sitejabber to stop this practice and prohibited it from assisting other businesses in misrepresenting reviews. The new rules, which took effect last month, aim to tackle deceptive online review practices, including those involving AI-generated reviews and fake review websites masquerading as independent.
The FTC’s crackdown is part of a broader effort to address the rising problem of fake reviews on e-commerce platforms like Amazon. With the new regulations in place, the agency intends to prevent misleading online content that could deceive consumers into making purchasing decisions based on false information.
