cybersecurity

NTT DATA partners with Google Cloud to boost AI and cloud solutions in the Asia Pacific region

NTT DATA and Google Cloud have partnered to accelerate the adoption of cloud-based data analytics and generative AI solutions across the Asia Pacific region. By combining NTT DATA’s industry expertise and client base with Google Cloud’s cutting-edge technologies, the partnership aims to drive innovation, improve operational efficiency, and enhance agility for enterprises.

Specifically, the collaboration focuses on co-developing industry-specific solutions for sectors such as healthcare, financial services, manufacturing, retail, and the public sector. A new NTT DATA Google Cloud Business Unit will also be created to focus on joint solutions in data analytics, GenAI, applications, infrastructure, cybersecurity, and SAP on the Google Cloud Platform (GCP).

The expansion also involves enhancing internal expertise, as NTT DATA plans to certify at least 1,000 more engineers in the APAC region and provide advanced training to its teams to ensure successful solution delivery. With global public cloud spending projected to grow significantly, the partnership aims to capture the increasing demand for cloud services and AI-driven solutions.

The goal is to grow NTT DATA’s cloud business in APAC by more than 10 times over the next three years. By combining NTT DATA’s digital transformation portfolio with Google Cloud’s advanced technologies, the collaboration is set to drive modernisation in AI, cloud infrastructure, and cybersecurity, offering businesses secure and efficient solutions to accelerate their digital transformation.

Cybersecurity chief confirms US election integrity amid disinformation

The head of US cybersecurity, Jen Easterly, announced Monday that, despite an increase in disinformation targeting the 2024 presidential election, there has been no evidence of interference capable of affecting the election outcome. Easterly noted the unprecedented levels of false information spreading across online platforms, much of which has been attributed to foreign actors aiming to sow division among voters.

US authorities have pointed to Russia as one of the primary sources of election-related disinformation, including a widely circulated fake video in Georgia showing an immigrant falsely claiming to have voted multiple times. Officials say that similar tactics are expected to continue beyond Election Day, targeting trust in the electoral process through to January.

Easterly assured voters that election security is stronger than ever, thanks to enhanced protective measures and improved preparedness across voting jurisdictions. Her message emphasised the government’s ongoing commitment to maintaining safe, secure, and reliable elections for all Americans.

UNDP Bahrain and Derasat partner for digital transformation report

The United Nations Development Programme (UNDP) Bahrain and the Bahrain Center for Strategic, International, and Energy Studies (Derasat) have embarked on a significant partnership to develop the National Human Development Report (NHDR), titled ‘Digital Transformation: A Roadmap for Progress.’ That collaboration aims to harness digital transformation as a strategic tool for fostering inclusive growth in the Kingdom, aligning with Bahrain Vision 2030 and the Sustainable Development Goals (SDGs).

In this context, the NHDR will comprehensively analyse how digital transformation can enhance human development outcomes in Bahrain, addressing critical issues such as the digital divide, privacy concerns, cybersecurity, and integrating digital technologies into public services. Furthermore, the report will benchmark Bahrain’s digital landscape against regional and international standards, offering actionable insights and recommendations to improve digital inclusion, protect privacy, and secure digital infrastructures.

Moreover, the UNDP Bahrain and Derasat highlight the importance of stakeholder engagement in developing the NHDR. By collaborating with government entities, civil society organisations, and the private sector, diverse perspectives will be included to ensure alignment with Bahrain’s national development goals.

Chinese hacking tops list of cybersecurity threats to Canada

Canada’s signals intelligence agency has identified China’s hacking activities as the most significant state-sponsored cyber threat facing the country, according to a new threat assessment. The Communications Security Establishment (CSE) highlighted China’s advanced and aggressive cyber campaigns, describing them as highly sophisticated and primarily targeting political and commercial objectives, including espionage, intellectual property theft, and influence operations. This announcement comes amid strained relations between Ottawa and Beijing, fueled by past allegations of Chinese interference in Canada’s electoral process.

The CSE report also noted that Russia’s cyber operations are active in attempts to destabilise Canada and its allies, while Iran poses an additional cyber threat. These findings underscore the ongoing cyber challenges Canada faces from multiple state actors seeking influence and intelligence. The Chinese embassy in Ottawa has not yet commented on the CSE report, and Beijing has historically rejected similar accusations.

Canadian authorities have grown increasingly vocal about foreign interference, with Prime Minister Justin Trudeau previously accusing China of election meddling. Security experts warn that Canada will need to strengthen defenses as geopolitical tensions continue to heighten cyber risks.

Rapid7 explores sale as buyout firms show interest

Boston-based cybersecurity company Rapid7, valued at roughly $2.5 billion, is exploring acquisition options after attracting interest from private equity firms. Working with investment advisors Goldman Sachs and JPMorgan, the firm is reportedly in early discussions with major private equity groups, including Advent, Bain Capital, and EQT. Sources suggest that while talks are ongoing, Rapid7 may ultimately decide against a sale.

The company, a provider of vulnerability management tools helping organisations assess and monitor cybersecurity risks, has been under increased pressure to consider a sale. Activist investor Jana Partners recently acquired a 5.8% stake in Rapid7, urging it to explore strategic options as it faces strong competition from larger players like Tenable and Qualys.

Rapid7 has seen its shares fall around 32% this year amid rising challenges in the cybersecurity market, as clients cut back on spending due to economic pressures. However, news of a potential sale lifted the company’s stock by over 4% on Monday. Interest in cybersecurity acquisitions remains strong, with private equity firms actively pursuing opportunities in the sector, highlighted by major deals such as Advent’s $14 billion acquisition of McAfee in 2021 and Vista Equity’s $4.6 billion buyout of KnowBe4 last year.

Kenya partners with Google to drive digital transformation and economic growth

Kenya partners with Google to enhance its digital infrastructure and empower its citizens in the evolving digital economy. The collaboration aims to create a robust digital ecosystem that meets current technological needs while anticipating future demands.

Kenya seeks to empower decision-makers with real-time insights by utilising AI and data-driven technologies, enhancing operational efficiency and facilitating effective governance. A key focus of the partnership is revitalising the tourism sector through Google’s technology, attracting more international visitors and showcasing the country’s unique landscapes, wildlife, and cultural heritage.

Additionally, prioritising cybersecurity measures is critical to building trust among citizens and ensuring a secure digital environment. The initiative will also promote skills training to equip Kenyans with essential digital competencies, fostering innovation and creativity while contributing to the overall growth of the nation’s economy.

Through this partnership, Kenya addresses immediate technological needs and lays a foundation for sustainable development in the digital space. By enhancing digital literacy and integrating advanced technologies, the collaboration positions Kenya as a leader in the region’s technological landscape.

Why does it matter?

The comprehensive approach ensures that as the digital economy expands, citizens are well-prepared to navigate the challenges and opportunities that arise, ultimately driving growth and resilience in the face of rapid technological advancements.

Hong Kong restricts apps like WhatsApp and WeChat for civil servants

The Hong Kong government has banned most civil servants from using widely used apps, including WhatsApp, WeChat, and Google Drive, on work computers to reduce security risks. The Digital Policy Office’s updated IT security guidelines allow government workers to access these services on personal devices at work, and managers can grant exceptions to the ban if required.

Experts in cybersecurity agree with the policy, pointing to similar restrictions in other governments, including the United States and China, amid increasing concerns over data leaks and hacking threats. Sun Dong, Secretary for Innovation, Technology and Industry, noted that stricter controls were essential given the growing complexity of cybersecurity challenges.

The ban is intended to minimise potential breaches by preventing malware from bypassing security measures through encrypted messages, according to Francis Fong, the honorary president of the Hong Kong Information Technology Federation. Anthony Lai, director of VX Research Limited, called the decision prudent, citing low cybersecurity awareness among some staff and limited monitoring of internal systems.

Data breaches have previously compromised tens of thousands of Hong Kong citizens’ personal information, raising public concern about government cybersecurity protocols. The updated guidelines aim to address these vulnerabilities while increasing overall data security.

Moro Hub and UAE Space Agency partner for digital transformation

Moro Hub and the UAE Space Agency have signed a Memorandum of Understanding (MoU) to establish a strategic partnership to enhance digital transformation within the space sector. The collaboration seeks to leverage Moro Hub’s advanced digital solutions to support the operational goals of the UAE Space Agency.

The key objectives of the MoU include improving operational efficiency through cloud services and cybersecurity, enhancing customer engagement with innovative digital platforms, and creating a competitive advantage that positions the UAE Space Agency as a leader in both the regional and global space sectors. That partnership marks a milestone in the technological evolution of the UAE Space Agency, as it aims to accelerate digital capabilities essential for successful space missions and aligns with the broader vision of the UAE government to reinforce innovation across various sectors.

The enthusiasm surrounding this collaboration highlights its potential to reshape operations and drive advancements, ultimately contributing to the UAE’s ambition to explore new frontiers in space and technology.

Vodafone pushes for cybersecurity reforms in Greece

Vodafone Greece, in collaboration with the Hellenic Foundation for European and Foreign Policy (ELIAMEP), presented a set of proposed cybersecurity policies to Michalis Bletsas, Governor of the National Cybersecurity Authority. The initiative stems from public opinion surveys conducted by Metron Analysis on the views of Greek citizens and businesses on digital security, and a roundtable discussion at the Delphi Economic Forum’s Center for Cybersecurity.

The project identifies key issues in Greece’s cybersecurity landscape, such as fragmented policies, weak public-private sector collaboration, and a lack of a cybersecurity culture among workers. The proposals aim to improve anticipation, prevention, resilience, and response to cyber threats by reforming Greece’s legislative framework and raising awareness about digital security. Bletsas noted that these proposals align with the European NIS2 Directive, which is currently under public consultation.

Maria Skagou, Vodafone Greece’s Director of Legal and Regulatory Affairs, emphasised the importance of cybersecurity in today’s digital age, stressing the need for risk prevention, staff training, and public awareness to address evolving threats.

Internet Archive faces major cybersecurity breach amid targeted attacks

The Internet Archive, the world’s largest digital library, is facing new security troubles after recently recovering from a series of cyber-attacks. On 20 October, users and media outlets reported receiving an email that appeared to come from the Internet Archive Team, revealing a stolen access token for the library’s Zendesk account, a customer service platform. The email claimed the Internet Archive had failed to rotate several exposed API keys, including one that allowed access to over 800,000 support tickets since 2018.

The email, although unauthorised, seemed legitimate as it passed security checks, indicating it might have come from an official Zendesk server. Security experts, including the group Vx-underground, believe the hackers still have persistent access to the Archive’s systems, sending a clear message about unresolved vulnerabilities. Jake Moore, a cybersecurity advisor at ESET, stressed the importance of swift audits after such attacks, warning that attackers often return to test new defences.

The recent cyber-attacks on the Internet Archive included distributed denial-of-service (DDoS) attacks, website defacement, and a data breach. While the pro-Palestinian hacktivist group BlackMeta claimed responsibility for the DDoS attacks, the data breach involved a separate threat actor. According to reports, the breach was caused by an exposed GitLab configuration file, allowing the hacker to download source code and access sensitive information, including the Zendesk API tokens.

Experts warn that the attack may have compromised over 800 support tickets. Despite criticism for not rotating API keys, Internet Archive faces significant challenges in fully understanding the extent of the breach and preventing further exploitation. Ev Kontsevoy, CEO of Teleport, emphasised the importance of having a clear view of access relationships to manage incidents without widespread disruption.

The Internet Archive and its founder, Brewster Kahle, have not publicly commented on the issue. Both Internet Archive and GitLab have also yet to respond to requests for more information.

The situation remains ongoing as the digital library works to address the security flaws that continue to leave it vulnerable.