Page 1,032«..1020..1,0311,0321,0331,034..1,0401,050..»

Food Delivery Solution Market Growth Forecast 2023-2030 … – Digital Journal

July 29, 2023 | Author: admin

PRESS RELEASE

Published July 29, 2023

Infinity Business Insights has recently released its latest research study titled "Food Delivery Solution Market," encompassing over 110 pages of in-depth analysis. The report focuses on the business strategies adopted by key and emerging players in the industry and provides valuable insights into the current market developments, landscape, technologies, drivers, opportunities, market outlook, and status from 2023 to 2030.

The worldwide Food Delivery Solution market is expected to grow at a booming CAGR of 10.97% during 2023-2030. It also shows the importance of the Food Delivery Solution market main players in the sector, including their business overviews, financial summaries, and SWOT assessments.

Click to get Global Food Delivery Solution Market Research Sample PDF Copy Here @ https://www.infinitybusinessinsights.com/request_sample.php?id=1179774&sk

Major players in the market includeMeituan, Ele.me, Just Eat Takeaway, DoorDash, Uber Eats, Delivery Hero, Deliveroo, FoodHub, DEMAE-CAN, Rakuten Delivery, Zomato, Baemin, Hungry Panda, Rappi, Yogiyo.

The Food Delivery Solution Market refers to the industry that provides technology-driven solutions for the delivery of food from restaurants and food establishments to customers' doorsteps. These solutions involve mobile apps and online platforms that enable customers to browse menus, place orders, and make payments for food delivery. Food delivery solutions also include logistics management software that helps restaurants and delivery drivers optimize routes and efficiently fulfill orders. The market has grown significantly due to the increasing popularity of food delivery services, offering convenience and a wide range of dining options to customers, while also enabling restaurants to expand their reach and increase sales through online and mobile channels.

The primary objective of the Food Delivery Solution Market study is to gather highly valuable insights for any market, aiding companies in making crucial decisions. In today's competitive world, every business sector needs to be well-informed about the various aspects of the Food Delivery Solution Market. To stay relevant in a dynamic environment, regular updates of these analytics are essential, as they serve as a fundamental resource for all significant business market choices. The study relies on both primary and secondary sources, obtaining verifiable information through interviews with market experts, which serves as a testament to the accuracy of the findings.

Inquire Before Buying This Food Delivery Solution Market Research Report:https://www.infinitybusinessinsights.com/enquiry_before_buying.php?id=1179774&sk

Global Food Delivery Solution Market: Segmental Analysis

Food Delivery Solution Market by Type:

BreakfastLunchDinnerAfternoon TeaOthers

Food Delivery Solution Market by Application:

FoodDrinksOthers

The Food Delivery Solution market report includes the following countries in different regions:

The regions mentioned above encompass a comprehensive coverage of key markets, offering a global perspective on the market landscape. Heres an overview of the regions and the countries they include:

Food Delivery Solution Market Challenges and Risks::

The Food Delivery Solution Market faces several challenges and risks. Firstly, ensuring timely and accurate food deliveries demands efficient logistics and coordination. Secondly, maintaining food quality and safety during delivery can impact customer satisfaction and brand reputation. Thirdly, competition among food delivery platforms requires innovative offerings and competitive pricing. Additionally, food delivery providers must comply with food safety regulations and hygiene standards to avoid legal and health risks. Furthermore, reliance on delivery drivers and third-party services may lead to customer service issues and delivery delays. Lastly, fluctuating food costs and delivery fees can impact profitability in the food delivery solution market.

The Food Delivery Solution Market report provides clients with verified factual data, endorsed by industry experts and business leaders. It presents a detailed chapter-wise explanation of every aspect of the Protein Purification Chromatography Column market, delving into drivers, trends, opportunities, leading segments, and current trending segments with specific examples. The report also includes profiles of prominent players, along with an analysis of their business expansion strategies.

Research Methodology:

This study employs a robust research methodology that involves data collection through data collection modules with a large sample size. The collected data is then analyzed using statistical & coherent models to derive meaningful insights. Key components of the market report include market share analysis and key trend analysis. To ensure accuracy and reliability, the research team at Infinity Business Insights utilizes a data triangulation approach that involves data mining, analysis of data variables' impact on the market, and validation through primary sources such as industry experts. Various data models are utilized, including the Vendor Positioning Grid, Market Time Line Analysis, Market Overview and Guide, Company Positioning Grid, Company Market Share Analysis, Standards of Measurement, and Asia-Pacific vs. Regional & Vendor Share Analysis. For further inquiries, you can request an analyst call.

Benefits of the Food Delivery Solution Market Report: The Food Delivery Solution Market report is the result of a meticulous and dynamic research methodology, ensuring its credibility and accuracy. It offers an extensive analysis of the latest trends and emerging opportunities within the Food Delivery Solution market. The report contains a wealth of data on the most recent technological advancements and product developments in the Food Delivery Solution industry. The study encompasses a broad range of insights regarding the impact of these innovations on the future growth of the Food Delivery Solution industry. Readers can leverage the comprehensive data and trends provided in the report to make informed decisions and drive business growth. The report presents its insights in a user-friendly manner, featuring graphical representations such as bar graphs, statistics, and pie charts, facilitating easy comprehension. Key components, such as market drivers, challenges, restraints, and opportunities, are thoroughly elucidated to offer a complete understanding of the Food Delivery Solution market. The report also provides a comprehensive overview of the economic scenario of the market, including its benefits and limitations.

Visit full Study Report @ https://www.infinitybusinessinsights.com/reports/global-food-delivery-solution-market-2023-by-company-regions-type-and-application-forecast-to-2029-1179774?sk

Extracts from Table of Content:

Chapter 1. Executive SummaryChapter 2. Industry Outlook3.1. Food Delivery Solution Global Market segmentation3.2. Food Delivery Solution Global Market size and growth prospects, 2023 20303.3. Food Delivery Solution Global Market Value Chain Analysis3.3.1. Vendor landscape3.4. Regulatory Framework3.5. Market Dynamics3.5.1. Market Driver Analysis3.5.2. Market Restraint Analysis3.6. Porters Analysis3.6.1. Threat of New Entrants3.6.2. Bargaining Power of Buyers3.6.3. Bargaining Power of Buyers3.6.4. Threat of Substitutes3.6.5. Internal Rivalry3.7. PESTEL AnalysisChapter 4. Food Delivery Solution Global Market Type OutlookChapter 5. Food Delivery Solution Global Market Application OutlookChapter 6. Food Delivery Solution Global Market Geography Outlook6.1. Food Delivery Solution Industry Share, by Geography, 2023 & 20306.2. North America6.2.1. Food Delivery Solution Market 2023 -2030 estimates and forecast, by Type6.2.2. Food Delivery Solution Market 2023 -2030, estimates and forecast, by application6.2.3. The U.S.6.2.4. Canada6.3. Europe6.3.3. Germany6.3.4. The UK6.3.5. FranceChapter 7. Competitive LandscapeChapter 8. AppendixContinue...

About Us:

Infinity Business Insights is a market research company that offers market and business research intelligence all around the world. We are specialized in offering the services in various industry verticals to recognize their highest-value chance, address their most analytical challenges, and alter their work.

Contact Us:

Amit Jain

Sales Coordinator +1 518 300 3575

[emailprotected]

https://www.infinitybusinessinsights.com

Visit link:

Food Delivery Solution Market Growth Forecast 2023-2030 ... - Digital Journal

Read More..
Posted in Data Mining | Leave a Comment

How Many Disabled People Vote Over the Internet? We Need Better … – Center for Democracy and Technology

July 27, 2023 | Author: admin

Policy decisions around voting technology have a huge impact on the security, fairness, and accessibility of elections. These decisions must be made from a fully informed perspective, particularly when the outcomes may disproportionately impact marginalized communities. One of the thorniest decisions in election administration is whoif anyoneshould be able to vote over the internet. To better inform this decision, the U.S. Election Assistance Commission (EAC) should collect data on the availability of internet voting options to people with disabilities and on how many disabled voters take advantage of these options.

Having a variety of convenient options available to voters is an important way to ensure an inclusive democracy. Internet voting might seem to be an extremely convenient option. Unfortunately, widespread internet voting poses grave security risks to elections. As a 2020 notice from four federal agencies and a 2018 consensus report carried out by the National Academies of Sciences, Engineering, and Medicine have warned, the return of voted ballots over the internet is risky and perhaps impossible to make safe and secure. In our view, the potential dangers of widespread internet voting have not been significantly mitigated (by advances in technology, legislation, election procedures, or anything else) in the years since these publications. Accordingly, we have advocated against the implementation of universal internet voting.

Despite its weaknesses, though, internet voting may be the preferred method for some voters. These voters may be military personnel and overseas citizens (who have rights under UOCAVA, the Uniformed and Overseas Citizens Absentee Voting Act) without access to reliable mail. They may also be voters with disabilities who have difficulty accessing a polling place with accessible technology, or who are unable to independently and privately mark and/or return a paper absentee ballot. For example, a report released this month by the EAC and Rutgers University researchers showed that 38% of surveyed 2022 voters with vision impairments encountered difficulty voting with a mail ballot.

According to the National Conference of State Legislatures, more than half of the states in the U.S. allow military and overseas voters to return their ballots electronically, via email, fax, or an online portal. Prior to the 2020 election, blind voters and disability rights groups sued states, arguing that they should be afforded the same ability to vote online. They argued that the unequal availability of online voting was discriminatory and therefore violated the Americans with Disabilities Act, a vital civil rights statute that aims to minimize discrimination of disabled people and was passed 33 years ago today. Partly as a result of lawsuits like these, some voters with disabilities in 13 states are now able to return their ballots electronically. For some disabled voters, internet voting provides an accessible alternative by allowing them to complete and return a ballot using adaptive technology (such as a screen reader) rather than by having to go to a polling place or mark, fold, and return a mail ballot by hand. (Several counties have piloted programs in which election officials bring accessible voting technology directly to disabled voters homes, in a form of curbside voting where the curb is the voters home, but there is little evidence that these programs are effective and scalable. They also do not serve blind or low-vision voters who want to vote absentee for a common reason: they will be absent from their home jurisdiction during the voting period.)

As a result, electronic ballot return presents a tradeoff. From a disability rights perspective, internet voting may be the best or even only way for some disabled voters to cast a ballot independently and thereby enhance access to the ballot. From a cybersecurity perspective, internet voting is considered untrustworthy and unauditable, and therefore poses such severe risks to democracy that internet voting should be limited as much as possible.

One key to addressing this tradeoff and ensuring that our elections are as secure and accessible as possible is having information on how many voters are voting online. The EAC collects some of this data from election officials when it conducts the Election Administration Voting Survey (EAVS) and Policy Survey (EAPS) after each federal election. The survey includes questions about how many UOCAVA voters return their ballots electronically. (The survey data shows that, in 2020, at least 317,919 UOCAVA voters returned their ballots electronically via email, fax, or online portal. In 2022, at least 99,174 did.) But the survey does not collect any data on how many voters not covered by UOCAVA, such as disabled voters, vote electronically.

As states have expanded the availability of internet voting for disabled voters, it has become critically important for the EAC to collect data on how many disabled voters are choosing to vote online. Michelle Bishop, a disability voting rights expert at the National Disability Rights Network, has said that, just as with UOCAVA voters, we must be willing to take a calculated risk as we offer electronic voting options to disabled voters. But it is impossible to calculate the scale of this risk without data on how many disabled voters choose to vote online.

It is possible that the number of disabled individuals who have voted over the internet is rather low. In Colorado, for example, just over 100 non-UOCAVA voters returned their ballots electronically in 2022 presumably far fewer than the number of disabled voters who were eligible to do so. If so, this raises the question whether states that have internet voting available are doing sufficient outreach to voters who may otherwise have a difficult time voting. But if the number is very high, that might suggest that voters who have the ability to use more secure methods of voting (such as in-person, hand-marked paper ballots) are voting over the internet, creating unnecessary risk.

Because of the serious security risks posed by internet voting, we need to do the best possible job of ensuring that internet voting is available to those voters who truly need itand no one else. Right now, we dont know how well we are doing at that goal. But having better usage numbers will give us a sense and help us improve election policies in order to achieve it. (We also need to have a better understanding of what the numbers should bein other words, the number of voters who have no way to vote other than over the internet. But such an analysis is beyond the scope of the EACs biennial surveys.)

To help paint a clearer picture of who votes over the internet, the EAC should modify the surveys that it will send to election officials after the 2024 election. Specifically, it should modify the EAPS survey to determine which non-UOCAVA voters in each jurisdiction are allowed to use electronic ballot return, and it should modify the EAVS survey to collect quantitative data on how many non-UOCAVA voters returned their ballots electronically. Reliable data is critical for making informed decisions about election technology and election policynot just for disabled people, but for everyone. There can be real tension between cybersecurity and accessibility in elections. Decisions on these matters must be made with evidence and data at the forefront.

The authors thank Michelle Bishop, Alexia Kemerling, Deborah Scroggin, and John Sebes for helpful feedback and conversations. The authors also thank Judd Choate, Election Director for Colorado, for providing recent data related to non-UOCAVA electronic ballot return.

Original post:
How Many Disabled People Vote Over the Internet? We Need Better ... - Center for Democracy and Technology

Read More..
Posted in Internet Security | Leave a Comment

Home affairs cyber survey exposed personal data of participating firms – The Guardian

July 27, 2023 | Author: admin

Data and computer security

Shadow minister says leak of sensitive information after research into the Optus and Medibank hacks was deeply ironic

The home affairs department exposed the personal information of more than 50 small business survey participants who were sought for their views on cybersecurity, Guardian Australia can reveal.

The names, business names, phone numbers and emails of the participants in the survey were published on the parliament website in response to a question on notice from Mays Budget estimates hearing.

The research report from firm 89 Degrees East was developed as part of the cyber wardens pilot program launched in the wake of last years Optus and Medibank cyber attacks, and was included in a bundle of responses about the program to answer a question from the shadow cyber security and home affairs minister, James Paterson.

The program, which went on to receive $23.4m in the May budget, is aimed at training small businesses and the workforce to be cyber smart and aware of possible cyber threats.

The Understanding Small Business and Cyber Security report which contained the personal information surveyed over 2,000 business owners and employees, and found 44% had experienced a cyber attack, with 29% saying they had experienced a cyber attack affecting their own personal information.

Those who participated in the survey and indicated they wanted to hear more about the cyber wardens program were included in the information. The information was removed from the parliament website this week.

Paterson said the department should be an exemplar of good cyber security practice and privacy protection.

Its deeply ironic this breach of personally identifiable information occurred in an answer to a question about improving cyber security for small businesses and from a department whose minister publicly attacked Optus when they had similar data stolen by a criminal gang, he said.

As bad Optus, Medibank and other recent data breaches have been, a loss of data on that scale by a government department or agency could be even worse given the sensitivity of the material involved.

A spokesperson for home affairs said the department is aware of a potentially unintentional data release and sought the removal of the information from the internet.

The department will consider its obligations in accordance with the Privacy Act, including contacting impacted individuals.

The cyber wardens program is a Council of Small Business Organisations of Australia initiative delivered by 89 Degrees East that runs as a free online education course for small businesses to train employers and employees to protect their businesses from cyber threats, with the aim to train 50,000 cyber wardens over three years.

In June, the prime minister, Anthony Albanese, was questioned by the opposition about the $23m grants being awarded without tender, to COSBOA, which partnered with 89 Degrees East. The opposition had questioned whether there was a conflict of interest given 89 Degrees East lists the wife of the health minister, Mark Butler, as a senior consultant, when the money was approved by the expenditure review committee Butler sits on.

In parliament at the start of June, Butler said he had made all appropriate declarations to the prime minister as required by the ministerial code, and his wifes contract had been mentioned, despite her contract having ended in 2021. He said that arrangements were in place to manage any potential conflicts of interest.

Daniela Ritorto resumed working for the firm in February this year, but quit in May. News.com.au reported that the firm had a standing agreement with Ritorto not to undertake any government work given her links to the Labor party.

{{topLeft}}

{{bottomLeft}}

{{topRight}}

{{bottomRight}}

{{.}}

See the article here:
Home affairs cyber survey exposed personal data of participating firms - The Guardian

Read More..
Posted in Internet Security | Leave a Comment

Global Internet security Market Size and Forecast | International … – Glasgow West End Today

July 27, 2023 | Author: admin

New Jersey, United States Verified Market Research recently released a research report titled Global Internet security Market Insight, Forecast To 2030, which assesses various factors influencing its trajectory. The report presents a high-quality, accurate, and comprehensive research study to provide players with valuable insights for making strategic business decisions. The research analysts have conducted an in-depth segmental analysis of the Global Internet security market based on type, application, and geography. The vendor landscape is also illuminated to inform readers about potential changes in market competition. Detailed company profiling of the top players in the Global Internet security market is included as part of the competitive analysis. Players can leverage the value chain analysis and Porters Five Forces analysis offered in the report to strengthen their position in the Global Internet security market.

The report analyzes leading players in the Global Internet security market, considering their market share, recent developments, new product launches, partnerships, mergers, acquisitions, and markets served. A thorough analysis of their product portfolios is also provided to explore the products and applications they focus on while operating in the Global Internet security market. Additionally, the report offers two separate market forecasts one for the production side and another for the consumption side of the Global Internet security market. It concludes with useful recommendations for both new and established players in the Global Internet security market.

Internet Security Market was valued at USD 41.20 Billion in 2019 and is projected to reach USD 74.04 Billion by 2027, growing at a CAGR of 8.2% from 2020 to 2027.

Get Full PDF Sample Copy of Report: (Including Full TOC, List of Tables & Figures, Chart) @https://www.verifiedmarketresearch.com/download-sample/?rid=5846

Leading 10 Companies in the Global Internet security Market Research Report:

International Business Machine (IBM) Corp., Hewlett Packard, Microsoft Corp., Cisco System Inc., Intel Corporation (McAfee Inc.), Symantec Corporation, Trend Micro, Kaspersky Lab, Dell (SonicWall Inc.). Symantec and IBM.

Global Internet securityMarket Segmentation:

Internet Security Market, By Type

Hardware Software Services

Internet Security Market, By Technology

Authentication Cryptography Access Control Technology Content Filtering

Internet Security Market, By Application

BFSI Retail Manufacturing Education IT & Telecommunications Government Aerospace, defense & intelligence Others

All of the segments studied in the research study are analyzed on the basis of BPS, market share, revenue, and other important factors. Our research study shows how different segments are contributing to the growth of the Global Internet security market. It also provides information on key trends related to the segments included in the report. This helps market players to concentrate on high-growth areas of the Global Internet security market. The research study also offers a separate analysis of the segments on the basis of absolute dollar opportunity.

The authors of the report have analyzed both developing and developed regions considered for the research and analysis of the Global Internet security market. The regional analysis section of the report provides an extensive research study on different regional and country-wise Global Internet security markets to help players plan effective expansion strategies. Moreover, it offers highly accurate estimations of the CAGR, market share, and market size of key regions and countries. Players can use this study to explore untapped Global Internet security markets to extend their reach and create sales opportunities.

Inquire for a Discount on this Premium Report@ https://www.verifiedmarketresearch.com/ask-for-discount/?rid=5846

What to Expect in Our Report?

(1) A complete section of the Global Internet security market report is dedicated for market dynamics, which include influence factors, market drivers, challenges, opportunities, and trends.

(2) Another broad section of the research study is reserved for regional analysis of the Global Internet security market where important regions and countries are assessed for their growth potential, consumption, market share, and other vital factors indicating their market growth.

(3) Players can use the competitive analysis provided in the report to build new strategies or fine-tune their existing ones to rise above market challenges and increase their share of the Global Internet security market.

(4) The report also discusses competitive situations and trends and sheds light on company expansions and mergers and acquisitions taking place in the Global Internet security market. Moreover, it brings to light the market concentration rate and market shares of top three and five players.

(5) Readers are provided with findings and conclusion of the research study provided in the Global Internet security Market report.

Key Questions Answered in the Report:

(1) What are the growth opportunities for the new entrants in the Global Internet security industry?

(2) Who are the leading players functioning in the Global Internet security marketplace?

(3) What are the key strategies participants are likely to adopt to increase their share in the Global Internet security industry?

(4) What is the competitive situation in the Global Internet security market?

(5) What are the emerging trends that may influence the Global Internet security market growth?

(6) Which product type segment will exhibit high CAGR in future?

(7) Which application segment will grab a handsome share in the Global Internet security industry?

(8) Which region is lucrative for the manufacturers?

For More Information or Query or Customization Before Buying, Visit @ https://www.verifiedmarketresearch.com/product/global-internet-security-market-size-and-forecast-to-2025/

About Us: Verified Market Research

Verified Market Research is a leading Global Research and Consulting firm that has been providing advanced analytical research solutions, custom consulting and in-depth data analysis for 10+ years to individuals and companies alike that are looking for accurate, reliable and up to date research data and technical consulting. We offer insights into strategic and growth analyses, Data necessary to achieve corporate goals and help make critical revenue decisions.

Our research studies help our clients make superior data-driven decisions, understand market forecast, capitalize on future opportunities and optimize efficiency by working as their partner to deliver accurate and valuable information. The industries we cover span over a large spectrum including Technology, Chemicals, Manufacturing, Energy, Food and Beverages, Automotive, Robotics, Packaging, Construction, Mining & Gas. Etc.

We, at Verified Market Research, assist in understanding holistic market indicating factors and most current and future market trends. Our analysts, with their high expertise in data gathering and governance, utilize industry techniques to collate and examine data at all stages. They are trained to combine modern data collection techniques, superior research methodology, subject expertise and years of collective experience to produce informative and accurate research.

Having serviced over 5000+ clients, we have provided reliable market research services to more than 100 Global Fortune 500 companies such as Amazon, Dell, IBM, Shell, Exxon Mobil, General Electric, Siemens, Microsoft, Sony and Hitachi. We have co-consulted with some of the worlds leading consulting firms like McKinsey & Company, Boston Consulting Group, Bain and Company for custom research and consulting projects for businesses worldwide.

Contact us:

Mr. Edwyne Fernandes

Verified Market Research

US: +1 (650)-781-4080US Toll-Free: +1 (800)-782-1768

Email: sales@verifiedmarketresearch.com

Website:- https://www.verifiedmarketresearch.com/

Read more:
Global Internet security Market Size and Forecast | International ... - Glasgow West End Today

Read More..
Posted in Internet Security | Leave a Comment

China accuses U.S. of hacking earthquake monitoring equipment – The Record from Recorded Future News

July 27, 2023 | Author: admin

Chinas state-controlled newspaper the Global Times reported on Wednesday that hacker groups and lawbreakers with governmental backgrounds from the United States were suspected of compromising network equipment at an earthquake monitoring station in Wuhan.

According to the public security bureau, this Trojan horse program can illegally control and steal seismic intensity data collected by the front-end stations. This act poses a serious threat to national security, the paper reported.

It is not clear how the alleged collection of seismic intensity data could pose a threat to national security. The newspaper cited unnamed security experts who suggested the data was relevant when constructing military defense facilities.

The equipment, which forms part of the Wuhan Municipal Emergency Management Bureau network, has been sealed off according to the newspaper, following the discovery of the incident by China's National Computer Virus Emergency Response Center (CVERC) and the Chinese internet security company Qihoo 360.

The allegation that the U.S. is targeting China with offensive cyber operations is the latest Beijing has leveled in recent years, both directly through its ministry of foreign affairs and embassies, and indirectly through the Global Times.

Chinas statements around such incidents have often raised eyebrows among Western cybersecurity experts due to the stylistic differences between Chinese and Western attributions.

When the U.S. and a coalition of allies formally accused hackers affiliated with Chinas Ministry of State Security of breaching Microsoft Exchange email servers which left exposed web shells on these servers that could potentially be exploited by criminals they criticized the reckless breach of U.N. cyber norms.

Chinas diplomatic response to being blamed for the Microsoft Exchange campaign which included detailed indictments unsealed by the U.S. Department of Justice was vituperative.

Zhao Lijian, one of the Ministry of Foreign Affairs most outspoken spokespeople, accused the U.S. of being the worlds largest source of cyberattacks alongside a litany of other misdeeds.

In its report on Wednesday, the Global Times did not specifically cite any international norms that the alleged U.S. espionage campaign could have been in breach of, nor did it provide indicators of compromise (IoCs) or other technical intelligence used within the cybersecurity community to help attribute similar attacks.

In line with similar Chinese attributions, which have often cited tools leaked by the Shadow Brokers, the Global Times referred to a National Security Agency (NSA) tool called Validator first disclosed as part of the Edward Snowden leaks. The newspaper claimed it was running in critical information infrastructure not only in China, but also in other countries.

The Global Times also accused the CIA of possessing cyber weapons [using] extremely strict espionage specifications with various attack techniques interlocked which allegedly cover almost all internet and Internet of Things assets around the world, and can control other countries' networks and steal their important and sensitive data anytime, anywhere.

Last September, China denounced the U.S. Embassy in Beijing following a joint report from two of the countrys most prominent cyber authorities accusing the NSA of stealing sensitive information from Chinese institutions.

The Northwestern Polytechnical University, which the NSA was accused of targeting, is considered to be a Chinese military university that is heavily involved in military research, according to the U.S. Department of Justice and thus likely to be seen as a legitimate target for espionage under international law.

The most recent statement from Beijing follows Microsoft announcing that a Chinese hacking group known as Storm-0558 had exploited a bug in its cloud email service to spy on government agencies in the U.S. and Western Europe.

Rob Joyce, the NSA's director of cybersecurity, told the Aspen Security Forum earlier this month that the hack was "China doing espionage" and said: "It is what nation-states do. We have to defend against it, we need to push back against it. But that is something that happens."

Recorded Future

Intelligence Cloud.

Alexander Martin is the UK Editor for Recorded Future News. He was previously a technology reporter for Sky News and is also a fellow at the European Cyber Conflict Research Initiative.

Here is the original post:
China accuses U.S. of hacking earthquake monitoring equipment - The Record from Recorded Future News

Read More..
Posted in Internet Security | Leave a Comment

Cyber hygiene for medical devices: What the FDA’s new guidelines … – Chief Healthcare Executive

July 27, 2023 | Author: admin

Cyberattacks have long posed a major challenge to healthcare providers, but were now entering a new phase in the threat landscape where malicious actors are preparing to cause even more damage.

More threat actors, are targeting connected medical devices in order to disrupt patient care. (Image credit: samunella - stock.adobe.com

A growing number of threat actors, from cybercriminal gangs focused on ransomware to state-sponsored attackers, are targeting connected medical devices (known as the Internet of Medical Things, or IoMT) in order to disrupt patient care, steal information or gain persistent access to hospital networks.

These attacks are readily achievable due to the relatively poor state of foundational medical device security hygiene, which presents a simple vector for threat actors who can hold these devices for ransom and render them unusable, among other types of attacks.

The Food & Drug Administration (FDA) is responding to this threat with a new effort to boost the security of these devices so providers and their patients are better protected.

The FDA recently released new cybersecurity guidance for medical device makers that requires they provide a reasonable assurance that these devices are cybersecure, as well as post-market updates and security patches to keep these devices protected. This new guidance, which falls under the FD&C Act (Section 524B, Ensuring Cybersecurity of Devices), went into effect on March 29, 2023.

The FDAs new guidance makes important changes to how medical devices are developed and maintained by their manufacturers, and it could certainly go a long way toward reducing the risks providers may face. However, its important for providers to recognize that this guidance while a significant step in the right direction does not address all of the risks associated with medical devices. There are several areas where providers will need to remain vigilant in order to protect their patients and maintain operational integrity.

Here are four key issues to keep in mind:

Legacy devices need not apply

The FDAs new cybersecurity requirements only apply to new medical devices, which are submitted for premarket approval on or after March 29, 2023. This means existing, or older/legacy, devices are not required to meet these elevated standards.

There has been extensive research on the security limitations of IoMT devices, and in our own analysis we have found that many devices lack strong password policies (i.e., they may contain default or weak passwords), firmware is often several years out of date and may contain multiple high-risk vulnerabilities, lax settings and misconfigurations, among other problems. For example, Phosphorus Labs has observed that up to 90% of infusion pumps in active clinical settings are running with default passwords.

Security issues are likely to persist

Under these requirements, device makers will need to follow better development practices in order to build products that are more secure from the start. However, this doesnt necessarily mean the device will be free from security problems.

To begin with, device manufacturers do not have complete control over their products, from a software development standpoint. Most of these devices utilize third-party software and firmware, and they may also include third-party hardware components as well. It is more difficult to ensure the security of a product when it relies on third-party code.

Additionally, even the most talented software development teams can still make mistakes, either by overlooking certain vulnerabilities or accidentally introducing them into the software/firmware design. Better development practices can reduce risks, but they cant completely eliminate them.

Security patches take time to deliver

One of the most important new FDA requirements is that device makers must have a process in place to provide post-market security support to their products. This will go a long way toward reducing the risks with these devices.

That said, it will still take time for device makers to (a) discover new vulnerabilities and (b) develop patches to fix them. Lastly, the patches have to be (c) implemented on the device. This A to C process will likely take several months on average to complete and in some cases, it could take significantly longer.

During this waiting period, threat actors that discover the same vulnerability can write or buy an exploit and begin carrying out attacks. This is what is known as a zero day attack when hackers are able to exploit a vulnerability before a patch is available. The U.S. Department of Health and Human Services issued a warning about the growing risk of healthcare zero day attacks in 2021.

Healthcare providers may also run into additional problems in terms of keeping up with vulnerability announcements and patches. They could also struggle with determining who is responsible for implementing these updates, or implementing compensating controls by changing configurations on vulnerable devices while awaiting a patch from the manufacturer (Is it the vendors responsibility? The IT team? Facilities management?)

Monitoring not included

The new standards do not require manufacturers to monitor their products for signs of suspicious activity. Once a medical device is deployed in a healthcare environment, it is the providers responsibility not the manufacturers to make sure it does not become infected with malware or is otherwise compromised or accessed by an unauthorized user. Manufacturers do not have complete control over how devices are installed and operated in clinical settings.

This type of continual monitoring can be a daunting task for providers, due to the sheer number and diversity of these devices, which can range from patient health monitors to infusion pumps and MRI machines.

How to Ensure Robust Device Security

Overall, the FDAs new security requirements are an important step forward in securing healthcare facilities from potential cyberattacks. However, providers must still remain vigilant to protect their medical devices from a variety of threats.

Healthcare providers are a lucrative target for cybercriminals, and an effective disruption target for U.S. adversaries, so these attacks will not scale down they are only going to increase in frequency and complexity.

To better protect critical equipment, providers need to carry out several key security steps.

Inventory management & risk assessment

Accurate inventorying is vital. Providers must know exactly how many and which type of devices they have, where they are on the network, and what their security and risk status is (i.e., end-of-life or discontinued devices, password strength, firmware status/age, device configurations, etc.). This can be a complex task due to the sheer size and variety of devices on the network, so healthcare providers should look to third-party solutions.

Strong access & authentication controls

Make sure all devices use strong passwords and rotate/change them regularly. Restrict or disable remote access features. Devices should also have valid, up-to-date digital certificates.

Firmware management

Devices must be regularly updated and patched to address exploitable firmware vulnerabilities. Establish a scalable device lifecycle management framework tailored to your organizational needs.

Continuous monitoring & configuration management

Medical devices require continuous monitoring to check for configuration drift (i.e., changed device settings), new updates or security patches being made available, passwords changing back to factory defaults, devices being moved, etc. This requires a comprehensive security strategy.

Make security fundamental

Build a culture of security within the healthcare organization. This includes training staff on security awareness and incident response.

Sonu Shankar, vice president of Phosphorus, is a 15-year veteran of the cybersecurity industry, who has led efforts in software development, product management, threat detection and cybersecurity strategy at companies including Arctic Wolf and Cisco.

Read this article:
Cyber hygiene for medical devices: What the FDA's new guidelines ... - Chief Healthcare Executive

Read More..
Posted in Internet Security | Leave a Comment

PUF security for the smallest Internet connected devices … – eeNews Europe

July 27, 2023 | Author: admin

We use cookies to enhance your browsing experience, serve personalized ads or content, and analyze our traffic. By clicking "Accept", you consent to our use of cookies

The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.

The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.

The technical storage or access that is used exclusively for statistical purposes.The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.

The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.

Read more here:
PUF security for the smallest Internet connected devices ... - eeNews Europe

Read More..
Posted in Internet Security | Leave a Comment

The Impact of Hardware Security Modules on Internet Safety in North … – Fagen wasanni

July 27, 2023 | Author: admin

Exploring the Impact of Hardware Security Modules on Internet Safety in North America

The advent of the digital age has brought with it a myriad of opportunities and challenges, with internet safety being a paramount concern. In North America, the issue of internet safety has been thrust into the limelight, with the rise in cyber threats and data breaches. One of the key solutions to this growing problem is the use of Hardware Security Modules (HSMs).

HSMs are physical devices that safeguard and manage digital keys for strong authentication and provide cryptoprocessing. These devices are designed to protect sensitive information from cyber threats, thereby enhancing internet safety. The impact of HSMs on internet safety in North America is profound and multifaceted.

Firstly, HSMs have significantly reduced the risk of data breaches. They provide a secure environment for the storage and use of encryption keys, which are essential for protecting sensitive data. By ensuring that these keys are never exposed to the outside world, HSMs make it extremely difficult for cybercriminals to gain access to encrypted data. This has led to a significant decrease in the number of successful data breaches, thereby enhancing the overall safety of the internet.

Secondly, HSMs have played a crucial role in ensuring the integrity of online transactions. They provide a secure platform for the execution of cryptographic operations, which are essential for the verification of online transactions. By ensuring that these operations are carried out in a secure environment, HSMs prevent cybercriminals from tampering with transaction data. This has not only increased the safety of online transactions but also boosted consumer confidence in online shopping and banking.

Moreover, HSMs have facilitated the implementation of robust access control mechanisms. They provide a secure means of storing and managing digital certificates, which are used to authenticate users and devices. By ensuring that these certificates are stored in a secure environment, HSMs prevent unauthorized access to sensitive systems and data. This has significantly improved the security of online services and applications, thereby contributing to the overall safety of the internet.

Furthermore, HSMs have enabled the secure implementation of cloud services. They provide a secure means of storing and managing encryption keys in the cloud, thereby ensuring that sensitive data stored in the cloud is protected from cyber threats. This has not only increased the safety of cloud services but also facilitated their widespread adoption.

In conclusion, the impact of Hardware Security Modules on internet safety in North America is significant. By providing a secure environment for the storage and use of encryption keys, HSMs have reduced the risk of data breaches, ensured the integrity of online transactions, facilitated the implementation of robust access control mechanisms, and enabled the secure implementation of cloud services. As cyber threats continue to evolve, the role of HSMs in enhancing internet safety is set to become even more critical. Therefore, it is imperative for businesses and individuals alike to understand and leverage the benefits of HSMs in order to safeguard their sensitive data and ensure the safety of their online activities.

Read more here:
The Impact of Hardware Security Modules on Internet Safety in North ... - Fagen wasanni

Read More..
Posted in Internet Security | Leave a Comment

Security experts warn Brits ‘check hotel room TVs’ to protect phone from hackers – Daily Star

July 27, 2023 | Author: admin

Holiday hotel hackers are after your valuable data and they will even use the TV in your room to steal information. You might be chilled out in your accommodation but it can be a cyber-security hotspot filled with risk.

Virtual private network (VPN) service NordVPN is warning UK tourists that fraudsters and scammers are preying with techniques such as evil twin wi-fi connections and juice jacking USB ports. The rooms smart TV can also be a gateway for hackers who want to grab your data and sell it on the dark web.

The firms cyber-security expert Adrianus Warmenhoven said: You dont need to be at home or the office for your data to be stolen cyber-criminals will happily break into your phone at your hotel. Hackers can use a hotels cyber-security vulnerabilities in several ways to reach you. While youre on vacation and away from your home internet connection, you should be cautious and manage cyber-security risks.

Here, NordVPN reveals the five key ways hackers can target your vulnerable, valuable data and how to keep your guard up while letting your hair down.

Every public internet connection has an increased risk of being used by cybercriminals, and that includes hotel wi-fi.

It can be used to take travellers passwords and personal information in two ways. One is to connect to the hotels wi-fi and install malicious malware.

The second is to create a so-called evil twin a fake, unprotected wi-fi hotspot with an innocuous name such as Guest Wi-Fi or Free Hotel Wi-Fi and steal private information via that.

Warmenhoven said: First, ask the person at the reception desk to give the exact name and password for the provided wi-fi to avoid connecting to an evil twin network. Second, use a VPN service to encrypt your data and prevent third parties from intercepting it. Finally, it is always a good idea to enable a firewall while using public wi-fi.

Most hotel room smart TVs have a connection to local wi-fi to allow guests to access apps and streaming platforms. However, this can make them a portal for cybercriminals using the built-in microphones or cameras, or stealing the personal credentials used to log in to apps.

If you can, keep the TV unplugged from power when its not being used. Covering the webcam and avoiding logging in with personal credentials also reduces risks.

More hotels are installing convenient USB charging ports in rooms and they are a tempting way to charge a device, especially if the visitor is from a location with a different kind of plug.

However, hackers can modify public places charging cables to install malware on phones to perform an attack called juice jacking. This allows fraudsters to steal users passwords, credit card information, address, name and other data.

Warmenhoven said: Safe device charging on your way to your vacation spot might be challenging because you must carry a power bank or USB data blocker, but hotel rooms always have a socket. Usually, its the safest way to charge your devices.

Keep this function on your devices disabled to help mitigate cyber-security risks, as you may be surrounded by public and insecure internet connections.

Some travellers leave their smartphone in their hotel room and forget that even if they leave a device disconnected from wi-fi, it can automatically turn on, for example, if hotel staff move it while cleaning a room.

Disabling automatic connection is one solution to protect your device. The second is to enable auto-connection to security apps, such as firewalls or VPNs. This way, even if the device connects to wi-fi, it remains protected from hackers.

Unfortunately, it can be very challenging to have 100% security against professional hackers who often aim for high-value targets.

The cyber-attack group DarkHotel is known to use wi-fi at luxury hotels with sophisticated combined techniques such as spear phishing, malware and botnet automation designed to capture confidential data.

They seek key targets business executives, politicians, senior military and pharmaceutical company representatives and phishing emails are tailored to each victim and are highly convincing.

Warmenhoven said: Effective protection from sophisticated cyber-attacks is possible by using trusted VPN and internet security apps as well as regularly updating software. Nevertheless, travellers should always be aware of phishing attacks: verify the authenticity of suspicious emails and executable files and pay attention to odd spelling. These habits remain valuable during vacation as well as when you return to the office.

Continue reading here:
Security experts warn Brits 'check hotel room TVs' to protect phone from hackers - Daily Star

Read More..
Posted in Internet Security | Leave a Comment

3 things you need to know about the darknet – Cyber Security Connect

July 27, 2023 | Author: admin

3 things you need to know about the darknet

Beneath the surface of the internet we all know lies a second network known as the darknet.

The darknet is a hidden part of the internet that is not indexed by traditional search engines, such as Google, and requires special software, like the TOR browser, to access. It has garnered a reputation for being a hotbed of illicit marketplaces and anonymous dealings.

In this article, well explore three essential things you need to know about the darknet.

It offers anonymity and privacy

One of the most defining characteristics of the darknet is the high level of anonymity it offers its users. Traditional internet activities often leave a digital trail that can be traced back to the users IP address. However, on the darknet, individuals can browse websites and communicate without revealing their identity or location. This level of privacy attracts people who may have legitimate reasons for wanting to protect their online activities, such as whistleblowers, journalists working on sensitive stories, or citizens living under oppressive regimes.

On the flip side, this anonymity has also facilitated illegal activities, making the darknet a haven for cyber criminals. Various illicit goods and services, such as drugs, weapons, stolen data, and hacking tools, are bought and sold on darknet marketplaces, often using cryptocurrencies for added anonymity. Many infamous hacking groups also host their sites on the darknet, where they release stolen data.

Its crucial to understand that while the darknet provides a layer of privacy, engaging in illegal activities can still have severe legal consequences.

Cyber security risks

While the darknet can shield users from some surveillance and tracking, it is not without its own set of cyber security risks. Many websites on the darknet can be potential traps, hosting files and software infected with malware that can compromise users systems and steal sensitive information. Moreover, some darknet marketplaces can disappear overnight in what is called an exit scam, where the operators disappear with users funds.

Additionally, law enforcement agencies around the world have been increasingly cracking down on darknet criminal activities. Several high-profile arrests and takedowns of darknet marketplaces have occurred in recent years. The perception of complete anonymity on the darknet can lead some users to engage in risky behaviour, unaware that their actions may not be as hidden as they think.

Dual nature and ethical dilemmas

The darknets duality is a complex aspect that sparks ethical debates. While it offers a platform for freedom of expression and privacy for some, it also harbours illegal and harmful activities. The anonymity that enables activists to communicate securely can also protect criminals. As a result, discussions arise about the balance between safeguarding individual rights and enforcing the law.

For anyone who wishes to traverse the darknet for whatever reason its essential to be aware of the potential consequences and exercise caution.

3 things you need to know about the darknet

Read the original here:
3 things you need to know about the darknet - Cyber Security Connect

Read More..
Posted in Internet Security | Leave a Comment