LONDON/WASHINGTON: Government-backed hackers are attacking health care and research institutions in an effort to steal valuable information about efforts to contain the new coronavirus outbreak, Britain and the United States said on Tuesday in a joint warning.
In a statement, Britain’s National Cyber Security Center (NCSC) and the US Cybersecurity and Infrastructure Security Agency (CISA) said the hackers had targeted pharmaceutical companies, research organizations and local governments.
The NCSC and CISA did not say which countries were responsible for the attacks. But one US official and one UK official said the warning was in response to intrusion attempts by suspected Chinese and Iranian hackers, as well as some Russian-linked activity.
The two officials spoke on condition of anonymity to discuss non-public details of the alert. Tehran, Beijing and Moscow have all repeatedly denied conducting offensive cyber operations and say they are the victims of such attacks themselves.
State hacking groups “frequently target organizations in order to collect bulk personal information, intellectual property and intelligence that aligns with national priorities,” the NCSC and CISA said.
“For example, actors may seek to obtain intelligence on national and international health care policy or acquire sensitive data on COVID-19 related research.”
The warning follows efforts by a host of state-backed hackers to compromise governments, businesses and health agencies in search of information about the new disease and attempts to combat it.
Reuters has reported in recent weeks that Vietnam-linked hackers targeted the Chinese government over its handling of the coronavirus outbreak, and that multiple groups, some with ties to Iran, tried to break into the World Health Organization.
The officials said the alert was not triggered by any specific incident or compromise, but rather intended as a warning — both to the attackers and the targeted organizations that need to better defend themselves.
“These are organization that wouldn’t normally see themselves as nation state targets, and they need to understand that now they are,” said one of the officials.
The agencies said hackers had been seen trying to identify and exploit security weaknesses caused by staff working from home as a result of the coronavirus outbreak.
In other incidents, the attackers repeatedly tried to compromise accounts with a series of common and frequently-used passwords — a technique known as “password spraying.”
“It’s no surprise that bad actors are doing bad things right now, in particular targeting organizations supporting COVID-19 response efforts,” a CISA spokesman said.
“We’re seeing them use a variety of tried and true techniques to gain access to accounts and compromise credentials.”
State-backed hackers targeting coronavirus responders, US and UK warn
https://arab.news/mkv5j
State-backed hackers targeting coronavirus responders, US and UK warn
- One US official and one UK official said the warning was in response to intrusion attempts by suspected Chinese and Iranian hackers
- State hacking groups “frequently target organizations in order to collect bulk personal information, intellectual property and intelligence that aligns with national priorities,” the NCSC and CISA said
Apple, Google offer app store changes under new UK rules
LONDON: Apple and Google have pledged changes to ensure fairness in their app stores, the UK competition watchdog said Tuesday, describing it as “first steps” under its tougher regulation of technology giants.
The Competition and Markets Authority placed the two companies under “strategic market status” last year, giving it powers to impose stricter rules on their mobile platforms.
Apple and Google have submitted packages of commitments to improve fairness and transparency in their app stores, which the CMA is now consulting market participants on.
The proposals cover data collection, how apps are reviewed and ranked and improved access to their mobile operating systems.
They aim to prevent Apple and Google from giving priority to their own apps and to ensure businesses receive fairer terms for delivering apps to customers, including better access to tools to compete with services like the Apple digital wallet.
“These are important first steps while we continue to work on a broad range of additional measures to improve Apple and Google’s app store services in the UK,” said CMA chief executive Sarah Cardell.
The commitments mark the first changes proposed by US tech giants in response to the UK’s digital markets regulation, which came into force last year.
The UK framework is similar to a tech competition law from the European Union, the Digital Markets Act, which carries the potential for hefty financial penalties.
“The commitments announced today allow Apple to continue advancing important privacy and security innovations for users and great opportunities for developers,” an Apple spokesperson said.
The CMA in October found that Apple and Google held an “effective duopoly,” with around 90 to 100 percent of UK mobile services running on their platforms.
A Google spokesperson said existing practices in its Play online store are “fair, objective and transparent.”
“We welcome the opportunity to resolve the CMA’s concerns collaboratively,” they added.
The changes are set to take effect in April, subject to the outcome of a market consultation.
