August 11, 2024 at 10:35PM
The United Nations unanimously approved a Russian proposal to address cybercrime through the Convention on Countering the Use of Information and Communications Technologies for Criminal Purposes. However, tech companies and privacy activists oppose this, citing concerns about human rights and discretionary refusal grounds. Meanwhile, the British nuclear sub code was outsourced to Russian and Belarusian coders, raising security concerns. Additionally, the BlackSuit ransomware gang is seeking $500 million in ransom demands, and Sellafield, a UK nuclear facility, admitted to serious security lapses. Additionally, old flaws in Ubiquiti’s G4 security cameras remain unpatched, posing ongoing cybersecurity risks.
Here are the key takeaways from the meeting notes:
1. The United Nations unanimously approved Russia’s proposal to cut down on cyber crime, leading to the creation of the Convention on Countering the Use of Information and Communications Technologies for Criminal Purposes. However, this move was opposed by tech companies and online privacy activists who argued that it could infringe on human rights.
2. British defence supplier Rolls-Royce Submarines admitted to outsourcing the construction of its staff intranet software to Russian and Belarusian coders, raising concerns about potential security risks and the possibility of coercion or blackmail.
3. The BlackSuit ransomware gang is demanding a total of around $500 million through ransom demands, with an uptick in instances where victims received telephonic or email communications regarding compromise and ransom. This highlights the increasing personal nature of the attacks.
4. Sellafield, Britain’s premier nuclear waste repository, confessed to serious security lapses, with 75 percent of its servers left unpatched and vulnerable. The company pleaded guilty to these lapses and asked for leniency from its judge.
5. Ubiquiti’s G4 security cameras, which were found to have serious security flaws in 2019, still have around 20,000 unpatched devices. This serves as a reminder of the importance of regularly updating and patching technology to prevent exploitation by threat actors.
Let me know if you need further details or if there’s anything else I can assist you with.