Evolving cyber attacks and our ever increasing reliance on technology is prompting law makers globally to tighten the rules on security and privacy. In this month's newsletter, we take a look at the recent developments around cyber regulation.
No more excuses for bad security
President Biden's new cybersecurity strategy proposes bold rules to improve the security of software products and services. Rules that aim prevent vendors from dodging their security responsibilities: https://krebsonsecurity.com/2023/03/highlights-from-the-new-u-s-cybersecurity-strategy/
Banking to step up its cyber game
Meanwhile, financial regulators in the US are also raising the bar with regards to the reporting of cybersecurity incidents. Under the new rules, banks are required to notify regulators within 36 hours of a cyber incident occurring:
EU privacy concerns
On the other side of the pond, The European Parliament's Committee on Civil Liberties, Justice and Home Affairs rejected a recommendation by the European Commission on a new EU-US Data Privacy Framework. In doing so, it refuted the EC's claim that the US law would offer an "adequate" level of protection for personal data:
Deep fake label
Late last year, Chinese regulators announced that they would be taking steps against deep fakes, responding to threats related to Artificial Intelligence. The new rules are supposed to help the Cyberspace Administration of China to fight criminal activity, but also allow censoring of artificially generated content for other reasons China deems inappropriate:
Who's regulating whom
On a related note, in a recent blog post Bruce Schneier highlights the threat of AI writing —or at least influencing— policies and regulations, and outlines what it would take to build an 'AI microlegislator':
Contribute to Cybersecurity Magazine
We are looking for security professionals who would like to write for Cybersecurity Magazine. If you are interested at contributing to our website, contact us at firstname.lastname@example.org. Articles are reviewed by our editors before published on Cybersecurity Magazine.
Cybersecurity Magazine Editorial Team
25-27 APRIL 2023
The National Cyber Security Show will unite the UK’s approach to tackle cyber threats and make UK businesses resilient and cyber aware. Promoting the core cyber essentials including cyber management, security, protection, and recovery, it is the one stop shop to protect their business from cyber threats.
Gain practical information about the latest products from the country’s foremost manufacturers and suppliers and hear from the UK’s industry-leading experts to gain understanding and awareness of how to protect your business and assets.
National Cyber Security Show is proud to be joined by some of the cyber industry’s biggest and best brands providing outstanding new solutions: Asigra | Chartered Institute of Information Security (CIISec) | Experbuy | Gemserv Limited | IASME | Livesilver Consulting | Maltego Technologies GmbH | Mitigate Cyber Limited | OccamSec | Rights Chain Ltd | Senseon | SoSafe GmbH | TecSec Services Ltd | The Cyber Resilience Centre - West Midlands | Think Cyber Security Limited | Trident Search Ltd | Cyber Crime Unit - West Midlands.
For more information on the National Cyber Security Show, or to register for your free visitor pass, please visit: https://www.nationalcybersecurityshow.com/welcome
For our latest video discussion on the security and production systems please see the River Publishers YouTube.
The latest journal articles from River Publishers in all areas of cyber security can be found on the River Publishers website.