Europe moves closer to stricter cybersecurity standards, reporting regs

Europe has moved closer toward new cybersecurity standards and reporting rules following a provisional network and information systems agreement dubbed NIS2 by the European Council and Parliament. Once approved, NIS2 will replace the current Directive on Security of Network and Read More …

Indian government wants VPNs to store and share user data

A new directive from the Ministry of Electronics and Information Technology (MeitY) and the Indian Computer Emergency Response Team (CERT-in) requires VPN companies to retain data on users for 5 years or more. The rule also applies to data centres Read More …

UK: Online Safety Bill – Updated proposals will make UK safest place to go online, government says

Laws that will require social media sites and tech firms to prevent users being exposed to harmful content are being introduced to parliament after several major updates.++ Additions to the bill include the power to hold executives criminally liable if Read More …

Australia’s cyber laws potentially harmful to security: Critical Infrastructure community

A slew of Australia’s critical infrastructure service providers and union groups have lambasted the federal government’s critical infrastructure cyber laws due to it requiring organisations to install third-party software onto their systems if they are deemed to not be “technically Read More …

Russia labels Meta an ‘extremist’ organization, bans Instagram

Russia’s Investigative Committee, the nation’s peak criminal and anti-corruption investigation body, has opened a probe into whether Meta is an extremist organization. The move follows Meta’s decision last week to relax rules about exhortations to commit violence posted to its Read More …

UK government starts public consultation on telco security

While the world watches Ukraine, the British government has quietly dropped a requirement for mass surveillance of UK internet users by their service providers. A public consultation on the Electronic Communications (Security Measures) Regulations 2022, currently in draft, revealed that Read More …

US Senate passes cybersecurity act forcing orgs to report cyberattacks, ransom payments

The US Senate approved new cybersecurity legislation that will force critical infrastructure organizations to report cyberattacks to the Cybersecurity and Infrastructure Security Agency (CISA) within 72 hours and ransomware payments within 24 hours. The Strengthening American Cybersecurity Act passed by Read More …