Table of Contents Governor Signs Senate Bill 280 Cybersecurity Act | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #ransomwareThe Cybersecurity Office, working in conjunction with the Department of Information Technology (DoIT), will implement cybersecurity solutions for state agencies, and offer solutions to other public sector entities.“DoIT in…
Category: Regulations
CISO News – May 2023
Table of Contents Nine out of ten organizations reported at least one cyber incident or breach last yearDeniza CristianBusiness Review – RomaniaNine out of ten organizations (91%) reported at least one cyber incident or breach last year, according to Deloitte 2023 Global Future of Cyber Survey, and more than a…
CISO News – 2023-03-28
Table of Contents How to Improve Cybersecurity Compliance With Real-Time Data and AutomationBill DoerrfeldAcceleration EconomyIgor Volovich, VP of Compliance Strategy for cybersecurity compliance firm QmulosThese days, organizations must comply with many types of standards and regulations.Organizations must audit their technology processes to ensure their data-handling practices are up to snuff.Yet…
New EU laws approve tougher sentences for cyber criminals
For example, the Srizbi botnet, estimated to be either the world’s largest, or second-largest botnet, is thought to be made up of around half a million machines.
Botnet creators add machines to their networks through spam emails and malware, often building up networks before renting or selling it to other criminals. Anyone found setting up a botnet will face a minimum of three years in jail, and if the system is used to threaten national infrastructure then again, the minimum sentence rises to give years.
Member states have two years to sign the new directives into law, with only Denmark choosing to opt out in favour of its own rules.
Dutch bill seeks to give law enforcement hacking powers
To disable a botnet it is necessary to access the command and control servers that control the botnet which can be located in a foreign country, according to the bill. The new investigative powers would also allow law enforcement to infiltrate computers or servers located in foreign countries if the location of those computers cannot be determined.
“It is important that the government wants to combat cybercrime but this proposal is rushed: it is unnecessary and creates new security risks for citizens,” said Simone Halink of Dutch digital rights organization Bits of Freedom in a blog post on Thursday.
At the moment the draft bill is in the consultation phase, meaning parties involved such as the police and other law enforcement as well as citizens and advisory bodies will be able to comment on it, ministry spokesman Wiebe AlkemaA said. Following that, the bill will be sent to sent to the Council of Ministers after which it will be sent to the Dutch Council of State, an advisory body on legislation.
Thailand revising cybercrime law for balance, better security
Surangkana also explained the law left gaps in the cybercrime and the cyber environment, so people are still concerned about the balance between freedom of speech and the exercise of authority to maintain the right to privacy.
Meanwhile, other countries’ governments have better realisation and awareness on information security, which is a sensitive issue involving a balance between security and the liberty of people as a whole,” Surangkana said.
The draft revision of the computer crime law is expected to be completed in the next six months, following which, the ETDA will then conduct a further public hearing before submitting the draft for the Cabinet’s approval.
She said that the agency had established focus groups covering five areas–freedom of speech, law enforcement, consumers and victims, hardcore security versus professional security, and evaluation and revision of computer crime law–to balance and develop the law to protect against threats, the country and all those in the cyber-security environment.
However, the overall revision of computer crime law is expected to take three years, and will include the development of best practices and a code of conduct to encourage the law’s use against new threats and cybercrime from the Internet. For example, it will cover the rights of Internet users, especially students who develop their own blogs and websites to disclose private information, a practice which open to abuse and often risky online.
Link: http://www.zdnet.com/th/thailand-revising-cybercrime-law-for-balance-better-security-7000014389/