Challenges Around the Cybersecurity Regulatory Environment in Southeast Asia

From: Brink Asia

Vice President of IDC Asia/Pacific’s IT Security Practice Business

Barely a day goes past that the international press does not carry a story of a massive data breach—whether it is about a billion records taken from a tech company, a health insurer’s 80 million records, or a bank’s small but significant 9,000. And yet, rarely do we hear of breaches from Asian organizations.

Could it be that the information technology (IT) security of Asian organizations is ahead of those of our Western counterparts, or, as many in the region think, that Asian organizations are either below or do not figure on the radar of the cybercriminals who steal this information?


Did China Quietly Authorize Law Enforcement to Access Data Anywhere in the World?

From: Lawfare

By Susan Hennessey, Chris Mirasola


Article 9 of the 2016 regulations provides that the police or prosecutors may extract digital data from original storage media (e.g., servers, hard drives) that are located outside of mainland China (i.e., including servers in Hong Kong, Macau, and Taiwan) “through the Internet” and may perform “remote network inspections” of such computer information systems. Remote network inspections are helpfully defined, in Article 29, as “investigation, discovery, and collection of electronic data from remote computer information systems related to crime through the Internet.” The only caveat to this grant of authority is a requirement that investigations be subject to “strict standards.” No guidance is provided as to what “strict” means.


New European rules will open up retail banking

From: The Economist

The dangers to privacy and security are outweighed by the benefits

MORE treasured than the bullion in its vaults are the data a bank has stored on its servers. Bankers know what their customers eat, where they shop and, increasingly, what they get up to online. It is possible for customers to share these data with others, but the process is cumbersome. In effect, banks enjoy a monopoly over data that has helped them get away with lousy service and fend off newcomers with better ideas. In Europe, at least, that is all about to change.


Bank of England builds fintech ‘community’


The Bank of England has set up a formal forum with industry to discuss financial technology (fintech) trends and issues.

The Bank’s ‘fintech community’ has been established with an initial list of 18 members, not including itself, and is partly aimed at improving networking between firms with an interest in fintech, as well as ensuring the Bank is engaged with a range of fintech businesses across the financial services sector.



Cybersecurity Watchdog In Germany Raises Alert Levels


Germany’s alert level against cyberattacks has now been raised to “heightened readiness” as the country prepares for its parliamentary elections.

The Welt am Sonntag newspaper reported that government websites are already the target of daily assaults, which are expected to increase significantly during the elections.

Read Complete Article


Cybersecurity Gaps Exist in Federal Agencies, White House Report Finds

From: Government Technology

The report indicated 30,899 cyberincidents occurred in 2016 that led to the “compromise of information or system functionality”

by Nafeesa Syeed, Bloomberg News


The Trump administration released the Office of Management and Budget’s annual report to Congress on federal cyber performance on Friday. Federal agencies weren’t immune to broader trends affecting the general public, as they reported 30,899 “cyber incidents” in fiscal 2016 that led to the “compromise of information or system functionality” to the Department of Homeland Security’s U.S. Computer Emergency Readiness Team, the report disclosed.


Cybersecurity in the Middle East – the legal view

From: Zawya

Abdullah Mutawi, partner at law firm Baker Botts LLP, breaks down the legal aspects businesses in the region should consider when it comes to cybersecurity

The internet, and the types of communication it facilitates, has brought about the biggest paradigm shift to business in decades by delivering unprecedented utility in communications.

This shift has led to huge benefits, but also some serious negatives – perhaps the most prominent of which is the threat to cybersecurity.

Read Complete Article


China proposes new world order for cyberspace regulation

From: The Register

Our comics and games should flow. But no hacking, terrorism or US hegemony please

Simon Sharwood

China has issued a “International Strategy of Cooperation on Cyberspace” in which it outlines rules it think should govern nations’ online conduct.

The thrust of the document is that the world needs internet governance that respects sovereignty, reduces the likelihood of conflict and ensures no one nation can control cyberspace. China forcefully, and repeatedly, states it’s determination to bring about that state of affairs.

Read Complete Article


Virginia businesses could be subject to New York cyber regulation

From: Virginia Business

by Collin Hite

Certain financial service businesses have just a few days to gear up for New York’s brand-new cybersecurity regulation.  The new rule applies to all entities overseen by the New York Department of Financial Services (NYDFS) banking, insurance and financial service laws.  The net scoops up commercial banks, foreign banks with New York licensed offices, mortgage brokers and servicers, small-loan lenders and money transmitters doing business in New York.  Obviously, insurance companies, broker, agents (resident and non-resident), and others also fall within the scope.  As Gov. Andrew Cuomo stated, “These strong, first-in-the-nation protections will help ensure this industry has the necessary safeguards in place” to protect businesses and clients “from the serious economic harm caused by these devastating cyber-crimes.”


Quest Baldrige Cybersecurity Pre-Conference Workshop

From: National Institute of Standards and Technology

New this year! Register Now

Sunday, April 2, 2017 • 9:00 am-4:15 pm

Limited seats available. Reserve early. Workshop registration includes refreshment breaks. Attendees are on their own for lunch.

The Baldrige Cybersecurity Workshop is a practical, interactive workshop on how to conduct a self-assessment of an organization’s cybersecurity program, utilizing the Baldrige Cybersecurity Excellence Builder. The workshop will provide you with information about how to use the self-assessment tool to better understand where your cybersecurity efforts are today and what they can look like in the future.

Older posts «