Taxi apps required to share rider data. US cybersecurity EO, one year in. Maryland upgrades local cybersecurity assistance.
At a glance.
- Taxi applications are required to share user data.
- US cybersecurity EO, a year later.
- Maryland is improving local cybersecurity assistance.
Users of the Russian taxi app could share more than one trip.
Moscow has introduced a law requiring taxi applications to give the Federal Security Service (FSB) real-time remote access to their transportation data. According to a statement issued by the lower house of the State Duma on Wednesday, “The document prescribes the obligation of the taxi order service to provide the FSB with automated remote access to the information systems and databases used. to receive, store, process and transmit taxi orders. ” days to respond. The new law makes some citizens worried that the intelligence agency could use the data to track taxi passengers, but Adalbi Shkhagoshev, a member of Parliament’s security committee, says the data would only be used for to urgent national security issues when “FSB agents need to have this data in almost an hour to solve a crime or prevent it.” The legislation is the latest in a series of measures the Russian government has enacted to restrict civil liberties since the start of the war in Ukraine.
Biden’s cybersecurity executive order celebrates its first anniversary.
It’s been a year since U.S. President Joe Biden issued the Executive Order on Improving the Nation’s Cybersecurity, and in honor of that milestone, Mayer Brown offers an overview of the measures that EO has motivated so far. Following the rise of large-scale cyber attacks on critical infrastructure in the US, the EO sparked a wave of legislation aimed at strengthening the security of US digital technology systems, including a plan to implement trusted architectures. zero, renewed rules for incident reporting, and increased security in the software supply chain. CSO spoke with industry experts about what progress has been made so far and where there is room for improvement. Cyber Threat Alliance President and CEO Michael Daniel (former White House Cybersecurity Coordinator) says: “Whether you’re talking about software bills or the push for multifactor authentication in “The federal cybersecurity executive order served as the basis for the ongoing activity and is the main star of the administration’s priorities.” Bob Kolasky, senior vice president of critical infrastructure at Exiger and former deputy director of the Cyber Security and Infrastructure Agency (CISA), adds that while it may be too early to assess the full impact of EO, “It was, first and foremost, ‘Let’s put our house in order. Let’s modernize our own house to the fullest.’ That said, Daniel says some measures, such as new incident reporting legislation passed by Congress, have not yet been fully implemented. And, Veracode co-founder and CTO Chris Wysopal says steps need to be taken to cover more types of software. “The initial requirements around what they consider critical software involve things like hypervisors and operating systems and network security devices, and things that have to operate with higher privileges. That’s fine … but we’ve seen a lot of violations that “It’s been a long time coming, and that’s where I think it should go in the future, realizing that most software is putting the government at risk. It’s not just critical software.”
The governor of Maryland signs a measure to provide assistance to improve local cybersecurity.
Bollyinside reports that Maryland Gov. Larry Hogan yesterday signed legislation focused on improving cybersecurity in state and municipal governments, including a measure that provides local governments, school systems, and law enforcement agencies. health plus resources and assistance from the Maryland Emergency Management Agency. . Hogan said: “Today, we are signing bipartisan legislation to further consolidate our position as the cyber capital of the United States and to further strengthen our infrastructure to protect the people of Maryland from cyberattacks.” The agency will help local governments complete vulnerability assessments and response plans. During the last legislative session, Maryland lawmakers spent approximately $ 570 million on cybersecurity and information technology upgrades, including $ 200 million on cybersecurity.