Select Page

Month: November 2017

Statement About DJI’s Cyber Security and Privacy Practices

Recent news and blog coverage of DJI has raised a number of key questions about DJI’s practices regarding cyber security and privacy. We recognize that there are several reasonable concerns brought up about DJI’s record in this space, so we’d like to set the record straight on the current state of DJI’s security efforts. 1. SSL Certificate In early September, DJI was notified that its SSL Certificate for the DJI website had been compromised. Immediately upon receiving this report, DJI revoked this certificate and replaced it with a new certificate. Based on its investigation, DJI has no reason to believe that customer data has been compromised as a result. As a part of responsible disclosure to our customers, we have been working with an independent cyber forensics company to confirm our findings. We will continue monitoring the activities related to the expired SSL certificate and alert relevant customers if there is any evidence that their data integrity might have been impacted. 2. AWS Server Data DJI received a report from an independent security researcher that an AWS server repository was accessible by unauthorized parties. We took this issue very seriously, and fixed it within a day of receiving the report. After doing an internal audit, we identified the DJI developers responsible for this error, and took immediate disciplinary actions against them. We terminated their employment because we considered their...

Read More

Saudi cybersecurity conference to fight increasing threats

RIYADH: The Ministry of Interior, represented by the National Cyber Security Center (NCSC), will host the third International Cyber Security Conference (ICSC) in Riyadh early next year aiming to combat increasing cyber threats. To be organized in March by the NCSC in partnership with Naseba, the conference aims to successfully combat the increased cyber threats targeting the Kingdom, particularly in recent times, through developing relevant standards, policies and the legal framework, sharing and disseminating critical information and alerts, and most importantly creating further education and fostering awareness among cybersecurity stakeholders, said the media department of the Ministry of Communication and Information Technology. Besides knowledge sharing and fostering relationships, one of the main objectives of the upcoming conference is to introduce stakeholders and attendees to providers of cybersecurity solutions and services, it added. According to the ministry, up to 1,000 delegates, comprising VIPs, CEOs, CIOs, CISOs, IT and security managers, and young security aspirants, including students, will participate in the annual conference. The conference, considered one of the largest of its kind in the region that addresses cybersecurity in different ways, will help facilitate national, regional and international collaboration between government, industry and critical cyber infrastructure organizations. The ICSC will also feature investors who want to diversify their portfolios into international companies, particularly in the cybersecurity sectors where innovation could benefit the regional cyber-defense capacity. With the Kingdom rapidly developing...

Read More

Indian cyber-security event opened by PM, supported by UK

A demonstration of how seriously India is taking cyber-security is that the country’s Prime Minister Narendra Modi delivered the keynote speech at the Global Conference on Cyberspace (GCCS) 2017 in New Delhi, India. A demonstration of how seriously India is taking cyber-security is that the country’s Prime Minister Narendra Modi delivered the keynote speech at the Global Conference on Cyberspace (GCCS) 2017, held 23-24 November in New Delhi, India. India is reported to be the third largest hub for technology start ups, with innovative, technology led programmes such as AADHAAR, MyGov, GeM, Digital Locker, UMANG etc and is a major source of outsourced talent for other countries. During this the fifth round of a conference inaugurated in London in 2011 Modi’s opening speech covered the event theme of  ‘Cyber4All: A safe, secure and inclusive  Cyberspace for Sustainable development’. Also attending was Lord Tariq Ahmad of Wimbledon, Minister of State for the Commonwealth and the United Nations at the UK’s Foreign and Commonwealth Office (FCO). In a press statement Lord Ahmad described how the conference brings together actors from across industry, academia, civil society and governments who all have an important part to play in maintaining a free, open, peaceful and secure internet. He added, “We are delighted to be progressing a ‘Framework for the UK-India Cyber Relationship’ that will articulate our common commitment to maintaining the increasing economic and social...

Read More

Nations must come together to ensure cyber security: Doval

National Security Advisor Ajit Kumar Doval on Friday said that fighting cyber crimes will be difficult, if the world does not come together to fight against them. Speaking at the fifth Global Conference on Cyber Space (GCCS 2017) here, he said, “We may not be able to completely wipe off this negative side but at least we can do a lot to mitigate them.” He said all opportunities come with commitments and threats, there is nothing new about it, but cyber-crime is very unique, something that has never happened in this globe before. May be 10-15 years now, the life will become completely unmanageable without the support of each other because the cyber space is expanding too fast and in every walk of life. One of the biggest challenges is also that no one has got a solution to it — there is no state or mode of governance, since you can do in virtual state – there are no barriers. Anybody who can get computer and get connected to the cyber space is a stakeholder, Doval said. He said as India will also become 600 million internet users by next year and probably many more in the coming years with various schemes helping the internet penetration grow and similarly, in many geographies in the world, it is the right time to control and done in a way there...

Read More

GDPR will force up cyber security standards – Europol

Rob Wainwright, executive director at Europol, explains how cyber has transformed criminal activity. Cyber resilience is about defence but it’s also about being prepared for an attack, according to Rob Wainwright, executive director of Europol. Speaking at CFC Underwriting’s 2017 London Market Cyber Symposium, Wainwright said: “So much of what we do is reactive and we need to be better at predicting what will happen.” According to Wainwright, Europol uses data and analytics to “understand how crime works across the borders” in Europe and to disrupt organised crime. Cybercrime He explained that cybercrime is Europol’s most productive area and that the transformation of this type of criminal activity has had an impact on millions of people. “Cyber is transforming all types of crime,” he noted, adding that for example a lot of drug trafficking is now done online. Wainwright stated that technology has transformed criminal opportunities and highlighted that cyber security levels are currently very low. “The future belongs to the Internet of Things,” Wainwright continued. “There are currently poor levels of security and the devices are easily hacked. This is due to a lack of security culture.” GDPR However, he noted that the implementation of the EU General Data Protection Regulation (GDPR) would “force up cyber security standards”. The GDPR replaces the Data Protection Act and affects all UK companies who process or store personal information. Brokers have been urged to prepare now as the GDPR will become fully enforceable from 25...

Read More