In a further move to allay fears in the West of possible security compromises due to its Russian origin, Kaspersky Lab has announced that malicious and suspicious files shared by users of Kaspersky Lab products in Europe will start to be processed in data centers in Zurich.
This initiates the first part of a relocation commitment made by the company in late 2017 under its Global Transparency Initiative. Kaspersky Lab says the move symbolises its determination to assure the integrity and trustworthiness of its products. It is accompanied by the opening of the company’s first Transparency Center, also in Zurich.
The relocation of data processing is part of a major infrastructure move designed to increase the resilience of the company’s IT infrastructure to risks of data breaches and supply-chain attacks, and to further prove the trustworthiness of its products, services and internal processes.
The move comes a day after the Paris Call for trust and security in cyberspace unveiled at the Paris Peace Forum on November 12 by President Emmanuel Macron and Foreign Affairs minister Jean-Yves Le Drian.
The Paris Call lays out several important principles and guidelines for international cybersecurity. In particular, it recognises the responsibilities of key private sector actors in improving trust, security and stability in cyberspace, and encourages initiatives aimed at strengthening the security of digital processes and products across the supply chain. It also promotes broad digital cooperation and a multi-stakeholder approach to build confidence, capacity and trust.
Kaspersky Lab says the call coincides with its own championing of international cooperation on cyber issues and the need to counter the risk of balkanisation.
The company said in a statement: “Online crime is borderless; and so must be the world’s response. We cannot fight back if we are isolated and fragmented. Shared intelligence and public-private partnerships, for instance through cooperation between national police forces and cybersecurity companies, are necessary to ensure stronger protection for all.
“The solution is also to become more transparent and to give stakeholders proof that they can trust cybersecurity. We have started already through our Global Transparency Initiative (GTI), a programme designed to build trust, accountability, assurance and resilience. Within the GTI framework, we are relocating some of our infrastructure to Switzerland – starting from November 13, 2018, when we begin to process suspicious and malicious files shared by users in Europe, in Zurich, and open the doors of our first Transparency Center in the city. More data and processes, and more regions, will follow.”
Eugene Kaspersky, CEO of Kaspersky Lab, said today: “I’m very glad to see the wheels are turning to international cyberspace cooperation. The Paris Call for Trust and Security in Cyberspace announced by the French authorities is a very positive shift given the atmosphere of growing mistrust that the cybersecurity industry is experiencing now. This Call recognises the responsibilities of leaders of the private sector in improving trust, security and stability in cyberspace.
“That’s exactly what our efforts have been focused on lately in many of our company’s initiatives – to become more transparent, to prove our trustworthiness, and, as we love to do, become pioneers of a new industry standard. We’ll undoubtedly continue to push for cooperation in the industry and open doors in cyberspace, and it’s great to feel supported in this mission!”
From November 13, threat-related data coming from European users will start to be processed in two datacenters. These provide world-class facilities in compliance with industry standards to ensure the highest levels of security.
The data, which users have actively chosen to share with Kaspersky Lab, includes suspicious or previously unknown malicious files and corresponding meta-data that the company’s products send to Kaspersky Security Network (KSN) for automated malware analysis.
Files comprise only part of the data processed by Kaspersky Lab technologies, yet the most important one. The relocation of other types of data processed by Kaspersky Lab products, consisting of several kinds of anonymised threat and usage statistics, is planned to be conducted during later phases of the Global Transparency Initiative.
Today also marks the opening of Kaspersky Lab’s first Transparency Center in Zurich, enabling authorised partners to access reviews of the company’s code, software updates and threat detection rules, along with other activities. Through the Transparency Center, Kaspersky Lab will provide governments and partners with information on its products and their security, including essential and important technical documentation, for external evaluation in a secure environment. These two major developments will be followed by the relocation of data processing for other regions and, in phase two, the move to Zurich of software assembly.
According to independent rankings, Switzerland is among the world’s top locations in terms of the number of secure internet servers available, and it has an international reputation as an innovative center for data processing and high quality IT infrastructure. Being in the heart of Europe and, at the same time, a non-EU member, it has established its own data privacy regulation that is guaranteed by the state’s constitution and federal laws. In addition, there are strict regulations on processing data requests received from authorities.
“Transparency is becoming the new normal for the IT industry– and for the cybersecurity industry in particular,” said the CEO. “We are proud to be on the front line of this process. As a technological company, we are focused on ensuring the best IT infrastructure for the security of our products and data, and the relocation of key parts of our infrastructure to Switzerland places them in one of the most secure locations in the world.”
Liv Minder, Investment Promotion Director at Switzerland Global Enterprise, said: “The settlement of Kaspersky’s Transparency Center in Switzerland underlines that our country has become a global centre for innovation and technology with a strong cyber security cluster, offering advanced and secure digital infrastructure within a strong framework of security and privacy that attracts ever more technology leaders.”
Seedstars seeks tech to reverse land degradation in Africa
A new partnership is offering prizes to young entrepreneurs for coming up with innovations that tackle the loss of arable land in Africa.
The DOEN Foundation has joined forces with Seedstars, an emerging market startup community, to launch the DOEN Land Restoration Prize, which showcases solutions to environmental, social and financial challenges that focus on land restoration activities in Africa. Stichting DOEN is a Dutch fund that supports green, socially-inclusive and creative initiatives that contribute to a better and cleaner world.
While land degradation and deforestation date back millennia, industrialization and a rising population have dramatically accelerated the process. Today we are seeing unprecedented land degradation, and the loss of arable land at 30 to 35 times the historical rate.
Currently, nearly two-thirds of Africa’s land is degraded, which hinders sustainable economic development and resilience to climate change. As a result, Africa has the largest restoration opportunity of any continent: more than 700 million hectares (1.7 billion acres) of degraded forest landscapes that can be restored. The potential benefits include improved food and water security, biodiversity protection, climate change resilience, and economic growth. Recognizing this opportunity, the African Union set an ambitious target to restore 100 million hectares of degraded land by 2030.
Land restoration is an urgent response to the poor management of land. Forest and landscape restoration is the process of reversing the degradation of soils, agricultural areas, forests, and watersheds thereby regaining their ecological functionality. According to the World Resources Institute, for every $1 invested in land restoration it can yield $7-$30 in benefits, and now is the time to prove it.
The winner of the challenge will be awarded 9 months access to the Seedstars Investment Readiness Program, the hybrid program challenging traditional acceleration models by creating a unique mix to improve startup performance and get them ready to secure investment. They will also access a 10K USD grant.
“Our current economic system does not meet the growing need to improve our society ecologically and socially,” says Saskia Werther, Program Manager at the DOEN Foundation. “The problems arising from this can be tackled only if a different economic system is considered. DOEN sees opportunities to contribute to this necessary change. After all, the world is changing rapidly and the outlines of a new economy are becoming increasingly clear. This new economy is circular and regenerative. Landscape restoration is a vital part of this regenerative economy and social entrepreneurs play an important role to establish innovative business models to counter land degradation and deforestation. Through this challenge, DOEN wants to highlight the work of early-stage restoration enterprises and inspire other frontrunners to follow suit.”
Applications are open now and will be accepted until October 15th. Startups can apply here: http://seedsta.rs/doen
To enter the competition, startups should meet the following criteria:
- Existing startups/young companies with less than 4 years of existence
- Startups that can adapt their current solution to the land restoration space
- The startup must have a demonstrable product or service (Minimum Viable Product, MVP)
- The startup needs to be scalable or have the potential to reach scalability in low resource areas.
- The startup can show clear environmental impact (either by reducing a negative impact or creating a positive one)
- The startup can show a clear social impact
- Technology startups, tech-enabled startups and/or businesses that can show a clear innovation component (e.g. in their business model)
Also, a specific emphasis is laid, but not limited to: Finance the restoration of degraded land for production and/or conservation purposes; big data and technology to reverse land degradation; resource efficiency optimization technologies, ecosystems impacts reduction and lower carbon emissions; water-saving soil technologies; technologies focused on improving livelihoods and communities ; planning, management and education tools for land restoration; agriculture (with a focus on precision conservation) and agroforestry; clean Energy solutions that aid in the combat of land degradation; and responsible ecotourism that aids in the support of land restoration.
The dark side of apps
Mobile device security threats are on the rise and it’s not hard to see why. In 2019 the number of worldwide mobile phone users is forecast to reach 4.68 billion of which 2.7 billion are smartphone users. So, if you are looking for a target, it certainly makes sense to go where the numbers are. Think about it, unsecured Wi-Fi connections, network spoofing, phishing attacks, ransomware, spyware and improper session handling – mobile devices make for the perfect easy target. In fact, according to Kaspersky, mobile apps are often the cause of unintentional data leakage.
“Apps pose a real problem for mobile users, who give them sweeping permissions, but don’t always check security,” says Riaan Badenhorst, General Manager for Kaspersky in Africa. “These are typically free apps found in official app stores that perform as advertised, but also send personal – and potentially corporate – data to a remote server, where it is mined by advertisers or even cybercriminals. Data leakage can also happen through hostile enterprise-signed mobile apps. Here, mobile malware uses distribution code native to popular mobile operating systems like iOS and Android to spread valuable data across corporate networks without raising red flags.”
In fact, according to recent reports, 6 Android apps that were downloaded a staggering 90 million times from the Google Play Store were found to have been loaded with the PreAMo malware, while another recent threat saw 50 malware-filled apps on the Google Play Store infect over 30 million Android devices. Surveillance malware was also loaded onto fake versions of Android apps such as Evernote, Google Play and Skype.
Considering that as of 2019, Android users were able to choose between 2.46 million apps, while Apple users have almost 1.96 million app options to select from, and that the average person has 60-90 apps installed on their phone, using around 30 of them each month and launching 9 per day – it’s easy to see how viral apps take several social media channels by storm.
“In this age where users jump onto a bandwagon because it’s fun or trendy, the Fear of Missing Out (FOMO) can overshadow basic security habits – like being vigilant on granting app permissions,” says Bethwel Opil, Enterprise Sales Manager at Kaspersky in Africa. “In fact, accordingly to a previous Kaspersky study, the majority (63%) of consumers do not read license agreements and 43% just tick all privacy permissions when they are installing new apps on their phone. And this is exactly where the danger lies – as there is certainly ‘no harm’ in joining online challenges or installing new apps.”
However, it is dangerous when users just grant these apps limitless permissions into their contacts, photos, private messages, and more. “Doing so allows the app makers possible, and even legal, access to what should remain confidential data. When this sensitive data is hacked or misused, a viral app can turn a source into a loophole which hackers can exploit to spread malicious viruses or ransomware,” adds Badenhorst.
As such, online users should always have their thinking caps on and be more careful when it comes to the internet and their app habits including:
- Only download apps from trusted sources. Read the reviews and ratings of the apps as well
- Select apps you wish to install on your devices wisely
- Read the license agreement carefully
- Pay attention to the list of permissions your apps are requesting. Only give apps permissions they absolutely insist on, and forgo any programme that asks for more than necessary
- Avoid simply clicking “next” during an app installation
- For an additional security layer, be sure to have a security solution installed on your device
“While the app market shows no signs of slowing down, it is changing,” says Opil. “Consumers download the apps they love on their devices which in turn gives them access to content that is relevant and useful. The future of apps will be in real-world attribution, influenced by local content and this type of tailored in-app experience will lead consumers to share their data more willing in a trusted, premium app environment in exchange for more personalised experiences. But until then, proceed with caution.”