The latest version of the Apple Watch has gone back on sale in the US after being removed from sale by the US Government from 26 December 2023.

Its removal from sale followed claims by medical technology company Masimo that the watch’s pulse oximetry sensors (used to measure how much oxygen is in the blood) violated its patents.

The ban, which applied to the Apple Watch Series 9 and Apple Watch Ultra 2, has now been halted and the watch has gone back on sale while a court considers Apple’s motion for a longer-term pause during the appeals process. The court has given the US International Trade Commission (ITC) until 10 January to respond to Apple’s request.

Cyber Security News has compiled a top 10 most notable cyber-attacks of 2023 list, serving as a reminder to businesses that advancements in technology, increased connectivity, and the more sophisticated tactics used by threat actors mean that cyber-attacks are evolving at a rapid pace.

Top of its list is the MOVEit Mass Attack launched by a Russian hacking group which used the MOVEit file transfer software to extort an estimated $75-100 million from 2,667 organisations. The others in the list include Cisco IOS XE attacks, the US government hacked via Microsoft 365, the Citrix Bleed attack, Okta’s customer support data breach, the Western Digital cyber-attack, and the MGM Resorts breach. The list also includes the Royal Ransomware attack over the city of Dallas, the GoAnywhere attacks, and the 3CX software supply chain attack.

Businesses should, therefore, make sure that they are well protected for 2024 from a wide range of common cyber-attack methods, including malware, phishing, distributed denial of Service (DDoS), man-in-the-Middle (MitM), and many more.

Austria’s Repair Bonus voucher scheme sees the government pay citizens up to €200 (£173) towards getting old electrical appliances, devices and tech gadgets fixed.

Why?  

The Austrian government scheme, financed through the Covid Recovery Fund, is designed to motivate people to repair rather than throw away old electrical appliances (and add to a growing pile of e-waste). Austria’s Climate Minister Leonore Gewessler launched the scheme with the intention of “making repair attractive again.” 

The E-Waste Problem 

A 2019 UN report showed that the world produces as much as 50 million tonnes annually of electronic and electrical waste, also known as e-waste, but that only 20 per cent of this is formally recycled. Put in context, the current worldwide pile of electronic waste weighs more than all the commercial airliners ever made. The UK, for example, currently produces 24.9kg of e-waste per person, which is nearly 10kg more than the European Union (EU) average.

Some of the main problems associated with e-waste are:

– Environmental pollution. E-waste contains harmful toxins like Lead, Mercury, Cadmium (and others), posing significant health and environmental risks.

– Loss of valuable materials. E-waste is a source of scarce and valuable materials such as gold and platinum, which are often lost due to improper disposal.

– The current recycling rates are too low. Only about 20 per cent of e-waste is formally recycled worldwide, leading to environmental harm and material loss.

– Health risks in informal recycling. In countries with a predominantly informal e-waste sector, such as India, workers face severe health risks due to exposure to dangerous chemicals.

– Asset wastage. Companies often prematurely dispose of electronic assets, resulting in the loss of potentially useful resources.

– Data security concerns. Fears over data security leads some companies to destroy electronic assets rather than recycle or reuse them.

– E-waste export to developing countries. Despite the Basel Convention’s limitations, developed countries have been exporting a significant portion of their e-waste to developing countries, contributing to improper recycling practices. However, the upcoming “Swiss-Ghana Amendments” to the Basel Convention, effective from 2025, aim to redefine the trade rules for hazardous and non-hazardous e-waste, potentially reducing this issue.

– Cheap electrical goods preventing recycling. For example, if the costs of repairing an electrical item / device are more than 20-30 per cent of the cost of the new product, people are more likely to buy new and not repair the old item. The Repair Bonus scheme may, therefore, be a way to lower those costs, and act as an incentive to repair more.

Which Items Does The Austrian Repair Scheme Apply To? 

Austria’s Repair Bonus voucher scheme applies to almost all electrical and electronic equipment commonly used in private households, including those with a power cord, rechargeable battery, and battery or solar modules.

How Does The Scheme Work? 

The scheme works by issuing vouchers that can be redeemed at third party partner companies who carry out the repairs. The customer downloads the voucher from the government website, pays the partner company upfront, and then receives a direct payment (into their bank account) of half the costs of the repair back after three to four weeks.

A Win-Win 

The scheme is being described as a win-win because customers benefit from cost savings on the repair, local businesses (the partner repair businesses) benefit from additional revenues, and the environment benefits from a reduction in the amount of e-waste.

Challenges 

Although the Austrian scheme has led to more repairs it hasn’t been without its challenges. For example:

– There is a shortage of technicians and craftspeople to carry out the repairs.

– Some of the spare parts needed for some repairs are no longer available, so replacements need to be found.

– The scheme needs to work well enough to change quite an entrenched mindset in what has become a ‘throwaway society.’

What Else Could Encourage Repair and Recycling? 

In addition to voucher schemes, like the one in Austria, other measures that could encourage the repair and recycling of electrical goods and a circular and more sustainable economy could include:

– Educational campaigns, i.e. increasing public awareness about the environmental and economic benefits of repairing and recycling electronics and educating consumers about their rights to repair their own devices or to have them repaired by a third party.

– Extended producer responsibility (EPR), i.e. implementing policies requiring manufacturers to take back used products for recycling or proper disposal.

– Repair-friendly design regulations. Encouraging or mandating manufacturers to design products that are easier to repair and upgrade.

– Tax breaks or incentives for companies and consumers who repair, recycle, or buy refurbished electronics.

– Community repair events such as organising local repair cafes or workshops / pop-up workshops where people can bring their electronics for free or low-cost repairs.

– Providing financial and technical support to small businesses specialising in repairing electronics.

– Recycling infrastructure development. Investing in more accessible and efficient recycling facilities and collection points.

– More laws and regulations for waste reduction including enforcing stricter regulations on electronic waste disposal and promoting recycling.

Is There A Similar Scheme In The UK? 

Unfortunately, here in the UK, there isn’t a direct counterpart to Austria’s Repair Bonus voucher scheme for electrical devices. However, the UK government did introduce new ‘Right to Repair’ laws in 2021, and has initiated a consultation to enhance electrical waste recycling, making it easier for people to recycle through manufacturer and retailer responsibility. Also, The Restart Project advocates for the Right to Repair and promotes repair and reuse through various initiatives and community activities.

What Does This Mean For Your Organisation? 

Austria’s Repair Bonus voucher scheme could represent one way to move forward in addressing the escalating global problem of e-waste and promoting a more sustainable approach to technology usage and the use of all household appliances and gadgets. For organisations, this kind of initiative is not just about environmental stewardship but also presents an opportunity for economic and societal benefits.

The scheme does appear to provide a win-win in terms of providing cost savings to consumers, boosting local businesses, and reducing the volume of e-waste making the option of fixing old devices more attractive compared to buying new ones.

However, the Austrian scheme does face challenges, particularly in the areas of technical workforce and spare parts availability. Finding a way to ensure a steady supply of skilled technicians through training and education programs may be essential going forward. Also, making spare parts more accessible, possibly through collaborations with manufacturers, might be a way to ensure that more repairs are feasible and cost-effective.

If similar initiatives are adopted in many other countries too, this could have a positive impact on global e-waste reduction and tailoring these programs to suit specific national contexts could maximise their effectiveness. Also, incentivising businesses (who are large buyers of electrical devices) to engage more actively in repair and recycling efforts could be achieved through a variety of measures, such as tax incentives, subsidies, or recognition programs.

In terms of environmental impact, such initiatives could contribute to the conservation of valuable resources and reduce the need for extracting new raw materials. From an economic standpoint, developing a robust repair industry could also open up new job opportunities and foster local economies. Promoting repair and recycling also aligns with the broader goals of sustainability and responsible consumption.

The apparent success of Austria’s Repair Bonus scheme, therefore, offers valuable insights and food for thought into how similar strategies could be implemented globally. For organisations, embracing these principles could mean not only contributing to environmental sustainability but also potentially tapping into new economic opportunities. As awareness of the e-waste challenge grows, initiatives like these could provide a roadmap for responsible electronic waste management and a more sustainable future.

If there are websites that you use regularly, pinning tabs is a way to save time, stay organised, and get right to the websites you need every time you open your Google Chrome browser. Here’s how it works:

– Open Chrome and type in the domain of the required website.

– Right-click on the tab the website is open in and select ‘Pin’.

– You’ll see your pinned tab appear at the top of the browser on the left. Pinned tabs are stored on the left of the window and only show the site’s icon, saving space.

– Pinned tabs stay in place, even when you close and reopen Chrome, so it’s just a case of clicking on the pinned tab (top left) to quickly go to the required website.

Following on from Google’s recent launch announcement for Gemini (its new super-powered foundation model family), Google has now announced the launch of AI Studio to enable the development of apps and chatbots using Gemini.

Gemini (Pro) 

Google recently announced the introduction of its largest and most capable AI model, Gemini. The three sizes of the model, Ultra, Pro and Nano are already being rolled out with Gemini Nano in Android, starting with Pixel 8 Pro, and a specifically tuned version of Gemini Pro in Google’s Bard chatbot. Gemini Pro is now also available for developers and enterprises to build for their using AI Studio.

AI Studio – Leveraging The Power of Gemini 

Google’s new AI Studio (previously called ‘MakerSuite’), which Google describes as “the fastest way to build with Gemini” is a free, web-based developer tool that enables users to quickly develop prompts and then get an API key to use in app development. In short, it’s a fast, free, easy-to-use tool to enable the creation of apps and chatbots that leverage the power of Gemini Pro model (and Ultra later next year).

Generous Free Quota 

As Google is keen to point out, users who sign into Google AI Studio with their Google account login can take advantage of the 60 requests per minute free quota, which is 20 times more than other free offerings.

How It Works 

Once signed in, AI Studio users simply need to click on “Get code” to transfer their work to their integrated development environment (IDE) of choice or use one of the quickstart templates available in Android Studio, Colab or Project IDX.

Shared With Reviewers To Improve Product Quality 

Google also says that to improve the quality of AI Studio, when using the free quota, it may make the user’s API and Google AI Studio input and output accessible to trained reviewers. Google stresses that in the interests of privacy, this data is de-identified from the user’s Google account and API key.

Currently, Google AI Studio supports both Gemini Pro and Gemini Pro Vision models, which accommodate text and imagery development, but not yet image creation

How Much Can You Do With The Free AI Studio? 

It’s been reported that the team behind AI Studio have tried to make sure it doesn’t feel like a very limited trial version or a gated product and that, if the free-tiers rate limits are sufficient for their use, developers can start publishing their AI Studio apps or use them through the API or Google’s software development kits (SDKs) right away.

Which Software Development Kits (SDKs)? 

With Gemini Pro, the SDKs supported include Python, Android (Kotlin), Node.js, Swift and JavaScript, which should enable the building of apps that can run anywhere.

Transition To Vertex AI 

In line with Google’s “growing with Google” (customer retention) concept, AI Studio offers a way for Google to first let users experiment and learn, before seamlessly enabling them to “easily transition” to its fully managed (paid-for) AI developer platform ‘Vertex AI.’ This platform offers the added benefits and value of customisation of Gemini with full data control, and it benefits from additional Google Cloud features for enterprise security, safety, privacy and data governance and compliance.

Those who choose to transition to Vertex will therefore have access to Gemini plus, meaning that they can:

– “Tune and distil” Gemini with their own company’s data and augment it with grounding to include up-to-minute information and extensions to take real-world actions.

– Build Gemini-powered search and conversational agents in a low code / no code environment. This includes support for retrieval-augmented generation (RAG), blended search, embeddings, conversation playbooks and more. RAG refers to using facts fetched from external sources to enhance the accuracy and reliability of generative AI models.

All this should mean that businesses can use these Google AI services to create their own working, real-world customised chatbots and apps (based on a powerful model), saving time and money and without requiring vast amounts of technical skill to do so. Google is also keen to highlight how using Vertex will protect privacy because Google says it doesn’t train its models on inputs or outputs from Google Cloud customers, and customer data and IPs remain their own. This is likely to be important to the many enterprise customers and developers that Google hopes will adopt AI Studio and then Vertex AI.

Looking Ahead (And Pricing)

As previously mentioned, using Google’s Gemini Pro through AI Studio is currently free, and a pay-as-you-go version (coming soon to AI Studio) will be priced at (input) $0.00025 / 1K characters and $0.0025 / image, and output $0.0005 / 1K char.

Google says: “Vertex AI developers can try the same models, with the same rate limits, at no cost until general availability early next year, after which there will be a charge per 1,000 characters or per image across Google AI Studio and Vertex AI.” The Vertex platform is already charged by every 1,000 characters of input (prompt) and every 1,000 characters of output (response).

With Gemini, the new, powerful three-flavoured foundation model means users can build their apps and chatbots via Google AI Studio and then Vertex. Ultra, the largest and most capable model, will be launched next year (following testing and tuning). Google also says it plans to bring Gemini to more of its developer platforms like Chrome and Firebase.

What Does This Mean For Your Business? 

In the fast-moving generative AI market, Google’s powerful Gemini models and its infrastructure and tools for leveraging these models (AI Studio and Vertex) enable it to compete with the likes of OpenAI’s GPT-4 model, its API and ChatGPT. With the race now moving towards giving users the tools to make their own customised apps and chatbots (like OpenAI’s GPTs) focused on their own business uses, this is an important competitive step from Google.

AI Studio is also a way to ease users into Google’s AI services, retain and upsell them by offering them a seamless way to move up to the bigger paid-for platform Vertex. Being able to build apps and chatbots in an easy, low-code way is likely to be very attractive to most businesses that are sold on the general benefits of AI but want a way to easily tailor it in a value-adding way that is specific to their own business needs. Although Google and the other major tech players are moving quickly to meet these needs, it seems that this is such a fast-moving market that in even just a month or two, other major developments or products can up the ante for all again. OpenAI, for example has (after its recent boardroom power struggle) has already announced some major new developments for the very near future.

For now, it’s a case of Google scoring some points with Gemini and its associated infrastructure tools. However, keep watching this space!

A whitepaper by researchers at Sophos highlights how, rather than remaining anonymous, ransomware gangs now engage with the media to shape the narrative around a hack and gain a tactical and strategic advantage.

The Ransomware Threat 

Ransomware is a type of malicious software designed to block access to a computer system or data (typically by encrypting it), until a ransom is paid. It’s worth remembering that even if a ransom is paid, it may not mean that data is ever returned. Ransomware has become increasingly popular among cybercriminals due to its lucrative nature and the ease with which it can be distributed, such as via phishing emails, malicious downloads, or exploiting security vulnerabilities. The rise of cryptocurrencies has also facilitated anonymous ransom payments, making it harder to trace and prosecute perpetrators.

Ransomware’s effectiveness in generating revenue for attackers plus the increasing digitisation of many business-sectors have contributed to its growing prevalence as an attack ‘vector’. For example, ransomware attacks have increased by over 37 per cent this year compared to previous years (ThreatLabz) and over the last five years, there has been a 13 per cent rise in ransomware attacks. Also, the global cost of ransomware is estimated to have exceeded $30 billion this year (tech.co).

The Commoditisation and Professionalisation of Ransomware 

The Sophos whitepaper highlights the fact that whereas historically, cybercriminals preferred to operate in obscurity and avoid public attention (for obvious reasons), there has been a marked shift in the behaviour of ransomware gangs. Sophos says that, aided by the commoditisation and professionalisation of ransomware, these criminal groups are now actively engaging with the media for a variety of tactical and strategic reasons.

Why? 

Some of the key reasons highlighted by Sophos as to why ransomware gangs now court the media include:

– Leveraging media attention. It seems that ransomware gangs now understand that their activities are newsworthy and are prepared to use media coverage to bolster their credibility and exert pressure on victims. For example, they sometimes link to existing coverage on their leak sites, thereby showcasing their notoriety and influence (making a name for themselves and bolstering their criminal ‘brand’).

– Many ransomware gangs now seek direct communication with journalists and invite and facilitate communication with them. For example, criminal gangs do this through FAQs on their leak sites, dedicated private PR channels, and public notices. This approach not only allows them to control the narrative but also serves as a means to intimidate victims by demonstrating their media reach.

– Bizarrely, some groups even give in-depth interviews, thereby hoping to provide a positive perspective of their activities, which could serve as a recruitment tool. This not only increases their notoriety but also offers insights into the ransomware scene from their perspective.

– Sophos reports that ransomware groups have even started issuing what they call “press releases,” often written in fluent English. These releases can, for example, range from recruitment announcements to attacks on organisations for not complying with their demands, thereby applying pressure, and causing reputational damage to victim organisations.

– According to Sophos, ransomware gangs have also started to focus on their own branding, using catchy names and slick graphics on their leak sites to attract media attention and distinguish themselves in the public domain.

Media Management Roles

Reading the above, it’s perhaps not such a surprise to learn that, in some well-established ransomware groups, Sophos reports that there are even individuals who have media management roles and are dedicated to negotiating ransoms and managing public communications. This indicates a worrying level of organisation and professionalisation akin to legitimate businesses.

Criticism and Mistrust of Media 

That said, and despite their engagement, it seems that the split personality and confused logic of ransomware gangs can’t help but shine through as they tend to display a contradictory attitude towards the media. For example, Sophos highlights how they often criticise journalists for what they perceive as unfair or inaccurate coverage and occasionally attack individual journalists to make them feel uncomfortable or cause reputational harm. However, as befits a more media-savvy approach (with a brand and image at stake) they also tend to refrain from making direct threats.

The Unique Position of Ransomware Gangs 

In the world of cybercrime, this need for publicity means that ransomware campaigns now occupy a unique position. Unlike other threats that thrive on remaining undetected, ransomware groups must make themselves known to demand ransoms. This involves using leak sites and media engagement. It should be remembered, however, that all this is used to apply pressure on victims, attract recruits, manage their public image, and shape the narrative of their attacks.

The Implications For The Security Community And Businesses 

To combat the problem of the increasing media savviness of ransomware gangs, many believe that the security community and media need to adopt specific strategies. These could include:

– Refraining from directly engaging with ransomware actors unless it aids in defence or is in the public interest.

– Factual reporting, i.e. focusing on providing information that aids defenders and avoids glorifying the threat actors, thereby reducing their manipulative power.

– Providing adequate support to journalists and researchers who may be targeted by these groups.

– Avoiding publicly naming or crediting threat actors unless necessary and factual, can deny them the publicity they seek, thereby limiting their powers and thwarting some of their criminal ambitions.

Why Aren’t Ransomware Gangs Afraid? 

As the Sophos whitepaper indicates, ransomware gangs often appear to be unfazed by the legal consequences of their actions. Some of the main reasons for this may be:

– An adequate level of anonymity and decentralisation. Despite their media engagement, ransomware operations still manage to maintain an adequate level of anonymity, often using encrypted communication and cryptocurrency for transactions, which makes the successful tracking and identification of perpetrators challenging.

– Jurisdictional challenges. Many ransomware gangs operate from countries with lax cybercrime laws or where local authorities are either unable or unwilling to cooperate with international law enforcement efforts. This creates a kind of safe-haven for cybercriminals.

– Sophistication of operations. Ransomware gangs are now becoming increasingly sophisticated, using advanced techniques to avoid detection, and employing a variety of methods to launder ransom payments.

– The ransomware-as-a-Service (RaaS) model allows ransomware developers to lease their malware to affiliates who conduct attacks, further complicating law enforcement efforts as the developers can claim ignorance of the actual attacks.

Some Sucesses 

Despite these challenges, police around the world have had some notable successes in recent years. Collaborations between international law enforcement agencies have led to the disruption of major ransomware operations, arrests of key figures, and seizure of ransom payments. For example, the takedown of the Emotet botnet, the arrest of individuals connected to the REvil and Egregor ransomware groups, and the recovery of part of the ransom paid in the Colonial Pipeline attack are some significant victories. However, these successes are relatively rare compared to the scale and frequency of ransomware attacks, while the constantly evolving nature of these cybercriminal groups continues to pose a substantial challenge to law enforcement worldwide.

What Does This Mean for Your Business?

This shift by ransomware gangs from hiding away to actively contacting the media seems counterintuitive, brazen, and shocking. For many of the reasons explained above, ransomware gangs don’t seem to fear detection and capture. Despite their media activities, the main point is that if businesses are well prepared with security measures in place, the ransomware threat can be mitigated and the gangs will have little to report.

Proactive businesses should, for example, implement robust cybersecurity practices to prevent breaches, and develop and regularly update a comprehensive incident response plan. It’s also important for businesses to educate employees about ransomware tactics, including their use of media and public relations strategies, and to engage with cybersecurity experts to stay informed about the latest ransomware trends and defence strategies. Businesses also need to be aware, like the attackers, that they may need to prepare a media strategy in case of a ransomware attack to control the narrative and minimise reputational damage.

There’s also clearly a part that the media can play in limiting the manipulative power of ransomware gangs by not engaging with them and by denying them the publicity they crave. Better collaboration between law enforcement globally and increasing investment in detecting and tackling these groups is also an important priority to protect businesses. The more brazen and open attackers become, the more likely they are to make mistakes and leave clues and trails that could lead to their detection and capture.

By understanding the evolving landscape of ransomware threats and their media strategies, businesses and the security community can better prepare and respond to these increasingly sophisticated cyber-attacks.