SolarWinds hack

SolarWinds hack: CISOs need to revisit cyber resilience?

by | Dec 23, 2020 | IT Security

The SolarWinds hack has highlighted the threats caused by third-party vendors and challenges the cyber resilience position of enterprises.
Share to lead the transformation

What many organizations feared came true! The year 2020 brought another shock to the business community last week with discovering a new cyber-attack, SolarWinds hack’ in the United States. The attack is an opportunity for enterprises and CISOs to reflect on their cyber resilience strategies. (See: Top enterprise cybersecurity trends of 2020)

For the unversed, California-based cybersecurity company FireEye uncovered the SolarWinds hack last week and estimated that the cyberattack campaign might have started as early as Spring 2020 and remained undetected for months.

The cyberattack emerged as one of the largest ever targeted against the U.S. Government and several other global companies, threatening organizations’ cyber resilience levels. To date, dozens of emails from the U.S. Treasury Department have been confirmed as compromised.

The attack was hurled by cybercriminals who hacked the infrastructure of an American I.T. Software company, SolarWinds, and then used illegitimate access to insert malicious code in the software updates that the company sends out to its 30,000 plus clients that also includes several departments of the U.S. Government. SolarWinds stated that the updates issued between March and June 2020 were contaminated.

Several industry onlookers have also slammed SolarWind’s lackluster approach to conquer its shortcomings. For instance, the Chief Information Security Officer’s (CISO) longstanding vacant position from its board and notifications issued to customers around deactivating antivirus tools before installing SolarWinds software.

Far-reaching effects

While the timelines of the SolarWinds hack are still unfolding, the SolarWinds breach is disturbing to the whole of the I.T. industry as it can have a far-reaching effect on many big organizations’ networks, questioning their cyber resilience levels.

The SolarWinds breach reflects that most organizations are appallingly unqualified to detect and prevent such kinds of software supply chain attacks. SolarWinds boast that it has been working with 425 of the U.S. Fortune 500 companies and hundreds of universities and colleges globally. This means that the severity of the attack can be severe in the coming days.

Top tech companies, Intel, Microsoft, Cisco, and NVIDIA, have all confirmed their exposure to the malicious software and undertaking necessary investigations to gauge the impact.

In a column published in the New York Times, Thomas P. Bossert, a former domestic security adviser to President Trump, notes that supply chain attacks of such magnitude require significant resources and sometimes years of execution.

Bossart also opined that a foreign state might have launched SolarWinds hack in a well-orchestrated way. These evaluations, if proved correct, can be more hazardous. For instance, in war-like situations, confidential data of governments can be modified or erased by hackers instantly to cause financial loss or take undue strategic advantage.

Stresses lack of preparation of organizations

As we move into 2021, the Solar Winds hack event has once again reiterated nothing is completely secure in this ever-evolving threat landscape. Indeed, no vendor or solution can fully guarantee to protect the networks of an enterprise. Perfect information security is a myth, but the key is resilience. (See: How COVID-19 has changed cybersecurity focus for 2021)

The last few weeks must have been more strenuous for CIOs and CISOs who would need to spend long-hours evaluating the impact on their networks, systems, and data from the SolarWinds cyber-attack. It’s time for enterprises to seek responses to some of the key questions more vehemently:

  • Do you have a contingency plan to combat accidental breaches and unknown threats?
  • Do you depend upon a single security vendor (say, for VPN, network monitoring, and network slicing) or want to onboard different security vendors to safeguard our networks?
  • Can you change our defense approach to strengthen our cyber resilience levels?
  • Are you regularly testing our multiple endpoints and operating systems and keeping them secure?
  • Have you evaluated the risks of third-party software vendors and analyzed their ability to combat sophisticated threats?
  • Is your service-level-agreement updated?

The SolarWinds hack event could be a catalyst for technology leaders to rethink and analyze all their security solutions and potential gates of network vulnerabilities in the context of modern-day technologies. There might be many undisclosed portions, and more details around the impairment from the breach is likely to continue to come out in the next few weeks.

 

 

 

MORE FROM BETTER WORLD

GST on all EVs and charging slashed to 5%

GST on all EVs and charging slashed to 5%

electric vehicle charging

GST rate on charger or charging stations for EVs is cut from 18% to 5%. (Representative Image)

The 36th GST Council Meeting held in New Delhi via video conferencing under the chairmanship of Union Finance & Corporate Affairs Minister Nirmala Sitharaman, took the most awaited decision on electric vehicles. The meeting was also attended by Union Minister of State for Finance & Corporate Affairs Anurag Thakur besides Revenue Secretary Ajay Bhushan Pandey and other senior officials of the Ministry of Finance. The Council has recommended the following:

  • GST rate related changes on supply of goods and services
  • The GST rate on all electric vehicles be reduced from 12% to 5%.
  • The GST rate on charger or charging stations for Electric vehicles be reduced from 18% to 5%.
  • Hiring of electric buses (of carrying capacity of more than 12 passengers) by local authorities be exempted from GST.

These changes shall become effective from 1 August, 2019.

Govt using satellite imagery for assessing crops

Govt using satellite imagery for assessing crops

assessing crop data

Representative image.

Pradhan Mantri Fasal Bima Yojana (PMFBY) envisages use of improved technology to reduce time gap for settlement of claims of farmers. Accordingly, the Department of Agriculture, Cooperation and Farmers Welfare, through Mahalanobis National Crop Forecast Centre (MNCFC), involved 8 agencies/ organizations to carry out pilot studies for Optimization of Crop Cutting Experiments (CCEs) in various States under PMFBY. The studies used various technologies, including Satellite data, Artificial Intelligence, Modeling tools etc. for reducing the number of CCEs required for insurance unit level for yield estimation. The studies were taken up to address a major issue of the need to carry out large number of CCEs for calculation of yield data vis-à-vis claims at Gram Panchayat level. The results are being evaluated for providing recommendations for their implementation in the upcoming seasons.

Further, an Expression of Interest (EOI) was floated with a view to migrate to technology based assessment of yield with minimum use of CCEs for Kharif 2019 season. 46 agencies participated in the EOI, out of which 26 agencies have been shortlisted on technical assessment.

The Government is also using satellite imagery to assess the crop area, crop condition and crop yield, at district level, under various programmes such as Forecasting Agricultural Output Using Space, Agrometeorology & Land based observations and Coordinated Horticulture Assessment and Management using Geo-informatics. Further, satellite data is also being used for drought assessment, to assess the potential area for growing pulses and horticultural crops.

With a view to ensure better transparency, accountability, timely payment of claims to the farmers and to make the scheme more farmer friendly, the Government of India has comprehensively revised the Operational Guidelines of the Pradhan Mantri Fasal Bima Yojana (PMFBY) which have become effective from Rabi 2018-19 season. Provision of 12% interest rate per annum to be paid by the Insurance Company to farmers for delay in settlement claims beyond 10 days of prescribed cut-off date for payment of claims. As the settlement of claims for Rabi 2018-19 season is underway, the admissible penal interest is not yet worked out.

This information was given in a written reply by the Union Minister of Agriculture and Farmers Welfare Narendra Singh Tomar in Rajya Sabha.

Uber ties up with SUN Mobility for EV push

Uber ties up with SUN Mobility for EV push

electric vehicle charging

Representative Image

Mobility service provider Uber has entered into a partnership with SUN Mobility, aimed at reducing the overall cost burden for Uber driver-partners.
SUN Mobility will offer its unique energy infrastructure platform, which includes swappable smart batteries and quick interchange stations to select original equipment manufacturers (OEMs) for building e-autos.
Fleet owners and Uber’s driver partners will benefit by receiving charged, swappable batteries as a service by SUN Mobility, thereby reducing the overall cost of e-autos to bring them in line with CNG, petrol- and diesel-powered ones.
“We are delighted to partner with SUN Mobility, an industry pioneer to try to usher in a wave of electric vehicles in the mass market category,” said Pradeep Parameswaran, President Uber, India and South Asia. “This is an important step forward in fulfilling our vision for creating a mobility ecosystem that is sustainable, provides cleaner air and helps build smarter cities across the region,” he added.
Commenting on the prospects of the partnership, Chetan Maini, Co-Founder and Vice-Chairman of SUN Mobility said, “Our mission is to give users a cost-effective and convenient energy infrastructure solution to accelerate the adoption of EVs (electric vehicles).’’
In line with the government’s vision to phase out internal combustion engine three-wheelers by 2023 and two-wheelers by 2025, the partnership will be piloted in select cities over the coming months. This could help bridge the demand-supply gap and build a more sustainable future for transport in India and beyond, an Uber newsroom release said.

Tata Motors delivers 40 electric buses to J&K

Tata Motors delivers 40 electric buses to J&K

40 Tata electric buses for J&K

Tata Motors has installed charging stations for fast charging of buses.

Tata Motors said it has supplied 40 9m 900mm Floor Height Non AC buses to the Jammu & Kashmir State Road Transport Corporation. Governor Satya Pal Malik flagged off the buses in the presence of Arvind Ganpat Sawant, Union Minister for Heavy Industries & Public Enterprises and officials from Jammu & Kashmir State Road Transport Corporation (JKSRTC) and Tata Motors at an event held in the city. Some of these buses are plying on the difficult terrains of the Jammu to Katra (Vaishno Devi) route and these electric buses will also ply in the valleys of Srinagar.

Manufactured at Tata Motors Dharwad plant, the Ultra Electric buses will have a traveling range of up to 150 kilometers on a single charge. The indigenously developed e-buses offer superior design and best-in-class features. The Li-ion batteries have been placed on the rooftop to prevent breakdown due to waterlogging. The batteries are liquid cooled to maintain the temperature within an optimum range and ensure longer life along with better performance in tropical conditions.

Speaking on the occasion, Rohit Srivastava, Vice President and Product Line Head – Passenger Commercial Vehicles, Tata Motors, said, “With growing environmental concerns, electric bus will be extremely vital for mass transit because it is not only energy efficient but also reduces overall cost per kms. Tata Motors has always been at the forefront of the E-mobility evolution and this order from JKSRTC is a testament of our excellent range of buses built for STUs in India. Our in-depth understanding of sustainable public transport for different markets and customers has helped us differentiate from our competitors. The electric buses will play an integral role in reduction of pollution load in the congested areas of our metropolis. We are determined to develop alternate fuel technologies and create more energy efficient vehicles thereby supporting the government’s efforts towards promoting electric vehicles in the country.”

Dr. A.K. Jindal, Head Engineering (Electric & Defence), CVBU, Tata Motors said, “Tata Motors has been engaging in advanced engineering and development of electric traction system for Hybrid as well as Pure Electric vehicles for over a decade. The Ultra Electric Bus is a new modular platform, which has been developed in a very short lead-time of less than a year, leveraging the knowledge and experience we have gained and demonstrating our commitment to the Government of India’s National Electric Mobility Mission Plan for Public Transport. The architecture of the platform has been conceived and developed by in-house engineering team of Tata Motors, meeting the requirement of various tenders floated by different state transport undertakings. The exterior has been designed with new brand identity that includes stylized Ultra headlamps and streamlined looks. The vehicle architecture ensures very low energy consumption and low TCO (total cost of operation) apart from being a Zero Emission environment friendly bus.”

The new-age Ultra Electric buses, powered by an Integrated Electric Motor Generator are built on existing proven platforms of Starbus and Ultra. With a max power of 245KW and continuous power of 145KW, the buses have a seating capacity of 31 + 1D seats. The buses will help in zero tailpipe emissions, 50% lower fuel costs, 20% better energy consumption and lower maintenance downtime as compared to diesel buses. As an industry first, there will be air suspension for both front and rear axles to make travel more comfortable for the commuters. Integrated electric motor generator with a peak power of 333HP can deliver 197HP continuously ensuring effortless driving in congested roads and frequent start stops needing no shifting of gears.

Commenting on the occasion, Bilal Ahmed Bhatt, Managing director, JKSRTC said, “The need for a cleaner, smarter and safer mode of transportation is a prerequisite for Jammu and Kashmir, due to the alarming rise of air pollution in the city. Tata Motors has pioneered technological innovations in the bus segment with an in-depth understanding of different market conditions, making it a perfect fit for us. Tata Motors will be delivering 40 e-buses, which will soon ply on the roads of Jammu and Kashmir. We look forward to continue this association.”

The critical electrical traction components have been sourced from internationally known best-in-class suppliers in USA, Germany and China offering proven products. The buses have been tested and validated by Tata Motors across states including Himachal Pradesh, Chandigarh, Assam and Maharashtra to establish performance in diverse terrains. The company has tenders to supply 255 electric buses to six public transport undertakings including WBTC (West Bengal), LCTSL (Lucknow), AICTSL (Indore), ASTC (Guwahati), JKSRTC (Jammu) and JCTSL (Jaipur). In addition to this, the company is also working on developing its electric mini-bus segment in the near future.

India has schemes to push organic farming

India has schemes to push organic farming

Realizing the potential and benefits of organic farming and to improve the economic condition of farmers in the country, Government of India is promoting organic farming through the dedicated schemes of Paramparagat Krishi Vikas Yojana (PKVY) and Mission Organic Value Chain Development for North Eastern Region (MOVCDNER) under National Mission for Sustainable Agriculture (NMSA) since 2015-16. Under PKVY, flexibility is given to states to adopt any model of Organic Farming including ZBNF depending on farmer’s choice that is free from chemicals, pesticides residues and adopts eco-friendly low cost technologies.

Under PKVY, assistance of Rs. 50,000 per hectare/ 3 years is allowed out of which Rs. 31,000 (61%) is provided to farmer directly through DBT for input (biofertilisers, biopesticides, vermicompost, botanical extracts etc) production/ procurement, packing, marketing etc.

Under MOVCDNER , assistance is provided to the farmers in a value chain mode starting from formation of Farmers Producer Organisations (FPOs), on/off farm input production, supply of seeds/ planting materials, post harvest infrastructure including collection, sorting, grading facilities, establishment of integrated processing unit, refrigerated transportation, pre-cooling/ cold stores chamber, branding, labelling and packaging, etc .

These schemes are implemented through State Governments at district and village level depending on the interest of the farmers. PKVY scheme is being implemented in 29 States & UTs and MOVCDNER scheme is implemented in the States of Arunachal Pradesh, Assam, Manipur, Meghalaya, Mizoram, Nagaland, Sikkim and Tripura since 2015-16.

This information was given in a written reply by the Union Minister of Agriculture and Farmers Welfare Narendra Singh Tomar in Lok Sabha today.

River Water disputes Bill gets cabinet nod

River Water disputes Bill gets cabinet nod

The Union Cabinet chaired by Prime Minister Narendra Modi has approved the Inter-State River Water disputes(Amendment) Bill, 2019 for adjudication of disputes relating to waters of inter-State rivers and river valley thereof, says a Press Information Bureau release.

This will further streamline the adjudication of inter-State river water disputes. The Bill seeks to amend the Inter State River Water Disputes Act, 1956 with a view to streamline the adjudication of inter-state river water disputes and make the present institutional architecture robust.

Constitution of a single tribunal with different benches along with fixation of strict timelines for adjudication will result expeditious resolution of disputes relating to inter-state rivers. The amendments in the Bill will speed up the adjudication of water disputes referred to it.

When any request under the Act is received from any State Government in respect of any water dispute on the inter-State rivers and the Central government is of the opinion that the water dispute cannot be settled by negotiations, the Central Government constitutes a Water Disputes Tribunal for the adjudication of the water dispute.

0 Comments