this post was submitted on 08 Aug 2023
144 points (100.0% liked)

Technology

37717 readers
628 users here now

A nice place to discuss rumors, happenings, innovations, and challenges in the technology sphere. We also welcome discussions on the intersections of technology and society. If it’s technological news or discussion of technology, it probably belongs here.

Remember the overriding ethos on Beehaw: Be(e) Nice. Each user you encounter here is a person, and should be treated with kindness (even if they’re wrong, or use a Linux distro you don’t like). Personal attacks will not be tolerated.

Subcommunities on Beehaw:


This community's icon was made by Aaron Schneider, under the CC-BY-NC-SA 4.0 license.

founded 2 years ago
MODERATORS
 

According to former US and Japanese officials, the NSA discovered in the fall of 2020 that the PRC had persistent access to Japanese Defense Networks.

This prompted a bilateral engagement to enhance Japanese Network security.

Kind of scary to think about all the state hacking going on that hasn't yet been revealed.

top 19 comments
sorted by: hot top controversial new old
[–] [email protected] 15 points 1 year ago (1 children)

Security in IT here in Japan has largely been an afterthought or security theatre. Passwords stored in plaintext are not uncommon (I've signed up for things and had my password in plaintext sent in email back to me). It seems to be getting better slowly. My current company has a whole security division, which is a nice change.

NDAs prevent me from being too specific, but I worked previously at another company in Japan that refused to hire security staff or even pay for the occasional pen test and audit. I fixed everything I could find on my own, but I highly doubt that there were no other issues left as I'm not a security pro.

Then you have things like https://www.bbc.com/news/technology-46222026 -- the cyber security MP has never used a computer. Even if their job is mostly to appoint the right people and manage that sort of thing, they still are doing a clearly terrible job of it.

[–] [email protected] 4 points 1 year ago

Oh jeez, the security nightmares I've seen here keep me up at night. You're doing good work, fixing what you could from the inside of where you worked.

[–] [email protected] 9 points 1 year ago (1 children)

🤖 I'm a bot that provides automatic summaries for articles:

Click here to see the summaryIn the fall of 2020, the National Security Agency made an alarming discovery: Chinese military hackers had compromised classified defense networks of the United States’ most important strategic ally in East Asia.

“Japan and the United States are currently facing the most challenging and complex security environment in recent history,” Prime Minister Fumio Kishida said at a news conference with President Biden in Washington in January.

The United States was debating how to respond to the massive Russian “SolarWinds” hack, which was uncovered during the Trump administration and had sowed malicious code and enabled cyberspies to steal information from several major U.S. government agencies.

“The government of Japan intends to strengthen its cybersecurity response capabilities to be equal to or surpass the level of leading Western countries,” Noriyuki Shikata, Kishida’s cabinet press secretary, said in an interview.

“Both within and beyond Asia, Japan faces more diverse threats and more complex international responsibilities, which call for intelligence that provides a better understanding of its national security needs,” stated the report, written by a bipartisan study group including foreign policy experts Richard Armitage and Joseph Nye.

Sensitive commercial and classified material has been stolen, the NSA’s own top-secret hacking tools have been released into the wild, Hollywood studios have been coerced and embarrassed, and the United States’ democracy has been assaulted.

[–] [email protected] 1 points 1 year ago
[–] [email protected] 5 points 1 year ago (2 children)

Any cultural or infrastructural reasons as to why Japan is not good at cybersecurity?

[–] [email protected] 13 points 1 year ago (2 children)

https://www.theguardian.com/world/2018/nov/15/japan-cyber-security-ministernever-used-computer-yoshitaka-sakurada

I think this article is enlightening on Japan's cybersecurity. Things may have changed but people like this being in charge put them way behind.

[–] [email protected] 10 points 1 year ago

never used computer

Cybersecurity minister

[–] [email protected] 6 points 1 year ago

Sakurada has been in office just over a month, after being appointed in a cabinet reshuffle following Prime Minister Shinzo Abe’s reelection

had to check when the article was written at this one lol

[–] [email protected] 11 points 1 year ago* (last edited 1 year ago) (1 children)

We still use FAX. No, seriously.

[–] [email protected] 12 points 1 year ago (2 children)

While it isn’t ubiquitous here in Australia by any means, fax still occupies some weird areas of law that make it common. When my doctor sends a referral it is almost always via fax, because email isn’t legal. Apparently, owning a phone number is more proof than owning an email address?

What’s hilarious is that most medical providers use fax-over-VoIP (yes, that’s apparently the term) anyway ¯\_(ツ)_/¯

[–] [email protected] 8 points 1 year ago

fax over VoIP has to be the most stupid thing I've ever heard

[–] [email protected] 3 points 1 year ago (2 children)

Same in the US, doctors offices want everything done by fax. Because security.

[–] [email protected] 3 points 1 year ago (1 children)

Nothing to do with security. Everything to do with olds not wanting to learn anything new. I had a client, a doctor, do early retirement instead of move his paper files into and EMR system. Because he didn't want to learn it. Kind of like appointing a boomer with zero IT experience to the head of cybersecurity. Any country that is short sighted enough to pull that shit deserves to have their networks wrecked.

[–] [email protected] 1 points 1 year ago

EMR systems aren't FOSS, so I'd be reluctant too.

[–] [email protected] 1 points 1 year ago (1 children)

Whatever security benefits there may be in fax are completely defeated if you send it over VoIP.

[–] [email protected] 4 points 1 year ago

I was being sarcastic about the security thing.

[–] [email protected] 2 points 1 year ago (1 children)
[–] [email protected] 1 points 1 year ago (1 children)

This link is to the same article. Was there a reason for posting it?

[–] [email protected] 4 points 1 year ago

Gift link to get past paywall.