ІНСАЙДЕР УКРАЇНА

India is set to launch a spacecraft to the moon Friday.

If successful, it would make India only the fourth country to do so, after the U.S., the Soviet Union, and China.

It will take the $75 million Chandrayaan-3 over a month to reach the moon’s south pole  in August.

The south pole is a special place of interest because scientists believe water is present there.

Chandrayaan-3’s equipment includes a lander to deploy a rover.

Chandrayaan-3 means “moon craft” in Sanskrit.
…

Hackers, possibly linked to China’s intelligence agencies, are being blamed for a monthlong campaign that breached some unclassified U.S. email systems, allowing them to access to a small number of accounts at the U.S. State Department and a handful of other organizations.

Microsoft first announced the intrusion Tuesday, attributing the attack on its Outlook email service to Chinese threat actors it dubbed Storm-0558.

The company said in a blog post that the hackers managed to forge a Microsoft authentication token and gain access to the email accounts of 25 organizations, both in the U.S. and around the globe, starting in mid-May.

The company said access was cut off after the breach was discovered a month later.

“We assess this adversary is focused on espionage, such as gaining access to email systems for intelligence collection,” Microsoft said. “This type of espionage-motivated adversary seeks to abuse credentials and gain access to data residing in sensitive systems.”

The State Department confirmed Wednesday that it had discovered the breach and had taken “immediate steps” to secure its systems and to notify Microsoft.

Some U.S. officials, however, were hesitant to back Microsoft’s attribution for the attack while saying the U.S. “would make all efforts to impose costs” on whoever was responsible.

“The sophistication of this attack, where actors were able to access mailbox content of victims, is indicative of APT [advanced persistent threat] activity but we are not prepared to discuss attribution at a more specific level,” a senior FBI official told reporters Wednesday, briefing them on the condition of anonymity.

According to senior officials with the FBI and the Cybersecurity and Infrastructure Security Agency (CISA), the number of U.S. victims of the Microsoft Outlook breach was in the single digits and only a small number of accounts were accessed.

They added that because the breach was detected quickly, the hackers did not have access to any email account for more than a month and never had access to any classified information or systems. In many cases, their access lasted only days.

Still, the officials noted reason for concern.

“The targeting was intentional,” said a senior CISA official who spoke to reporters on the condition of anonymity.

“This appears to have been a very targeted, surgical campaign that was not seeking the breadth of access we have seen in other campaigns,” the official added.

Despite the reluctance of some U.S. cyber officials to place the blame on China, there was no hesitation Wednesday from key U.S. lawmakers.

“The Senate Intelligence Committee is closely monitoring what appears to be a significant cybersecurity breach by Chinese intelligence,” Chairman Mark Warner said in a statement.

“It’s clear that the PRC is steadily improving its cyber collection capabilities directed against the U.S. and our allies,” the Virginia Democrat added. “Close coordination between the U.S. government and the private sector will be critical to countering this threat.”

Top U.S. intelligence, security and military officials have long warned about the growing cybersecurity threat posed by China-linked hackers.

Earlier this year, CISA Director Jen Easterly warned China “will almost certainly” employ aggressive cyber operations against the U.S. should tensions between Washington and Beijing get worse.

A separate Defense Department cyber strategy likewise warned of China’s increased investments in military cyber capabilities while also empowering a growing number of cyber proxies. 

But John Hultquist, chief analyst at Google’s Mandiant cybersecurity intelligence operation, said this latest attack showed that the Chinese threat has evolved in a very dangerous way.

“Chinese cyber espionage has come a long way,” Hultquist said in an email. “They have transformed their capability from one that was dominated by broad, loud campaigns that were far easier to detect. They were brash before, but now they are clearly focused on stealth.”

VOA reached out to the Chinese Embassy in Washington about the allegations that Beijing was behind the Microsoft attack.

“China is against cyberattacks of all kinds and has suffered from cyber hacking,” Chinese Embassy spokesperson Liu Pengyu told VOA in an email. “As MFA (Ministry of Foreign Affairs) spokesperson has commented at regular press conference, the source of Microsoft’s claim is information from the U.S. government authorities.”

Liu went on to call the U.S. “the biggest hacking empire and global cyber thief,” saying it was “high time that the U.S. explained its cyberattack activities and stopped spreading disinformation to deflect public attention.”

In its blog post about the latest breach Tuesday, Microsoft said it had managed to repair its systems for all of its customers.

The FBI and CISA on Wednesday separately issued a cybersecurity advisory, urging organizations using Microsoft Exchange Online to take steps to increase their security measures and also their monitoring of their systems to catch any suspicious activity. 
…

U.S. tech titan Mark Zuckerberg has plunged into a high-stakes game of brinkmanship with the European Union by withholding his new Threads app from users in Europe, but analysts say he will struggle to win the fight.

Threads, billed as the killer of Twitter, a platform that has tumbled into chaos under the leadership of mercurial tycoon Elon Musk, has added more than 100 million users in its first week in app stores.

But Zuckerberg’s firm Meta said it could not be released in Europe because of “regulatory uncertainty” around the Digital Markets Act, an antitrust regulation that will not come into force until next year.

“The reason they gave made me laugh,” said Diego Naranjo, head of policy at campaign group European Digital Rights.

“The regulation is not uncertain, it’s very certain, it’s just that Meta doesn’t like it.” 

His theory is that Meta will give Threads to the rest of the world and Europeans will become so vexed at missing out that they will pressure the EU to water down the DMA.

Naranjo, for one, thinks the ploy will fail.

But either way, the rest of the big tech platforms will be glued to their screens as this fight could shape the future regulatory landscape in Europe for all of them.

‘Fatal’ blow

Meta and the rest are already regularly in trouble with EU regulators over their data gathering and retention policies.

They struggle to keep to the terms of Europe’s mammoth five-year-old data privacy regulation (GDPR).

When the DMA was announced, their reaction was muted as it seemed to be about business and competition, a simpler topic for them though not without pitfalls.

The DMA bans the biggest tech firms from favoring their own platforms, particularly problematic for the latest launch as Threads and Instagram accounts are linked.

But the DMA’s Article 5.2 contained a bombshell: the firms will be banned from transferring user data across platforms unless they get consent.

Berin Szoka, president of the pro-business U.S. think tank TechFreedom, said the DMA’s rules would require Meta to ask for the consent of someone’s Instagram contacts before their data could be transferred to Threads.

“In practice, this could prove fatal to Threads’ rollout,” he said, as the network effect would be dead on arrival.

“I don’t really see a good way out here for Meta.”

Naranjo has little sympathy for Meta, saying the European embargo was just a “political push” by the firm against the EU.

“We will see who loses more,” he said. “My guess is that Meta will lose more from not having 450 million potential customers on their network.”

‘Question of time’

The European Consumer Group (BEUC) said the Threads issue showed the DMA doing exactly what it is supposed to do.

“The DMA does not stand in the way of new products or innovation,” said the group’s competition specialist Vanessa Turner.

“It creates an environment for innovation from more competitors and at the same time protects consumers.”

Meta has left the door open for a Threads launch in Europe and few expect it to maintain its embargo indefinitely.

European law expert Alexandre de Streel said big tech firms would probably be hammering out compliance issues with the EU over the coming months.

“I think it’s more a question of time to understand the scope of the legislation and have a dialogue with the commission,” he said.

But Szoka suggested the EU might be about to get a dose of unintended consequences.

“It would be particularly sad if DMA shields Twitter from competition,” he said.

Meta, he argued, had committed to making Threads compatible with its competitors, adding: “That’s something Twitter has only talked about.” 
…

The European Union signed off Monday on a new agreement over the privacy of people’s personal information that gets pinged across the Atlantic, aiming to ease European concerns about electronic spying by American intelligence agencies.

The EU-U.S. Data Privacy Framework has an adequate level of protection for personal data, the EU’s executive commission said. That means it’s comparable to the 27-nation’s own stringent data protection standards, so companies can use it to move information from Europe to the United States without adding extra security.

U.S. President Joe Biden signed an executive order in October to implement the deal after reaching a preliminary agreement with European Commission President Ursula von der Leyen. Washington and Brussels made an effort to resolve their yearslong battle over the safety of EU citizens’ data that tech companies store in the U.S. after two earlier data transfer agreements were thrown out.

“Personal data can now flow freely and safely from the European Economic Area to the United States without any further conditions or authorizations,” EU Justice Commissioner Didier Reynders said at a press briefing in Brussels.

Washington and Brussels long have clashed over differences between the EU’s stringent data privacy rules and the comparatively lax regime in the U.S., which lacks a federal privacy law. That created uncertainty for tech giants including Google and Facebook parent Meta, raising the prospect that U.S. tech firms might need to keep European data that is used for targeted ads out of the United States.

The European privacy campaigner who triggered legal challenges over the practice, however, dismissed the latest deal. Max Schrems said the new agreement failed to resolve core issues and vowed to challenge it to the EU’s top court.

Schrems kicked off the legal saga by filing a complaint about the handling of his Facebook data after whistleblower Edward Snowden’s revelations a decade ago about how the U.S. government eavesdropped on people’s online data and communications.

Calling the new agreement a copy of the previous one, Schrems said his Vienna-based group, NOYB, was readying a legal challenge and expected the case to be back in the European Court of Justice by the end of the year.

“Just announcing that something is ‘new’, ‘robust’ or ‘effective’ does not cut it before the Court of Justice,” Schrems said. “We would need changes in U.S. surveillance law to make this work — and we simply don’t have it.”

The framework, which takes effect Tuesday, promises strengthened safeguards against data collection abuses and provides multiple avenues for redress.

Under the deal, U.S. intelligence agencies’ access to data is limited to what’s “necessary and proportionate” to protect national security.

Europeans who suspect U.S. authorities have accessed their data will be able to complain to a new Data Protection Review Court, made up of judges appointed from outside the U.S. government. The threshold to file a complaint will be “very low” and won’t require people to prove their data has been accessed, Reynders said.

Business groups welcomed the decision, which clears a legal path for companies to continue cross-border data flows.

“This is a major breakthrough,” said Alexandre Roure, public policy director at the Brussels office of the Computer and Communications Industry Association, whose members include Apple, Google and Meta.

“After waiting for years, companies and organisations of all sizes on both sides of the Atlantic finally have the certainty of a durable legal framework that allows for transfers of personal data from the EU to the United States,” Roure said.

In an echo of Schrems’ original complaint, Meta Platforms was hit in May with a record $1.3 billion EU privacy fine for relying on legal tools deemed invalid to transfer data across the Atlantic.

Meta had warned in its latest earnings report that without a legal basis for data transfers, it would be forced to stop offering its products and services in Europe, “which would materially and adversely affect our business, financial condition, and results of operations.”
…

Meta Platforms’ Twitter rival Threads crossed 100 million sign-ups within five days of launch, CEO Mark Zuckerberg said on Monday, dethroning ChatGPT as the fastest-growing online platform to hit the milestone. 

Threads has been setting records for user growth since its launch on Wednesday, with celebrities, politicians and other newsmakers joining the platform seen by analysts as the first serious threat to the Elon Musk-owned microblogging app. 

“That’s mostly organic demand, and we haven’t even turned on many promotions yet,” Zuckerberg said in a Threads post announcing the milestone. 

The app’s sprint to 100 million users was much speedier than that of OpenAI-owned ChatGPT, which became the fastest-growing consumer application in history in January about two months after its launch, according to a UBS study. 

Still, Threads has some catching up to do. Twitter had nearly 240 million monetizable daily active users as of July last year, according to the company’s last public disclosure before Musk’s takeover. 

Twitter has responded to Threads’ arrival by threatening to sue Meta, alleging that the social media behemoth used its trade secrets and other confidential information to build the app. 

That claim, legal experts say, could be hard to prove. 

Threads bears a strong resemblance to Twitter, as do numerous other social media sites that have cropped up in recent months as users have chafed at Musk’s management of the service. It allows posts that are up to 500 characters long and supports links, photos and videos of up to 5 minutes. 

The app also does not yet have a direct messaging function and lacks a desktop version that certain users, such as business organizations, rely on. 

It also currently lacks hashtags and keyword search functions, which limits both its appeal to advertisers and its utility as a place for following real-time events like users frequently do on Twitter. 

Still, analysts said the turmoil at Twitter, including recently imposed limits on the number on tweets users can see, could help Threads to attract users and advertisers.  

Currently, there are no ads on the Threads app and Zuckerberg said the company would only think about monetization once there was a clear path to 1 billion users. 

Instagram head Adam Mosseri said last week Meta was not trying to replace Twitter and that Threads aimed to focus on light subjects like sports, music, fashion and design.  

He acknowledged that politics and hard news are inevitably going to show up on Threads, in what would be a challenge for the app pitching itself as the “friendly” option for public discourse online. 
…