News

Record Levels Of Carbon Dioxide Emissions

The Global Carbon Project reports that carbon dioxide emissions, which are linked to climate change, extreme weather events and rising oceans haven reached record-breaking high levels this year.

Emissions High But Rate of Growth Slowing

New papers published in “Earth System Science Data,” “Environmental Research Letters” and “Nature Climate Change” contain the predictions from Global Carbon Project scientist Rob Jackson.

The papers highlight the fact that, although CO2 emissions are at a record high this year, and could (if dramatic actions aren’t taken by nations with regards to energy, transportation and industry) keep increasing for another decade, the actual rate of growth of CO2 emission levels has slowed noticeably from the last two years.

Highest Ever Levels Says World Meteorological Organisation

The World Meteorological Organisation’s annual report published this week also brought CO2 levels to the world’s attention when it concluded that carbon dioxide levels recently reached an all-time high.  This is believed to be the highest level in human history.  News from Yale’s Environment 360 report also warned that if current emission levels persist CO2 levels could reach 500 ppm in as little as 30 years. By contrast, it was around 310 ppm in 1960 and has been rising almost linearly. Currently, it’s at around 410 ppm.

Fossil Fuel Use

Fossil Fuel use accounts for 90% of all CO2 emissions. Although coal use is in decline globally, oil and natural gas use are still high, particularly so (high per capita emissions) in wealthier countries.  Scientists have highlighted the fact, therefore, that affluent countries must drastically cut their CO2 emissions to offset the increase in emissions from developing countries as they turn to natural gas and gasoline for their growing transportation and energy needs.

In terms of a percentage breakdown, about 40% of global carbon dioxide emissions can be attributed to burning coal, 34% comes from the use of oil, 20% is thought to come from the use of natural gas, and the remaining 6% is thought to come from cement production (common in developed and rapidly developing countries), and from other sources.

Biggest Emissions

Among the biggest CO2-emitting countries and regions are China, the U.S., Russia, India and Japan. In terms of biggest per capita CO2 producers, Saudi Arabia tops the table with a 16.85 per capita level of CO2 emissions.  It has also been reported that the U.S, which has roughly one car per person, has an oil consumption per person that is 16 times greater than in India and six times greater than in China.  Many climate protesters point to America’s large number of petrol-guzzling cars as being a major contributor to the problem.

Pulling Out of Climate Change Agreements

In November, President Donald Trump announced that he planned to withdraw the US from the Paris climate agreement.  This is the agreement that was aimed at reducing greenhouse gas emissions to halt the rise in global temperatures (to stop melting ice caps, raising sea levels, killing wildlife, and the devastation of vast areas with flooding).

Renewable Energy

Many climate change and energy commentators have pointed to greater use of renewable, green energy sources (e.g. tidal, wind, solar) as being a way of bringing down CO2 levels while delivering many other environmental benefits.  For example, a recent report by the International Renewable Energy Agency (IRENA) suggested that the increased deployment of renewable energy and energy efficiency in G20 countries (and globally) could reduce CO2 emissions from the energy sector by 70% by 2050, and completely phase them out by 2060.

What Does This Mean For Your Business?

Climate change bringing a rise in temperature and a rise in CO2 emissions is now thought by many to be a global emergency. The increasing number of warnings from experts and scientists, coupled with climate change protests in cities around the world, and with Greta Thunberg proving to be a formidable spokesperson with a strong message from the next generation, mean that climate change, and how we should all take responsibility for our contribution to it (through recycling and cutting back on fossil fuel use) is an issue very much to the fore. This appears to be an emergency which affects businesses and individuals, and businesses that lead the way in playing their part in reducing their carbon footprint will be making changes now that will help them to compete, and their efforts will be valued by increasingly environment-conscious consumers who will be looking for products and services that deliver ‘green’ value, help them to feel good about themselves and their efforts, and reduce their own carbon footprint.

Tech Tip – Easy Timer In Google

If you need to complete a piece of work in within a certain time, or you’ve got a call to make or meeting to go to in an hour or two, there’s an easy timer reminder (and stopwatch) already built-in to Google.

To operate the timer:

– Type “start a timer” into Google.

– Choose “Timer” and enter the required time period (hours, minutes, seconds).

– Click on the “Start” button.

– A bleeping alarm will sound at the end of the time period you’ve selected.

– You can press “Reset” to get a new time goal.

The Difference Between Backup and Disaster Recovery

We’re all familiar with the value of making a backup of business data, but how does this fit with ‘Disaster Recovery’ and ‘Business Continuity’ strategies?  This article takes a brief look at how these elements fit together to ensure that businesses can survive, function and get back up to speed when disastrous events (external or internal) pose a serious threat.

Reality

Normal life rules apply to the business environment i.e. things can and do go wrong, and backup and disaster recovery are both based upon this understanding.

Business continuity in the event of a ‘disaster’, is about making sure that your essential operations and core business functions can keep running while the repairs can be made that get you back up to speed.

What Could Go Wrong?

There is a potentially huge range of ‘disasters’ that businesses could make plans to be able to overcome, and even though organisations come in different sizes and have different budgets, the risks they face are generally the same.  Typically, the more obvious ‘disaster’ threats the business include:

  • Hardware failures/server failures.
  • Outages and/or file corruption
  • The effects of cyber-attacks.  For example, 53% of senior managers believe that a cyber-attack is the most likely thing to disrupt their business (Sungard AS 2019) and the effects could include damage to / locking out of systems (malware and ransomware), fraud and extortion, data breaches (which could also attract fines under GDPR, damaging publicity and loss of customers).
  • Environmental/natural disasters e.g. fire and flood.
  • Important 3rd supplier failure or the loss of key employees.
  • Failures of part / a component of a network e.g. as highlighted by recent problems with banking and airline industry services.
  • Theft or loss of equipment holding company data.

Backing Up Your Data – Where To Store It

When it comes to backups, security, integrity, cost, scalability, complying with legislation, your own business plans, and ease of daily use are all considerations.  Where / how to store backed-up data is a decision tackled differently by different companies.  In the UK, GDPR (the data protection regulations) should be taken into account in these decisions.  Places to back up data could include:

  • On-site – storing data in the same location e.g. on an external hard drive in the workplace.  Although the data backup is close to hand, this is not a particularly secure solution and in the event of flood/fire/theft disasters, your data would be gone.
  • Off-site – taking the data away on a hard drive or another physical storage medium.  This means it’s less at risk from local issues (e.g. loss, theft, damage) but could mean it takes longer to restore data .
  • Online – backing up your data on hosted servers (in the cloud) and accessing them through an application. This is now becoming the preferred method for most businesses as it is convenient and fast (if you have an Internet connection) and it cuts out many of your on-site potential disaster risks (fire, flood, loss and damage of physical storage media).

Some businesses prefer to use a ‘hybrid’ cloud backup to help address any vulnerabilities that cloud-only or local-only backup solutions have.

There are many dedicated online backup solutions available e.g. IDrive Business, Backblaze Business, Carbonite Safem, or larger solutions for businesses with much bigger data backup requirements.

Backup Decisions

Taking regular, secure backups of your business data is an important part of good practice.  It is also an important element of disaster recovery and the business continuity process.

There are several types of backup that businesses need to make decisions about.  These include whether, if/when and how to make:

  • A full backup – one that covers every folder and file type and typically takes a long time.
  • An incremental backup – the first back up is a full one, followed by simply backing up any changes made to the previous backup.
  • A differential backup – similar to an incremental backup, requires more storage space but has a faster restore time.
  • A mirror backup – an exact copy of your data that has the advantage of removing the obsolete files each time.
  • An Image-based backup – captures images of all data and systems rather than just copying the files.
  • A clone of your hard drive – similar to imaging and creates an exact cloned drive with no compression.

In reality, many businesses make use of many different types of backup solutions at the same time.

Business Continuity, Backup Decisions and Disaster Recovery

Accepting that disasters happen and that you can plan how to maintain business continuity while you deal with them (using a disaster recovery plan) is an important step in safeguarding your business. Maintaining the ability to ensure that core functions and critical systems remain in place in the event of a disaster (business continuity) involves planning, an important part of which is the disaster recovery plan (DRP).  Creating this plan is usually an interdepartmental process, which is often led by information technology.

RTO & RPO – Linking Backups To Your DRP.

There are two metrics you can use to help you to make data backup decisions that relate to your DRP.

The Recovery Time Objective (RTO): the recovery window / how long (time) the business realistically has to recover from a disaster before there are unacceptable consequences.

The Recovery Point Objective (RPO): how far back (the maximum tolerable period of time) your organisation needs to go in recovering data that may have been lost due to a disaster.

By working out these time periods (particularly RPO), it can help you to decide upon the frequency of backups, which backup methods are most suitable and preferable to you e.g. the need to go back longer periods may favour online backups, and businesses with  large quantities of valuable historic data may struggle with a short RTO (which may require tiered data recovery).

In today’s business environment it is worth bearing in mind that your customers are not likely to be very tolerant of downtime, so recovery windows now need to be as short as possible. Many businesses, therefore, simply opt for a daily backup.

Disaster Recovery Plan

At the heart of your business disaster recovery strategy should be the disaster recovery plan (DRP) which should provide step-by-step workable instructions to ensure a fast recovery.  A DRP should be tested and kept up to date to ensure that it will work in reality in the event of a disaster and typically includes elements like:

  • A plan for roles and communications, detailing employee contact information and who’s responsible for what following the disaster.
  • A plan to safeguard equipment e.g. to keep it off the floor, wrapped in plastic away from flooding.
  • A data continuity system that details what the business needs to run in terms of operations, finances/accounts supplies, and communications.
  • Checking that your data backup regime is working, and that very recent copy is stored in a secure place but would be easily and quickly accessible when needed.
  • An asset inventory, including photos where possible, of the hardware (workstations, printers, phones, servers etc) reference for insurance claims after a major disaster.
  • Keeping (up to date) documentation that lists all vital components of your IT infrastructure, hardware and software, and a sequence of what needs to be done to resume business operations with them.
  • Photos showing that the hardware was in use by employees and that care had been taken to minimise risk e.g. items were off the floor (e.g. to avoid flood damage).
  • A supplier communication and service restoration plan so that you quickly restore services and key supplies after the disaster.
  • Details of a secondary location where your business could operate from if your primary location was too badly damaged in a disaster.
  • Details of the testing, optimisation and automation of your plan to ensure that it could be implemented quickly, as easily as possible, and free from human error.

Putting The Pieces Together

The basic difference between a backup and disaster recovery, therefore, is that a backup is having a copy of your data, and disaster recovery is the whole strategy to recover your business operations and essential IT environment in the event of a serious event e.g. cyber-attack, equipment failure, fire or flood.

Creating a DRP involves completing a risk assessment and business impact analysis in order to identify critical applications and services, and it is from here that your business can then create its own tailored RTOs and RPOs which in turn, will link to your backup strategy and cycles.

Backups are essential files that enable a full restore, and as such are an important element of ongoing good practice and of your DRP, and your backup should relate strongly to the underlying strategy of disaster recovery.

One thing is certain about backup and disaster recovery which is that having no plan for either is means planning to fail.

Hacker’s Website Closed Down In International Operation

A website (and its supporting infrastructure) which sold a variety of hacking tools to other would-be cybercriminals has been closed down after an investigation by agencies from multiple countries including the UK’s National Crime Agency (NCA).

IM-RAT

The main tool that the agencies were particularly interested in eradicating was the Imminent Monitor Remote Access Trojan (IM-RAT) which is a hacking tool, of Australian origin, which has been on sale for 6 years and was available for sale via the Imminent Monitor website.

According to Europol, once installed on a victim’s computer the IM-RAT malware, which could be purchased for as little as $25, allowed cybercriminals to secretly “disable anti-virus and anti-malware software, carry out commands such as recording keystrokes, steal data and passwords and watch the victims via their webcams”.

Big International Operation

The investigation and the operation to shut down the sale of IM-RAT was led by the Australian Federal Police (AFP) and involved judicial and law enforcement agencies in Europe, Colombia and Australia, and was coordinated by Europol and Eurojust.

Coordinated law enforcement activity has now ended the availability of IM-RAT, which was used across 124 countries and sold to more than 14 500 buyers. IM-RAT can no longer be used by those who bought it.

In a week of actions (in November), the international agencies dismantled the infrastructure of IM-RAT, arrested 14 of its most prolific users and seized over 430 devices for forensic analysis.

Back in June, search warrants were executed in Australia and Belgium against the developer and one employee of IM-RAT and most recently, actions to fully shut down the distribution of IM-RAT have also been taken in Australia, Colombia,  Czechia, the Netherlands, Poland, Spain, Sweden and the UK.

In the UK, it has been reported that the NCA searched properties in Hull, Leeds, London, Manchester, Merseyside, Milton Keynes, Nottingham, Somerset and Surrey in relation to the investigation.

The shutting down of the whole IM-RAT infrastructure, and the detailed analysis of the malware and the website used to sell it mean that IM-RAT can no longer be used.

Tens of Thousands of Victims

With the IM-RAT malware/hacking tool being so widely used, Europol believes that there are probably tens of thousands of victims around the world, and so far, investigators have been able to find evidence of stolen personal details, passwords, private photographs, video footage and data.

IM-RAT

Although IM-RAT allows cybercriminals to secretly take control of a computer, there are some common signs which indicate that a computer may have been infected with IM-RAT.  These signs include an unusually slow internet connection, unknown processes running in a system (which are visible in the Task Manager, Processes tab), files being modified or deleted without your permission, and unknown programs being installed on your device (visible in the Control Panel, Add or Remove Programs).

What Does This Mean For Your Business?

For businesses, this kind of malware caused considerable problems, not least in terms of data protection, disruption, industrial espionage and extortion, and left their devices wide open to hackers. This internationally co-ordinated move by multiple agencies is an important step in the battle against so-called ‘crime as a service’ and bulletproof hosting where organised gangs have sought to profit from crimes that they can carry out from a distance via the Internet.

If you believe that your device may have been infected by IM-RAT, the Europol advice is to disconnect your device from the network in order to prevent any additional malicious activity, install trustworthy security software, and run a scan of your device using security software. When you’re satisfied that you’ve removed the infection, change the passwords for your online accounts and check your banking activity.

Some general steps you can take to guard against falling victim to malware include keeping your anti-virus software and patching up to date, installing a firewall, only using strong passwords (that aren’t shared across different accounts), covering up your webcam when its not in use, regularly backing up your data, and making sure that you don’t open any suspicious-looking emails and attachments even if they do come from people on your contact list.

The Battle Between ‘Slack’ and ‘Teams’

With Microsoft’s announcement that it’s Teams product has 20 million daily active users (and growing), sending Slack’s share price downwards (Slack has 12 million users), the battle is well underway in the $3.5 billion chat-based collaborative working software market.

What Is Slack?

Slack, launched in 2013, is a cloud-based set of proprietary team collaboration tools and services. It provides mobile apps for iOS and Android, and is available for the Apple Watch, enabling users to send direct messages, see mentions, and send replies.

Slack teams enable users (communities, groups, or teams) to join through a URL or invitation sent by a team admin or owner. Slack was intended to be an organisational communication tool, but it has gradually morphed into a community platform i.e. it is a business technology that has crossed over into personal use. Slack recently introduced an “email bridge” into its platform that will allow those who only have email to communicate with Slack users.  Back in May last year, ‘Slack’ introduced a new ‘Actions’ feature that made it easier for users to create and finish tasks without leaving by having access to more 3rd party tools.

In October this Year Slack announced that it has 12 million daily active users, which is 2 million increase since January.

What Is Teams?

Teams, announced in November 2016 and launched by Microsoft in 2017, is a platform designed to help collaborative working and combines features such as workplace chat, meetings, notes, and attachments. Described by Microsoft as a “complete chat and online meetings solution”, it normally integrates with the company’s Office 365 subscription office productivity suite. In July 2018, Microsoft introduced a free, basic features version of Teams which did not require an Office 365 account, in order to increase user numbers and tempt users away from Slack.

Microsoft Teams is also the replacement for Skype for Business Online, the support for which will end on 31 July 2021, and all new Microsoft 365 customers have been getting Microsoft Teams by default from 1 September 2019.

Share Tumble For Slack

Slack’s share value fell earlier this year after it announced that its projected sales growth would be lower for the second half of the year. Slack became a publicly-traded company on the New York Stock Exchange in June, and investors have been saying that it will need to maintain an impressive growth rate to compete against competitors like Microsoft (with Teams), Alphabet (Google) and Facebook.

The recent announcement by Microsoft that Teams has 20 million daily active users compared to Slack’s 12 million and has increased daily active users by more than 50% from June caused another downward push on Slack’s share value.

Slack’s Challenge – To Get More Large Paying Customers

Slack, which enjoys popularity in the U.S corporate workplace has been trying to emphasise that it is not just a chat/messaging app, but that it can connect to companies’ other applications in a way that can streamline workflows and aid real value addition and savings.  Slack is, however, facing a challenge in convincing big businesses that it is worthy, paid-for alternative to its more well-known competitors, and according to Bloomberg Intelligence analyst Andrew Eisenson, less than 1% of Slack’s customer base are large customers that spend more than $100,000 a year. One of the problems that Slack has is that although large companies in the US use it and like it, they currently have a free version, so Slack will have to convince them to upgrade to the paid-for version.

Despite having lower user numbers than Teams, some tech commentators have noted that Slack has stickiness and strong user engagement which help to attract businesses that want to get into using workstream collaboration software.

What Does This Mean For Your Business?

Microsoft has the advantage of a very well-known and trusted brand with huge reach, Teams already integrates with Office 365’s subscription office productivity suite, and there’s now a free version that doesn’t even require an Office 365 account.  Also, Teams is set to replace Skype for Business Online next year, and Microsoft has made sure that Skype for Business Online customers know that Microsoft’s investment and interoperability will make the migration to Teams a fairly painless one.

All this means that Teams appears to be in a very good position to continue what has been a rapid growth this year, and despite Slack’s positive features, Slack will have to fight hard to get big businesses interested in order to compete.

For users, there are now several good collaborative working services to choose from, but at the present time, the facts that investors don’t know when Slack is going to be profitable, coupled with a fall in revenue have led some commentators to think that Teams is looking as though it could come out on top.

Amazon Announces Smart Office Supply Re-Ordering Device

Amazon has announced the introduction of a ‘smart’ office essentials re-ordering device called Dash Smart Shelf which uses a weight-sensing, Wi-Fi-enabled smart scale to re-order products when they’re running low.

Why?

According to Amazon, monitoring and reordering everyday business essentials (e.g. printer paper) can be unnecessarily time-consuming for the small and medium-sized businesses (SMBs) that make up 99% of business in the U.S. (99.9% of the business population / 5.9 million businesses in the UK – FSB figures).  Having a smart inventory-tracking service could, therefore, mean that time and money in manual stock checking can be saved, plus the disruption of running out of a particular item when it’s needed can be avoided.

How Dash Smart Shelf Works

Amazon’s Dash Smart Shelf is a weight-sensing, Wi-Fi-enabled smart scale that looks like a closed laptop. The device is around 1-inch-tall and will be offered in three different sizes – small (7” x 7”), medium (12” x 10”), and large (18” x 13”). Amazon says that the Dash Smart Shelf can work on a range of surfaces e.g. from counter-tops to wire shelving.

The idea being that the Dash Smart Shelf is placed on the shelf where stationery is stored and the stationery e.g. packets of printer paper, sticky tape or pens are stacked (one Smart Shelf per item type) on top of it.  When supplies run low, the Dash Smart Shelf automatically orders more.

Incentive

The Dash Smart Self is for Amazon Business Customers and Amazon is offering them “business-only prices” on certain products, and savings of up to 15 per cent on orders for selected products placed using the new Dash Smart Shelf.

Easy

Amazon says that the Dash Smart Self is easy to set up and only requires a wall plug (included) or four AAA batteries, a connection to your business Wi-Fi and that you are logged in to your Amazon Business account via the web or Amazon Shopping app.

Timescale and Price

Amazon says that the Dash Smart Shelf will be made available first to Amazon Business customers with a registered U.S. business license “starting sometime in 2020”, and no prices have yet been made available.

What Does This Mean For Your Business?

Amazon makes the point that if you’re in a location far from an office supplies shop, or if you miss a big order (e.g. because you don’t have a certain sized cable), you will instantly see the value of a product that makes sure that you never run out of essential supplies. This product does appear to have the potential to save time, money and hassle by no longer having to manually monitor stock levels.  However, since this product is aimed SMEs, and one unit will need to be purchased for each office product type and the price per unit Dash Smart Shelf (as yet unknown) is going to be an important consideration. Businesses may wonder how much flexibility they will have in choosing which supplier (via the amazon platform) they can have with the device.

Amazon has made in-roads into our homes and found out much more about us and our listening, viewing and other consumption patterns with smart speakers (Echo), Fire TV, the Ring Doorbell and more, and the Dash Smart Shelf marks a move into our business lives by Amazon. As the company becomes the close, sole supplier of some of our valued home and business services, this should enable Amazon to use the data about us to tailor more services and offers, thereby helping it to increase our loyalty and commitment to Amazon, and further fuelling the growth, power and diversification of this online giant.

Tech Tip – Quickly Re-Open a Closed Tab

If you have several tabs open on your browser and you accidentally close an important tab, there is and fast and easy way to re-open it.

To re-open an important tab that you’ve accidentally closed:

– Press command+shift+t on a Mac or control+shift+t on Windows PC.

– Your tab will then be restored.

The Tech That The Parties Are Promising

With the UK’s General Election due to take place on 12 December, many issues have been covered in the media.  One key area of interest for businesses is technology and for those of you who may not have time to plough through the manifestos of the main parties, here’s a quick look at some of the technology-related pledges and ideas featured in those manifestos.

CONSERVATIVES

With the Conservative government being in power since May 2010 (firstly in coalition with the Lib Dems) the tech vision, policies and direction of travel is, of course, a little clearer to all. The EU referendum under David Cameron heralded the need for UK data protection laws to be aligned with a the EU’s GDPR and an uncertainty and concerns that UK employers would be less likely to seek migrant tech employees, and that fewer overseas tech workers seek on to stay in their jobs in the UK, in an environment where the challenge posed by a tech skills gap was already evident.  Having said that, back in 2017, the Conservative government under Teresa May announced a boost to the UK’s digital and technology industries in the form of £700m of funding as part of the launch of its Industrial Strategy Challenge Fund. Also, under the Conservatives, a National Cyber Security Centre was set up in London in February (to act as part of GCHQ in Cheltenham), which was intended to enable businesses to report serious data breaches to the NCSC in confidence.

Looking forward to this 2019 election then, the Conservative manifesto features some of the following technology ideas and pledges:

  • The setting up of a new, dedicated national cybercrime force and National Crime Laboratory, both of which are intended to help the police to safely get the benefits from the use of new technologies like biometrics and artificial intelligence, and to use DNA, all within a strict legal framework.
  • Providing gigabit broadband access for “every home and business” by 2025 to help businesses and remote workers, to be paid for under the ‘National Infrastructure Strategy’.
  • Investing £1bn in “completing a fast-charging network” for electric vehicles to make sure that “everyone is within 30 miles of a rapid electric vehicle charging station”.
  • With reference to R&D tax credits, increasing the tax credit rate to 13 per cent and reviewing the definition of R&D so that investments in innovation and productivity-boosting cloud computing and data are incentivised.
  • Creating a new £3 billion (over the next Parliament) National Skills Fund to provide matching funding for individuals and SMEs for high-quality education and training.
  • Creating 20 Institutes of Technology, to connect teaching in science, technology, engineering and maths to business and industry.
  • Investing in “world-class computing and health data systems” to help with research.

LABOUR

In the Labour Party’s 2019 manifesto, party leader and leader of the opposition Jeremy Corbyn says that he’s planning to “launch the largest-scale investment programme in modern times to fund the jobs and industries of the future so that no one is held back and no community left behind.”

Some of the key technology-related pledges and ideas that feature in the Labour Party’s manifesto for the coming 2019 General Election include:

  • A proposal which has attracted a lot of media attention (and criticism from the Conservatives) to re-nationalise part of BT and deliver free full-fibre broadband to all.
  • This will involve the creation of two new government entities: British Digital Infrastructure and British Broadband Service (BBS) to help roll out of full-fibre networks and coordinate the delivery of free broadband. Labour says this can all be paid for through the party’s planned Green Transformation Fund and a new tax regime for multinational companies, and there will be a jobs guarantee for all workers in existing broadband infrastructure and retail broadband work.
  • The appointing of a cabinet-level minister dedicated to cybersecurity to help ensure that the nation’s cybersecurity issues are tackled effectively and to offer regular reviews of cyber-readiness.
  • Giving officials working for National Cyber Security Centre (NCSC), which is the public-facing division of GCHQ, the power to audit public and private sector organisations’ cyber defences and issue warnings to organisations in order to reduce their cyber risk.
  • Ensuring that no services are offered on a “digital-only” basis in order to try and remove the so-called ‘digital barrier’ that may exclude vulnerable people, and also to offer telephone, face-to-face and outreach support.
  • Bringing in a legal right to collective consultation on the implementation of new technology in workplaces in order to ensure more rights and protections for workers whose jobs may be at risk of being lost or reduced as a result of technological advancement.

THE LIBERAL DEMOCRATS

The big news is that beyond the 12-key policies focused on by the media, the Jo Swinson-led Liberal Democrats (Lib Dems) have their eyes set upon a “vision for an innovation-led economy”.  With stopping Brexit as their main focus, the party makes the point that retaining the Freedom of movement that EU membership has given could mean that British tech industries can “have access to the best and brightest talent from the EU” and thereby giving “businesses opportunities to grow and contribute to life and prosperity in the UK.”

Some of the other key technology areas that the Lib Dem’s say in their manifesto that their innovation-led vision will cover include:

  • Positioning the UK to become a world leader in new technologies like artificial intelligence (AI).
  • A belief that the EU should make solid new legislation about blockchain, AI and other new technologies.
  • Giving high priority to matters relating to cybersecurity, data protection and privacy matters.
  • Seeking to encourage competition from companies in the “digital space” and supporting the use of European and UK competition powers to stop “tech giants” from exploiting consumers and ensuring innovation through competition.
  • Increasing the national spend on R&D to 3% of GDP (2.4% by no later than 2027), doubling innovation spend and creating “catapult” innovation and technology centres.
  • Allowing companies to claim R&D tax credits against the cost of purchasing datasets and cloud computing, as well as simplifying regulations speeding up regulatory change.
  • Creating a “startup allowance” to support fast-growing businesses e.g. tech startups.

THE GREEN PARTY

Even though the Green Party’s leader (and Brighton MP) Caroline Lucas was the party’s only MP elected in the last general election, they now have 7 MEPs in the European Parliament. Obviously, Green Party pledges and ideas relate strongly to environmental issues, and some of the technology-related pledges and ideas in their 2019 General Election manifesto (which pledges zero carbon by 2020) include:

  • Delivering financial mechanisms and the transfer of new technologies to help the Global South adapt to climate change in a just way.
  • As part of the “Green New Deal”, including finance and technology to “help the majority world adapt to climate change”, support human well-being,  and to break “the carbon chains of fossil fuel dependence”, thereby bringing about a “green economic and social revolution”.
  • Setting new clean technology standards and investing in research.
  • Applying a Carbon Tax to help incentivise industry to switch to low and zero-carbon technology and equipment.
  • Making finance and technology available to support developing nations.
  • Introducing a Digital Bill of Rights (a new law) in order make the UK a leading voice on standards for the rule of law and democracy in digital spaces and to ensure independent regulation of social media providers. This law will also be designed to safeguard elections from foreign interference.

General Election – 12 December

Obviously, there are other political parties that make up and influence the UK political landscape, and which have technology-related pledges, but hopefully, this shorthand summary of some of the key tech pledges from the main players has provided some insight into where they say they stand on technology matters.

Clearly, elections are decided on a wide range of different issues and subjects and even though Brexit has been a dominant issue for some time now, it remains to be seen how the political and economic landscape will be changed after 12 December.  Technology, however, will continue to advance, and exciting new areas such as AI promise to create new opportunities for businesses going forward.

Google Or Samsung Android Cameras Could Be Spying On You

Researchers at Checkmarx say they have discovered vulnerabilities in Google and Samsung smartphone apps that could allow hackers to remotely spy on users using their phone’s camera and speakers.

Study

The proof-of-concept (PoC) study results, highlighted on the Checkmarx blog reveal how the Checkmarx Security Research Team cracked into the apps that control android phone cameras (firstly using a Google Pixel 2 XL and Pixel 3) in order to identify potential abuse scenarios.

The team reported finding “multiple concerning vulnerabilities” (CVE-2019-2234) which stemmed from “permission bypass issues”.  The team later found that camera apps from other vendors i.e. Samsung are also affected by the same vulnerabilities.

The Checkmarx team have since shared a technical report of their findings with Google, Samsung, and other Android-based smartphone OEMs to enable those companies to find fixes.

What Could Happen?

According to Checkmarx, the vulnerabilities mean that a hacker could use a rogue application (that has no authorised permissions) to take control of another person’s Android phone camera app.  This could allow the attacker to take photos and/or record videos as well as to gain access stored videos and photos, GPS metadata embedded in photos, and even to locate the user by taking a photo or video and parsing the proper EXIF data.

The researchers also found a way to enable a rogue app to force camera apps to take photos and record video even when a phone was locked or the screen is turned off, or when a user was is in the middle of a voice call.

One particularly worrying aspect of the Checkmarx findings is that if the video can be initiated during a voice call the receiver and the caller’s voices can be recorded.  This could allow eavesdropping that could enable an attacker to discover potentially sensitive personal data or to gather information that could be used for extortion.

Google

According to Checkmarx, after they shared their findings with Google, the Checkmarx team were notified by Google that the vulnerabilities weren’t confined to the Google Pixel product line but also extended to products (Android) by other manufacturers.  For example, Samsung also reportedly acknowledged that the flaws impact their Camera apps and said that they had begun taking mitigating steps. Checkmarx reports that Google has said that the problem has now been addressed on impacted Google devices via a Play Store update to the Google Camera Application in July 2019. Also, a patch has been made available to all Google partners.

What Does This Mean For Your Business?

It is very worrying that hundreds-of-millions of smartphone users may have been facing a serious privacy and security risk without being aware of it.  For business users, this may have left them open to industrial espionage and security threats, although there is no evidence that real hackers have exploited the vulnerabilities prior to them coming to light.

When it comes to smartphone apps, the best practice is to ensure that all apps on your device are kept updated. Other defensive actions you can take regarding your phone apps include checking the publisher of an app, checking which permissions the app requests when you install it, and deleting any apps from your phone that you no longer use.  It’s also now important to be aware of the threat posed by fake apps, and you may wish to contact your phone’s service provider or visit the high street store if you think you’ve downloaded a fake malicious/suspect app.

Uber Loses London Licence

A decision by Transport for London (TfL) means that ride-hailing service Uber has lost its licence to carry passengers in London over safety and security failures.

Why?

According to TfL, it had identified a pattern of failures by Uber, including breaches that had risked the safety of passengers and drivers, plus some uninsured journeys.

Prior to the decision to remove its London Licence, Uber had pledged to improve its drivers’ safety training and provide a direct connection to emergency services.

Not The First Time

Uber had its London licence removed before by TfL back in 2017 after it was decided that the company was “not fit and proper” following security issues, public safety issues, poor reporting (of serious in-car crimes), poor medical checks (of drivers) and poor background checks (of drivers). Uber’s controversial founder and CEO Travis Kalanick had already resigned (in June 2017) amid rumours that he had possibly been “pushed” by unhappy shareholders.  Mr Kalanick was replaced by Dara Khosrowshahi.

In 2018, Uber was only given a probationary 15-month license in London following changes made to improve relations with city authorities and had most recently (September) only been granted only a two-month license, which is the licence that is now about to be allowed to expire.

Black Cab Battle

Uber has not had an easy ride in London from its competitors, the drivers of the famous black cabs. The 22,000 traditional “cabbies”, who are required to pass the notoriously difficult memory test of the city’s road network known as “the Knowledge” in order to pick up passengers have objected (many would say understandably) to the loss of business as a result of having to compete with a growing number of Uber drivers who don’t face the same costs or regulations, and who don’t take the same test, and who can rely on satnav apps.

Carry On and Appeal

It has been reported that although the decision to remove the London licence has been taken, Uber will appeal and it is likely that its 45,000 drivers in London may decide to keep accepting customers until the long process of the appeal has been considered.

Trouble Around The World

It’s certainly not just the UK where Uber has found itself facing legal challenges in recent years.  For example:

In the US, in March, the company had to pay $20 million in settlement of a lawsuit brought by drivers who claimed they were employees and were therefore entitled to some wage protections. Also, in November, Uber unsuccessfully challenged a city law which limited the number of licenses for ride-hailing services.

In Australia this year, the company faced a class action on behalf of thousands of drivers who alleged that Uber was operating illegally and harming them financially, and back in December 2018 in Germany, Uber’s limousine service (stopped in 2014) was ruled to have been illegal. Uber has also faced legal problems in the Netherlands, India, and Austria.

Other Woes

Back in November 2017, Uber was handed a £385,000 fine by the ICO in the UK for data protection failings during a cyber-attack back in 2016 which involved the compromising (and theft) of data relating to 600,000 US drivers and 57 million user accounts.

Also, back in May, Uber’s trading debut at the New York Stock Exchange (NYSE) proved to be somewhat underwhelming when the opening share price was much lower than had been expected at only $45 per share.

Move to Bikes and Scooters

In August 2018, Uber announced a shift in focus towards bikes and scooters in order to drive growth and keep people using the platform. It was thought that bikes and scooters would be more effective and efficient than cars in congested city areas, could represent a way to get another slice of the lucrative mobility market, and that they could be used to help shape consumer behaviour and keep levels of engagement high.

Popular With Users

It has to be said that despite Uber’s problems with the authorities and London cabbies, the service has been popular with many users having positive things to say about the convenience of the app, Uber prices and the speed of the service.

What Does This Mean For Your Business?

Uber had already been on borrowed time in London after finally being granted a two-month licence (following on from just a 15-month probationary one).  Uber’s relationship with the UK authorities and Mayor Sadiq Khan, who had accused Uber as adding to the city’s congestion problems, has been on the edge for quite some time, and it appears as though Uber may not have made the changes that it had pledged to make in order to retain its licence.  The appeal may take a few months, so it is likely that Uber drivers will simply carry on for the time being.

For users, it may come as a disappointment that a service that they found to be very convenient will soon no longer be available but it may be the case that a new London Mayor after May 2020 could take a different approach towards Uber.  For example, some Uber drivers have expressed the belief that Mayor Khan may be pandering too much to the black cabbies, and a hopeful future mayor candidate, Shaun Bailey (Conservative) has expressed regret over TfL’s decision to not grant another licence to Uber.  For the time being though, it’s a waiting game in London for Uber.