Jolted by a sweeping hack that may have revealed government and corporate secrets to Russia, U.S. officials are scrambling to reinforce the nation’s cyber defenses and recognizing that an agency created two years ago to protect America’s networks and infrastructure lacks the money, tools and authority to counter such sophisticated threats.The breach, which hijacked widely used software from Texas-based SolarWinds Inc., has exposed the profound vulnerability of civilian government networks and the limitations of efforts to detect threats.It’s also likely to unleash a wave of spending on technology modernization and cybersecurity.”It’s really highlighted the investments we need to make in cybersecurity to have the visibility to block these attacks in the future,” Anne Neuberger, the newly appointed deputy national security adviser for cyber and emergency technology, said Wednesday at a White House briefing. ‘Likely Russian’ hackersThe reaction reflects the severity of a hack that was disclosed only in December. The hackers, as yet unidentified but described by officials as “likely Russian,” had unfettered access to the data and email of at least nine U.S. government agencies and about 100 private companies, with the full extent of the compromise still unknown. And while this incident appeared to be aimed at stealing information, it heightened fears that future hackers could damage critical infrastructure, like electrical grids or water systems.President Joe Biden plans to release an executive order soon that Neuberger said would include about eight measures intended to address security gaps exposed by the hack. The administration has also proposed expanding by 30% the budget of the U.S. Cybersecurity and Infrastructure Agency, or CISA, a little-known entity now under intense scrutiny because of the SolarWinds breach.President Joe Biden participates in a virtual event with the Munich Security Conference in the East Room of the White House, Feb. 19, 2021.Biden, making his first major international speech Friday to the Munich Security Conference, said that dealing with “Russian recklessness and hacking into computer networks in the United States and the world has become critical to protecting our collective security.”Republicans and Democrats in Congress have called for expanding the size and role of the agency, a component of the Department of Homeland Security. It was created in November 2018 amid a sense that U.S. adversaries were increasingly targeting civilian government and corporate networks as well as the critical infrastructure, such as the energy grid that is increasingly vulnerable in a wired world.Call for resourcesSpeaking at a recent hearing on cybersecurity, Representative John Katko, a Republican from New York, urged his colleagues to quickly “find a legislative vehicle to give CISA the resources it needs to fully respond and protect us.”Biden’s COVID-19 relief package called for $690 million more for CISA, as well as providing the agency with $9 billion to modernize IT across the government in partnership with the General Services Administration.That has been pulled from the latest version of the bill because some members didn’t see a connection to the pandemic. But Representative Jim Langevin, co-chair of the Congressional Cybersecurity Caucus, said additional funding for CISA was likely to reemerge with bipartisan support in upcoming legislation, perhaps an infrastructure bill.FILE – Rep. Jim Langevin, D-R.I., prepares the dais after he was chosen as speaker pro tempore for the opening day of the 116th Congress, at the Capitol in Washington, Jan. 3, 2019.”Our cyber infrastructure is every bit as important as our roads and bridges,” Langevin, a Rhode Island Democrat, said in an interview. “It’s important to our economy. It’s important to protecting human life, and we need to make sure we have a modern and resilient cyber infrastructure.”CISA operates a threat-detection system known as Einstein that was unable to detect the SolarWinds breach. Brandon Wales, CISA’s acting director, said that was because the breach was hidden in a legitimate software update from SolarWinds to its customers. After it was able to identify the malicious activity, the system was able to scan federal networks and identify some government victims.”It was designed to work in concert with other security programs inside the agencies,” he said.The former head of CISA, Christopher Krebs, told the House Homeland Security Committee this month that the U.S. should increase support to the agency, in part so it can issue grants to state and local governments to improve their cybersecurity and accelerate IT modernization across the federal government, which is part of the Biden proposal.FILE – Then-U.S. Cybersecurity and Infrastructure Security Agency Director Christopher Krebs speaks to reporters at CISA’s Election Day Operation Center in Arlington, Va., March 3, 2020.”Are we going to stop every attack? No. But we can take care of the most common risks and make the bad guys work that much harder and limit their success,” said Krebs, who was ousted by then-President Donald Trump after the election and now co-owns a consulting company whose clients include SolarWinds.The breach was discovered in early December by the private security firm FireEye, a cause of concern for some officials.”It was pretty alarming that we found out about it through a private company as opposed to our being able to detect it ourselves to begin with,” Avril Haines, the director of national intelligence, said at her January confirmation hearing.Right after the hack was announced, the Treasury Department bypassed its normal competitive contracting process to hire the private security firm CrowdStrike, U.S. contract records show. The department declined to comment. Senator Ron Wyden, D-Ore., has said that dozens of email accounts of top officials at the agency were hacked.’Backdoor code’The Social Security Administration hired FireEye to do an independent forensic analysis of its network logs. The agency had a “backdoor code” installed like other SolarWinds customers, but “there were no indicators suggesting we were targeted or that a future attack occurred beyond the initial software installation,” spokesperson Mark Hinkle said.Senator Mark Warner, a Virginia Democrat who chairs the Senate Intelligence Committee, said the hack has highlighted several failures at the federal level but not necessarily a lack of expertise by public sector employees. Still, “I doubt we will ever have all the capacity we’d need in-house,” he said.There have been some new cybersecurity measures taken in recent months. In the defense policy bill that passed in January, lawmakers created a national director of cybersecurity, replacing a position at the White House that had been cut under Trump, and granted CISA the power to issue administrative subpoenas as part of its efforts to identify vulnerable systems and notify operators.The legislation also granted CISA increased authority to hunt for threats across the networks of civilian government agencies, something Langevin said they were only previously able to do when invited.”In practical terms, what that meant is they weren’t invited in because no department or agency wants to look bad,” he said. “So you know what was happening? Everyone was sticking their heads in the sand and hoping that cyberthreats were going to go away.”
…
Day: February 19, 2021
President Joe Biden toured a Pfizer COVID-19 vaccine manufacturing plant Friday afternoon outside Kalamazoo, Michigan, where he touted the safety of the vaccine.”If there’s one message to cut through to everyone in this country, it’s this: The vaccines are safe,” he said, according to NBC News. “Please, for yourself, your family, your community, this country, take the vaccine when it’s your turn … that’s how to beat this pandemic.”During his tour of the “freezer farm,” where doses are stored in ultra-cold conditions, he was joined by Michigan Governor Gretchen Whitmer, Pfizer CEO Albert Bourla and White House virus-response coordinator Jeff Zienets. The presidential visit had been delayed by a day because of inclement weather.Speaking before Biden, Bourla said Pfizer would more than double vaccine production capacity in the coming weeks, the Daily Mail reported. Currently it averages 5 million doses per week.President Biden at Pfizer plant: “If there’s one message to cut through to everyone in this country, it’s this: The vaccines are safe. Please, for yourself, your family, your community, this country, take the vaccine when it’s your turn … That’s how to beat this pandemic.” pic.twitter.com/M92BSyw53a— NBC News (@NBCNews) February 19, 2021On Friday, Pfizer and its vaccine partner BioNTech said they had asked the Food and Drug Administration to allow the vaccine to be stored in normal freezers, a move that would make it easier for the company to ship the vaccine. Currently, the FDA requires the virus to be stored between -112°F and -76°F.Earlier Friday, the administration said the winter storms in the Midwest and South had delayed the delivery of 6 million vaccine doses, which would impact every state. The 6 million represents three days’ worth of vaccine shipments.The administration also said it was working with Florida and Pennsylvania to open more vaccination centers.
…
U.S. President Joe Biden pledged $4 billion to the World Health Organization’s COVAX plan designed to help provide COVID-19 vaccines for 92 low- and middle-income economies around the world. During Friday’s virtual G-7 and the Munich Security Conference, Biden championed U.S. involvement in international alliances. VOA’s Patsy Widakuswara has more.
…
Two South African medics are swapping their medical gear for oars as they train for a risky 4,000-kilometer (2,500-mile) journey by rowboat through the Arctic Northwest Passage.If the 14-member team finishes the trip — across the north of Canada to Alaska — they will make history, as all attempts to row the icy waters have failed. “Nobody conquers a passage there,” said Leven Brown, the expedition leader. ”The ocean allows you to pass. And there is a very important distinction there. We will be lucky to get through the Northwest Passage, to row from Pond Inlet at the top right-hand corner of Canada, to the top left-hand corner of Alaska, a place called Point Barrow.” In decades past, travel through the icy, Arctic waters was only possible by large ships. Physical, mental toll Reduced summer ice will allow the team to row the passage, but the journey — planned for next year — will still be a physical and mental challenge. The South African team member, Daniel Lobjoilt, says such a long, confined journey will likely take a toll. “We are going to be out there, in the elements, by ourselves, essentially, and I think after a certain period of time of repetitive rowing, on and off for, you know, weeks on end. Pressure on my mind might be the biggest challenge I have to overcome. So, my fear is … is that encounter that I have to have with myself,” Lobjoilt said. Gathering dataAlong the journey, Brown says the team will use scientific tools to gather data for climate change and wildlife studies. “We hope to be the first modern-day expedition through the Northwest Passage, and to highlight, you know, what is happening with the environment and the climate. This is the sort of expedition that wouldn’t be, wouldn’t be possible, you know, 50 years ago,” he said. Despite the history of failed attempts to row the passage, South African medic Dr. Daniel Kritzinger says the team is hoping to finish the trip within two months, before the winter ice returns. “There has been a previous attempt in 2013, also trying to row the Northwest Passage, but they were unsuccessful as the ice caught on them,” he said. “So hopefully the ice will stay back enough for us to finish, and to be the first to row the Northwest Passage.” The team is planning another expedition to help them prepare. In June, they will row from England’s Newcastle to Orkney, a much smaller distance than the length of the Arctic Northwest Passage.
…
Pharmaceutical partners Pfizer and BioNTech said Friday a new study the companies conducted indicates their COVID-19 vaccine can remain effective when stored in standard freezers for up to two weeks. In a statement posted on Pfizer’s website, the companies say they have submitted the new data to the U.S. Food and Drug Administration demonstrating their COVID-19 vaccine is stable when stored at -25°C to -15°C, temperatures commonly found in pharmaceutical freezers and refrigerators. The new data would be a significant development. One of the initial drawbacks of the Pfizer-BioNTech COVID-19 vaccine was that it was required to be stored in ultra-low temperature freezers not commonly found in standard clinics and pharmacies. The requirement added considerable expense to transporting the vaccine and storing and distributing it in less developed areas. The company said it submitted the data to the FDA to support a proposed update to the U.S. Emergency Use Authorization. BioNTech CEO Ugur Sahin said in the statement the companies’ top priority has been to make their vaccine safe, effective and available to the most vulnerable people in the world. He said it is their hope the new data will give pharmacies and vaccination centers greater flexibility. FILE – Israelis receive a Pfizer-BioNTech COVID-19 vaccine from medical professionals at a coronavirus vaccination center set up on a shopping mall parking lot in Givataim, Israel, Feb. 4, 2021.A separate study done in Israel indicates the Pfizer-BioNTech vaccine is 85 percent effective after the first dose. The study, published Thursday in the British medical journal The Lancet, was conducted on more than 7,000 Israeli health care workers, who were vaccinated at the Sheba Medical Center. Researchers saw an 85% reduction of symptomatic COVID-19 between 15 and 28 days after the single shot was given. Overall that study showed infections, including those among asymptomatic patients, were reduced by 75 percent.
…
Buckingham Palace confirmed Friday that Prince Harry and his wife, Meghan, will not be returning to royal duties, and Harry will give up his honorary military titles — a decision that makes formal, and final, the couple’s split from the royal family.When Harry and Meghan stepped away from full-time royal life in early 2020, it was agreed the situation would be reviewed after a year.Now it has, and the palace said in a statement that the couple, also known as the Duke and Duchess of Sussex, have verified “they will not be returning as working members of The Royal Family. “It said Queen Elizabeth II had spoken to Harry and confirmed “that in stepping away from the work of the Royal Family, it is not possible to continue with the responsibilities and duties that come with a life of public service.”The palace said Harry’s appointment as captain general of the Royal Marines and titles with other military groups would revert to the queen before being distributed to other members of the family.Harry, who served in the British army for a decade and has a close bond with the military, founded the Invictus Games competition for wounded troops.”While all are saddened by their decision, the Duke and Duchess remain much loved members of the family,” the palace statement said.American actress Meghan Markle, a former star of the TV legal drama “Suits,” married Harry, a grandson of Queen Elizabeth II, at Windsor Castle in May 2018. Their son, Archie, was born a year later.In early 2020, Meghan and Harry announced they were quitting royal duties and moving to North America, citing what they said were the unbearable intrusions and racist attitudes of the British media. They live in Santa Barbara, California and are expecting their second child.They recently announced that they will speak to Oprah Winfrey in a TV special to be broadcast next month.A spokesperson for the couple hit back at suggestions that Meghan and Harry were not devoted to duty.”As evidenced by their work over the past year, the Duke and Duchess of Sussex remain committed to their duty and service to the U.K. and around the world, and have offered their continued support to the organizations they have represented regardless of official role,” the spokesperson said in a statement. “We can all live a life of service. Service is universal.”
…
Investigations are now under way into the Peruvian coronavirus vaccination scandal, in which hundreds of people, many well-connected, were given shots although they did not participate in trials for the Sinopharm vaccine to determine its efficacy.Heath Minister Oscar Ugarte said 3,200 vaccines were given, including 1,200 that went to the Chinese Embassy. He said of the other 2,000 doses, investigators are looking into where they are and who was vaccinated.The state-run Andina news agency reported Peru’s Congress also launched a committee to investigate the scandal, amid a public uproar over how privileged people were able to jump ahead of front-line health workers for vaccinations.Fernando Carbone, the head of the commission investigating those benefiting from the shots is guaranteeing impartiality in the probe, with a threat of sanctions against those involved.Carbone spoke publicly about not being compromised after the Peruvian Medical College called for him to step aside, citing his association with former Health Minister Pilar Mazetti, who was among those improperly receiving vaccinations.Peru’s foreign minister Elizabeth Astete resigned Sunday after revealing she had received the vaccine before health care personnel.The public anger over the scandal has been exacerbated by Peru having one of the highest coronavirus tallies in Latin America, with more than 1.2 million infections and more than 44,000 deaths, according to Johns Hopkins Coronavirus Resource Center.
…
Venezuela began its immunization program against the COVID-19 virus by vaccinating front-line health care personnel Thursday, less than a week after receiving the first batch of 100,000 doses of the Russian vaccine Sputnik V.”Fortunately, the strategic cooperation between Russia and Venezuela has allowed us to have access to one of the best vaccines in the world, with an efficacy of 91.6%,” Vice President Delcy Rodriguez said.Venezuela participated in trials of the Sputnik V vaccine trials before signing a purchase agreement with Russia in December.The Latin American country hopes to begin vaccinating the general public in April.Health Minister Carlos Alvarado said officials aim to vaccinate 70% of the population this year in order to achieve herd immunity.Venezuela has so far confirmed more than 134,000 COVID-19 cases and 1,297 deaths, according to Johns Hopkins University Coronavirus Resource Center.
…
People the world over have questions about the COVID-19 vaccines. Most have heard rumors about their safety. Even some health workers and members of the U.S. military have opted out of getting immunized. VOA’s Carol Pearson helps debunk some common myths about the COVID vaccines.
…
For a brief time before Beijing banned the audio chat app Clubhouse, tech-savvy Chinese joined global discussions on taboo topics — Beijing’s placement of Uighurs in concentration camps in Xinjiang, Hong Kong’s pro-democracy movement and the 1989 Tiananmen Square protests — absorbing perspectives and information far outside the lines drawn by the Communist Party.Unlike Twitter posts, there was no public record of the app’s audio messages, which may complicate official monitoring efforts, according to In this file illustration photo taken on Jan. 25, 2021, shows the application Clubhouse on a smartphone in Berlin.Yu Ping, the former China country director of the American Bar Association’s Rule of Law Initiative, told VOA that while only a few people with access to iPhones registered outside China can access Clubhouse, they are often members of “China’s intellectual class, and for the authorities these are people who need to be more controlled” than ordinary citizens.Ping pointed out that any authoritarian government like China’s wants to control information and public opinion. In China, if information is not effectively manipulated and public opinion is not well-directed, authorities see an intolerable existential threat to the regime.Banning Clubhouse and the virtual private networks (VPNs) that give users the ability to surmount the Great Firewall manifests Beijing’s fear, he said.June Dreyer, professor of political science at the University of Miami, said Chinese authorities removed Clubhouse because audio content is harder to control compared with text content. Dreyer said although Chinese people used the app to comment on current affairs and even criticize the government, authorities shouldn’t have blocked the app even though they can.Users are going to get angry because they enjoyed Clubhouse, she said. Blocking it will upset people even more and then they will “seek more ways to vent their grievances. Sometimes it’s just better to let people who want to complain, complain.” Dreyer said the damage that banning Clubhouse causes to people who want to voice their opinion is limited. “As I say, people who have things that they want to talk about will always find ways to talk about them,” she said. “They can be repressed or suppressed, but there are always ways around that.” There are also concerns that the app has security flaws that could provide Chinese authorities access to user information. The Stanford Internet Observatory believes Clubhouse chatroom metadata are relayed to servers hosted in China, so the Chinese government potentially has access to users’ raw audio. In addition, the Stanford Internet Observatory blog confirmed that the software that supplies back-end infrastructure to Clubhouse is based in China and because a user’s unique Clubhouse ID number and chatroom ID are transmitted in plain text, it is possible to connect Clubhouse IDs with user profiles. Clubhouse told the Stanford Internet Observatory blog that it is “deeply committed to data protection and user privacy.”The app told the blog that when it launched, it was available to every country worldwide except China. Some people in China found a workaround to download the app, which meant that the conversations they were a part of could be transmitted via Chinese servers.“With the help of researchers at the Stanford Internet Observatory, we have identified a few areas where we can further strengthen our data protection.”
…
The COVID-19 pandemic has erased more than a decade of improvements in life expectancy in the United States and widened racial and ethnic inequalities, Chart shows the change in estimated life expectancy in the U.S. from 2019 to 2020The new CDC data put the United States in line with estimates from England, Wales and Spain, which also calculated about a one-year drop in life expectancy.France projected a half-year decline for men and four-tenths for women. Swedish men also lost an estimated half a year, and women, three-tenths.U.S. life expectancy already “lags substantially behind virtually all of the high-income countries,” Goldman noted. “Now, we’ll just be even further behind.”These estimates look at cases where COVID-19 is listed as the cause of death. But “it’s definitely true that the COVID-19 pandemic is affecting other causes of death indirectly,” said University of Oxford demographer José Manuel Aburto, co-author of the study on life expectancy in England and Wales.He said people have delayed treatment for other diseases, such as cancer and heart disease, out of fear of going to the hospital, which may lead to higher death rates.Experts do not expect life expectancy to snap back to normal when the pandemic ends.For many COVID-19 patients, the disease has worsened existing health problems or created new ones that persist long after the virus is gone.Plus, the social and economic impacts of the pandemic “have been terrible on a large segment of the population that will translate into poorer health and ultimately poor survival,” Goldman said. “And those effects will last for quite a while.”
…