NEENAH All Neenah Joint School District schools will be closed Tuesday because of a "technology security situation."

According to a letter from the district, the security situation "involves potential unauthorized access to the school data system" that caused an outage of the internet, phone systems and several software applications.

At this point, the district has no reason to believe any confidential or personal information was compromised, the letter said.

After the district discovered the issue, it notified local and federal law enforcement and brought in cyber security experts to begin a forensic investigation, the letter said.

The district hopes to have phones and other systems working again by Wednesday so students and staff can return to school, but students will likely work "in a non-digital environment, possibly into next week."

This story will be updated when more information becomes available.

Reach AnnMarie Hilton at ahilton@gannett.com or 920-370-8045. Follow her on Twitter at @hilton_annmarie.

See the rest here:
Neenah schools will be closed Tuesday because of a 'technology security situation' that shut down internet, phone systems - Post-Crescent

When Russian President Vladimir Putin signed a law in 2019 allowing the state to isolate the internet within Russia in the event of a security incident, international media outlets extensively covered the development, with many (incorrectly) likening it to Chinas Great Firewall. The spotlight quickly swiveled back to Beijings grip on online content and dataeven though a Kremlin campaign continues to ratchet up pressure on US technology giants, and could soon create a disruptive playbook for other states.

While Moscow made headlines after throttling Twitter and coercing Google and Apple into censoring opposition leader Alexei Navalnys election app last year, Western media coverage of internet repression and security threats still tends to focus on China. This penchant persists despite Russian developments that impinge on both the internet ecosystem and human rights in the countryand which constitute broader cyber threats and efforts to undermine the global internet.

In no small part, this pattern stems from the fact that Russian state control of the internet differs from that in China: It relies less on technical measures and more on traditional, offline mechanisms of coercion such as harassment, intimidation, and vague and inconsistently enforced speech laws. Notably, Russias domestic efforts to control the internet quite closely parallel its efforts overseas to shape information and to both weaponize the internet and undermine its global nature.

As the world watches Putins moves in and around Ukraine, these developmentswhile of course not comparable to the possibility of large-scale armed conflictare worthy of attention, given their impact on the Russian cyber and internet landscape more broadly.

The more the Kremlin cements its control over the internet, the more it can potentially suppress dissent and control information and data flows at home. And the more it slowly works on implementing the domestic internet law, the more it centralizes its control of the architecture of the internet in Russiawhich could also affect Russian cyber behavior abroad, such as by encouraging more assertive operations against global internet infrastructure. Though US policy debates often separate Russian internet governance and technology policy at home from Russian cyber behavior abroad, there is actually great interdependence and entanglement between the two.

As the Kremlin demonstrates and further develops a model of internet and information control that appeals to states without Chinas technical capacity, Moscows techniques may portend the future of internet repression elsewhere. Several recent, but largely overlooked, developments signal that the Kremlin may crack down on the internet more than ever in 2022while US tech companies and the US government increasingly have little room to push back.

Last year was a stifling one for Russian internet freedom. When citizens took to the streets to protest state corruption and the Kremlins jailing of Navalny, the government sent censorship orders to YouTube, Facebook, Instagram, Twitter, TikTok, VKontakte (Russias leading social network, also known as VK), and other domestic and foreign tech firms. Many caved and removed protest-related content. When Twitter refused to comply, the government leveraged newly deployed deep packet inspection capabilities to throttle it from within Russia. That was only partly successful, as many other websites were inadvertently affected by the traffic slowdown, but it still demonstrated to foreign technology firms that Moscow was expanding its censorship capabilitieswhich it also threatened to use again as desired.

The crackdowns hardly ended there. The government demanded that foreign tech companies set up local offices in Russia, and the Foreign Ministry called in the US ambassador to complain that US tech firms were not complying with the Kremlins censorship ordersdecrying the companies behavior as election interference and describing them as tools of the American state. The government blocked access to the website for TOR (short for the Onion Router), an anonymizing browser often used to bypass government restrictions when surfing the web. It also blocked access to six major virtual private network (VPN) websites, where citizens were accessing software to circumvent online censorship; set up a registry to track tech company compliance with censorship orders; blocked many other websites, including those for Navalnys campaign; and used its foreign agents designation to crack down on numerous online media.

As more and more Russians get their news from social media, and as internet mobilization and outreach become more important to protesters and opposition figures, the states crackdown on the web means citizens will have an even harder time accessing and sharing news that criticizes (or merely reflects poorly on) the Putin regime.

Several recent developmentsincluding official pressure on Google, the expansion of domestic software and a push for domestic internet, as well as local office requirements for tech firmsillustrate how both economic and security motivations drive Russias new campaign to control and shape the domestic internet environment. They also underscore just how wide-ranging this campaign is.

In September, when Apple and Google refused to delete Navalnys election app from their platforms, the Russian government threatened their employees in Russia and sent armed thugs to Googles Moscow office; both companies then removed the app. Since then, the State Duma (Russias lower house of parliament) met with Google to issue even more demands (for example, edit Google Maps in Russia to show illegally annexed Crimea as part of Russia), while a Moscow court fined it $40,400 for not removing content the Kremlin deemed illegalthen fined it a record $98.4 million for not complying with state censorship orders. Google was targeted again just last month, when another Moscow court upheld a ruling from last April that found Google-owned YouTube must restore the account for Tsargrad, the TV channel owned by sanctioned Putin ally and oligarch Konstantin Malofeev. Though unsurprising, the ruling nonetheless gives the state another reason to increase its pressure on Google.

Meanwhile, a recently published BBC analysis found that between 2011 and 2020, the Russian government had filed more than 123,000 individual requests to Google search or YouTube to delete contentmany times more than the number issued by Turkey (14,000), India (9,800), the United States (9,600), Brazil (8,000), Israel (2,000), or China (1,200). Moscow continued issuing those censorship orders in 2021, mostly focused on removing content related to Navalny. The Russian governments commitment to fining Google a percentage of its annual revenue in Russia for not removing content signals increased Kremlin frustration at Google not bending the knee and suggests the pressure will ramp up even further.

Google matters as a stand-alone issue here because YouTube is the most widely used social media platform in Russia. It also provides cloud and other services to Russian citizens, while opposition leaders have used Google services as wellsuch as when the Navalny campaign used Google Docs to share a list of opposition candidates. Moreover, how the Kremlin treats Google, and its mixed record of compliance with the Russian government, could foreshadow how the state will treat other foreign tech companies facing similar demands.

The Russian government has increasingly been pushing the development and use of domestic software. Driven by economic and security factors, Russia aims to replace Western software with its Russian versions where possible. (However, if forced to choose between those two considerations, security would likely win out: While the Russian government doesnt want to undermine the operations of Russian tech firms, the Putin regime has demonstrated increasing concern about Western espionage through Western technologies.)

Moscow has been making this push on multiple fronts. For one, it has been updating its domestic software registry, established in 2015, which lists government-approved software that state bodies and companies should use when replacing foreign software. It also implemented a law requiring that smartphones, laptops, smart TVs, and many other consumer devices sold in Russia have state-approved, Russian software preinstalled. This is primarily economically drivena way to theoretically give domestic firms a leg up against foreign software developers and big US tech companiesbut security factors (like Moscow wanting to secure backdoor access to Russian phones) may play a role as well.

The Russian government also updated its tax incentives for domestic technology production, making Russian companies with at least seven employees and 90 percent or more of their revenue from information technology (IT) eligible for reductions in their social security and corporate profit taxes. Given broader issues in Russian tech production (such as the quality of domestic hardware and the brain drain of IT talent to foreign countries), the effectiveness of this initiative seems questionable.

Overall, there has been mixed success in Moscows push to develop domestic tech. While some Russian companies have made small gains as Western technology is expelled from government and business systems, in many cases Chinese firms take slightly more market share in Russia. Chinese telecom company Huawei Technologies, for instance, has played into Kremlin fears of Western espionage to accelerate expansion in Russia.

It remains to be seen whether Russias increased use of domestic software will better protect the state against espionage or end up undermining the cybersecurity of Russian citizens and the Russian internet ecosystem.

On January 1, a new law came into effect requiring any foreign internet company with five hundred thousand daily Russian users to open an office in Russia. This is a blatant tool of coercion which fits neatly into the Russian governments internet control model. Technical measures play a part, but traditional forms of physical, offline coercionsuch as stalking and intimidation by the security services, including the Federal Security Service (or FSB, the KGBs successor) in the digital sphereare a means of scaring citizens, keeping tech firms in check, expanding surveillance, and generally controlling the shape of internet conversation.

The Kremlin demonstrated the power of this tool when it sent armed, masked thugs to Googles Moscow office: When a company has employees on the ground, those are people who can be stalked, harassed, intimidated, threatened, jailed, or even killed. As of a few months ago, Google and Apple had complied with the local-office law; other major companies with users in Russia, such as Facebook and Twitter, have not.

Russian authorities have said they will not begin fining companies immediately for noncompliance if they demonstrate they are working on setting up an office. The list of companies which are required to open offices is notable: Facebook, Twitter, Telegram, TikTok, Zoom, Pinterest, and Spotify. It will be key to watch if they complyand whether doing so would create any new legal or jurisdictional challenges amid any Kremlin censorship or data-access requests.

In December 2021, a law came into effect mandating that only Russian entities can own cross-border communications lines. While many telephone and internet cable systems in Russia are already owned by Russian entities (and, often, by state-owned firms such as Rostelecom), its unclear what this means for the undersea cables that link the Russian internet to the global internet and are owned by multiple companies, some of them foreign.

The government also set up a registry of autonomous systems (routing internet traffic) that would be critical to the operation of the planned domestic internet, as well as mandated that internet providers work on countering Kremlin-defined threats on their networks.

In short, the Russian government continued building out components of the domestic internet law this year and has slowly started centralizing control over internet infrastructure in Russia.

While its a very different internet and political environment, Western tech companies are at least generally familiar with a similar story in China: Companies wanted to enter the market and remain in the country to provide services and make moneyyet they all reached a point at which the Chinese government was cracking down harder on the internet, and at which compliance with Beijings demands was simply too much. Many US tech companies exited the market, or at least closed their local offices. The Russian government has far less technology leverage than Chinas vis--vis market size and power, as well as its chokehold on the global tech supply chain; but it has also demonstrated a considerable willingness to use outright force against foreign companies.

The Kremlins escalating pressure on Google portends a growing intolerance of Western technology companies that dont comply with its demands. Importantly, the states will and ability to crack down will not apply equally or identically to all firms. Twitter, for instance, has been resisting the Russian governments local office requirementwhich meant the Kremlin had no Twitter employees in Russia to threaten when it wanted the company to censor protest content in March 2021. Still, companies are likely to face even more Kremlin pressure in 2022, and there is increasingly little that they can do to push back.

Filing appeals in the Russian courts is not a viable option, nor is looking for market leverage to negotiate with Russian officials. The US government is likewise in a tricky position, because any efforts to support Internet freedom in Russia will only exacerbate Moscows accusations, as conspiratorial and deluded as they are, that the internet and US tech firms are tools of the CIA and American subversion. If the Russian pressure campaign on tech companies ramps up further, as appears highly likely this year, it may prompt some (especially smaller) foreign tech companies to contemplate exiting the market altogether.

Many factors will influence whether and how the Kremlin will act, including traditional political considerations. Tech-company actions or inactions that intersect with high-priority issue areas for the Russian government, such as election opposition and mass demonstrations, are likely to continue receiving Kremlin attention (and therefore more coercive force). Conversely, it remains to be seen if historically lower-priority areas, such as enforcing Russias 2015 data-localization law, will get any more buy-in amid the domestic internet push.

Website or platform popularity and the reach of particular content may also be factors in the Kremlins response. YouTube, for instance, is the most widely used social media platform in Russia (with 85.4 percent penetration versus VKs 78 percent penetration), whereas Twitter is much less popular among Russians. Even if Russian tech companies can functionally operate without YouTube in the Russian market, a severe crackdown on it would still be a serious decision given the platforms immense popularity with Russians.

Notably, this campaign marks a departure from years past, when laws were enacted (such as on encryption, source code inspections, or data localization), but not necessarily enforced with high-level political buy-in. So while the pressure now seems like a means for the Kremlin to achieve compliance with its wishes, there is no guarantee it will stop there. Companies may find themselves facing a regime willing to use these tools for outright punishment as well.

Justin Sherman is a nonresident senior fellow at the Atlantic Councils Cyber Statecraft Initiative. Follow him on Twitter: @jshermcyber

Wed, Jan 12, 2022

UkraineAlertByHarley Balzer

While Russia has attempted to reduce its dependence on the SWIFT payment system, it remains vulnerable to a sanctions cut-off in the event of a new Kremlin offensive in Putin's eight-year undeclared war against Ukraine.

Image: Russians attend a rally to protest against tightening state control over internet in Moscow, Russia, on March 10, 2019. Photo by Shamil Zhumatov/REUTERS

Read more here:
This year, Russia's internet crackdown will be even worse - Atlantic Council

NEENAH (NBC 26) For the second day in a row, schools within the Neenah Joint School District will remain closed Wednesday due to a cyber security situation affecting the district.

Neenah schools closed Tuesday as the investigation into the IT security incident continues. Mary Pfeiffer, Neenah Joint School District superintendent, said a potential unauthorized access to the school data system caused an outage to the district's internet, phone systems and several software applications.

At this time, Pfeiffer said they don't believe confidential or personal information has been compromised.Teachers spent Tuesday creating non-digital lesson plans, a challenge when a lot of that information is on the district's server.

"In March of 2020, we shifted our staff to all virtual - at least for a short period of time - and now were telling them, no more technology," Pfeiffer said. "It's been an incredible year. Another incredible year. And now to have to pivot one more time for something that we didn't have control of, that can be pretty frustrating."

Michael Patton, director of the Cybersecurity Center of Excellence at the University of Wisconsin-Oshkosh, doesn't have direct knowledge of this investigation, but said a concern in this type of situation would be that data is taken. He said access to an organization's server can happen with just one click on a faulty link or video.

Whatever you open has as much access to your work computer as you do. They get to do things essentially as you," Patton said. "Your organization may have permissions in their network that allow for you to share things across computers. So the bad actors would leverage that sharing capability, and move throughout your network and infect lots of other things."

That's why Patton said it's best to separate work and personal.

"Maybe we want to check our Facebook or do some online shopping. Just recognize that if you're doing that from your work machine, that could allow whatever mistakes you make into your work space," Patton said.

He added people should always be vigilant and skeptical about things they open online.

The Neenah Joint School District is working to restore phone and internet access for students and staff. The district hopes to resume classes on Thursday.

More here:
Neenah schools to close for second consecutive day following cyber security issue - WGBA-TV

When Apple pushed iOS 15 out to more than a billion devices in September, the software update included the companys first VPN-like feature, iCloud Private Relay. The subscription-only privacy tool makes it harder for anyone to snoop on what you are doing online, by routing traffic from your device through multiple servers. But the tool has faced pushback from mobile operators in Europeand more recently, by T-Mobile in the US.

As Private Relay has rolled out over the past few months, scores of people have started to complain that their mobile operators appear to be restricting access to it. For many, its impossible to turn the option on if your plan includes content filtering, such as parental controls. Meanwhile in Europe, mobile operators Vodafone, Telefonica, Orange, and T-Mobile have griped about how Private Relay works. In August 2021, according to a report by the Telegraph, the companies complained the feature would cut off their access to metadata and network information and suggested to regulators that it should be banned.

Private Relay will impair others to innovate and compete in downstream digital markets and may negatively impact operators ability to efficiently manage telecommunication networks, bosses from the companies wrote in a letter to European lawmakers. However, Apple says that Private Relay doesnt stop companies from providing customers with fast internet connections, and security experts say theres been little evidence showing Private Relay will cause problems for network operators.

Apples Private Relay isnt a VPNwhich carriers freely allowbut it has some similarities. The option, which is still in beta and is only available to people who pay for iCloud+, aims to stop the network providers and the websites you visit from seeing your IP address and DNS records. That makes it harder for companies to build profiles about you that include your interests and location, in theory helping to reduce the ways youre targeted online.

To do this, Private Relay routes your web traffic through two relays, known as nodes, when it leaves your iPhone, iPad, or Mac. Your traffic passes from Safari into the first relay, known as the ingress proxy, which is owned by Apple. There are multiple different ingress proxies around the world, and theyre based in multiple locations, Apple says in a white paper. This first relay is able to see your IP address and the Wi-Fi or mobile network you are connected to. However, Apple isnt able to see the name of the website that youre trying to visit.

The second relay your web traffic passes through, known as the egress proxy, is owned by a third-party partner rather than Apple itself. While it can see the name of the website youre visiting, It doesnt know the IP address youre browsing from. It instead assigns you another IP address thats near where you live or within the same country, depending on your Private Relay settings.

The result is, neither relay knows both your IP address and the details of what youre looking at onlinewhereas a typical a VPN provider will process all your data. Also unlike a VPN, Apples system doesnt let you change your devices geographic location to avoid regional blocks on content from Netflix and others.

See original here:
Apples Private Relay Roils Telecoms Around the World - WIRED

For Chinese security forces, the effort is a daring expansion of a remit that previously focused on Chinese platforms and the best-known overseas dissidents. Now, violations as simple as a post of a critical article on Twitter or in the case of 23-year-old Ms. Chen, quoting, I stand with Hong Kong can bring swift repercussions.

Actions against people for speaking out on Twitter and Facebook have increased in China since 2019, according to an online database aggregating them. The database, compiled by an anonymous activist, records cases based on publicly available verdicts, police notices and news reports, although information is limited in China.

The net has definitely been cast wider overseas during the past year or so, said Yaxue Cao, editor of ChinaChange.org, a website that covers civil society and human rights. The goal is to encourage already widespread self-censorship among Chinese people on global social media, she said, likening the purging of critics to an overactive lawn mower.

They cut down the things that look spindly and tall the most outspoken, she said. Then they look around, the taller pieces of grass no longer cover the lower ones. They say, Oh these are problematic too, lets mow them down again.

Chinese security authorities are bringing new technical expertise and funding to the process, according to publicly available procurement documents, police manuals and the government contractor, who is working on overseas internet investigations.

In 2020, when the police in the western province of Gansu sought companies to help monitor international social media, they laid out a grading system. One criterion included a companys ability to analyze Twitter accounts, including tweets and lists of followers. The police in Shanghai offered $1,500 to a technology firm for each investigation into an overseas account, according to a May procurement document.

Read the rest here:
Chinese Police Hunt Overseas Critics With Advanced Tech - The New York Times