In a statement today, the prime minister urged the public to exercise greater care and vigilance through being on the lookout for phishing scams, properly securing and changing passwords, etc.
“The Government is taking this opportunity to undertake a comprehensive review of security on all Government websites and networks to ensure compliance with international standards and best practices. This process is underway with 162 website reviews completed and another 100 in progress to date. Any credible vulnerabilities that are identified are concurrently being rectified,” he said.
Holness pointed out that “cyber threats are real, we see that daily not only in Jamaica but in all countries. No one is immune. The most secure systems in the world have had security issues which have required remediation and strengthening. As a society, we have to recognise that these threats represent an inherent risk in the new digital world. Ultimately, this risk cannot be completely eliminated, He emphasized.
Digital technology works because it is open, and that openness brings with it risks. What we can do is build our capacity to address and mitigate the risks.
As it relates to the Jamcovid-19 application, Prime Minister Holness noted that “the investigations and assessments are concurrently focused on two streams:
- The level of compliance of the security architecture and configuration of the application and related databases with established standards and best practices; and
- The possible activities of any malicious actors in either creating or exploiting any vulnerabilities in the security architecture and configuration and whether such exploitation resulted in data exfiltration.
The findings thus far indicate that, while there is evidence of unauthorised access, there is no evidence of data exfiltration. However, the probe by the multi-agency cyber analysis team is ongoing and the public will be advised further as the investigation progresses. While we acknowledge that there may be persons acting without malicious intent, Jamaican law requires that all instances of unauthorised access be investigated and, in fact, this would be the only way we could determine whether the access was malicious or not. The authorities have reached out to our overseas law enforcement partners for support.
It was emphasized that a critical role of MOCA includes security audits, penetration testing and forensic investigations and that, noting the complexity of matters of this nature, work is undertaken in conjunction with local and international partners as necessary to ensure a robust response.
While the investigation continues, the Government is accelerating plans that were already underway to migrate the Jamcovid-19 database. The cyber analysis team has undertaken a comprehensive review of security of the application and related databases and, in conjunction with the developer, significantly hardened the security of the system. The Jamcovid-19 application continues to be a critical element of our Controlled Entry programme and has served us well in our management of the pandemic. We wish to reassure the public that the Jamcovid-19 application is safe for use.
The Government wishes to assure the public that it is sensitive to the legitimate fears and concerns around data privacy and protection and is committed to pursuing a comprehensive approach to system-wide strengthening of as we move towards the creation of a digital society.
- Countries: Jamaica
- JAMAICA | MP George Wright withdraws from JLP Parliamentary Caucus, To become an independent member until……..
- JAMAICA | In Defense of Horace Chang’s Dialogue with the Diaspora
- JAMAICA | Government going all out to stem importation of illegal weapons says Chang
- JAMAICA | Deputy PM Dr. Horace Chang to speak with Jamaican Diaspora on Thurs. April 8
- JAMAICA | Opposition loses battle to curb PM powers in new disaster law