Archive for September 30, 2019

HP Has Announced Three New Consumer PC Devices

Posted in Commentary with tags on September 30, 2019 by itnerd

HP has announced three new consumer PC devices today.

Firstly, HP is introducing the next generation Spectre x360 13, which combines the cultivation of innovative design and mobility, along with thoughtful security and performance capabilities that allows customers to pursue their passions without constraint.

HP Spectre x360 13_Nightfall Black_FrontLeft_HP Sure View.png

Key features of the Spectre x360 13 include,

  • Beauty and Purpose: 13% smaller than last year’s model, with an industry-leading 90% screen-to-body ratio at every angle and a 2.8 lbs. chassis – all while increasing power.
  • Power and Connectivity: Featuring up to 22 hours of battery life, and two times the performance of the previous generation.
  • Secure and Smart: Featuring HP’s Webcam Kill Switch, that keeps users safe from webcam hacking with a physical on/off switch to electrically turn off the webcam when not in use, and an optional built-in privacy screen using HP’s award winning Sure View Gen3.

As well, HP announced two new Chromebooks, the Chromebook x360 12b and Chromebook x360 14b which will be available later this month via HP.com and select retailers.

HP Chromebook x360 12b and HP Chromebook x360 14 in natural silver.jpg

Both devices are the first HP Chromebooks to be USI pen enabled, offering a two-way communication protocol between a stylus and a USI enabled display for a consistent, easy-to-use experience across all USI devices.

Key features of the Chromebooks include,

  • Slim, Stylish and Practical: Designed for both those on the go, or on the couch, with a seamless backlit keyboard, an eye-catching white polished finish, and a selection of Type-A and Type-C ports for easy, convenient access.
  • Big Performance: Offering 10-12 hours of battery life and a more efficient fan-less design that will have users doing homework, watching movies, or just surfing the web with the performance they need, when they need it.
  • Voice, Touch and Pen: Interact with the touch-enabled convertible Chromebooks in new and exciting ways with the HP Rechargeable USI Pen and magnetic pen dock on the side of the chassis for easy access when drawing and editing documents. Both Chromebooks also feature Google Assistant  to control the Chromebook experience hands-free with a simple voice command.
  • Google Goodness: The Chromebook x360 12b and Chromebook x360 14b provide users with access to an expansive library of apps from the Google Play store as well as a one-year subscription to Google One – an all-in-one shareable plan that gives users access to expanded storage, Google experts, and exclusive member benefits.

 

HP Spectre x360 13_Nightfall Black_FrontLeft_HP Sure View.png

Dell Announces New EMC ECS Software And Hardware

Posted in Commentary with tags on September 30, 2019 by itnerd

Today, Dell EMC announced new hardware and software updates to ECS, the leading object-storage platform from Dell EMC, building on their long legacy of innovation.

Dell EMC ECS EX500 Appliance
The perfect blend of economy and density, the EX500 injects greater flexibility into the Dell EMC ECS portfolio. With rack capacity that can scale from 480TB to 4.6PB, the EX500 is a versatile option for midsized enterprises supporting both modern applications or deep archive use cases.

The EX500 joins its EX300 and EX3000 brethren as the latest member of the Dell EMC ECS hardware family.

Dell EMC ECS Software Version 3.4
In addition to the EX500, Dell EMC is simultaneously releasing version 3.4 of the ECS software.

55% Of Canadians Are More Productive Working Remotely With The Right Technology: Citrix

Posted in Commentary with tags on September 30, 2019 by itnerd

Citrix Canada, along with OnePoll, surveyed 750 Canadian workers about their ability to work remotely, workstyle preferences and habits, and their perceptions of corporate green initiatives. The results provide a look at how companies can make a significant impact on the environment, while at the same time reducing costs and retaining/recruiting the best talent, by implementing mobile workspaces.

The study revealed that nearly 60% of Canadian workers want to work for a company that is environmentally friendly and prioritizes green initiatives. This reinforces the fact that being green is more popular than ever.

By implementing mobile workspaces, companies can make a significant change for the good of the environment, while also improving employees’ productivity. By allowing employees to work remotely, companies can reduce the size of their office, while also reducing overhead costs and energy consumption.

  • From an environmentally conscious perspective, an important reason for businesses to implement mobile workspaces is to reduce carbon emissions from the 76% of respondents who regularly drive to work, averaging 31 minutes on their commute.
  • When Canadian employees were asked if they leave their PC’s running overnight, a staggering 57% claimed they did not power down, further reinforcing the need for companies to adopt energy efficient devices that help reduce energy consumption.
  • 93% of respondents confirmed that their offices are mostly or fully occupied on a regular basis.  However, 51% state that their jobs can be performed remotely if allowed.
  • What’s more, 55% of respondents agree that they would be more or as productive working remotely than in the office.

 

ADAPTING FOR THE FUTURE OF WORK

More than ever, climate change is on the top of everyone’s minds.  This is most evident with the Generation Z and Millennial generations.

  • From those interviewed between the ages of 18-24, 66% agreed or somewhat agreed that they are most inclined to work for a company that makes green initiatives a priority and 83% stated they are most inclined to work for a company that allows them to work remotely.
  • Similar results were found for those between the ages of 24-34, with 64% agreeing or somewhat agreeing that they are most inclined to work for a company that makes green initiatives a priority and 73% stated they are most inclined to work for a company that allows them to work remotely.
  • This shows the passion that Millennials and Generation Z have for making a difference and the importance for companies to have this in mind if they want to attract and retain the best talent.
  • With climate change producing strong winter storms, companies also need to consider mobile workspaces as part of their business continuity plans.
    • Of those surveyed, only 53% stated their companies had policies or technology in place to work remotely in the case of a natural disaster.

 

A CHANGING LANDSCAPE

Canada’s vast landscape offers a variety of commuting requirements, each dependent on the industry that province or city attracts and operates in. However, whether it is long flat roads through the prairies, or the stop and go traffic of Toronto, reducing commuting times and therefore cutting back on office space is a great way that organizations can incorporate a more flexible work policy, saving people time and energy.

  • The Atlantic region (Newfoundland and Labrador, P.E.I, Nova Scotia, and New Brunswick) had the highest percentage of people (36%) who travel 1-10 minutes to and from work each day. However, the same region had the highest percentage of people who leave their computers running over night.
  • In Central Canada (Quebec and Ontario), provinces that attract an extremely diverse industry and workforce, had the highest percentage of people who travel an extensive 91+ minute during their commute to work (5%). While, the Prairie provinces (Manitoba, Saskatchewan and Alberta) had the highest percentage of people who work remotely.

That “Unpatchable” Exploit On Older iPhones That You’ve Been Hearing About Is ALMOST A Non-Issue…..Here’s Why

Posted in Commentary on September 30, 2019 by itnerd

On Friday the world was sent into a tizzy because of a supposedly “unpatchable” exploit being announced by a security researcher who goes by the handle “axi0mX” on Twitter. Dubbed “checkm8”  this is a bootrom exploit for iOS devices equipped with A5 through A11 chips, including the iPhone 4S through the iPhone X, several iPad models dating back to the iPad 2, and the fifth-generation iPod touch and later. And because of the fact that this is in the bootrom, Apple can’t do anything to patch it. Thus those devices are vulnerable to being pwned by hackers. Right?

Well, not so fast.

The problem with this is that the universe lost its cookies about the exploit without understanding what the exploit is. So what I will be doing in this post is explaining what the exploit is and why this is almost a non-issue for most iOS users.

The exploit as mentioned above is a bootrom exploit. That means that beyond the fact that it is “unpatchable”, it can get around the protection that Apple built into the bootrom of the most recent iPhones and iPads. By using this exploit you can execute any code at the bootrom level that you want. But this is the key weakness of this exploit. Anything you do after you use the exploit to get into the phone is only in RAM. Which means that once you reboot the phone, anything bad is gone with the exception of the exploit which is ROM. So breaking into the phone and planting some malware is a non-starter because it would only be there until the next reboot.

Here’s the next reason why this exploit is almost a non-issue for most iOS users. Apple introduced the Secure Enclave and Touch ID in 2013, and this exploit can’t get into either of those. Meaning that you can’t unlock any phone with those features using this exploit. However, this exploit would allow you to very quickly get the PIN and get access to all the data of any iPhone that didn’t have the Secure Enclave and Touch ID. And I suspect that this is how devices from companies like Cellebrite and GrayShift break into iPhones. Though I also suspect that they are also taking advantage of multiple exploits to break into iPhones. Just using this exploit won’t allow them to do what they need to do.

Next up is the fact that iOS devices have what’s called a secure bootchain. Starting from the bootrom, every single step of the boot process is checked by the previous stage to make sure that it is trusted. Each step has a digital signature verified so that the phone only allows you to run software that is meant to be running on it. Which means that malware will not be able to get around this security as it will lack the sort of protections that Apple puts in place during the boot process.

So at this point, this exploit doesn’t look as scary as it did originally. But let’s go further. For you to execute this exploit, you need physical access to the phone so that you can put it into DFU Mode which is a mode that allows you restore an iPhone from any state. For example a bad software update. That requires a USB to Lightning cable and a PC or Mac along with pressing certain buttons on the iPhone in a certain sequence to fully pull off getting the phone into DFU Mode. Because of that, you cannot use this exploit remotely (such as going to a webpage that is booby trapped with attack code) which is how hackers would prefer to pwn any phone. iOS or Android.

So, let’s recap:

  • This exploit is not persistent. Meaning that getting in and loading some sort of malware is a non starter because any malware would be gone after the next reboot.
  • If you have an iPhone with the Secure Enclave and Touch ID, this exploit can’t break into those. But this exploit could be used to break into an iPhone without those features.
  • iPhones have protections in place to protect the boot process
  • It cannot be exploited remotely.

As a result it’s not going to affect 95% of iPhone users out there. Which means that your risk of being pwned by hackers is no different today than it was last week, or the week before that.

So why do I say this is almost a non-issue? Well, it is entirely possible that a nation state or some company who finds and sells exploits to the highest bidder, or a Grayshift or Cellebrite could use this exploit (if they aren’t already) and find some way to weaponize it so that it could become more useful which is a another way of saying more dangerous. And anyone who would weaponize an exploit like this is typically targeting specific people rather than the public at large. For example, exploits allegedly found by The NSO Group were allegedly used to target Arab dissidents. However these were exploits in iOS that we quickly patched by Apple. And they targeted specific individuals and not the public at large. On top of that devices from Grayshift or Cellebrite are typically used by law enforcement as part of criminal investigations. Which means that there’s due process behind the use of those devices, and they are again targeting specific individuals and not the public at large. So the take home message is that if whatever it is that you do would make you a target for this sort of activity, and you are running an iPhone X or older, you should run to the Apple Store to get a iPhone XR, XS, 11, or 11 Pro. The rest of you have nothing to worry about.

As a final note, bootrom exploits are the closest thing to a holy grail for jailbreakers and those who hope to hack into iPhones. As far as I know, there have only ever been eight of them and they are all listed here. But every time one of these exploits appears, Apple takes steps to make iOS and the environment it runs on more secure. So if there is a positive side to this, you can expect that your next iPhone to be even more secure than your current one.

Martello Places No. 206 On The Globe and Mail’s Ranking Of Canada’s Top Growing Companies

Posted in Commentary with tags on September 30, 2019 by itnerd

Martello Technologies Group Inc announced that it has placed No. 206 on the inaugural Report on Business ranking of Canada’s Top Growing Companies. Canada’s Top Growing Companies ranks Canadian Companies on three-year revenue growth. Martello earned its spot with three-year growth of 165%.

Martello’s accomplishments have been recognized by the industry. The Company was recently ranked for a third consecutive year on the Growth 500 list of high growth companies, and took position 215 in the 2019 edition of the widely respected Branham300 listing of Canada’s top ICT (Information and Communications Technology) companies. Martello is focused on global growth both organically and through acquisitions. The Company recently announced partnerships and sales wins with the City of Ottawa, Paessler PRTG, Onepoint and Suria Business Solutions.

About Canada’s Top Growing Companies Ranking

Launched in 2019, the Canada’s Top Growing Companies ranking program aims to celebrate entrepreneurial achievement in Canada by identifying and amplifying the success of growth-minded, independent business in Canada. It is a voluntary program; companies had to complete an in-depth application process in order to quality. In total, 400 companies made the ranking this year.

The full list of 2019 winners, and accompanying editorial coverage, is published in the October issue of Report on Business magazine- out now- and online at tgam.ca/TopGrowing.