Archive for September 8, 2021

Commvault Adds New Ransomware Protection and Response Services to its Data Security Solutions

Posted in Commentary with tags on September 8, 2021 by itnerd

Commvault today announced new ransomware services designed to help businesses prepare for, protect against, and respond to today’s growing cyber threats.

Ransomware attacks continue to rise, and they are expensive—on average, it costs 10 times the cost of the ransom payment to restore the data.

70% of ransomware attacks include a threat to leak exfiltrated data, and firms who have been attacked experience about 21 days of downtime afterwards. The hard costs of ransomware are astronomical; most companies are not prepared to respond to an attack, and even fewer are planning ahead of time.

Commvault is a trusted partner to its global customers in data protection and recovery, for all types of risk vectors. Ransomware is the latest persistent threat facing our customers and the new ransomware protection and recovery services are based on Commvault’s expertise and knowledge of data management design, planning, and recovery.

The new offering, Commvault Ransomware Protection and Response Services, provides the resources and expertise needed to harden customers’ Commvault solutions from an attack, review the state of their data protection solution over time, and help them recover critical data when an attack does occur.

The Ransomware Protection Design and Plan service assists customers in validating their preparedness for ongoing threats and attacks. The offering will help organizations understand potential threats and risks impacting their ability to be ready. It offers tangible outcomes such as a readiness scorecard, key findings, and recommendations and a prioritized action plan.

The Commvault Ransomware Response Service provides the expertise and resources to help recover from an attack. As part of the service, Commvault provides a Ransomware Recovery Incident Manager backed by the Commvault Recovery Operations team. The service works with customers to identify and recover critical data and expedite a return to normal business operations.

These services complement Commvault Ransomware Protect and Recover solutions that deliver the critical capabilities for ransomware data protection. Utilizing this new service offering along with Commvault software and cloud offerings allows an enterprise to detect, protect, and recover from ransomware attacks and other data breaches as a core component of the Commvault Intelligent Data Services. 

Commvault Data Management and Protection products and Compliance and Governance solutions work hand in hand with this data security solution.

To learn more about Commvault’s ransomware services, please visit

Finalists Announced For 2021 Infosec Inspire Awards

Posted in Commentary with tags on September 8, 2021 by itnerd

Infosec today announced finalists for the 2021 Infosec Inspire Security Awareness Awards recognizing exceptional security awareness and training programs across the nation. Of the many applications received from clients, four finalists were chosen for each of the two award categories — Impact Award and Engagement Award. 

The Impact Award celebrates the successes of Infosec’s most innovative and inspiring clients and partners. Award-winning success stories detail high-impact security awareness and training initiatives that empower employees and foster a strong security culture.

Finalists for the Impact Award include:  

The Engagement Award is a salute to the most engaging and influential security awareness and training programs. These are the programs that go “outside of the box” to harness the power of creativity, learner engagement or gamification to drive lasting behavioral change. 

Finalists for the Engagement Award include:

Winners will be announced during the Inspire Awards ceremony held on October 19, 2021, during the Infosec Inspire User Conference. The only virtual event of its kind, Inspire is hyper-focused on building a culture of security — equipping cybersecurity leaders with knowledge and insights to develop employee cyber skills, strengthen security awareness and make a lasting impact. Learn more about Infosec Inspire here.

Google Workspace Announces Innovations To Bridge Hybrid Work Gaps

Posted in Commentary with tags on September 8, 2021 by itnerd

Today, Google Workspace announced a series of updates that further the company’s vision for hybrid work with a single connected experience in Google Workspace and help employees collaborate equally regardless of location, device preference, role or language.

Additionally, Google released a handbook for navigating hybrid work, which includes best practice blueprints for five common hybrid meetings, to help customers that are navigating hybrid. 

What’s new in Google Workspace? 

Google Chat 

Google announced that spaces in Chat is now live for everyone. Additionally, Google announced new features in spaces to help teams stay organized, connected and collaborative, including: 

  • Streamlined navigation: A flexible user interface helps users easily access their inbox, chats, spaces and meetings—all from a single location—so they can stay on top of everything that’s important.
  • Discoverable spaces: Spaces and their content can be made discoverable to all members of an organization, so other people can find and join the conversation. Administrators can also set discoverability as the default for their organization.
  • Enhanced search: Allows users to easily find content from within and across spaces, or even discover new spaces to join. “Search everything” in spaces opens up powerful new collaboration possibilities and makes it easier to access the team’s collective knowledge base.
  • In-line topic threading: The ability to reply to any message within a space fuels deeper discussions and collaboration across teams and organizations.
  • Robust security and admin features: Tools for content moderation, managing spaces, and establishing the right rules for healthy communication across domains and companies.

Google Meet

Google announced new features to ensure everybody is able to engage in meetings when and where it works for them:

  • Working location in Google Calendar: In addition to indicating virtual or physical presence in meeting invites, team members can now set their working location in Calendar, on a regular basis or by segmentable working hours. By showing others which days of the week you plan to be in the office, working from home, or working from another location, it’s easier to plan in-person collaboration or set expectations in a hybrid workplace.
  • Google Meet calling: Designed to be a seamless experience of initiating a video or audio call between one or more participants, Meet calling complements Meet’s more structured, scheduled video meetings and better supports the ebbs and flows of hybrid work by allowing for more spontaneous connections. Google intends to bring Meet calling to all the natural endpoints in Workspace where you’d initiate an ad-hoc call including chats, contact cards, and spaces. Today, Google is announcing this will be coming first to 1:1 chats within the Gmail app.
  • Companion mode in Google Meet: Rolling out to all customers beginning in November, Companion mode will allow users to seamlessly join meetings from their personal device while leveraging in-room audio and video. 
  • Live-translated captions in Google Meet: Later this year, live-translated captions will be available in English to French, German, Spanish and Portuguese, with many more languages coming in the future, so attendees can follow along in the language of their choice from a personal device.

Google announced an expanded Google Meet hardware portfolio, equipped with two new meeting devices and new third-party integrations:

  • New all-in-one all video conferencing devices: Google is announcing Series One Board 65 and Series One Desk 27, new all-in-one video conferencing devices to complement the Series One rooms kits. The Series One Desk 27 is configured for desktops and small shared spaces in the office or at home, whereas the Series One Board 65 is designed for team rooms and shared spaces and has an optional stand for configuration flexibility. Both devices feature collaboration capabilities with the Jamboard app built right in and can be used as an external display via USB-C. This also allows users to use the conferencing service of their choice with connection from their laptops. The new devices were developed in partnership with Avocor, a leader in interactive displays. 
  • New third party devices: Google has certified the Logitech Rally Bar Mini and Rally Bar to work with Google Meet, providing an all-in-one video bar for small and mid-sized rooms. Additionally, Appcessori is launching a new mobile device speaker dock, Rayz Rally Pro, that will automatically launch Google Meet for video meetings and provide an enhanced audio experience from mobile devices.
  • Support for interop with devices from Webex by Cisco: Workspace customers may currently use Pexip for Google Meet to seamlessly join Meet meetings from the widest range of  3rd-party video conferencing solutions. Today, Google is announcing support for bidirectional interoperability with devices from Webex by Cisco and Google Meet hardware (rolling out later this year). This enables customers to launch a Google Meet meeting on Webex hardware and a Webex meeting on Google Meet hardware. Calling interop between Meet and Webex is supported on the Series One Board 65, Series One Desk 27, and the rest of the Google Meet hardware portfolio, as well as Webex Room Series, Room Kit Series, Desk Series and Board Series.

Guest Post: Social Media Threats For Payment Services Jump Over 550% In 2021 Q2 Says Atlas VPN

Posted in Commentary with tags on September 8, 2021 by itnerd

According to data presented by Atlas VPN, social media attacks on payment services increased by 561.8%, comparing 2021 Q1 to 2021 Q2. Social media platforms have many weak points that allow threat actors to carry out various types of internet crime. 

The data is supplied by PhisLabs, where researchers analyzed hundreds of thousands of phishing and social media attacks targeting enterprises, their employees, and their brands. 

There are countless attack vectors, and social media has not been at the forefront for most threat actors. Yet, we see a different trend in the first half of 2021 – cybercriminals increasingly use impersonation, fraud, and other cyber threats to attack businesses on social media,” says Edward Garb, a cybersecurity researcher at Atlas VPN. 

While attacks on payment services increased the most, other industries also experienced significant growth in threats.  

Hospitals and healthcare enterprises also saw a massive jump in attacks. Attacks on healthcare companies increased by 187.8%. Hackers also carried out significantly more attacks on businesses in the broadcast media industry, with a steep surge of 112.5%. 

Fraud looms on social media  

Individuals and brands encounter various types of threats on social media. Here, we will analyze the most prominent attack types in 2021 Q2. 

Fraud is by far the most common type of internet crime that plagued businesses. Nearly half of the threats encountered (45.6%), fall under the fraud category. Compared to Q1, fraud threats escalated by 23.7%.

To read the full article, head over to:

If You’re In Ontario, You CAN Download Your COVID-19 Vaccine Records To Your Phone…. Here’s A Couple Of Methods To Do So

Posted in Commentary with tags on September 8, 2021 by itnerd

As of September 22nd, Ontario will require proof of vaccination to take part in certain “non-essential” activities. Here’s what that list looks like:

  • Restaurants and bars (excluding outdoor patios, as well as delivery and takeout)
  • Nightclubs (including outdoor areas of the establishment)
  • Meeting and event spaces, such as banquet halls and conference/convention centres
  • Facilities used for sports and fitness activities and personal fitness training, such as gyms, fitness and recreational facilities with the exception of youth recreational sport
  • Sporting events
  • Casinos, bingo halls and gaming establishments
  • Concerts, music festivals, theaters and cinemas
  • Strip clubs, bathhouses and sex clubs
  • Racing venues (e.g., horse racing)

Now between September 22nd and October 22nd, Ontario citizens will need to have two doses of vaccines and prove their vaccination status with photo ID. On October 22nd, the Government will introduce digital vaccine receipts as well in the form of a QR code that can be kept on your smartphone. The Government says it will also be launching a new app for residents and businesses to read and verify QR codes, “while protecting your privacy.” Whatever that means.

So that means you’ll need to have the receipts that you got when you got “the jab.” But walking around with two pieces in your wallet or purse likely won’t end well for said pieces of papers long term. That makes the best option to have your proof of vaccination on you on all times is on your phone. I can suggest two ways to do this.

The first way is to download your vaccination records in the form of a digitally signed PDF. All you need to do is visit the Ontario Ministry of Health and enter your health card info along with your date of birth. You’ll then be taken to a page that allows you to download your vaccination receipts. If you use your phone you can save them directly to it. In my case, I saved my receipts to iCloud Drive. But you can save them to say Dropbox or Google Drive or some other cloud storage service. As a bonus, it also allows you to not only access these receipts on any device, but it acts as a backup for these documents. Now some of you will be pointing out that you get emailed these receipts. My answer to that is while that is true, these receipts are not digitally signed. And while I don’t have details on this, I suspect that the digitally signed versions are the ones that are going to be deemed as acceptable.

The other option that is intriguing yet unofficial way of doing this is to take those digitally signed receipts and turn them into QR codes that are scannable, and save those to Apple Wallet. This is being done by a group of volunteers and you can go to their website here and follow the instructions to create these QR codes and save them to Apple Wallet. And for those who are on Android, the developers are working with Google to get the same thing done on Android. For businesses seeking to verify your QR code, all they need to do is aim their camera app at your code which will then take them to a website showing your vaccinated status. I tested that and here’s what I got when I scanned the QR codes that I created:

It simply validates the QR code and doesn’t appear to give away any personal information. Which is a good thing as Quebec had that issue recently.

Here’s a video showing an end to end run of this system in action:

If the Ontario Government were smart, they’d contact these people and roll this out because it looks like an “over ready” solution for the vaccine passport that could get business open and keep them open. Not to mention drive vaccinations as the more people who are vaccinated, the better off we will all be. The fact is that this solution is dead easy and works quite well from what I can tell when I tested this last night. Thus hopefully it gets used.

My suggestion would be to do both if you can as this is an evolving situation. Which means that you should be covered for any eventuality. Have you got any other suggestions? Leave a comment below and share your thoughts.

Aeroplan Credit Cardholders Can Now Enjoy  A Free Uber Pass Membership

Posted in Commentary with tags on September 8, 2021 by itnerd

Aeroplan announced today a partnership with Uber Canada that gives eligible Aeroplan credit cardholders access to unlimited $0 Delivery Fees on eligible food and grocery orders, ride discounts and additional perks with a free Uber Pass membership.  

The free Uber Pass membership is available to eligible Aeroplan credit cardholders for a period of three, six or twelve months depending on the card.

Aeroplan credit cardholders can save up to $120 in monthly membership costs and enjoy Uber Pass savings like unlimited $0 Delivery Fees and 5% savings off eligible restaurant orders over $15 on Uber Eats, and save on grocery orders through Cornershop over $40, where available. Cardholders will also unlock new Uber Rides perks each month with discounts available only to Passholders. To enjoy these benefits, Cardholders must activate their free membership by September 7, 2022.

Stay tuned for more things to come from Aeroplan and Uber later in 2021.  

How it works:

  1. Simply open your Uber or Uber Eats App (or download it); 
  2. Add your eligible Aeroplan credit card to your Uber account; 
  3. Activate your free Uber Pass membership and use your Aeroplan credit card when paying for qualifying purchases (the same one used to activate your free membership).  

Participating Cards – Launching September 8, 2021


  • TD Aeroplan Visa Platinum Card – 3 months free
  • TD Aeroplan Visa Infinite Card – 6 months free
  • TD Aeroplan Visa Business Card – 6 months free
  • TD Aeroplan Visa Infinite Privilege Card – 12 months free


  • CIBC Aeroplan Visa Card – 3 months free
  • CIBC Aeroplan Visa Infinite Card – 6 months free
  • CIBC Aeroplan Visa Business Card – 6 months free
  • CIBC Aeroplan Visa Business Plus Card – 6 months free
  • CIBC Aerogold Visa Card – 6 months free
  • CIBC Aeroplan Visa Infinite Privilege Card – 12 months free

Participating Cards – Launching November 1, 2021

American Express:

  • American Express Aeroplan Card – 6 months free
  • American Express Aeroplan Reserve Card – 12 months free
  • American Express Aeroplan Business Reserve Card – 12 months free

In the months of September and October 2021, American Express is extending eligible Aeroplan Cardmembers a special offer – spend $10 on a qualifying Uber Eats purchase each month and get a $10 statement credit, up to a maximum of $20 in statement credits. Terms apply.

For more information, please visit: