Archive for December 8, 2021

Nokia & Rally Bring Broadband Connectivity To Thousands Of Multi-dwelling Unit Residents In Canada

Posted in Commentary with tags , on December 8, 2021 by itnerd

Nokia and Rally today announced the first deployment of Nokia’s Lightspan MF-2 fiber access node in North America, expanding broadband access to multi-dwelling units (MDUs) across Toronto.

In the work-from-home age, increased access to internet connectivity is crucial as the home often now triples as an office, residence, and an entertainment center. The majority of Rally’s customers live in condominiums and MDUs in the Greater Toronto Area, many clustered around the central business districts of Toronto, North York and Mississauga. Nokia’s Lightspan MF-2 platform supports both 10G and 25G PON technologies, allowing Rally to deliver high-speed connectivity to each building on its existing fiber access network. Rally is also deploying Nokia’s mesh Wi-Fi technology within its units to provide customers with reliable, secure, and future-proof services.

Rally will manage the network with the aid of Nokia’s Altiplano Access Controller which enables network automation, faster innovation and simplified operations using Software Defined Access Network (SDAN) solutions. In addition, MF-2 platform leverages Nokia’s in-house Quillion chipset technology that enables high performance, low latency, and low power consumption to support Rally’s sustainability goals.

Nokia’s technology is also certified for use in Rally’s senior care and healthcare environments, ultimately providing connectivity for all of Rally’s customers, which includes 150 hospitals across Canada in partnership with HealthHub Patient Engagement Solutions.

Based in Toronto, Rally brings people together by offering fair, reliable and affordable Internet, TV, and home phone options to Canadians. As a national network provider with 20 years’ experience in 10 provinces, Rally is rapidly expanding its integrated technologies for residential, healthcare and senior care customers which are based on the company’s independent, fibre-optic network. 

Nokia creates technology that helps the world act together. As a trusted partner for critical networks, they are committed to innovation and technology leadership across mobile, fixed and cloud networks. They create value with intellectual property and long-term research, led by the award-winning Nokia Bell Labs. Adhering to the highest standards of integrity and security, they help build the capabilities needed for a more productive, sustainable and inclusive world.

Ahead Of National App Day, Here’s The Story Of A Canadian Who Helped To Launch OnStar Guardian App In Canada

Posted in Commentary with tags on December 8, 2021 by itnerd

Earlier this year, the OnStar Guardian mobile app launched to all Canadians. So now, anyone can have the peace of mind OnStar provides for you and your family whether in your car, a friend’s car, rideshare, or just out walking.

A quick reminder of what OnStar Guardian brings to the table:

  • Mobile Crash Response
  • 24/7 Roadside Assistance
  • Share access to critical OnStar safety and security services with up to seven of your loved ones
  • Location Status
  • Favourite Locations and added functionality to Location Status
    • Allows members to save and share favorite locations on the app’s embedded map and receive notifications for when loved ones leave and arrive at their destination
  • The Red Emergency Button
    • Allows members to connect to an Emergency-Certified OnStar advisor for assistance or to report an emergency on someone else’s behalf
  • The OnStar Guardian subscription is $15 per month

Now for some shameless Canadian flag waving. A GM Canadian Product Manager, Fred Dixon was actually the driving force in bringing this app to Canada. This means, Fred was the person to Canadianize all of the app’s functions from maps, to legal, to transactions and even language. After all, for Canada, the app needs to be fully integrated with both French and English.

Biggest roadblock: “Developing a new interface to extend the app to all Canadians, not just GM owners”, says Fred Dixon, Global Connected Services Product Manager. “The Canadian Guardian team built a whole new interface that allows us to communicate with non-GM owners in the same way we do with GM vehicle owners.”

Biggest win: Fred Dixon highlights “being able to provide an outstanding service and experience when it comes to personal safety for everyone. With OnStar Guardian, anyone, in any vehicle, friend’s vehicle or Uber, is covered with OnStar’s peace of mind.”

I recently had a demo of OnStar Guardian and I will be doing a write up about it soon. Please stay tuned for that.

YouTube And Roku Settle Their Differences

Posted in Commentary with tags , on December 8, 2021 by itnerd

You might recall that Roku and YouTube have been involved in a pretty bitter fight that if they didn’t sort their differences out, the YouTube app may disappear from the Roku platform. And in fact it did. And things escalated from there.

Well, I have some news for you. They’ve settled their differences via a multi-year deal:

“This agreement represents a positive development for our shared customers, making both YouTube and YouTube TV available for all streamers on the Roku platform,” Dallas Lawrence, a Roku spokesperson, wrote in an email to The Verge. Google confirmed the deal to The Verge and said both apps will be available through the Roku store.

The deal ends a pretty bitter fight that I hope isn’t repeated as when two big companies get into a fight, users lose.

Slideshow: Google Releases Year in Search Trends for 2021

Posted in Commentary with tags on December 8, 2021 by itnerd

Today, Google is announcing its annual Year in Search trends for 2021. In another unprecedented year, Canadians were faced with obstacles at every turn. Yet, there were a number of key moments that brought us all together, and these moments shine through in Google’s top search terms of 2021.

LINE Pay Leaks Data Related To 133K Users

Posted in Commentary with tags on December 8, 2021 by itnerd

Smartphone payment provider LINE Pay announced yesterday that around 133,000 users’ payment details were mistakenly published on GitHub between September and November of this year:

Files detailing participants in a LINE Pay promotional program staged between late December 2020 and April 2021 were accidentally uploaded to the collaborative coding creche by a research group employee. Among the leaked details were the date, time, and amount of transactions, plus user and franchise store identification numbers. Although names, addresses, telephone, credit card and bank account numbers were not shared, the names of the users and other details could be traced with a little effort. 

The information — which covered of over 51,000 Japanese users and almost 82,000 Taiwanese and Thai users — was accessed 11 times during the ten weeks it was available online. The information has since been removed, and LINE said users have been notified. The fintech division of the communication app company issued an apology and promised to train staff better.

An apology is not good enough. Not only do heads need to roll over this, the relevant government authorities need to investigate this company as they way they handle data is clearly suspect. Especially since they’ve had two other similar incidents in the past. Thus making this incident completely unacceptable by any standard.

HelpSystems Launches Free Cybersecurity Partner Program for Higher Education

Posted in Commentary with tags on December 8, 2021 by itnerd

HelpSystems, a cybersecurity and automation software company, today announced the launch of the HelpSystems Educational Partner Program. The program aims to facilitate cybersecurity learning and knowledge sharing by providing educators and cyber team captains with free licenses of HelpSystems’ solutions for use in their studies.

Using products like Core Security’s Core Impact, U.S.-based colleges and universities offering cybersecurity programs can teach and train students on penetration testing and other cybersecurity concepts with leading tools from the professional world. The HelpSystems Educational Partner Program is free for higher educational institutions that meet program requirements.

Partner Qualification 

Institutions interested in using HelpSystems products must provide documentation to be considered for eligibility. Applicants must provide proof of affiliation with an educational institution or event, such as a college course, workshop, or conference. A submitted description of where and how the tool will be used is also required (e.g., a class description or syllabus indicating that Core Impact will be used to fulfill classroom objectives or description of an event or cybersecurity team challenge using Core Impact for pre-event training or usage during the event).

For more information about the HelpSystems Educational Partner Program, visit: https://www.coresecurity.com/about/partners/educational-partners.

Guest Post: 73% Of Phishing Sites Impersonate Microsoft Products-Related Login Pages Says Atlas VPN

Posted in Commentary with tags on December 8, 2021 by itnerd

By exploiting found vulnerabilities or using people’s unawareness of good cybersecurity practices, threat actors launch different cyberattacks, which would affect a large audience and bring the most benefits.

According to the data presented by the Atlas VPN team, 73% of phishing sites impersonate Microsoft product-related pages. Furthermore, 50% of compromised accounts get accessed by hackers in 12 hours, and in a week, 9 out of 10 accounts are fully taken over by threat actors.

Cybercriminals impersonated Microsoft account login pages in 60% of phishing sites. As Microsoft products are used widely globally, threat actors find them the best targets to look for vulnerabilities.

Threat actors imitated Adobe Document Cloud login pages in 26% of phishing websites. By having access to the cloud, cybercriminals could inject malicious files into documents such as malware or ransomware.

Cybercriminals used fake Microsoft SharePoint login pages in 8% of their phishing sites. Once in control of the account, the attacker uploads a malicious file and then changes the file’s sharing permission to ‘public,’ allowing anybody to spread the link further. 

Microsoft Office 365 and OneDrive login pages were both impersonated by cybercriminals in 3% and 2% of phishing sites, respectively.

Cybersecurity writer at Atlas VPN Vilius Kardelis shares his thoughts on business email compromises:

“One of the most common issues in email security is business email compromise (BEC). With access to Microsoft accounts, cybercriminals can deliver emails, host malicious pages, or create malicious documents, which allows them to spread their attack more efficiently. Multi-factor authentication on work-related accounts should be mandatory to mitigate the risk.”

Gone in a week

While some use automated tools to test credentials, other attackers manually authenticate the validity of your login information.

Threat actors accessed 23% of all accounts immediately after the compromise. Attackers likely took over the accounts with an automated script to validate the legitimacy of the credentials. After an hour, the breach had happened, cybercriminals manually took over 18%of the accounts.

After 6 hours passed, 2 out of 5 (40%) accounts were manually accessed by hackers. In 12 hours, half of the accounts (50%) were taken over by cybercriminals.

After a day64% of accounts were taken over manually by cybercriminals. Finally, nearly all of the accounts, 91%, had been accessed within a week after compromise. 

To read the full article, head over to: https://atlasvpn.com/blog/73-of-phishing-sites-impersonate-microsoft-products-related-login-pages