Archive for March 13, 2023

The Downfall Of Silicon Valley Bank May Lead To Attacks By Threat Actors

Posted in Commentary with tags on March 13, 2023 by itnerd

Hot on the heels of the downfall of Silicon Valley Bank, there are growing concerns regarding threat actors using the news to target users with phishing and credential stealing attempts. I am going to be watching this story closely to see if that is the case. But in the meantime, I already have commentary from Yaron Kassner, CTO and Cofounder, Silverfort:

     “As always, uncertainty and panic are threat actors’ closest allies, and we are already witnessing a distinct surge in fraud attacks that attempt to leverage the confusion to lure users into fraudulent transfers as well as credential disclosure.

“For example, threat actors will impersonate suppliers, claiming it has moved from SVB to another bank, urgently asking you to wire payment to this new account.

“Additionally, attackers will send emails impersonating FDIC, SVB or another government agency with a reassuring message that a deposit in SVB can be fully returned. However, users must urgently login to their new bank account in a provided link. Needless to say, this link leads to an adversary-controlled web page, with credentials now being compromised.

“Business email is the primary attack vector adversaries employ to deliver fraud attacks. While employee education is paramount in counteracting these attempts, it must be paired with security control. To prevent threat actors from compromising user accounts and sending messages on their behalf, organizations should enforce the following:

  • Enforce MFA verification on any access to an employee’s email address.
  • Disable legacy email protocols that are more susceptible to compromise.
  • Block access to email from risky locations”

While I hope I am wrong, I expect a wave of attacks because of the downfall of Silicon Valley Bank. Because for threat actors, this situation is too good to pass up.

2 Comments »

BlackFog Wins Big in Cybersecurity Excellence and Globee® CybersecurityAwards

Posted in Commentary with tags on March 13, 2023 by itnerd

BlackFog today announces it has been named a winner of three Cybersecurity Excellence Awards and that The Globee® Awards, organizers of the world’s premier business awards programs and business ranking lists, has named BlackFog a winner in the 19th Annual 2023 Globee Cybersecurity Awards.  

The awards BlackFog has received for the 6th annual Cybersecurity Excellence Awards:

  • Silver Winner for Most Innovative Cybersecurity Company in North America
  • Gold Winner for Best Virtual CISO in North America
  • Silver Winner for Ransomware Protection 

BlackFog received Gold place for Best Cybersecurity Newsletter of the Year in the 19th Annual 2023 Globee® Cybersecurity Awards for its monthly State of Ransomware Report. 

The Globee Cybersecurity Awards recognize cybersecurity companies and professionals for their innovative approaches and effective solutions in ensuring security in the digital age. The awards cover various categories such as risk management, threat detection, cloud security, data privacy, and more. The program aims to raise awareness about cybersecurity issues and honor those who have made significant contributions in protecting organizations and individuals from cyber threats.

BlackFog has released a monthly State of Ransomware report for the past three years, analyzing ransomware attacks and the statistics around them, including:

  • Reported ransomware attacks by month
  • Key trends
  • Prevalent threat groups 
  • Size of organizations being attacked
  • Attacks by industry sector

BlackFog newly added the tracking and inclusion of non-publicly disclosed ransomware attacks, which it has included in its 2023 State of Ransomware reports. 

BlackFog’s Virtual CISO (vCISO) platform includes a dedicated team of experts that provide monthly assessments, constant monitoring with the BlackFog solution, detailed custom reporting for compliance and auditing, and a customer-branded Enterprise console, managed by their team.

About the Globee Awards 
Globee Awards are conferred in nine programs and competitions: the American Best in Business Awards, Business Excellence Awards, Cybersecurity World Awards®, Disruptor Company Awards, Golden Bridge Awards®, Information Technology World Awards®, Leadership Awards, Sales, Marketing, & Customer Success Awards, and the Women In Business Awards®. Learn more about the Globee Awards at https://globeeawards.com

About BlackFog

Founded in 2015, BlackFog is a global cybersecurity company that has pioneered on-device anti data exfiltration (ADX) technology to protect companies from global security threats such as ransomware, spyware, malware, phishing, unauthorized data collection and profiling. Its software monitors enterprise compliance with global privacy regulations and prevents cyberattacks across all endpoints. BlackFog uses behavioral analysis to preemptively prevent hackers from exploiting vulnerabilities in enterprise security systems and data structures. BlackFog received recognition as a Gold award winner in the Cybersecurity Excellence Awards for Best Data Security and Best Ransomware Protection North America, as well as the Bronze award in Most Innovative Cybersecurity Company and Best Cybersecurity Start-up in 2022. BlackFog was named a 2020 HOT Vendor in Privacy and Security by Aragon Research. 

BlackFog’s preventative approach to security recognizes the limitations of existing perimeter defense techniques and neutralizes attacks before they happen at multiple points in their lifecycle. Trusted by corporations all over the world, BlackFog is redefining modern cyber security practices. For more information visit https://www.blackfog.com

Leave a comment »

Jscrambler to Partner with PCI Security Standards Council

Posted in Commentary with tags on March 13, 2023 by itnerd

Jscrambler, the leading security solution for JavaScript protection and webpage real-time monitoring, announced today that it has joined the PCI Security Standards Council (PCI SSC) as a new Principal Participating Organization. Jscrambler will help drive the future of global payment security with a strategic level of leadership, participation, and influence with the Council. 

PCI SSC leads the global effort to increase payment security by providing flexible, industry-driven, and effective data security standards and programs. Global industry collaboration is critical to this mission. The Council’s Participating Organizations program brings together industry leaders to strategize about how to protect payment data from the latest threats and to anticipate the needs of an ever-changing payment ecosystem.

As a Principal Participating Organization, Jscrambler will provide strategic direction to help shape the future of the Council. Jscrambler will impact the direction of PCI SSC standards, drive technical discussions, and have input into Council initiatives.

About the PCI Security Standards Council 

The PCI Security Standards Council (PCI SSC) leads a global, cross-industry effort to increase payment security by providing industry-driven, flexible and effective data security standards and programs that help businesses detect, mitigate and prevent cyberattacks and breaches.

Jscrambler is a leading authority in client-side security software. Its solution defends enterprises from revenue and reputational harm caused by accidental or intentional JavaScript misbehavior. Jscrambler makes first-party code that is resilient to tampering and prevents interference with third-party code. The solution works continuously, keeping organizations protected regardless of how frequently things change. From code to runtime, Jscrambler has companies covered with a level of visibility and control that supports business innovation. Jscrambler’s customers include the FORTUNE 500, retailers, airlines, banks and other enterprises whose success depends on safely engaging with their customers online. Jscrambler keeps these interactions secure so they can continue to innovate without fear of damaging their revenue source, reputation, or regulatory compliance. Jscrambler was recently recognized as a winner in the 2023 BIG Innovation Awards. Find out more at: https://jscrambler.com/

Leave a comment »

Elon Musk Wants You To Pay $42K A Month Or More To Access Data Via Twitter’s API… WTF?

Posted in Commentary with tags on March 13, 2023 by itnerd

I’ll start with the top level headline from Wired in terms of what Elon Musk would like you to pay for access to data via Twitter’s API, then I’ll tell you what I think:

Twitter’s API is used by vast numbers of researchers. Since 2020, there have been more than 17,500 academic papers based on the platform’s data, giving strength to the argument that Twitter owner Elon Musk has long claimed, that the platform is the “de facto town square.”

But new charges, included in documentation seen by WIRED, suggest that most organizations that have relied on API access to conduct research will now be priced out of using Twitter.

It’s the end of a long, convoluted process. On February 2, Musk announced API access would go behind a paywall in a week. (Those producing “good” content would be exempted.) A week later, he delayed the decision to February 13. Unsurprisingly, that deadline also slipped by, as Twitter suffered a catastrophic outage

The company is now offering three levels of Enterprise Packages to its developer platform, according to a document sent by a Twitter rep to would-be academic customers in early March and passed on to WIRED. The cheapest, Small Package, gives access to 50 million tweets for $42,000 a month. Higher tiers give researchers or businesses access to larger volumes of tweets—100 million and 200 million tweets respectively—and cost $125,000 and $210,000 a month. WIRED confirmed the figures with other existing free API users, who have received emails saying that the new pricing plans will take effect within months.  

I see thee possibilities for this rather stupid pricing scheme:

  • Elon has completely lost the plot in terms of his desperation to get Twitter to make money. And this is akin to a “Hail Mary” from Elon to get money in Twitter’s bank account.
  • Elon doesn’t want anyone doing deep dives on Twitter. Perhaps to cover up what a hate filled, right wing cesspool that it has become under Elon’s leadership. Thus he’s pricing it out of reach to accomplish that.
  • All of the above.

Nobody is going to pay these prices. That’s the bottom line. And the second possibility that I listed is perhaps bolstered by this:

While this sounds like a substantial dataset, it only accounts for around 0.3 percent of Twitter’s monthly output, meaning it is far from being a comprehensive snapshot of activity on the platform. Twitter’s free API access gave researchers access to 1 percent of all tweets.

If Elon is truly stupid enough to go ahead of this, it may cause him a big headache:

The timing of the change comes as the European Commission on Thursday will publish its first reports from social media companies, including Twitter, about how they are complying with the EU’s so-called code of practice on disinformation, a voluntary agreement between EU legislators and Big Tech firms in which these companies agree to uphold a set of principles to clamp down on such material. The code of practice includes pledges to “empower researchers” by improving their ability to access companies’ data to track online content.

Thierry Breton, Europe’s internal market commissioner, talked to Musk last week to remind him about his obligations regarding the bloc’s content rules, though neither discussed the upcoming shutdown of free data access to the social network.

“We cannot rely only on the assessment of the platforms themselves. If the access to researchers is getting worse, most likely that would go against the spirit of that commitment,” Věra Jourová, the European Commission’s vice president for values and transparency, told POLITICO.

“It’s worrying to see a reversal of the trend on Twitter,” she added in reference to the likely cutback in outsiders’ access to the company’s data.

While the bloc’s disinformation standards are not mandatory, separate content rules from Brussels, known as the Digital Services Act, also directly require social media companies to provide data access to so-called vetted researchers. By complying with the code of practice on disinformation, tech giants can ease some of their compliance obligations under those separate content-moderation rules and avoid fines of up to 6 percent of their revenues if they fall afoul of the standards.

Yet even Twitter’s inclusion in the voluntary standards on disinformation is on shaky ground. 

The company submitted its initial report that will be published Wednesday and Musk said he was committed to complying with the rules. But Camino Rojo — who served as head of public policy for Spain and was the main person at Twitter involved in the daily work on the code since November’s mass layoffs — is no longer working at the tech giant as of last week, according to two people with direct knowledge of the matter, who spoke on the condition of anonymity to discuss internal discussions within Twitter. Rojo did not respond to a request for comment.

If Elon seriously thinks he can take on the the EU and win, he’s delusional. Microsoft lost against them and Google lost against them. Which means he has zero chance against the EU. If I were him, I’d open up the API to all who want it at a level that makes sense for free. Say 1% to 5% of Tweets. But he’s not going to do that and as a result, he’s going to get into a fight with a group he has no hope of beating.

Leave a comment »