Archive for March 22, 2023

Truth Social Continues To Flop As Two Key Execs Quit And Staff Are Downsized.

Posted in Commentary with tags on March 22, 2023 by itnerd

I haven’t written about Truth Social in a while, but I see that it continues to not be a success. I base that on the fact that Reuters is reporting about the departure of two key execs:

The two Southern tech entrepreneurs had the two qualities that Donald Trump’s Truth Social startup needed: tech-industry expertise and a politically conservative worldview aligned with the former president, a rare combination in the liberal-leaning industry centered in San Francisco.

Josh Adams and Billy Boozer – the company’s chiefs of technology and product development – joined the venture last year and quickly became central players in its bid to build a social-media empire, backed by Trump’s powerful brand, to counter what many conservatives deride as “cancel culture” censorship from the left.

Less than a year later, both have resigned their senior posts at a critical juncture for the company’s smartphone-app release plans, according to two sources familiar with the venture.

The departures followed the troubled launch of the company’s iPhone app on Feb. 20. Weeks later, many users remain on a waiting list, unable to access the platform. Trump Media & Technology Group (TMTG) Chief Executive Devin Nunes, a former Republican congressman, said publicly that the company aimed to make the app fully operational within the United States by the end of March.

That’s not all. It also seems that the parent company behind Truth Social is downsizing staff:

Trump Media & Technology Group, Truth Social’s parent company, laid off about half a dozen people, including senior members of its ranks, such as Chief Technology Officer William “BJ” Lawson, according to the people, who asked not to be identified because the information is private. Lawson was the third person to hold the role at the company. Some close to Trump Media estimate it can fund operations through September at present spending levels, according to the people. 

It also doesn’t help that the company is still trying to get their merger with Digital World Acquisition Corp. approved by regulators. At this point, you have to wonder how much longer Truth Social will be around. It honestly sounds like they’re on borrowed time. And you have to wonder if Trump’s legal issues will hasten its demise. Or perhaps give it a new life as that’s a safe space for those who believe in Trump.

Watch this space.

Leave a comment »

ServiceNow Launches Major Platform Expansion with the Utah Release

Posted in Commentary with tags on March 22, 2023 by itnerd

ServiceNow, the leading digital workflow company making the world work better for everyone, today announced a major platform expansion with the Now Platform Utah release. Utah is built to help organizations future‑proof their businesses and drive outcomes faster in the face of continued economic uncertainty. The latest version of the intelligent, end‑to‑end platform for digital transformation includes AI‑powered process mining with robotic process automation (RPA) capabilities, additional search enhancements, expanded Workforce Optimization, and Health and Safety Incident Management, all designed to help increase automation, simplify experiences, and offer greater organizational agility.

According to IDC, spending on digital technology will grow eight times faster than the economy in 2021, and by 2026, 40% of total revenue for G2000 organizations will be generated by digital products, services, and experiences. Even as technology budgets increase, leaders are going through a “great reprioritization” of tech investments based on the need for near‑term organizational impact and time to value.

Accelerating impact with purposeful automation

According to the 2023 Gartner CIO and Technology Executive Survey, 46% of the organizations polled expect to increase spend on application modernization, and 50% will increase their spend on cloud platforms. As organizations increasingly digitize, ServiceNow helps deliver more value by orchestrating work across silos to multiply productivity and accelerate automation, now with new AI‑powered features including:

  • AI Search, now built into ServiceNow’s Next Experience, uses AI and natural language processing to help service delivery workers find the information they need to do their jobs more effectively and resolve customer issues faster. AI Search also includes advanced features like auto‑complete suggestions, exact match, and typo handling – allowing users to go directly to a record, to more quickly identify relevant materials that can help them resolve an issue.
  • Process Optimization has been expanded to support workflows beyond IT Service Management (ITSM) to other workflows within the Now Platform, such as Field Service Management (FSM) and more. With improved, AI‑powered visibility into hidden inefficiencies, organizations can apply those recommendations with ServiceNow’s RPA solution to optimize process efficiencies and performance to help cut costs and improve customer satisfaction. 
  • Workforce Optimization capabilities have been enhanced and expanded to support workflows beyond ITSM and Customer Service Management, into areas like HR Service Delivery and more. For example, Workforce Optimization now also gives HR managers a central place to understand and optimize their employee bases (or teams). Leaders and managers can maximize the quality of work performed by employees, teams, and departments so businesses can perform at the highest level without significantly increasing costs.
  • Document Intelligence allows customers to accelerate and automate AI‑enabled text extraction from documents, saving time and eliminating human errors. The Utah release includes a more streamlined user experience so process owners can easily build, personalize, and monitor document processing. Document Intelligence also can automatically pull massive amounts of data from long tables in documents like invoices and purchase orders to expedite things like payroll, finance, and procurement processes.
  • ServiceNow Impact is the industry’s first solution designed to help customers accelerate the return on their digital transformation investments. Enhancements to performance tools, as well as new Impact accelerators, are available in the Utah release. These additions help platform owners better manage system health and reduce the time it takes to bring critical dashboards online, for better visibility into the status of digital transformation initiatives.

Minimizing operational and security risk with solutions to boost agility

“Globally, the constant barrage of risk events, incidents, and disruptions have become so frequent that the increased level of risk is the ’new normal,’” according to Forrester. To help organizations navigate an increasingly complex threat environment in the hybrid world of work, the Utah release empowers customers to innovate faster, operate with more agility, and manage increasing operational and cyber risk. New capabilities include:

  • Health and Safety Incident Management helps leaders foster a culture of wellness and productivity with tools that make it easier to report and resolve safety incidents and assign corrective and preventative actions for those incidents, while connecting siloes and reducing costs.
  • Security Incident Response Workspace, part of ServiceNow’s Next Experience, allows security analysts to examine incidents within a central workspace, so they can be more efficient in urgent moments and analyze the growing volume of data associated with security incidents. Customers can build assessments and analyze reports within one workspace, and leverage Process Automation Designer to manage multiple workflows with no‑code playbooks.
  • Operational Resilience Workspace, also part of ServiceNow’s Next Experience, provides an enterprise‑wide view of critical risk information, such as issues, vulnerabilities, outages, and failed controls, for greater visibility, fast decision‑making, and improved organizational performance. The new product experience increases productivity and simplifies navigation while a 360‑degree view of dependencies and resilience metrics provides contextual understanding of upstream and downstream impacts across the organization.
  • Log Export Service simplifies security and performance monitoring for Now Platform implementations. Building on ServiceNow Vault – which protects business‑critical applications – this solution seamlessly incorporates ServiceNow system and application logs into enterprise security analytics tools.

Simplifying experiences for smarter ways of working

To succeed in today’s highly competitive environment, organizations must find new ways to realize the full potential of their workforces and maximize engagement and productivity. The Now Platform Utah release introduces more simplified, unified admin and agent experiences across Next Experience, so employees work smarter and get more done, while delivering excellent experiences for customers. It also introduces a better way to create a connected workplace with insights to inform planning and make the most of office space. New capabilities include:

  • Theme Builder allows customers to easily create and manage branded themes via an intuitive interface that helps users create and preview a branded, personalized look and feel. These capabilities help organizations deliver consumer‑grade experiences that work for everyone.
  • Enterprise Architect Workspace allows users to gain control of app redundancy and limit unnecessary spending as organizations look to do more with less. This workspace provides a consolidated user experience for enterprise architects to make smarter decisions across their app portfolios while reducing risk and cost.
  • Workplace Lease Administration arms facility managers with powerful data and insights so they can more effectively track contracts and make informed decisions about office space while controlling costs. As the role of the physical office continues to evolve with the reality of hybrid work, additional enhancements to Workplace Space Management unlock insights for workplace leaders to re‑design workspaces that respond to employee needs.

Availability

The Now Platform Utah release is generally available today.

Additional information:

Leave a comment »

Guest Post: Over 40% of people believe AI will replace their job

Posted in Commentary with tags on March 22, 2023 by itnerd

The rise of artificial intelligence (AI) has sparked both excitement and fear in the workforce.

According to the data presented by the Atlas VPN team, 42% of people believe that AI will replace jobs in their area of work. Despite that, many people have favorable emotions when thinking about AI, while some also express negative feelings towards AI technology.

About 2 out of 5 people (42%) perceive that AI will either replace jobs or perform key aspects of their work. AI tools already help automate tasks, collect and analyze data, create graphic designs, or handle basic customer queries.

However, a similar percentage (39%) of people disagree that AI will overtake their work. Some jobs still require a physical intervention of a person and, at the moment, can not be replaced by AI.

Nearly a fifth (19%) of the respondents felt neutral about AI replacing them in their work. Some people may not be fully aware of the extent to which AI could automate their tasks.

​​Cybersecurity writer at Atlas VPN, Vilius Kardelis, shares his thoughts on AI replacing people’s jobs:

“As AI progresses, there is no denying that it will significantly impact the workforce. As we move forward, it will be crucial to strike a balance between innovation and ethical considerations to ensure that AI is used for the betterment of society.”

More optimism than fear

While some individuals may feel optimistic about the benefits of AI, others may feel anxious.

About two-thirds (67%) of people feel optimistic about the benefits AI can bring to society. In addition, 60% of respondents express excitement about AI technology.

Almost three out of five (57%) people feel relaxed about the future of AI. At the same time, 48% and 47% of respondents express worry or even fear regarding AI’s impact on humanity. Moreover, a quarter (24%) of people are outraged by AI applications.

To read the full article, head over to: https://atlasvpn.com/blog/over-40-of-people-believe-ai-will-replace-their-job

over-40-of-people-believe-ai-will-replace-their-job

Leave a comment »

Nuspire CEO, Lewie Dunsworth, Named to CDO Magazine’s Leading MSSP List for 2023

Posted in Commentary with tags on March 22, 2023 by itnerd

Nuspire, a leading managed security services provider (MSSP), today announced that its CEO, Lewie Dunsworth, has been named to the Leading Managed Security Service Providers in the U.S. List 2023The list is a comprehensive compilation of the top managed security service providers (MSSPs) operating in the United States compiled by Chief Data Officer (CDO) Magazine

The list features leading security service providers with a proven track record of providing innovative security solutions. These organizations manage, monitor and protect networks, devices and data from cyber threats. Each MSSP has been evaluated based on technical capabilities, customer service and industry recognition. 

With the increasing threat of cyberattacks, this list is a must-have resource for businesses, government agencies and other organizations seeking help in keeping their data and systems secure.

CDO Magazine grew out of MIT’s annual CDO and Information Quality Symposium (MIT CDOIQ), led since 2007 by the MIT Sloan School of Management, in partnership with the International Society of Chief Data Officers (isCDO) and ComSpark.

Leave a comment »

Saks 5th Avenue Pwned By Cl0p Ransomware Group

Posted in Commentary with tags on March 22, 2023 by itnerd

The Cl0p ransomware gang claimed responsibility an attack on Saks 5th Avenue by posting stolen Saks data on its Dark Web site. Threat Analyst Brett Calllow posted the ClOp announcement on Twitter on Monday. 

Saks claims it’s all mock customer data used for training purposes but has not detailed whether it includes corporate information or employee PII.

In response to questions about the breach from Bleeping Computer, the company confirmed that the incident was linked to Fortra (formerly HelpSystems), a Saks vendor: 

“Fortra, a vendor to Saks and many other companies, recently experienced a data security incident that led to mock customer data being taken from a storage location used by Saks.”

This attack continues Cl0p’s use of the GoAnywhere MFT server vulnerability, CVE-2023-0669, which allows attackers remote code execution on unpatched system if the admin console is exposed to Internet access. Clop told Bleeping Computer just last month that it had breached 130+ organizations in just 10 days using this same vulnerability.

So far no one has confirmed what data was taken or details of any ongoing ransom discussions.

Al Martinek, Customer Threat Analyst at Horizon3ai had these questions regarding this incident:

What?

“Since the start of the Russo-Ukrainian war, we have seen a sharp increase in Russian cyber activity, especially targeting NATO, US allies, and US critical infrastructure globally. Russian state-sponsored and backed cyber threat actors have used the Ukrainian cyber landscape to hone their skills, as well as their tactics, techniques, and procedures (TTPs). 

“The recent attack on the US-based Community Health Systems (CHS) and large US-based Retailer shows that the Russian-linked ransomware group Cl0p exploited the GoAnywhere MFT zero-day vulnerability (CVE-2023-0669) to gain access and steal data; and has reportedly targeted over 130 organizations worldwide. Although not confirmed, Clop has conducted such attacks in the past with the goal of disrupting daily organizational cyber activity, stealing sensitive data, and finding other opportunistic ways to disrupt or deploy further attacks.

So what?

“Zero-day vulnerabilities will continue to plague organizations and could have severe consequences. Although cyber threat actors generally attack larger organizations, every business regardless of size can be a target for zero-day vulnerabilities. With the continued presence of Russia in Ukraine, we will continue to see Russian state-sponsored and backed groups take responsibility for zero-day attacks, bolstering their credibility while targeting US interests worldwide to gain support. Zero-day threat actors do not fit into a one size fits all category, and attack vectors change from group to group with differing TTPs.

Now what?

“These types of vulnerabilities occur with little to no warning, making them a major cybersecurity threat as they are difficult to predict or protect against. Currently, 3% of Horizon3.ai customers from across different industries and sectors to include energy, retail, medical, and financial use GoAnywhere MFT in their environments. 

“The best way to proactively protect against zero-day vulnerabilities it to ensure all systems and networks devices are updated to the most current software, and by using autonomous penetration testing software, such as NodeZero, to help companies stay ahead of possible vulnerabilities in their cyber environment. Additionally, implementing a regular cadence of pentesting within an environment with NodeZero helps find vulnerabilities and issues quickly, suggests mitigations and fix actions, and allows for instant verification of said fix actions.”

I fully expect more details to come out as Saks needs to explain more than it has to date as simply saying that this was “mock data” really doesn’t quite meet the standard of disclosing the details of this incident. The fact is that there needs to be a very detailed accounting of what was actually taken by the threat actors, and what they will do to make sure that it doesn’t happen again.

Leave a comment »

$36M Supply Chain Attack Detected And Stopped By Abnormal Security

Posted in Commentary with tags on March 22, 2023 by itnerd

Abnormal Security has revealed it recently detected and stopped an attempted VEC attack that targeted an enterprise company in the commercial real estate industry that was cc’d on an email containing an invoice for $36 million

This report details the following:

  • How threat actors manipulated the target using a VIP from a trusted partner company?
  • What was a red flag in this email that differed from what’s typically expected in an invoice?
  • Why was there little reason for immediate concern about the validity of the wire transfer request?

You can read the report here.

Leave a comment »