Archive for April 27, 2023

Crowdstrike Encourages The Use Of AI To Target Malwareless Attacks 

Posted in Commentary with tags on April 27, 2023 by itnerd

At this year’s RSA Conference, CrowdStrike’s Joshua Shaprio said this:

In short, Crowstrike has been dealing with about one malwareless cyber issue a week during the last couple quarters reaffirming data reported earlier this year that 71% of cyberattacks were carried out without malware and highlighting the challenges cybersecurity teams face trying to combat such compromises.
Using a case study, the two illustrated the “layer A problem” involving the bad actor’s in-depth reconnaissance and use of dedicated machines to hide identities and avoid detection resulting in the threat actors set up with their own users on the network, free to exfiltrate data, compromise the cloud, and add themselves as a SQL server admin.

During their RSA keynote, both CrowdStrike CEO George Kurtz and President Michael Sentonas used a case study to illustrate the “layer A problem” involving the bad actor’s in-depth reconnaissance and use of dedicated machines to hide identities and avoid detection resulting in the threat actors set up with their own users on the network, free to exfiltrate data, compromise the cloud, and add themselves as a SQL server admin. More on that in a moment.

From an Akamai report on that attack:
 
    “The attack starts with a password brute-force on the MySQL service. Once successful, the attacker runs a sequence of queries in the database, gathering data on existing tables and users. By the end of execution, the victim’s data is gone – it’s archived in a zipped file which is sent to the attackers’ servers and then deleted from the database. A ransom note is left in a table named WARNING, demanding a ransom payment of up to 0.08 BTC.”

During their RSA keynote both Kurtz and Sentonas highlighted that without the standard malicious code to detect, companies need to consider strategies with robust telemetry gathering activities from the endpoint to the cloud, and to manage identity data with greater granularity, and, with the use of AI and machine learning, find anomalous activity among that data.

CrowdStrike CEO George Kurtz spoke about this to Bloomberg:

Dave Ratner, CEO, HYAS:

   “Increasing an organization’s visibility into the real-time activities inside the network is quickly becoming critical for business resiliency against modern attacks. The ability to identify anomalous outbound communications from both the IT and OT networks can dramatically reduce the elapsed time from infection to detection and remediation and may be the only signal that allows organizations to get ahead of an attack before data exfiltration, encryption, and other actions that impact business continuity.”

Clearly the use of AI by those who defend against attacks is growing. Just look at Google and the announcement that they made at RSA. This is something that defenders need to consider in order to keep our digital assets safe.

Leave a comment »

Report Finds Massive Increase in Seed Funding Despite Economic Downturns

Posted in Commentary with tags on April 27, 2023 by itnerd

Today DataTribe released the firm’s Q1 2023 Insights report, which assesses how the cybersecurity funding market compares to other tech, as well as how cyber funding compares to prior years.

John Funge, Managing Director at DataTribe provided this commentary:

Big picture, while the slowdown is painful in some cases, we see it as an overall healthy thing. The investing pace and valuations in cyber over the last few years have been overheated. With the economic headwinds, we are seeing a flight to quality where fewer funding transactions are happening with a higher bar for startups to meet. 

For enterprises, there are a number of potential implications that the market headwinds will have:

  • Financial strength of vendors becomes a more prominent consideration:  The balance sheet of vendors may be more of a consideration in looking at existing and new relationships. If a vendor that is burning cash has difficulty raising a next round of financing,  that risk can flow onto customers. 
  • Consolidation and M&A activity:  Larger cybersecurity companies will likely take advantage of the market environment to make acquisitions as valuations come down. There will likely also be consolidation through weaker companies not surviving — as well as less compelling product ideas not getting funded. The medium to long term benefit of this will be some rationalization of the highly-fragmented tech stacks that enterprises depend on. A potential drawback is that beloved products may end up in the hands of larger vendors that are less agile, harder to deal with, and not aligned with the enterprise vendor’s strategy.
  • New products will promise to do the work of multiple current products:  In an environment where cyber spending is more closely scrutinized, startups will adapt and align value propositions to focus on cost reduction. Security leaders can expect new products promising to replace multiple current products.
  • Marketing budgets in cyber will pull back:  CISOs and security leaders are the focus of a torrent of enterprise marketing firepower. Marketing budgets are often one of the first areas to be trimmed in a cost cutting environment. For enterprise security leaders, this may bring a welcome reduction in the intensity of cyber marketing. However, there’s some much marketing activity aimed at enterprise cyber leaders, it may not be easy to notice.

Currently, seed stage cybersecurity is largely buffered from the broadened economic forces. Entrepreneurs will continue to innovate, and we are seeing a continuous flow of great founders and ideas at the seed stage. As is often said, some of the greatest companies are born during the worst economies. We don’t see it any differently this time around.

You can find the live DataTribe Insights Q123 report here: https://datatribe.com/dt-insights-q123/

Leave a comment »

More Browser Extensions To Block Twitter Blue Subscribers Are Out For Firefox And Chrome Users

Posted in Commentary with tags on April 27, 2023 by itnerd

Earlier this week I posted a story about a Chrome extension that blocks Twitter Blue subscribers from your Twitter feed. The logic for blocking Twitter Blue subscribers is as follows:

The reason behind this is that twitter will deboost your account if too many people who pay Elon $8 a month ($11 on iOS) block you. That gives you a massive incentive to block them before they can block you. 

I’ve been expecting more extensions to appear as what has become known as #BlockTheBlue has gained momentum from non Twitter Blue subscribers who aren’t happy with Twitter Blue and what it represents. Today Malware Tech has released extensions for both Chrome and Firefox that will block Twitter Blue users, and they have the rather clever name of BlueLiteBlocker. You can find them via Malware Tech’s GitHub page or you can get the Chrome extension here, and the Firefox extension here. Here’s the elevator pitch as to what these extensions do:

This extension allows you to hide Tweets from Twitter Blue users you don’t follow, if they have less than a set number of followers. You can customize the follower threshold and choose between collapsing or removing Tweets.

This will be useful to filter out the noise from those who foolishly paid Elon Musk $8 a month ($11 on iOS) to get a status symbol that doesn’t mean anything anymore. Though I will be interested to see what happens when these sorts of extensions start to get used at scale and make Twitter Blue even more meaningless that it already is.

1 Comment »

Guest Post: Governments blocked Twitter and Facebook the most in 2022

Posted in Commentary with tags on April 27, 2023 by itnerd

In today’s digital age, social media has become a powerful tool for communication, activism, and information dissemination.

According to the data presented by the Atlas VPN team, Twitter and Facebook, two highly influential social media platforms, have been targeted by governments worldwide for their role in facilitating communication and mobilization. Protests and active conflicts were the primary triggers of the internet shutdowns.

Governments restricted access to Twitter 13 times in 2022. As of February 2022, Twitter has been inaccessible in China, Iran, Myanmar, North Korea, Russia, Turkmenistan, and Uzbekistan due to government restrictions.

Last year, Facebook’s access was also limited by governments on 13 occasions. Besides the usual suspects who blocked Twitter, Uganda’s president banned Facebook in January 2021.

Governments enforced limitations on Instagram’s and WhatsApp’s accessibility, blocking each social media app 10 times. VPN usage in Russia skyrocketed by 10,000% following the Instagram ban in March.

Google Services were blocked 9 times by governments last year. Furthermore, governments imposed restrictions on Telegram 8 times. Signal experienced governmental restrictions on access 5 times, while TikTok faced 4 instances of such limitations.

​​Cybersecurity writer at Atlas VPN, Vilius Kardelis, shares his thoughts on government censorship on the internet:

“Government internet shutdowns and social media blocks during protests or conflicts are short-term solutions that stifle freedom of expression and access to information. Governments should explore proportionate measures that respect human rights and uphold communication principles.”

Internet shutdown triggers

Internet shutdowns have become a control tool for some governments by limiting access to information and communication during critical moments.

The primary leading cause for internet shutdowns was protests, leading to 62 cutoffs from the web. After demonstrations in Jordan, India, Iran, and other countries, their governments restricted internet access to prevent the further spread of information.

Active conflicts were the reason for 33 internet shutdowns in 2022. Russia’s war on Ukraine caused a few of these cutoffs, and so did the conflict in Yemen.

Governments shut down the internet 8 times to prevent cheating in exams. In addition, 5 cutoffs from the internet were tied to elections.

To read the second part and the full article, head over to: https://atlasvpn.com/blog/governments-blocked-twitter-and-facebook-the-most-in-2022

governments-blocked-twitter-and-facebook-the-most-in-2022

Leave a comment »

Here’s The 2023 Uber Lost & Found Index

Posted in Commentary with tags on April 27, 2023 by itnerd

Did you lose a picture of 2Pac when riding with Uber? Because somebody did…

As Mercury goes into Retrograde – which astrologists say influences forgetfulness – Uber is back with the seventh annual Uber Lost & Found Index, revealing the most surprising and most popular items left behind by riders over the past year. 

Clothing, bags, and phones topped the list once again of the most commonly forgotten items, but as we well know, riders aren’t just leaving the usuals behind – they’re forgetting everything from frozen burgers to teeth sets to ping pong tables – and that’s just to name a few. 

Below is Uber’s full 2023 Lost & Found Index, along with easy instructions on how you can retrieve lost items:

Top 10 most forgetful cities across Canada:

  1. Montreal
  2. Hamilton
  3. Vancouver
  4. Edmonton
  5. Kitchener-Waterloo
  6. Winnipeg
  7. Calgary
  8. Toronto
  9. Ottawa
  10. London

Top 10 most commonly forgotten items across Canada:

  1. Article of clothing
  2. Backpack or bag
  3. Phone 
  4. Headphones 
  5. Jewelry 
  6. Wallet or purse
  7. Vape or e-cig
  8. Laptop
  9. Watch
  10. Umbrella

The most forgetful day and time in Canada: 

  • Sundays at 6PM 

The most forgetful day in Canada in the last 12 months: 

  • January 1, 2023 

The 10 most unique items lost across Canada: 

  • Mattress cover, Saskatoon
  • Purple sparkly leopard print high heel that has pointy end, Kitchener-Waterloo
  • Stove, Winnipeg
  • A picture of 2Pac, Montreal
  • Possible a pack of frozen burgers, Ottawa
  • Star Wars Yoda blanket, Hamilton
  • Projector, Calgary
  • Teeth set, Calgary
  • Ping pong table, Toronto
  • A pizza, Halifax 

If you’re one of those people who left something behind, look no further than this help page, which outlines the simple steps you can take the next time you leave something behind when riding with Uber. 

The best way to retrieve a lost item is to call the driver – but if you leave your phone itself in your car, you can login to your account on a computer. Please note there is a $20 fee to get your items returned, and that fee goes entirely to the driver because of the inconvenience of returning the item.

Here’s what to do:

  1. Tap “Your Trips” and select the trip where you left something
  2. Scroll down and tap “Find lost item”
  3. Tap “Contact driver about a lost item”
  4. Scroll down and enter the phone number you would like to be contacted at. Tap submit.
  5. If you lost your personal phone, enter a friend’s phone number instead (you can do this by logging into your account on a computer, or using a friend’s phone).
  6. Your phone will ring and connect you directly with your driver’s mobile number.
  7. If your driver picks up and confirms that your item has been found, coordinate a mutually convenient time and place to meet for its return to you.
  8. If your driver doesn’t pick up, leave a detailed voicemail describing your item and the best way to contact you.

Leave a comment »

Geotab “Greening the Fleet” Survey Reveals The Key Benefits Of Investing In Sustainability 

Posted in Commentary with tags on April 27, 2023 by itnerd

Geotab Inc., a global leader in connected transportation solutions — has released the results of its 2023 survey of U.S. fleet professionals. The study, conducted with Bobit Research Group, explores how organizations in the transportation sector are progressing on their sustainability plans, amid increasing pressure to address climate change. More than half of those surveyed anticipate their customers will demand an increase in fleet sustainability initiatives in order to continue to do business with them over the next 1-3 years. Quality data has become critical to tracking and assessing progress on sustainability goals, enabling organizations to make smarter decisions, improve regulatory reporting, and address “greenwashing” risk, along with transformation to electrification. 

Sustainability benefits the bottom line

When citing key hesitations to starting sustainability actions, the top three reasons included overall cost, lack of data, and differing priorities. However, 69% of fleet managers executing sustainability plans reported that fleet sustainability data helped reduce operating costs in the past year, highlighting how those that take action see bottom-line benefits within a short period. 

The majority of fleets plan to invest more in sustainability 

In a recent global survey of 3,000 CEOs, more than 80% expect investments in sustainability to deliver higher business results over the next five years. Geotab’s “Greening the Fleet” survey revealed the same confidence, with 66% of fleet managers responding they plan to invest more in sustainability initiatives over the next three years to meet customer and organization requirements, while only 3% plan to invest less. Without investing in sustainability, organizations risk being left behind.

Reliable data is critical for regulatory reporting

Globally, 51% of CEOs consider sustainability a top challenge, as they face increasing pressure from boards and investors to take action. As companies look to achieve their climate targets, having reliable sources of data for decision-making and reporting is critical. Currently, 73% of fleet professionals surveyed use a fleet management solution and telematics data insights to track and manage the sustainability of their fleet, but only 24% of fleet professionals are leveraging telematics data to support regulatory reporting. With increasing regulatory pressure for accelerating action in carbon reduction, there is a clear opportunity to leverage data insights for transparent reporting, while reducing the risk of “greenwashing” challenges.

The fleet EV transition is well underway
Fleet electrification is increasing at a rapid pace. S&P Global Platts Analytics has noted light-duty electric vehicle sales reached a record high of 6.3M units in 2021 up 102% year-over-year. Of the fleet professionals surveyed by Geotab, 54% have electric vehicles already in their fleet or on order. The survey also revealed that fleets that have started on their sustainability journey are already seeing environmental and social benefits, including reduced fuel use, CO2 emissions, and idling. As they continue to follow data-driven sustainable fleet practices and electrify, they may gain increasing ROI. 

“Greening the Fleet” is a survey of 110 fleet professionals across the U.S. View the full survey findings: https://www.geotab.com/fleet-sustainability-survey

For more information on how Geotab helps power the sustainability journey, visit: https://www.geotab.com/sustainability-journey/

Leave a comment »