Archive for June 27, 2023

Diana Initiative & We Open Tech Merge to Support Marginalized Security/Tech Persons

Posted in Commentary with tags on June 27, 2023 by itnerd

We Open Tech (WOT), the cybersecurity and tech community formed to elevate and support people of marginalized genders for the last two years, announces its merger with and into the Diana Initiative, the belonging-driven organization and popular annual conference committed to helping all underrepresented people in Information Security which hosted their first event in 2016. 

The 2023 Diana Initiative Conference will take place Monday August 7, 2023, In-Person, at The Westin Las Vegas Hotel & Spa. This year’s theme is “Lead the Change.”

We Open Tech Co-Founder Chloé Messdaghi said: “Our missions have been aligned with one another since WOT was founded. Today more than ever, marginalized persons need and deserve the best and most possible opportunities for mentoring relationships, professional development, career opportunities and support, and we are delighted to join forces with Diana Initiative and work together to expand its events and community support.”

Although some segments of the technology community have moved to become more inclusive to diverse talents, challenging headwinds and the current political climate continue to impede the participation of those of marginalized.

The consolidation comes at a time when “gatekeeping” is contributing to the ongoing cybersecurity talent shortage, and represents barriers to building better security teams and stronger leaders. 

This year’s Diana Initiative Conference features sessions such as: 

  • Speakers
  • Career Fair
  • Career Village
  • Lockpick Village
  • Maker Village
  • Hands-on workshops

For a full list of sessions, visit: https://www.dianainitiative.org/event/event-schedule/

Leave a comment »

The Effects Of Petro Canada’s Parent Company Getting Pwned Continue With No ETA For Resolution

Posted in Commentary with tags on June 27, 2023 by itnerd

This is now day 5 of Suncor Energy being the victim of some sort of cyberattack. I first wrote about this on Sunday where Petro Canada gas stations were unable to accept payment by debit or credit card. On top of that, Petro Canada’s app which allows you to collect “Petro Points” for things like free gas and gift cards isn’t working either. On Monday led to Suncor admitting that it was dealing with a cyberattack. But as I type this, there’s no ETA as to when all of this will be resolved. And what makes things worse is that there is likely more going on than we know based on this report:

Ian L. Paterson, CEO of Vancouver-based cybersecurity company Plurilock Security Inc., said these public-facing issues could be “just the tip of the iceberg.” He added that as early as Friday, he was also hearing about Suncor employees being unable to log in to their own internal accounts.

“All of these things put together seem to suggest that there could be a sizable cyber incident that’s taking place,” Paterson said, cautioning that much is still unknown about the current situation.

“I think that this actually could be the Canadian Colonial Pipeline, just in the sense that Suncor is such a large part of the economy.”

If this is an attack as big as Colonial Pipeline, then this event is as non-trivial as it gets for Canada as Petro Canada is “the” gas station for many parts of the country.

Carol Volk, EVP, BullWall starts off the commentary: 

    “A company as large as Petro-Canada would most likely have had a plethora of security tools in place to prevent attacks like this. We are never going to stay one step ahead of motivated bad actors. A new approach that layers on active attack containment is the new frontier for cyber security.” 

Stephen Gates, Principal Security SME, Horizon3.ai follows with this:

   “Although the details of the cyber incident are few, this sounds like a targeted attack against the point-of-sales systems since the organization is unable to accept and process credit/debit card transactions. If a ransom-related campaign is the culprit, then this may indicate a new attack path and outcome.

   “Most occurrences of ransomware lock up workstations and data stores but rarely target what most would consider to be IoT. But on the other hand, many gas pumps run commonly used operation systems (like Windows CE) which could make them a considerable target to ransom since an outage could cause untold consumer pain.”

Finally I have a comment from Roy Akerman, Co-Founder & CEO, Rezonate:

   “This is an example of how cyber risk has a direct impact on business continuity. We often see that when an organization settles for compliance checks rather than a robust security program. Organizations should not invest only in preventative and cyber readiness actions, but also in recovery and response. As more information unfolds, we can further evaluate actions taken and the cause for business disruption.”

You would have thought that after the Colonial Pipeline incident, that companies overall would be better prepared. But that appears not to be the case and that doesn’t surprise me. Companies need to get serious about cybersecurity or they will end up like Suncor.

Leave a comment »

NanoLock Secures Critical Infrastructure with Zero-Trust OT Protection and Expansion to U.S. Market

Posted in Commentary with tags on June 27, 2023 by itnerd

NanoLock Security, a leading provider of device-level, zero-trust OT protection for industrial manufacturing, food and beverage, chemical, pharmaceutical, and critical infrastructure industries, today announced the general availability of OT Defender for North American customers.

NanoLock’s OT Defender is an industrial cybersecurity solution that protects the integrity of industrial manufacturing companies and Operational Technology (OT) assets from unauthorized access and changes, whether it’s by outsiders, insiders, third-parties or human errors.

Cyberattacks on OT/ICS (Industrial Control Systems) in U.S. critical infrastructure are rapidly increasing in numbers, frequency and sophistication. Multi plant operations are especially at risk as these facilities manage complex distributed networks in different locations, operate a combination of legacy and new equipment, and may have technicians with remote access privileges and a large number of third party providers.

The alarming rise in attacks has led to an urgent need for zero-trust cyber protection at the device level and ushered in new OT/ICS regulations and guidance specific to industrial devices used in critical infrastructure and industrial operations. The National Institute of Standards and Technology has called for the “protection of individual OT components [devices] from exploitation” in recent guidance. According to Gartner® “through 2026, 75% of organizations with a formal zero trust strategy will explicitly exclude their CPS in production or mission-critical environments.”

OT Defender is designed to protect production environments from external and internal cyber incidents. It protects the operational integrity of production lines by preventing unauthorized and unauthenticated access, change requests, or update attempts of a Programmable Logic Controller (PLC). It has no impact on performance and functionality and future proofs industrial organizations from new and upcoming regulations involving device-level zero-trust protection. OT Defender is already used by some of the world’s largest manufacturers, automotive as well as pharma companies.

Expanding Presence in the US Market with Appointment of Jay Smilyk as GM of the Americas

To launch the general availability of OT Defender in North America and expand NanoLock’s footprint across the region, the company has hired Jay Smilyk as GM of the Americas. With over two decades of experience in bringing cybersecurity solutions to the U.S. market, Jay will drive sales and establish strategic partnerships that contribute to the growth and success of the organization. Mr. Smilyk will focus on identifying opportunities for expansion of the OT Defender solution among industrial, manufacturing, and utilities companies and has already started building the U.S. team to support these objectives.

Leave a comment »

Trend Micro Details How Cybercriminals Use Residential Proxies and CAPTCHA-solving Services to Carry Out Credential Stuffing Attacks

Posted in Commentary with tags on June 27, 2023 by itnerd

Today, Trend Micro released  a report titled, “AGENTS OF ABUSE: Residential Proxies and CAPTCHA-Solving Services,” to spotlight how cybercriminals use residential proxies and CAPTCHA-solving, proxies and configurations to carry out credential stuffing attacks.

Different markets and industries, including e-commerce, social media, fintech, airline and travel, and online ticket services, are losing billions of dollars each year because of fake web traffic generated by illicit scrapers, fake accounts, robot buyers, carders, and stuffers

Data revealed that 47.4 per cent of all Internet traffic in 2022 came from bots.

While CAPTCHA services and IP reputation feeds are used to counter this type of e-commerce fraud and account takeover, it has been found abusers have developed tools to counter these defensive measures.

Below are some stats worth highlighting around fake web traffic:

  • 25% of newly registered accounts are fake
  • 20% of login attempts are attacks
  • 86% of all attacks are carried out by bots

Based on the data gathered using the Trend Micro™️ Smart Protection Network™️ from January to August 2022, business websites from different industries, including social commerce, online gaming, cryptocurrency, and travel, were affected by CAPTCHA-solving services.

You can also read the full report HERE.

Leave a comment »

Connect&GO and Adyen partner up

Posted in Commentary with tags , on June 27, 2023 by itnerd

Connect&GO, a world leader in RFID and integrated attractions management technology, announces the launch of Konnect Mobile point-of-sale in partnership with Adyen. Combining the flexibility of Connect&GO’s all-in-one management platform (Konnect) with Adyen’s S1F2 all-in-one Android devices, the new integration will create a unified experience for operators that helps drive revenue and create frictionless experiences at attractions around the world. 

With Konnect Mobile point-of-sale (POS), attractions operators can now sell or fulfill orders from anywhere in their park through a single mobile device that includes an integrated payment terminal. Operators can check the content of a guest’s digital wallet at any time by scanning the guest’s RFID wristband. Guests can then reload cashless balances or purchase tickets from the very same team member.

The new integration promises to boost spending at attractions around the world, and will be deployed this summer at several waterparks across the United States leveraging Connect&GO’s innovative cashless solution for the first time.

Konnect Mobile POS is the latest in Connect&GO’s product enhancements that help operators leverage groundbreaking RFID technology to help solve the problems of legacy technology while unlocking powerful growth opportunities. The Konnect all-in-one management platform seamlessly integrates eCommerce, point-of-sale, cashless payments, F&B and access control using proprietary Virtual Wallet technology to create a unified experience with real-time data.

Connect&GO recently announced its AI prediction engine for the attractions market as well as an $8 million extension to its Series A funding. 

Leave a comment »

Cradlepoint Introduces Zero Trust Solution for Cellular IoT Deployments 

Posted in Commentary with tags on June 27, 2023 by itnerd

Cradlepoint, the global leader in cloud-delivered LTE and 5G wireless network edge solutions, today announced the launch of the S700, a multipurpose IoT router designed to provide a rich zero trust security service to enterprise customers. Coupled with Cradlepoint NetCloud Exchange Secure Connect, the S700 provides a comprehensive cloud-managed network solution to safeguard IoT devices as today’s attack surface expands and adversaries increasingly target connected devices.  

There are an estimated 41.76 billion IoT devices that exist globally in 2023. With shipments of these devices expected to grow at 18 per cent annually, IoT solutions are driving device sprawl despite not being equipped to use modern security methods. As today’s attack surface expands and cybercriminals become more sophisticated, it’s clear that many organizations are not prepared to address IoT security needs. For IT teams to effectively manage distributed IoT networks, organizations need an efficient zero trust approach to security. This includes easing the setup and maintenance of IoT solutions, while enabling advanced fine-grained policies to allow access for third-party management of devices.  

The S700 and NetCloud Exchange from Cradlepoint delivers a robust zero trust solution for IoT that removes deployment complexity and is ideal for enterprise lean IT scenarios. Key benefits include:  

  • Connect-and-go ZeroTrust: Any IoT device connected to the router is immediately dark to public scans and other internal sites. Access policies are easily defined so IoT devices communicate only with their authorized resources on a least-privilege basis.  
  • Efficient WAN creation: Orchestrated with only a few clicks through a cloud-based management system, the S700 removes deployment and management complexity and easily builds effective zero trust encrypted tunnels over cellular and wired links. 
  • Small Router with Big Security: IoT devices connected to a small router can still have access to full modern security services including zero trust. The S700 adds simplicity by offloading the security processes to a services gateway, which holds the security policies, manages router updates (including security patches), and orchestrates processes.  
  • Third-party access protection: Over 60 per cent of WANs are now serving outside customers and suppliers, so protecting third-party access to IoT equipment has broad implications. With the Cradlepoint solution, fine-grained policies can be added to the zero-trust services gateway allowing third-party access to all or part of the management system of an IoT device behind the Cradlepoint router. 

As a multipurpose IoT router designed for the enterprise, the S700 connects light industrial, smart city, IoT and portable devices over cellular, Wi-Fi and wired links. Offering a wide variety of connectivity options through LTE, two Gigabit Ethernet ports for wired connections and dual band Wi-Fi 6 options, the S700 also adds advanced features, such as active GNSS/GPS for asset tracking, GPIO pins to control and monitor external sensors. 

The Cradlepoint S700 will be available for purchase widely on July 12, 2023. For more information, please visit https://cradlepoint.com/product/endpoints/s700-series/.  

Leave a comment »

François Ribeiro Appointed as CEO of Infinite Reality Europe

Posted in Commentary with tags on June 27, 2023 by itnerd

Infinite Reality (iR), a leading provider of cutting-edge immersive virtual experiences, is pleased to announce the appointment of François Ribeiro as CEO of its European division.

Ribeiro brings extensive experience in the sports and entertainment industry, having previously served as the Head of Discovery Sports Events at WBD Sports. In this role, he played a pivotal role in delivering captivating sporting events to audiences worldwide. Now leading Infinite Reality’s European operations, Ribeiro will utilize his visionary approach to drive the company’s innovative fan and audience engagement strategy.

This appointment comes at a critical juncture, with immersive experiences, the Metaverse, and Web3 garnering unprecedented interest. As digital interaction enters a new dimension, Infinite Reality is perfectly positioned to capitalize on this transformative phase, creating captivating and interactive experiences that resonate with global audiences.

Ribeiro himself recognizes the potential of immersive digital experiences in various sectors, given the concentration of global sports rights holders and industry leaders in Europe. He highlights how investing in virtual reality can diversify and expand revenue streams for event organizers by monetizing remote digital experiences of real-life events, catering to fans unable to attend physically. Moreover, the interactive capabilities of this technology elevate online sales standards to provide a first-class interactive retail experience and transform streaming into a shared moment. Ultimately, digital immersive experiences offer brands the opportunity to engage directly with consumers, gain insight into their customers, establish transactional spaces, and convert audiences into loyal users.

Leave a comment »

Cynet 360 Mobile Empowers Organizations to Protect Mobile Devices From Cybersecurity Attacks

Posted in Commentary with tags on June 27, 2023 by itnerd

 Cynet, the world’s first provider of an autonomous, all-in-one cybersecurity platform, today announced Cynet 360 Mobile, a comprehensive mobile threat protection solution that provides persistent, on-device protection of company and user-owned mobile devices. Cynet 360 Mobile prevents security and privacy threats to Chrome OS, Android and iOS devices, and detects applications that put data at risk of exposure and attempt to infiltrate corporate networks. By leveraging on-device behavioral machine learning detection, Cynet 360 Mobile protects against both known and unknown (0-day) threats, such as mobile malware, phishing, man-in-the-middle (MitM), and network-based attacks.

The need to protect against mobile threats has never been more urgent. According to the 2022 Verizon Mobile Security Index, 91% of organizations say mobile devices are critical to their operations. But because mobile devices provide access to the same content and services as traditional endpoints–and often serve as an authentication tool–they are highly vulnerable to cybersecurity threats and attackers. In fact, according to Verizon’s research, nearly half (46%) of SMBs reported experiencing a compromise that involved a mobile device.

Cynet 360 Mobile provides protection capabilities beyond standard mobile device management (MDM) solutions that only manage devices but fail to detect threats or offer any comprehensive security protections. With Cynet 360 Mobile, businesses gain complete visibility and protection across endpoints, mobile devices, networks and users within SaaS and Cloud environments. It can be deployed as a standalone capability on mobile devices or implemented alongside existing MDM solutions to add an extra layer of protection to fight dangerous threats.

Visit https://www.cynet.com to learn more.

Leave a comment »

Jscrambler launches free tool for faster compliance with new PCI DSS anti-skimming requirements

Posted in Commentary with tags on June 27, 2023 by itnerd

 Jscrambler, a leading solution for JavaScript protection and real-time webpage monitoring, today announces the launch and immediate availability of its free PCI DSS JavaScript Compliance Tool to ensure granular and flexible capacity to meet the stringent new requirements introduced by version 4.0 of the Payment Card Industry Data Security Standards (PCI DSS v4.0). This free assessment tool provides organizations of all sizes with clarity and simple compliance coupled with proactive security measures to prevent web skimming and Magecart attacks. 

Jscrambler is a PCI Security Standards Council Principal Participating Organization, and Pedro Fortuna, Jscrambler’s CTO and co-founder, was recently elected a member of the PCI SSC Board of Advisors attesting the relevance of Jscrambler’s 13+ years’ work on client-side security and its importance to the payment industry.  

Jscrambler’s team of JavaScript experts has worked to create a solution that will directly ensure compliance with requirements 6.4.3 and 11.6.1 of PCI DSS v4.0. With the new PCI DSS v4.0 requirements already in the public domain, organizations need to prioritize this transition while simultaneously adopting proactive measures to protect their customer’s payment card information. Although the new requirements in PCI DSS are not mandatory until April 2025, they are indicated as “best practices” until this date. Combining the trifecta of technology, people, and processes, Jscrambler’s solution provides teams with the flexibility and agility they require to meet these deadlines without compromising other priorities.

To meet the new anti-skimming requirements of PCI DSS v4.0, which includes ensuring script integrity, maintaining an up-to-date inventory of payment/parent pages’ scripts, and alerts for any tampering attempts, Jscrambler’s new tool offers advanced visibility to easily monitor and authorize vendors and scripts, while providing effortless and detailed reporting logs to demonstrate compliance to PCI Security Assessors (ISAs and QSAs) and internal compliance teams. 

Web skimming attacks continue to plague organizations that have an e-commerce store, with attackers launching campaigns to hit as many targets as possible by injecting malicious code into websites via third-party providers. Jscrambler’s research has shown that in recent months the modus operandi for three of the most prolific cybercriminal groups has evolved as they seek more innovative ways to compromise targets. As a result, and if successful, these attacks can go undetected for months, potentially resulting in reputation damage and heavy fines.

Working with Jscrambler, organizations get peace of mind as security teams can configure and manage multiple websites and payment pages in one place, further streamlining compliance visibility and reporting. To stay one step ahead, and ensure that organizations maintain a secure environment, teams can react promptly due to immediate alerts on any modifications to HTTP headers, integrity breaches or adding of new vendors. 

To find out more about Jscrambler’s Free PCI DSS JavaScript Compliance Tool, please click HERE.

Leave a comment »