Archive for July 13, 2023

US Data Breaches tracking to exceed all previous years 

Posted in Commentary with tags on July 13, 2023 by itnerd

Q2 research released by The Identity Theft Resource Center (ITRC) shows the US is on track as a record breaker for data compromise, with 951 publicly reported incidents in the second quarter, a 114% increase on the previous three months, for a total of 1393 data compromises. This pace could see 2023 easily surpassing the all-time annual high of 1,862 compromises in 2021.

ITRC CEO and president, Eva Velasquez, called the new stats as “historic”, adding; “Since we started tracking data compromises in 2005, only the full years of 2017, 2021 and 2022 have exceeded the number of data events recorded in the first six months of 2023,” she explained.

Though the number of reported breaches increased significantly, the total number of impacted individuals so far dropped from 424 million in 2022 to 156 million this year.

  • Data breaches: 99% of all incidents
  • Cyber-attacks : 75%
  • System and human error: 22%
  • Supply chain attacks: 8% (14% of victims)
  • The top industries affected : Healthcare & Financial Services

I have two comments for you. The first is from Stephen Gates, Principal Security SME, Horizon3.ai:  

“The key takeaway here is that attackers have changed their TTPs in several ways beginning in mid-to-late 2022. Today, ransomware is the name of the game, but attackers have added a twist. In the past run-of-the-mill breaches, attackers were silently stealing PII so they could sell it to 3rd parties, who would then use the PII as part of their identify theft and fraud campaigns. Now, it appears the initial attackers want a bigger piece of the pie.  

“What we are currently seeing across all industries is that attackers are gaining remote access like they always have. But now they are harvesting vast amounts of data and threatening organizations with data disclosure if they don’t pay up. What this does is prove attackers have, and are maintaining, remote access while staying under the radar of common detection approaches.  

“If organizations refuse to pay to stop the data disclosure, attackers then proceed with the traditional ransomware campaign, locking up systems, encrypting data stores, and basically taking the organization offline. This acts as a double whammy.   “If organizations pay the first ransom to stop the data disclosure, will that stop the second threat of a full-scale ransomware takedown? I don’t think anyone knows the answer to that question. But the real key to thwarting all of this is to find the attack paths attackers are likely taking inside your network and fix them ASAP.”

Roy Akerman, Co-Founder & CEO, Rezonate follows with this:  

“The evolution of the everywhere enterprise, remote workforce, distributed architecture, public cloud and SaaS, alongside sophistication and profitable business models by attackers, creates a perfect storm and will continue to evolve. Digital transformation continues to increase the attack surface, as well vulnerabilities and exposures arising as a result. Organizations must stay vigilant and prioritize security as a business goal, including CISO’s becoming part of the board and management decision making process.”

Consider this a warning that you have to do everything that you can to avoid being a statistic the next time that this report comes out.

Leave a comment »

Guardsquare Announces Strategic Partnership with Redbelt Security

Posted in Commentary with tags on July 13, 2023 by itnerd

Guardsquare, the mobile application security provider, today announced a strategic partnership with Redbelt Security, a consultancy firm specializing in information and cyber security. The partnership enables Redbelt to expand its solution offerings as a reseller with Guardsquare’s multi-platform mobile app security products.

As a resale partner, Redbelt broadens its solution stack to include multilayer protections delivering the most comprehensive mobile application security. Guardsquare’s products incorporate the broadest spectrum of mobile app security capabilities, including protection, testing, and real-time threat monitoring. The partnership augments Redbelt’s portfolio of advanced protection solutions so customers can optimize their security posture and protect their mobile applications from external threats.

With this partnership, customers have access to Guardsquare’s market-leading mobile application protection and real-time threat monitoring products in combination with Redbelt’s local market knowledge and expertise. With the company’s advanced solutions for protecting mobile applications, iXGuard for iOS and DexGuard for Android, app development and security teams benefit from robust, multi-layered protection of their apps to prevent reverse engineering and tampering and protect their valuable IP, sensitive data, revenue and brand reputation. Guardsquare’s real-time threat monitoring product, ThreatCast, helps developers and security teams continuously monitor their apps.

To learn more about Guardsquare’s mobile application security solutions, please visit https://www.guardsquare.com/.

Leave a comment »

It Appears That Cineplex Is Under Attack

Posted in Commentary with tags on July 13, 2023 by itnerd

Cineplex is a major movie theatre chain here in Canada. And it appears that they are under attack based on this email that I just received:

This to me suggests that Cineplex is under some sort of a credential stuffing attack. And it’s happened before. Thus I reset my password when I got this email despite the fact that I no longer use the Cineplex app due to their absolutely stupid fee for booking online, which is now the subject of a lawsuit.

My advice: Even though this email is legitimate, If you get one of these emails, don’t click the link in the email. Instead you should just go to Cineplex.com and use the reset password link from there to ensure that you’re not a victim of some sort of phishing attempt by some threat actor who would leverage this to aid in this attack.

1 Comment »

EnGenius Announces The EnStation6

Posted in Commentary with tags on July 13, 2023 by itnerd

EnGenius Technologies Inc., a leading connectivity solutions provider, has unveiled the EnStation6, the latest addition to its innovative lineup of outdoor wireless products. The disc-form access point leverages the power of Wi-Fi 6 (802.11ax) technology to deliver unparalleled performance and extended coverage in outdoor settings, helping save costs on running fiber cable. The EnStation6 offers notable improvements in throughput, efficiency, and capacity to handle demanding tasks such as 8k ultra-HD video streaming and high-volume multi-application traffic. It achieves this by utilizing the advanced Wi-Fi 6 technology, which enhances bandwidth over long distances and enables extended range when used in conjunction with another Wi-Fi 6 bridge in a point-to-point setup.Key Features and Benefits:

  • Wi-Fi 6 Technology: Offering high-performance and efficient Wi-Fi connectivity in outdoor environments. 
  • Beamforming Technology: Optimizes antenna signal, reception, and reliability for connected devices, ensuring a stable and robust wireless connection.
  • High-Speed Performance: Equipped with 2×2 directional 19dBi antennas, the EnStation6 supports speeds of up to 1,200 Mbps in the 5 GHz frequency band, enabling fast and reliable data transmission over long distances.
  • Extended Coverage: The EnStation6 boasts a high transmit power of 26 dBm, allowing it to extend Wi-Fi coverage to expansive outdoor areas or connect multiple buildings effortlessly. It can achieve a range of up to 6 miles in a point-to-point or multi-point deployment.
  • Weatherproof and Durable: Engineered to withstand harsh outdoor conditions, the EnStation6 features an IP55-rated weatherproof and dustproof housing, ensuring reliability and performance, even in challenging environments.
  • User-Friendly Interface: The EnWiFi app provides a simple and intuitive interface for local AP configuration and monitoring, allowing users to manage their wireless network easily.
  • Versatile Operation Modes: The EnStation6 supports multiple operation modes, including access point, WDS access point, and WDS station, providing flexibility to adapt to various network setups and requirements.
  • Power Options: The EnStation6 features a Gigabit Ethernet PoE port, offering flexible power options for different installation scenarios.

The EnStation6 is now available for purchase and shipping. To learn more about this game-changing product and explore its specifications, please visit: https://www.engeniustech.com/engenius-products/wi-fi-6-outdoor-ax1200-5-ghz-point-to-point-wireless-bridge/

Leave a comment »

GitHub Announces Passkeys Rollout

Posted in Commentary with tags on July 13, 2023 by itnerd

GitHub has announced the rollout of passkeys which allow developers to use them in place of both their passwords and 2FA authentication methods. This also enables logging in to applications and online platforms using personal identification numbers (PINs) or biometric authentication methods, such as facial recognition or fingerprints:

Passkeys build on the work of traditional security keys by adding easier configuration and enhanced recoverability, giving you a secure, privacy-preserving, and easy-to-use method to protect your accounts while minimizing the risk of account lockouts. Unlike SMS and email , passkeys are unique per website, so they cannot be used to track a user’s activities across different sites. The best part is that passkeys bring us closer to realizing the vision of passwordless authentication—helping to eradicate password-based breaches altogether.

Eduardo Azanza, CEO, Veridas:    

“It’s crucial to see organizations move towards a passwordless future. As we see the convergence of the digital and physical world, biometric verification is the only way to secure and protect users.

Passwords are now outdated. They can be stolen and leaked onto the dark web to commit other crimes such as fraud and identity theft. Earlier this year, Google made a similar announcement – warning about the dangers of passwords and recognizing the benefits of using biometrics.

Biometrics are linked to a user’s physical identity, which means they are much harder to steal compared to passwords. Therefore, security teams are able to quickly detect fraud, phishing and spoofing techniques, as they can more accurately identify and verify users.

As well as the security benefits for GitHub users, biometrics drastically improve the user experience. With biometric verification, users don’t have to remember dozens of passwords, reset them when they are forgotten, or go through double authentication steps. Biometrics will verify and authenticate users within seconds, not leaving the user frustrated, which would be the case if a password was involved.

Whilst passkeys are a positive step forward, in order to make users even more secure, GitHub and other organizations should look towards more secure forms of biometrics such as voice verification and full-facial scans, which can combat threats such as deepfakes.”

This is a good move by GitHub and I hope to see other companies make the move towards the availability of passwordless authentication solutions. And ultimately, towards requiring their use as that would make the digital universe a safer place.

Leave a comment »