Archive for September 26, 2023

Rogers Has Had A Multi-Day Outage In East Toronto…. But It’s Not Their Fault

Posted in Commentary with tags on September 26, 2023 by itnerd

If you live in any of these areas in Toronto:

  • Thorncliffe
  • Upper Beaches
  • Don Mills 

Then you’re into day 2 of a Rogers outage. That means that all of these Rogers services are not working for you:

  • TV
  • Internet
  • Home Phone
  • Rogers Ignite Internet
  • Rogers Ignite TV

According to this document, someone other than Rogers cut a cable that took out all the services for all of the people in the above areas. Which sucks for those people. But to Roger’s credit, they are offering a three day credit to those affected. But that isn’t stopping people from blaming Rogers based on browsing the Internet and social media.

News flash: Even though Rogers isn’t known for its stability since the epic outage, this isn’t their fault. So they deserve a free pass this time around. Key words: This time around.

Leave a comment »

Twitter Is The Biggest Source Of Disinformation According To The EU

Posted in Commentary with tags on September 26, 2023 by itnerd

It will come to the surprise to nobody that the EU has called out Twitter (I refuse to call it “X”) for being the biggest source of disinformation:

A top European Union official said Tuesday that the social network X, formerly known as Twitter, is the biggest source of fake news and urged owner Elon Musk to comply with the bloc’s laws aimed at combating disinformation. 

Ahead of upcoming elections, Google, TikTok, Microsoft and Meta also have more to do to tackle disinformation, much of it coming from Russia, which is using social media to wage a “war of ideas” against democracy, European Commission Vice President Vera Jourova said. 

Moscow’s disinformation operation “is a multimillion-euro weapon of mass manipulation aimed both internally at the Russians as well as at Europeans and the rest of the world,” she said at a press briefing in Brussels. 

With elections scheduled in Slovakia and Poland in the coming weeks and a bloc-wide vote next year, big online platforms must address the risk of online meddling, she said. 

The Kremlin and other malicious actors “will try to use the design features of the platforms to manipulate,” Jourova said.

She was providing an update on the 27-nation EU’s 2022 Code of Practice on Disinformation. Google, TikTok, Microsoft and Facebook and Instagram parent Meta signed up to the voluntary code last year, but Twitter dropped out after Musk bought the platform. 

X is “the platform with the largest ratio of mis- or disinformation posts,” Jourova said. 

An email to the company’s press team seeking comment resulted in an automatically generated reply that said, “Busy now, please check back later.”

At this point, it’s pretty clear that Elon doesn’t care about playing things straight up. And it highlights the fact that Twitter isn’t a place that you should spend any time if you want your social media experience to be free of hate and disinformation. But the real question is how long will it take before the EU or someone else smacks Elon silly? He really needs to be held accountable for this. Sooner rather than later.

Leave a comment »

Appdome Releases New Defenses to Combat Accessibility Malware

Posted in Commentary with tags on September 26, 2023 by itnerd

Appdome today announced new mobile anti-malware protections that detect Android Accessibility Service Malware such as Xenomorph, Brasdex, Octo, Sharkbot, Flubot, TeaBot, PixPirate, Sova, Spynote, Joker and more. These malware are used to carry out large scale, distributed attacks on mobile banking apps, crypto wallets, and other financial services apps.

Accessibility Service is the Android framework designed to allow mobile applications for individuals who are disabled to interact with all applications on an Android device. Unfortunately, Accessibility Service is now the target of abuse by fraudsters and others, who use malware to connect through Accessibility Service into banking and other mCommerce applications. Once the Accessibility Malware is on a user’s device, it can listen, collect, intercept and manipulate Android Accessibility Service events to perform harmful actions on behalf of users without their knowledge, often mimicking human actions within the mobile app, such as harvesting login credentials and completing transactions. Two of the most advanced variants focus on Android banking apps – BrasDex in Latin America and Xenomorph in the U.S. and Europe use Automated Transfer Systems (ATS) malware. ATS malware can complete end-to-end transactions – without a user being involved.

Appdome’s new Prevent Accessibility Malware feature includes:

  • Detection of ATS Malware using dozens of methods.
  • Detection of ATS Malware methods, such as Overlay and Keylogging in the context of Accessibility Service
  • Set Trusted Accessibility Services, so brands can identify the Accessibility Service applications recommended to their users.
  • To supplement Trusted Accessibility Services, Appdome has included an Accessibility Service Consent that allows mobile end users to accept specific Accessibility Services applications to be used with their applications.

Appdome’s Cyber Defense Automation platform for mobile apps empowers developers and cyber teams to seamlessly build protections against Accessibility Service Malware directly into any mobile app, all from within the DevOps CI/CD pipeline with no code or coding required.

For more information about Appdome’s Accessibility Malware prevention, visit: https://www.appdome.com/how-to/mobile-malware-prevention/android-malware-detection/prevent-accessibility-service-malware-on-android-apps/

Leave a comment »

Google Canada Economic Impact Report explores how AI could boost the Canadian economy by $210 billion

Posted in Commentary with tags on September 26, 2023 by itnerd

Today, an Economic Impact Report was released, revealing that Google Search, Google Play, YouTube, Google Cloud and Google Advertising tools delivered over $45 billion of economic activity for Canadian businesses, non-profits, publishers, creators and developers in 2022.

The report, published by Public First, also offers a future-looking perspective on how AI-powered technologies are set to provide the country with an economic boost, whether that’s helping people to work more efficiently, making careers more accessible or unlocking new ways of learning digital skills. Some of the report’s key findings include:

  • Generative AI has the potential to increase Canada’s economy by $210 billion –  that’s the equivalent of 8% of Gross Value Added (GVA)
  • Generative AI could save the average Canadian worker over 100 hours a year
  • It’s estimated that Google Cloud is saving 120 million business hours for the Canadian economy each year – that’s equivalent to at least $7.5 billion a year in business time savings for the Canadian economy.

 Google’s blog post has more information about today’s announcement and you can read the full report here

Leave a comment »

Apple’s Switch To FineWoven Material Is A Disaster

Posted in Commentary with tags on September 26, 2023 by itnerd

The new iPhones hit the streets last Friday. But what people are talking about are the FineWoven cases that hit the streets at the same time. FineWoven was Apple’s attempt to dump leather for environmental reasons. But I am wondering if they’re rethinking that as early reviews of the FineWoven cases show that nobody likes them. Let me illustrate this. The Verge said this:

Folks, what you’ve heard so far is true. Apple’s new FineWoven iPhone cases and accessories are bad. Like, really bad. I’ve been puzzling over them for the past week, looking at them from different angles. Picking them up, setting them down, petting them. Seven days later, I still can’t make sense of them and have no other choice but to say it out loud: FineWoven is very bad.

AppleInsider said this:

We hoped with the introduction of Apple’s FineWoven, we’d see a new premium alternative that would be even more durable while looking and feeling just as nice. We didn’t get it.

What we got was a cheap plastic case with an ultra-thin layer of the Apple-custom FineWoven material — which isn’t great — on the back to try to elevate it.

It’s hard to picture this case in a suitable state after six months of use. Maybe we’ll be surprised, but given what we’re seeing so far, we doubt it.

That’s not good. And this picture from Parker Ortolani seems to back up AppleInsider’s thoughts:

Not good. And it shows that Apple has made a huge swing and a miss here. If Apple was going to replace leather with something else, it needed to be demonstrably the same quality or better quality than leather. The early reviews indicate that it isn’t even close to being the same or better than leather. It’s in fact worse. And what makes things worse, they’re priced the same as the now discontinued leather case from Apple.

Talk about a slap in the face.

Apple’s attempt to take the moral high ground by saying that leather is bad and it has the answer to that problem has failed miserably because FineWoven is not the answer to that problem. Apple really needs to kill FineWoven as it is a dumpster fire that has opened up accessory sales to companies like Nomad or Mujjo who still sell leather cases. Which is an unforced error on their part. That is on top of the fact that this is also a PR disaster. Now it is possible that Apple may decide to have a “courage” moment and try to ride this out. But I honestly think that this would be a mistake. Apple needs to cut its losses and move on. And the sooner the better.

1 Comment »

Next DLP Extends Visibility and Adaptive Controls for Leading Generative AI Tools 

Posted in Commentary with tags on September 26, 2023 by itnerd

Next DLP a leader in insider risk and data protection, today announced the extension of the company’s generative AI (“GenAI”) policy templates from ChatGPT to include Hugging FaceBardClaudeDall.ECopy.AiRytrTome and Lumen 5, within the company’s Reveal platform. This extension of visibility and control enables customers to stop data exfiltration, expose risky behavior and educate employees around the usage of GenAI tools. 

CISOs around the world are grappling with the proliferation of GenAI tools including text, image, video and code generators. They worry about how to manage and control their uses within the enterprise and the corresponding risk of sensitive data loss through GenAI prompts. Researchers at Next investigated activity from hundreds of companies during July 2023 to expose that:

  • 97% of companies had at least one user access ChatGPT
  • 8% of all users accessed ChatGPT
  • ChatGPT navigation events account for <0.01% of traffic. For comparison, Google navigation events consistently account for 5-10% of traffic.

With these new policies, customers gain enhanced monitoring and protection of employees using the most popular GenAI tools on the market. From educating employees on the potential risks associated with using these services, to triggering when an employee visits the GenAI tool websites, security teams can remind and reinforce corporate data usage protocols. 

In addition, customers can set up a policy to detect the use of sensitive information such as internal project names, credit card numbers, or social security numbers in GenAI conversations, enabling organizations to take preventive measures against unauthorized data sharing. These policies are just two of many possible configurations that protect organizations whose employees are using GenAI tools. 

For more information on the Reveal Platform and how to protect intellectual property visit: https://www.nextdlp.com/use-cases/protect-intellectual-property

Leave a comment »

TV Streaming Now the Most Popular TV Source with Ad-Supported TV Streaming Rapidly Growing: Roku

Posted in Commentary on September 26, 2023 by itnerd

Today, Roku revealed the results of its annual Video on Demand (VOD) Evolution study, examining Canadian TV streaming behaviours and trends. TV streaming is now the most popular TV source (75 per cent of Canadian internet users are watching), with ad-supported TV streamers increasing exponentially in the last year alone (59 per cent watching in the last year compared to 42 per cent in the previous year). Another 63 per cent also plan to watch ad supported TV streaming in the year ahead.

Rising inflation and cost-of-living, which top the list of worries for Canadian TV streamers in the next few years (54 per cent), compel many (24 per cent) to cancel or downgrade their cable/satellite package in the next 12 months (up six per cent from 2022).

The growth of ad-supported TV streaming: A deeper dive into the trends

  • Time spent on AVOD and BVOD is up 32 per cent YoY, with TV streamers who watch ad-supported programming watching
  • When it comes to the effectiveness of ads on streaming platforms, TV streamers are significantly more responsive to ads than non-streamers (70 per cent vs. 54 per cent).
  • TV streamers are taking measurable actions after viewing an ad, with the top three responses being: visiting a brand’s website, online store, or app after seeing an ad (38 per cent); searching online for more information about the product/brand while continuing to watch TV (36 per cent); and placing items in online/app shopping basket to buy later (25 per cent).

When it comes to Canadians’ preferences for TV advertising, there are some notable polarities, as no one size fits all trends:

    • 54 per cent of TV streamers like ads that are unrelated to the show/movie they are watching, while 46 per cent prefer them to be related.
    • 51 per cent prefer a single ad that takes up the whole ad break, while 49 per cent prefer lots of short ads that fill the ad break.
    • The majority of Canadians (77 per cent) are in broad agreement that they prefer every ad to be different.

    TV streamers on the move: The “FlexiVOD”* era

    The emergence of the “FlexiVOD” (TV streamers who make changes to their streaming services, including switching to watch their favourite show, cancelling subscriptions, among others), which surfaced in the 2023 VOD study, continues to remain prevalent in the 2024 edition, as 48 per cent of Canadian TV streamers either have made changes to their streaming services in the past 12 months or plan to make changes in the year ahead. Similar to last year’s findings, this persisting trend is likely influenced by the fact that 58 per cent of TV streamers feel they have less disposable income than before, consistent with last year’s results.

    Canadian TV streamers’ content-watching trends

    • On average, TV streamers are watching just under 22 hours a week of TV content.
    • Canadian TV Streamers love dramas (95 per cent) ranking it as their top TV genre choice.
    • On the flipside, while comedy is the least popular, 87 per cent are streaming that genre. When itcomes to live news, 48 per cent of Canadian TV streamers tune in, followed by general family entertainment (e.g., “How I Met Your Mother,” “Friends”) at 50 per cent and live sports and events at 45 per cent.

    When it comes to discovering content to watch, TV streamers use a variety of methods. The top three within TV streaming platforms include the “just released” section (42 per cent); the “top trending” or most popular titles sections (34 per cent); and “free to watch” shows and movies (31 per cent).

    Outside of the TV streaming service, the top three methods include: word of mouth/personal recommendations (50 per cent); “coming soon” notifications (36 per cent); and ads they’ve seen on TV promoting shows or movies (31 per cent).

    Additional study insights

    • On average, Canadian TV streamers have used/subscribed to 3.5 paid or free streaming services in their household in 2023, which is anticipated to increase to 3.8 by 2024.
    • Here’s how Canadian TV streamers spend their time watching TV in an average week:

    To learn more about the study, and to download the full report, please click here.

    About Roku’s VOD Evolution Canada Survey

    Roku’s annual Video on Demand (VOD) Evolution study examined Canadian TV streaming behaviour and trends. This is Roku’s fourth study of Canadians’ TV streaming habits, and an update to its research in 2022.

    Like those, this study is based on the results of an online survey of Canadian adults aged 18+ who use the internet and watched TV at least once in the last month. Fuse Insights research commissioned by Roku took place between June and July 2023, with a sample size of 2,100 Canadians nationally representative by age, gender, and geography. *References TV streamers that make up internet users in Canada aged 18-64.

    Leave a comment »

    New Data Finds Healthcare Industry Sees Spike in BEC with 279% Increase in Social Engineering Attacks

    Posted in Commentary with tags on September 26, 2023 by itnerd

    Healthcare organizations are a prime target, especially socially engineered attacks like business email compromise (BEC), which data shows is steadily increasing across the healthcare industry and is seeing a relative rise in 2023. 

    Abnormal Security has released healthcare industry BEC data, revealing a 167% increase in advanced email attacks in 2023, which includes BEC, credential phishing, malware, and extortion, and a 279% increase in social engineering attacks, a significant spike from January to August.

    Abnormal also provides a real-world example of an email attack impersonating the President/CEO of a healthcare network with 200+ US locations requesting all past due statements for customers, including emails for account payables departments.

    For an extensive health network seeing so many patients daily, if the recipient replies with legit info and enables realistic requests for payments to be diverted into the account owned by the attacker, a successful attack could result in millions of dollars lost before the network realizes an error in its customers’ payments. 

    You can read the report here:  abnormalsecurity.com/blog/healthcare-organizations-email-attacks-2023

    Leave a comment »

    The National Student Clearinghouse Is The Latest Company To Be Pwned By MOVEit

    Posted in Commentary with tags on September 26, 2023 by itnerd

    In a breach notification letter, National Student Clearinghouse disclosed a data breach affecting 890 US schools using its services as part of the MOVEit campaign with stolen files containing a wide range of personal information.

    “The relevant files obtained by the unauthorized third party included personal information such as name, date of birth, contact information, Social Security number, student ID number, and certain school-related records (for example, enrollment records, degree records, and course-level data). The data that was affected by this issue varies by individual,” the notice explained.

    Clearinghouse provides educational reporting, data exchange, verification, and research services to roughly 22,000 high schools and around 3,600 colleges and universities that enroll roughly 97% of students.

    Despite the widespread MOVEit victim pool we’ve seen over the past 4 months, researchers suggest that a limited number are likely to pay the ransom demand, but Clop the gang is still expected to collect about $75-100 million.

    Steve Hahn, Executive VP, BullWall had this to say:

       “Ransomware has taken a dark turn this year. Double extortion techniques now mean the threat actors have two ways to monetize the event. Pay to decrypt your data. Pay to not have them release sensitive information on the web. With that, once unheard of targets, children, elderly and the sick have become the prime targets. Just this year threat actors have hit a breast cancer treatment facility and released pictures of women in vulnerable states that were being treated at the facility. They’ve also released student records, grades, disciplinary records and information on students’ sexual activity and identity as part of this data theft.

       “There is no bar too low for this new breed of criminals as we’ve seen the highest number of Ransomware Victims on record for Ransomware. Prevention just staves off the inevitable. Schools will be hit. They need a rapid containment strategy that can isolate those events once the attack begins unfolding. The only hope is to limit the damage and recover quickly when a determined threat actor is targeting these educational institutes. “

    Emily Phelps, Director, Cyware follows with this:

       “Pervasive MOVEit transfer attacks continue to impact major organizations across a variety of industries. While a layered security approach – multifactor authentication, regular patches and updates, intrusion detection and prevention systems, etc. – play a pivotal role in defense, organizations must do more to move to a proactive cybersecurity posture. Organizations need access to reliable threat intelligence that can be automatically routed to the right people to rapidly take the right actions.”

    Al Martinek, Customer Threat Analyst, Horizon3.ai concludes with this:

       “Over the past four months, the widely reported critical security flaw in the Progress MOVEit Transfer application (CVE-2023-34362) constantly reminds us of how important it is to remain vigilant in securing our IT infrastructure from potential cyber threat actors. CVE-2023-34362 poses a significant risk to all industries and sectors relying on MOVEit for file transfer operations. The active exploitation of this vulnerability by threat actors emphasizes the need for swift action. CL0P, for example, continues to exploit CVE-2023-34362 across a large array of organizations big or small.  

       “Notoriously known as a “Big Game” ransom hunter, CL0P also hones and sharpens their skills by targeting smaller organizations. Their main goals are to disrupt daily organizational cyber activity, stealing sensitive data (i.e. PII and PHI) and finding other opportunistic ways to disrupt or deploy further attacks. An attack targeting MOVEit’s web application could prove detrimental to any organization, because the application is responsible for interfacing with MySQL, Microsoft SQL Server, and Azure SQL database engines.  

       “It is becoming seemingly important for organizations, including educational institutions of all sizes, to shift their mindset regarding how they secure their systems and networks against cyber threat actors. Specifically, organizations must ask themselves whether paying millions of dollars in ransomware is worth not proactively investing in cybersecurity tools that would have alerted to and prevented such attacks and demand for money.  

       “Horizon3.ai proactively warns customers about potential zero-day and N-day ransomware attacks and impacts so that they take immediate action to fix potential vulnerabilities and mitigate possible threats. Exploitation by any cyber threat actor poses a significant risk to organizations (especially the Education sector) relying on the MOVEit web application for file transfer operations. Key Impacts on these organizations includes:

    • Data Breaches and Intellectual Property Theft (including current and former employee data)
    • Operational Disruption and Downtime
    • Manipulation of File Transfers
    • Reputational Damage and Legal Consequences

    Mitigation and Recommendations:

    • Implement Regular Pentest Cadence (NodeZero)
    • Apply Security Patches and Updates (Progress Security Advisory)
    • Implement Intrusion Detection and Prevention Systems
    • Conduct Regular Security Audits
    • User Awareness and Training

       “To mitigate these risks, organizations should promptly apply security patches, implement regular pentest cadence, implement intrusion detection and prevention systems, conduct regular security audits, and provide user awareness and training. By taking these proactive measures, organizations can enhance their security posture and minimize the potential impacts of CVE-2023-34362 and thwart possible attacks by groups such as CL0P. It is crucial for organizations to prioritize cybersecurity and remain vigilant in addressing vulnerabilities to protect their sensitive data and maintain the trust of stakeholders.”

    Leave a comment »