Archive for July 23, 2024

New GeoFencing, Compliance Solution from Appdome

Posted in Commentary with tags on July 23, 2024 by itnerd

Appdome today announced it has enhanced its award-winning Geo-Fraud Detection service to include two new defenses: Geo-Location Fencing and Geo DeSync Attack Detection. Combined with other Geo-Compliance features available on the Appdome platform, mobile app developers and enterprises can eliminate location-based fraud, ensure geo-compliance and deliver location relevant user experiences in mobile apps free from location spoofing, fake location, VPNs, Fake GPS Apps and other threats.

Geo-fencing is essential in finance apps and other regulated industries that need to meet Know Your Customer (KYC) and other compliance mandates, such as the US Federal Financial Institutions Examination Council (FFIEC), EU General Data Protection Regulation (GDPR), and the Monetary Authority of Singapore (MAS) requirements. Geo-fencing enables mobile app developers to restrict or limit app access on a country or regional level, ensuring that operations are compliant with local laws and regulations.

A Geo Desync Attack is a cyber-attack that intentionally creates mismatches in location data on a mobile device. By manipulating GPS coordinates, altering the time zone settings, and falsifying accelerometer readings, attackers can deceive location-based services and security systems. This type of attack can lead to inaccurate tracking, unauthorized access, and potential breaches of security protocols, undermining the integrity of location-dependent applications and services.

Unlike legacy geo compliance offerings that rely on proprietary, costly, and vendor-built geo service networks, the Appdome Geo Compliance solution zeros in on protecting the mobile device’s built-in location services and ensures these services have not been abused or tampered with. Appdome’s approach eliminates the need for third-party networks, SDKs, complex server-based implementations and does not require third-party monthly usage fees, allowing the enforcement to work even if the device is not network-connected.

The full Appdome Mobile Geo-Compliance solution puts an end to geo-fraud by detecting fake location, fake GPS apps, fraudulent location, detect VPN, no SIM (fake device), teleportation, Geo DeSync and other attacks. Customers simply select the Geo-Compliance features needed in any Android & iOS apps and initiate the build command from CI/CD or using the Appdome Platform’s “Build My App” button. Appdome’s patented technology uses machine learning to code the defenses into each application, so mobile developers don’t have to.

The Appdome Geo-Compliance solution is available in multiple enforcement modes including advanced telemetry and customized responses or workflows when geo compliance threats are detected, and monitoring geo-fraud attacks via the Appdome ThreatScope™ Mobile XDR, either before or after the deployment of geo-location defenses via the Appdome platform.

See the full Appdome Mobile Geo-Compliance solution live at Black Hat USA August 3-8, 2024 in booth #1350.

For more information on Appdome Geo-Compliance capabilities and to book a personalized demo, visit https://www.appdome.com/mobile-fraud-detection/geo-compliance/.

Leave a comment »

Greece’s Land Registry Has Been Attacked On A Scale That I Have Never Seen Before

Posted in Commentary with tags on July 23, 2024 by itnerd

From the “I can’t believe the scale of this” department, comes this story where Greece’s Land Registry has been hit by 400 cyberattacks that have resulted in what they call a “limited scale” data breach.

Mind. Blown.

I’m going to come back as to why my mind is blown. But first, here’s the relevant details:

The Land Registry agency in Greece has announced that it suffered a limited-scope data breach following a wave of 400 cyberattacks targeting its IT infrastructure over the last week.

The agency said hackers managed to compromise employee terminals and steal 1.2 GB of data, corresponding to roughly 0.0006% of the total data held by the government organization.

The stolen data reportedly does not contain any citizens’ personal information but primarily consists of typical administrative documents, the exposure of which is not expected to impact the registry’s operations.

The announcement also mentions that the hackers attempted to create a malicious user to infiltrate the agency’s central database, but they failed.

One of the database’s backups, which are updated daily, was accessed by the unauthorized actors. However, the subsequent attempt to exfiltrate the data to an external server was blocked.

The Land Registry’s internal investigation, aided by the Cybersecurity Directorate of the General Staff of National Defense, has not found any evidence of ransomware having been deployed on the breached systems.

Emergency actions to reduce the risk of ransomware have been taken, like terminating all VPN access to block malicious users.

Rogier Fischer, CEO, Hadrian had this comment:

“Based on the information provided, the data breach at the Land Registry agency in Greece doesn’t seem to fall under the GDPR’s mandatory disclosure bracket. The stolen data amounted to 1.2 GB or 0.0006% of the agency’s total data, and it primarily consisted of administrative documents without any citizens’ personal information,”

“Since the breach did not affect personal data or disrupt the agency’s operations, it likely doesn’t pose a significant risk to individuals’ rights and freedoms.”

“Despite the large number of cyberattacks, the agency successfully blocked attempts to exfiltrate data and thwarted further malicious activities. Such proactive approach helps maintain trust and demonstrates commitment to data protection, even if formal disclosure isn’t required,”

While I applaud this organization for shutting this down, it still blows my mind that the threat actors tried as hard as they did to try and set up shop and steal data. This illustrates why you need robust, multi layered defences to not only keep the bad guys out, but to respond if they get in.

Leave a comment »

Fubo Expands Soccer Coverage with 2024 DIRECTV Soccer Champions Tour

Posted in Commentary with tags on July 23, 2024 by itnerd

FuboTV Inc. announced today it has acquired live streaming rights to the 2024 DIRECTV Soccer Champions Tour in Canada. This collaboration will offer fans unparalleled access to six iconic matches featuring some of the world’s best football clubs in the coming weeks.

The tour will feature five elite European soccer clubs – Real Madrid, FC Barcelona, AC Milan, Manchester City FC, and Chelsea FC – competing across six legendary stadiums in the United States including Yankee Stadium in New York City and Soldier Field in Chicago.

DIRECTV Soccer Champions Tour Schedule:

●        Saturday, July 27: Yankee Stadium, New York City, 6 p.m. EDT

●        Tuesday, July 30: Camping World Stadium, Orlando, 7 p.m. EDT

●        Wednesday, July 31: Soldier Field, Chicago, 8:30 p.m. EDT

●        Saturday, August 3: MetLife Stadium, New Jersey, 7 p.m. EDT

●        Tuesday, August 6: M&T Bank Stadium, Baltimore, 7:30 p.m. EDT

●        Tuesday, August 6: Bank of America Stadium, Charlotte, 7 p.m. EDT

The agreement further solidifies Fubo’s position as Canada’s premier soccer streaming platform. Fubo also offers subscribers exclusive soccer content in Canada, including English Premier League available in 4K, and expansive sports coverage through partners like CBC, MLB.TV, NBA TV Canada and OneSoccer. Fubo’s growing entertainment and news offering includes dozens of live TV channels and over 12,000 TV shows and movies on demand.

Subscribers can stream Fubo programming in Canada anywhere and at any time, from their mobile device, connected TV or web browser. The Fubo app is available on Amazon Fire TV, Android, GoogleTV, Apple TV, Chromecast, Hisense, iOS, LG TV, Roku and Xbox One.

For more information, visit www.fubo.tv.

The DIRECTV Soccer Champions Tour was represented by Sportfive in deal negotiations with Fubo.

Leave a comment »

Equinix to Extend its Digital Infrastructure Platform to the Philippines

Posted in Commentary with tags on July 23, 2024 by itnerd

 Equinix, Inc. today announced its planned entry into THE PHILIPPINES with the acquisition of three data centers from Total Information Management (“TIM”), a leading technology solutions provider.

Following the recently announced expansions in MALAYSIA and INDONESIA, this strategic move aims to help businesses expand and capitalize on the digital opportunity of the fast-growing SOUTHEAST ASIA region. The all-cash transaction represents a multiple of approximately 15x the projected EBITDA at full utilization and is expected to close in 2H 2024, subject to customary closing conditions.

The acquisition of the three high-performance data centers will provide capacity for Equinix to address the digital needs of local and overseas businesses in the Philippines. Enterprises, cloud and IT service providers, and network service providers around the world can leverage Platform Equinix to interconnect and exchange data privately and securely within a vibrant ecosystem of business partners and customers. Existing customers of TIM, including network and financial services companies, will also gain access to Equinix’s global ecosystems of more than 10,000 companies, including more than 2,000 networks and 3,000 cloud and IT service providers.

Southeast Asia’s digital economy grew to $218 billion in gross merchandise value (GMV) in 2023.1 In particular, the Philippines’ digital economy is expected to continue its upward climb toward $35 billion by 2025, growing at a compound annual growth rate (CAGR) of 20%.2 The country is also seeing a surge in demand for digital infrastructure services, driven by a highly engaged digital population,  booming e-commerce adoption and various government initiatives to promote digitization, such as the E-Government Masterplan 2022 and the Digi-Ed 2028 program.

Highlights / Key Facts

  • The three carrier-neutral and interconnection-rich data centers include more than 1,000 cabinets of capacity and land for further expansion. These data centers will support the digital transformation of local and global customers looking to expand into the Philippines.
  • As part of Equinix’s ambitious investment plans in the Asia-Pacific region, the company will expand in new markets including Jakarta, Indonesia (JK1) and Chennai, India (CN1) later this year. With the capacity allocation by the government, Equinix will also expand its footprint in Singapore. These expansions will reinforce Equinix’s leadership in the region and support the digital transformation of customers expanding into new markets.
  • Today, the global footprint of Platform Equinix spans 260 data centers across 71 metros and 33 countries. In Asia-Pacific, Equinix currently operates 56 data centers in 14 key metros across Australia, China, Hong Kong, India, Japan, Korea, Malaysia and Singapore, including the recently opened data centers in Johor (JH1) and Kuala Lumpur (KL1) in Malaysia.

Leave a comment »

TELUS Community Boards reach milestone with $100 million in donations to Canadian charities

Posted in Commentary with tags on July 23, 2024 by itnerd

TELUS is proud to announce a major milestone in charitable giving in Canada, with TELUS’ Community Board program reaching $100 million in donations to local charities across the country. Funded by the TELUS Friendly Future Foundation, TELUS’ Canadian Community Boards are composed of local business and community leaders and are empowered to make decisions about where charitable grants are best allocated based on need and maximum impact. As youth-serving organizations struggle to keep up with the demand for their services, and with the number of Canadians making charitable donations on the decline for the eleventh consecutive year, TELUS Community Board grants have remained an important source of funding for grassroots charities nationwide for over two decades. Each year, over $6 million in grants, made possible by TELUS Friendly Future Foundation, are contributed to support grassroots community-based health and education programs that help Canadian youth and their families thrive.

With 13 Community Boards across Canada, TELUS is continuing to expand into new communities, providing even more youth with new opportunities that help facilitate life-changing connections, nurture a sense of belonging, and empower them to thrive. Over the past two years alone, TELUS has expanded the geographical area of eight of its Community Boards including, Interior and Northern B.C., Vancouver and Coastal, Manitoba and Saskatchewan, Edmonton and Northern Alberta, Calgary and Southern Alberta, Ottawa and Eastern Ontario, Barrie and Central Ontario, and Greater Toronto and Hamilton Area.

To apply for a TELUS Community Board grant, organizations must be a Canadian registered charity and meet the eligibility funding criteria requirements, including support for youth, up to age 29, experiencing health or education barriers that inhibit their ability to reach their full potential. With the next round of funding opening on August 27 and closing October 8, local charities are encouraged to visit friendlyfuture.com/communityboards to learn more and submit an application.

Individuals and organizations across Canada are invited to partner with TELUS and TELUS Friendly Future Foundation in support of grassroots charities nationwide and our efforts to help address the ongoing and urgent needs facing underserved youth. Visit friendlyfuture.com/donate to give.

Leave a comment »

Oil rig data leaks raise terrorism threat

Posted in Commentary with tags on July 23, 2024 by itnerd

In November 2023, Cybernews researchers discovered an openly accessible storage with over 1.5 million sensitive files. The files contained personal employee information and operational data from multiple energy companies. 

The research team has been able to attribute the leak to WorldLive LLC, a Louisiana-based company that specializes in tracking employee training, managing assets, and creating maintenance schedules for energy companies.

Some of the examined files were connected to ExxonMobil and Guyana Revenue Authority, JP Oil Holdings, Broussard Brothers, and Noble Energy, acquired by Chevron Corporation. However, given the scope of the leak, more companies could be affected.

The leak was caused by missing authentication on Azure Cloud Storage Blob – a cloud-based service from Microsoft Azure that allows users to store and manage large amounts of unstructured data such as text, binary data, and media files.

The leaked data includes:

  • Employee names 
  • Addresses
  • Phone numbers
  • Dates of birth
  • Social Security numbers (SSN)
  • Physical examination and drug test forms
  • Scanned documents
  • Employee certificates
  • Templates for employee cards
  • Employee resumes with photos
  • On-site assessment forms with photos of critical infrastructure


The risk of attacks

Cybersecurity neglect by the companies’ service provider is highly concerning, as the energy sector is considered a critical infrastructure. Apart from the devastating effects in the case of an attack, the sector is highly targeted by malicious actors.

For the full report, visit: https://cybernews.com/security/worldlive-oil-rig-data-leak/

Leave a comment »

Premier East Coast Cybersecurity Event Returns to New York City in September

Posted in Commentary on July 23, 2024 by itnerd

Cybertech NYC 2024, the largest East Coast event for the cyber industry, will take place on September 5, 2024, at the Metropolitan Pavilion in Chelsea, New York. This prestigious conference will gather over 1,500 attendees, including CISOs and other industry professionals, key solutions providers, high-ranking government officials, and innovative startups.

The event will feature an exhibition hall, a record-breaking Startup Pavilion, and sector-specific special events covering critical topics such as:

  • AI and cybersecurity
  • Bridging the gap in cyber talent
  • Cyber and law enforcement
  • Cyber crisis management
  • Cyber in healthcare
  • Data security
  • Fake news and elections
  • Fintech security
  • Successful entrepreneurship
  • Supply chain security
  • Threat intelligence
  • Women in cyber
  • and more!

A literal who’s who in cybersecurity, government, and investing are set to present, including speakers from Nasdaq, NBC News, Nvidia, The Wall Street Journal, Visa and many others. The conference includes innovative breakouts such as:

  • Invest in the Best – This unique closed-door event provides pre-selected startups with an unparalleled opportunity to connect with leading global investors. Participation is by invitation only and space is limited. Startups and investors can apply at: https://nyc.cybertechconference.com/Invest_in_the_best.
  • Startup Pavilion – The record-breaking Startup Pavilion will showcase over 100 innovative startups from around the globe, highlighting groundbreaking solutions and technologies in cybersecurity. The pavilion offers a unique platform for startups to connect with industry leaders, investors, and potential partners, fostering collaboration and driving innovation in the cybersecurity sector. The record participation underscores the growing importance and dynamism of the cybersecurity landscape. To apply, visit: https://nyc.cybertechconference.com/startupreg.
  • Cybertech Talent Arena: In collaboration with TechDay, the talent arena will explore the future of cyber talent development with workshops, a competition, and talent zone focused on human capital in the cyber age. For more information, visit: https://nyc.cybertechconference.com/talent_arena.

Cybertech NYC 2024 promises to be a hub for networking, knowledge exchange, and showcasing groundbreaking cybersecurity solutions. With participants ranging from business decision-makers to C-level executives, this event is an unparalleled opportunity for professionals to connect and collaborate.

Event Details:

For media wishing to attend, register for a press, here: https://nyc.cybertechconference.com/registration.

To become a sponsor or exhibitor: https://nyc.cybertechconference.com/becomeasponsor.

For special rates and services: https://nyc.cybertechconference.com/delegationformnyc.

Leave a comment »

New Olympics Cyber Threat Targets VIP Transport Companies

Posted in Commentary with tags on July 23, 2024 by itnerd

Abnormal Security has revealed that French businesses, particularly those in the hospitality, transport, and tourism sectors, are at high risk of being targeted as they experience an influx of customers and transactions, making them prime targets for cybercriminals seeking to exploit the situation.

Abnormal Security researchers have additionally identified a worrying trend in online chat rooms as the threat extends beyond Olympic ticket buyers with an observation of an uptick in data offered for sale and trade.

In an example of the growing cyber threat that emerged at the beginning of this month, a user on a popular cybercrime forum contacted an undercover security researcher, offering access to VIP transport companies in the Paris area. The seller highlighted the expected booking surge as the Olympics drew closer and disclosed they had access to the company’s Stripe, email, and invoice software.

Cybercriminals can exploit this type of access to send fraudulent emails impersonating Stripe, making customers susceptible to phishing attacks. They can also target employees within the business, exposing the company to risks such as invoice fraud, compromised financial information, and operational disruptions.

You can read the details here: https://abnormalsecurity.com/blog/french-companies-olympics-threats

Leave a comment »