Author Archive

« Older Entries
Newer Entries »

Security firm for NFL, NBA, NHL, MLB, and NASCAR notifies 100K people of data breach

Posted in Commentary with tags on May 12, 2025 by itnerd

Andy Frain Services, a security firm servicing major clients such as NFL, NBA, NASCAR, and more, over the weekend confirmed it notified 100,964 people of an October 2024 data breach that compromised their personal information.

Ransomware gang Black Basta claimed responsibility for the breach in November 2024, saying it stole 750 GB of data from the private security firm. Andy Frain has not yet confirmed Black Basta’s potential involvement. 

Roger Grimes, Data-Driven Defense Evangelist at KnowBe4 had this to say:

“I’m not sure why it took nearly 7 months for Andy Frain Services to notify the impacted people. That’s 7 months hackers could have been using the learned information to abuse potential victims. If I do business with Andy Frain Services, I would like to know how the breach happened, if they know. Was it social engineering, unpatched software or firmware, or some other cause. Because if they don’t know how it happened it’s much tougher to put in place the right mitigations to make sure it’s less likely to happen again.”

And in  a blog post reporting this news, Paul Bischoff, Consumer Privacy Advocate at Comparitech, wrote:

“Black Basta, not to be confused with Blackcat or BlackSuit, is a ransomware gang that first surfaced in early 2022. It operates a ransomware-as-a-service business wherein third-party clients pay Black Basta to use its ransomware and infrastructure to launch attacks and collect ransoms. Black Basta often extorts victims both for a key to restore infected systems and for not selling or publicly releasing stolen data. Black Basta has claimed 166 confirmed ransomware attacks since it began, compromising more than 11.7 million records. Its average ransom demand is about $2.9 million.”

“In 2025 to date, Black Basta has claimed five victims, all of which it claimed in January. None of those attacks have been confirmed yet. In 2024, Comparitech researchers logged 793 confirmed ransomware attacks on US organizations, compromising more than 268 million records. 64 of those attacks hit service-based businesses like Andy Frain and compromised 1.6 million records.”

“The average ransom across all industries is just north of $2.3 million, and $787,000 for service-based businesses. In 2025 so far, we’ve recorded 112 confirmed ransomware attacks in total, five of which hit service-based businesses. Ransomware gangs made another 1,365 attack claims this year that haven’t been acknowledged by the targeted organizations.”

Andy Frain has some explaining to do. Or at least it should have some explaining to do. Seven months to disclose this isn’t cool. However I don’t think that will happen given the sort of environment that we’re in at the moment where nobody seems to be held to account for anything. Which is not good.

Leave a comment »

Today Is Anti-Ransomware Day

Posted in Commentary on May 12, 2025 by itnerd

Today, May 12th, marks Anti-Ransomware Day and commemorates the 2017 global WannaCry attack which majorly disrupted the UK’s NHS. That was a huge event at the time. And sadly things have only gotten worse since then.

Rebecca Moody, Head of Data Research at Comparitech had this to say: 

“In 2017, ransomware, to many people, was still a huge unknown. Fast-forward to today, and it’s a word within a lot of people’s vocabulary–even if they don’t understand the technical jargon surrounding it. This is because of large-scale attacks like WannaCry and the current attack on Marks and Spencer, bringing these types of attacks to the forefront. “

“Sadly, however, while awareness around these types of attacks has grown, so too has the number of attacks. Since 2018, we’ve seen yearly increases in the number of ransomware attacks (except for a dip in 2022), and the amount of data involved in these attacks has also risen exponentially. Hackers have become increasingly focused on double-extortion tactics whereby systems are encrypted (for one ransom payment) and data is also stolen (for another ransom payment).”

“Since 2018, we’ve tracked 281 confirmed ransomware attacks in the UK alone (confirmed attacks are those acknowledged by the entity involved). These attacks have led to the breach of over 3.3 million records and have seen average ransom demands of nearly USD $8.6 million (GBP £6.5 million).”

“40 of these attacks and nearly 1.2 million records are from 2024. And we’ve already seen 12 attacks this year so far. While no breaches have been reported for the attacks this year, we’ll likely see significant numbers involved in the attacks on M&S and Co-op.”

“While the threat landscape surrounding ransomware attacks has changed, the basics for thwarting these attacks remain the same. Make sure systems are up to date, patch vulnerabilities as soon as you become aware of them, carry out regular system back-ups, have detailed plans in place if the worst should happen, and, perhaps most crucially, carry out regular staff training. As we’ve seen with Harrods, Co-op, and M&S, social engineering tactics were used to carry out these attacks, whereby employees were tricked into changing their passwords.”

The world isn’t a safe place right now based on the fact that I started out occasionally reporting on ransomware attacks to reporting on them daily. Thus let’s use today as a catalyst to make whatever changes are required to make the world a whole lot safer when it comes to ransomware.

Leave a comment »

Tanya Steele and Samara Halterman of Myriad360 Spotlighted on the 2025 Women of the Channel Power 80 Solution Provider List

Posted in Commentary with tags on May 12, 2025 by itnerd

Myriad36 proudly announced today that CRN®, a brand of The Channel Company, has recognized Tanya Steele, Chief Experience Officer, and Samara Halterman, Chief Marketing Officer, as two of the 2025 Women of the Channel Power 80 Solution Provider list. This prestigious honor highlights an elite subset of influential solution provider leaders chosen from the CRN® 2025 Women of the Channel list.

This annual CRN list celebrates women from vendors, distributors, solution providers and other channel-focused organizations who make a positive difference in the IT ecosystem. The CRN 2025 Women of the Channel honorees are innovative and strategic leaders committed to supporting the success of their partners and clients.

The annual Power 80 Solution Provider list honors the most influential women in leadership at some of the country’s most prominent IT integrators, managed service providers, value-added resellers and consultants for their channel advocacy and dedication to helping their clients and technology partners thrive.

This year CRN recognized Tanya Steele, Chief Experience Officer, and Samara Halterman, Chief Marketing Officer, of Myriad360.

Tanya has demonstrated exceptional leadership in advancing the company’s channel business through strategic innovation and operational excellence. As a seasoned executive leading the Client Experience Organization, she oversees delivery engineers, pre-sales engineers, project management, account management, sales operations, and service operations teams, driving remarkable results including an 80% improvement in services utilization over the past year.

Under Tanya’s leadership, Myriad360 achieved an impressive Net Promoter Score of 89 while establishing a dedicated Service Operations department that helped to reduce order error rates by over 60%. Her client-first approach has transformed the company’s speed-to-quote capabilities and pricing strategies, creating scalable processes that support growing channel demands. Tanya’s commitment to delivering exceptional client outcomes while fostering team collaboration positions Myriad360 as a trusted partner providing comprehensive 360-degree technology solutions.

Samara Halterman, Chief Marketing Officer at Myriad360, has been recognized for her transformative impact on the company’s channel strategy. A six-time CRN Women of the Channel honoree (2018-2023), Samara has leveraged her extensive experience across global solution providers to architect innovative co-marketing frameworks that empower partners, expand pipeline opportunities, and enhance revenue growth. Her leadership has revolutionized Myriad360’s partner engagement framework while implementing comprehensive enablement programs that accelerate market readiness.

Drawing from her impressive track record, including delivering double digit ROI at A10 Networks and leading a world class global team across 15 countries at Pure Storage, Samara combines strategic vision with tactical execution to drive measurable business outcomes. Her human-centered approach balances client-first obsession with pragmatic innovation, while her dedication to mentoring emerging female leaders strengthens both Myriad360’s culture and the broader channel ecosystem. Under her guidance, Myriad360 is focused on deepening relationships with strategic partners, developing joint solutions, and expanding national presence to better serve enterprise clients across new territories.

The 2025 Women of the Channel will be featured in the June issue of CRN Magazine, with online coverage beginning May 12 at www.CRN.com/WOTC.

Leave a comment »

KnowBe4 Predicts Agentic AI Ransomware Is Imminent on International Anti-Ransomware Day

Posted in Commentary with tags on May 12, 2025 by itnerd

KnowBe4 today announced a prediction that agentic AI ransomware will become a new threat in the near future, recognized on International Anti-Ransomware Day. 

Ransomware demands and payments escalated in 2024, with average payments reaching $2.73 million. International Anti-Ransomware Day serves as a platform to raise awareness globally about the dangers of ransomware and the best practices for mitigating it. 

AI agentic ransomware is a collection of AI bots that perform all the steps necessary to conduct a successful ransomware attack, only faster and better. The AI-enabled agentic ransomware will gain initial access, analyze the environment, determine how to maximize malicious hacker profits, and implement the attacks. And it will not be just one attack, but a series of escalating attacks to maximize a malicious hacker’s profit.

KnowBe4 has multiple resources, including tips to help organizations fight against ransomware and a Ransomware Hostage Rescue Manual

Leave a comment »

Fortra Acquires Lookout Cloud Security

Posted in Commentary with tags on May 12, 2025 by itnerd

Fortra today announced the acquisition of Lookout’s Cloud Security business featuring their Security Service Edge (SSE) solution. Based in Boston, Massachusetts, Lookout’s Cloud Security solution features Cloud Application Security Broker (CASB), Zero Trust Network Access (ZTNA) and Secure Web Gateway (SWG) among other critical security solutions. In addition, with this acquisition, Fortra now offers a complete Data Security Posture Management (DSPM) solution.  

In March 2024, Fortra and Lookout announced a strategic integration partnership to provide customers with comprehensive security coverage through Fortra’s Digital Guardian DLP. Now Fortra customers will have comprehensive DSPM capabilities leveraging the power of Fortra’s existing solutions for data discovery, classification and data loss prevention (DLP) enhanced by Lookout’s strength in cloud security. 

As organizations face increased threats from cyber-attacks, and look to comply with regulatory and privacy requirements, Lookout’s SSE capabilities help organizations safeguard their people, devices, applications and data wherever it lives across hybrid environments.   

Leave a comment »

Analysis of popular AI tools: 84% breached, 51% facing credential theft

Posted in Commentary with tags on May 12, 2025 by itnerd

About 75% of workers use AI in the workplace, with AI chatbots being the most common tools to complete work-related tasks. While this boosts productivity, it could expose companies to credential theft, data leaks, and infrastructure vulnerabilities, especially since only 14% of workplaces have official AI policies, contributing to untracked AI use by employees.

According to the Cybernews Business Digital Index, nearly 90% of analyzed AI tools have been exposed to data breaches, putting businesses at severe risk. Cybernews researchers analyzed 52 of the most popular AI web tools in February 2025, ranked by total monthly website visits based on Semrush traffic data.

Key analysis findings: 

  • Researchers’ analysis shows that 33% of the analyzed AI platforms earned an A rating, 41% received a D (high risk) or even an F (critical risk). 
  • Of the 52 AI tools analyzed, 84% had experienced at least one data breach.
  • 36% of analyzed tools experienced a breach in just the past 30 days. 
  • 93% of platforms showed issues with SSL/TLS configurations, which are critical for encrypting communication between users and tools. 
  • System hosting vulnerabilities were another widespread concern, with 91% of platforms exhibiting flaws in their infrastructure management. 
  • 44% of companies developing AI tools showed signs of employee password reuse.
  • 51% of analyzed tools have had corporate credentials stolen. 

To read the full research and methodology, please click here.

Leave a comment »

3+ Million Student-Athletes & College Coaches’ Records Exposed 

Posted in Commentary with tags on May 12, 2025 by itnerd

VPNMentor just published cybersecurity researcher Jeremiah Fowler’s latest findings, revealing an unprotected database linked to a platform that helps high school athletes secure college sports scholarships.

The database contained 3,154,239 records, totaling 135 GB, with personally identifiable information (PII), including names, emails, phone numbers, home addresses, and even passport image links for student-athletes.

The scale and sensitivity of the information raise serious risks of identity theft, financial fraud, and impersonation.

You can find the full report here: https://www.vpnmentor.com/news/report-prephero-breach/

Leave a comment »

Whoop Shoots Itself In The Foot And Angers Their User Base

Posted in Commentary with tags on May 11, 2025 by itnerd

I am calling now. In a few years, this will be a case study on how not to treat your user base.

If you’re an athlete, you may have heard of a device called Whoop. You wear it on you wrist and it tracks your activity throughout a day. And it doesn’t have a screen so it can do that with way more granularity versus something like an Apple Watch, and have days of battery life. This is a device that has found its way on to the wrists of pro cyclists like Mathieu Van Der Poel to help them to perform at their best.

Now it’s not the hardware that makes Whoop a unique device, it’s really the software. It can give you a lot of data on your life as well as your training so that you can make data based decisions about how you train, your sleep, your nutrition, etc. And you have to pay for that as part of a subscription. But as long as you were a subscriber for more than six months, you would get new hardware for free. That sounded like a great deal. And it was until this week when Whoop took that away from users when version 5.0 of their hardware was released. When that happened, users were given two choices:

  • Extend your subscription by 12 months to get the new hardware
  • Pay $49 USD to get the new hardware

And to make matters worse, any mention of their promise of free hardware for any subscriber who has been subscribing for more than six months, such as this example which I found via the Internet Wayback Machine, was scrubbed from their website. There are other “receipts” as the kids say that you can see here.

I’ll be honest, that at first glance sounds shady. And the backlash from users has been swift and brutal. Here’s a couple of examples from Twitter:

Now I can see why Whoop users would be mad. And from where I stand, they have a point. I guess Whoop figured out that they really dropped themselves in this one and today kind of, sort of started backpedaling this:

After the backlash, Whoop is now changing its tune — somewhat. Those with “more than 12 months remaining” are “eligible for a free upgrade to WHOOP 5.0 on Peak,” one of its new subscription offerings. Those with less than 12 months left still have to either extend their membership another 12 months or pay a one-time upgrade fee, the company says. The same information is reflected in an update on its membership pricing page.

The company addresses the earlier blog post, writing that “a previous blog article incorrectly stated that anyone who had been a member for just 6 months would receive a free upgrade. This was never our policy and should never have been posted.” Whoop goes on:

As noted above, our policy for upgrades from WHOOP 3.0 to WHOOP 4.0 was that members with 6 months or more remaining on their membership were eligible for a free upgrade to WHOOP 4.0. We removed that blog article when it came to our attention and updated WHOOP Coach with the proper information. We’re sorry for any confusion this may have caused. 

That seems to line up with a Forbes interview that a Reddit user found, in which Whoop CEO Will Ahmed told the outlet that members with a Whoop 3.0 band could upgrade to the 4.0 model, so long as they had “at least 6 months of membership left on their account.” The company used similar language in a 2021 blog post about the Whoop 4.0 band.

I will leave it to you to decide if this is a good response or not.

At this point, the damage I think is done. The way Whoop handled this has really damaged the trust of their user base, which to be clear were very loyal to the product. In fact, I would go as far to say that Whoop not only torched that trust, they torched it, and then nuked it from orbit. I say that because I guarantee that Whoop users who feel screwed over by the company are going to be taking a good look at Garmin sports watches which do a lot of what Whoop does built into the product. Or they may do what I did which is take an Apple Watch and use a third party piece of software called Athlytic which you use via a subscription that’s way cheaper than any subscription that Whoop offers to get most of this functionality. You can find out more about that here. Either way, if that happens, Whoop will not get those users back. Ever. And they will look this moment and conclude that this is when they shot themselves in the foot and never recovered.

Leave a comment »

Today is Data Innovation Day

Posted in Commentary on May 11, 2025 by itnerd

Today is Data Innovation Day, an annual event held on May 11 to celebrate the pivotal role of data in driving innovation and growth in business, government, and society. It is a day we recognize data professionals’ achievements and raise awareness about data innovation’s crucial role in shaping the modern world. 

As we commemorate Data Innovation Day, Robert Renzoni, Director of Technical Sales, Federal at Hammerspace, the high-performance data platform for AI, shares his unique perspective on its significance to the U.S Federal Government and why mobilizing data is the key to empowering the future of AI and government modernization:  

Every year, Data Innovation Day invites us to reflect on how data shapes our world—and to reimagine how we manage, access, and use it to drive societal progress. The celebration is more than symbolic for government leaders, federal system integrators, and IT modernization strategists. It’s a call to action.

As artificial intelligence and machine learning have become central to national security, public services, and policy execution, the ability to mobilize and share data securely and efficiently is now a strategic imperative. But there’s a challenge: most federal agencies are still grappling with legacy IT systems not built for today’s distributed, data-intensive demands.

At the heart of modernization lies a fundamental question: Can data be moved as fast as the mission requires?

AI Is Starving Without the Right Data Infrastructure

AI doesn’t just need data —it requires the correct data in the right place and time. Whether it’s training large language models, performing real-time inference at the edge, or deploying predictive analytics for public health or defense, AI workloads demand:

  • High-performance access to diverse, often siloed data sources
  • Rapid, policy-based orchestration of data across hybrid and multi-cloud environments
  • Data provenance, governance, and compliance in every step of the pipeline

Yet federal data often resides in legacy storage systems, scattered across geographically separated locations, air-gapped environments, and cloud enclaves. This fragmentation makes it incredibly difficult, sometimes impossible, for agencies to leverage AI’s potential fully.

Data Innovation Is More Than a Buzzword—It’s a Modernization Mandate

Data Innovation Day isn’t just about technology—it’s about creating the conditions for innovation to flourish. In government, that means breaking down systemic data barriers to support faster, smarter, and more secure decision-making.

Data mobilization—the ability to move and access data transparently across environments—is no longer a “nice to have.” It is a foundational requirement for AI-readiness and a cornerstone of initiatives like:

  • Executive Order 14110 on Safe, Secure, and Trustworthy Development of AI
  • Federal Data Strategy and the Federal Data Maturity Model
  • The Department of Government Efficiency (DOGE) Modernization Goals
  • Zero Trust Architecture mandates, which require dynamic access and control

On this Data Innovation Day, we applaud bold thinkers who push boundaries and incorporate cutting-edge technology to advance their data strategies. While AI, hybrid cloud, and edge computing constantly improve, one fact remains unchanged: true innovation relies on providing optimized access to data.”

Leave a comment »

Qilin Ransomware gang says it hacked the Sheriff of Hamilton County, TN

Posted in Commentary with tags on May 9, 2025 by itnerd

Ransomware gang Qilin this week claimed responsibility for an April 14, 2025 cyber-attack on the Hamilton County Sheriff’s Office in Chattanooga, TN. The office on May 2 acknowledged a ransomware attack, saying the hackers demanded $300,000 in ransom. The sheriff says HCSO did not pay the ransom, but did pay $48,000 to Vendetta, a third-party cybersecurity firm.

In a blog post reporting this news, Paul Bischoff, Consumer Privacy Advocate at Comparitech, wrote:

“Qilin is a ransomware gang that started claiming responsibility for attacks on its website in late 2022. Also known as Agenda, Qilin is a Russia-based hacking group that mainly targets victims through phishing emails to spread its ransomware. It launched in August 2022 and runs a ransomware-as-a-service business in which affiliates pay to use Qilin’s malware to launch attacks and collect ransoms. Qilin made another 171 unconfirmed attack claims that haven’t been acknowledged by the targeted organizations. Three of those allegedly hit government organizations.”

“Ransomware attacks on US government agencies and departments can both steal data and lock down computer systems. The attacker then demands a ransom to delete the stolen data and in exchange for a key to recover infected systems. If the target doesn’t pay, it could take weeks or even months to restore systems, data could be lost forever, and people whose data was stolen are put at greater risk of fraud. According to our data, it takes an average of 19.5 days for government organizations to recover from ransomware attacks.”

This gang appears to be on a roll as I have been writing a fair amount about them recently. That’s not good for all of us as that will embolden them to launch increased and more devastating attacks on organizations.

Leave a comment »

« Older Entries
Newer Entries »